$ rpki-client -vvf rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/83157C50385711EB86284653C4F9AE02.roa File: 83157C50385711EB86284653C4F9AE02.roa (raw, json) Hash identifier: RP2ttD5D5uXKftKTc9Uy3WvFvGaHxDRyE1UTWMKFpHc= Subject key identifier: 99:F1:97:C0:70:92:31:B8:09:5F:7E:10:A2:1D:12:C2:2F:57:79:FC Certificate issuer: /CN=A915B361/serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Certificate serial: 0CC1 Authority key identifier: E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/83157C50385711EB86284653C4F9AE02.roa Signing time: Tue 04 Jun 2024 19:13:08 +0000 ROA not before: Tue 04 Jun 2024 19:13:08 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139202 IP address blocks: 103.139.196.0/23 maxlen: 23 103.139.196.0/24 maxlen: 24 103.139.197.0/24 maxlen: 24 2001:df0:8e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3265 (0xcc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915B361/serialNumber=E0B9A2E9939D558F18BE62175C95D768D245D31F Validity Not Before: Jun 4 19:13:08 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665f6744-4ea6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8b:91:ac:e8:8d:37:48:50:61:a8:56:fc:79: 71:ad:7f:c6:f7:56:28:3d:17:89:9d:0f:a9:11:8e: b5:ff:3f:0c:d1:39:2e:6e:ea:c3:73:d8:1a:f9:d3: fc:5c:9f:76:2f:64:02:72:05:dc:ac:73:56:4d:94: e5:dd:2f:79:8b:46:21:cc:4a:19:dd:21:f8:94:91: 99:24:f7:79:ab:70:c7:a5:89:32:4b:12:99:22:66: 9a:06:ac:1d:6d:e8:64:ec:25:2e:4c:5d:1b:d4:3f: 90:48:7a:0c:19:44:15:8a:97:21:ed:8c:ff:1e:d8: 24:72:f3:eb:02:d2:99:2b:26:e6:f7:d2:f7:06:8a: db:81:2f:8e:bf:68:2f:55:56:c1:a2:48:35:d4:c2: a7:f5:06:2f:c2:17:28:0b:9f:91:21:2e:13:77:f6: 62:67:88:e9:66:6b:e6:fa:25:10:be:63:f0:fb:1d: b0:75:de:bb:32:30:81:c5:77:ab:18:a7:9b:01:c5: 8f:27:28:63:61:74:a0:9b:1c:ca:7c:34:25:ec:29: 3f:12:b5:3e:b9:d6:84:5c:6d:d1:cb:f5:09:4a:98: f8:70:a4:20:13:f0:fe:50:4f:db:dc:fd:93:86:11: 0a:c5:09:e0:cf:99:df:6e:ab:8a:5a:6b:58:67:64: 75:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F1:97:C0:70:92:31:B8:09:5F:7E:10:A2:1D:12:C2:2F:57:79:FC X509v3 Authority Key Identifier: keyid:E0:B9:A2:E9:93:9D:55:8F:18:BE:62:17:5C:95:D7:68:D2:45:D3:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4Lmi6ZOdVY8YvmIXXJXXaNJF0x8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915B361/7C8D800ACA3311E98113A354C4F9AE02/83157C50385711EB86284653C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.196.0/23 IPv6: 2001:df0:8e80::/48 Signature Algorithm: sha256WithRSAEncryption c3:71:a9:a2:b5:fc:91:d8:b3:93:b6:43:be:a5:34:5d:b4:f4: 4e:7f:55:34:2c:94:0d:db:4b:5b:ed:cd:90:38:28:be:82:9a: b3:ec:9c:69:a8:52:96:82:b7:d7:60:5e:5d:2b:3a:67:a2:63: 90:53:ff:25:c2:06:cc:ba:77:8f:b2:72:42:79:90:2f:40:3c: 2e:bd:3c:6f:7e:7f:65:15:0d:4a:d1:89:76:b7:24:92:ec:1d: 07:2a:c2:a9:e7:64:0a:6c:96:7b:d5:62:c6:f7:e5:5b:48:29: 33:04:51:62:bb:34:75:59:7c:8a:98:65:4d:8a:31:c5:7f:0e: aa:d2:df:2f:37:d0:f4:6f:91:12:00:7a:b4:11:5a:b3:75:36: 92:9c:ff:0c:f1:b0:55:e7:1b:04:ef:9d:6e:4d:59:e0:9e:34: 8b:86:27:78:eb:d6:53:97:63:a8:8c:ee:25:21:a5:89:8b:cb: a2:3e:a6:fa:a6:37:35:cf:47:98:4f:69:fe:d4:85:8c:ab:83: 42:5a:57:e4:d2:73:0b:a2:83:96:27:6b:24:11:25:66:08:b9: ba:a3:0e:2d:29:50:bd:22:65:23:6b:8e:36:8c:b0:48:d1:8e: 4f:46:df:52:77:67:a8:d8:50:43:1a:37:56:c5:07:2d:00:ce: fa:6b:b9:58 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICDMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUIzNjExMTAvBgNVBAUTKEUwQjlBMkU5OTM5RDU1OEYxOEJFNjIxNzVDOTVENzY4 RDI0NUQzMUYwHhcNMjQwNjA0MTkxMzA4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVmNjc0NC00ZWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw4uRrOiNN0hQYahW/HlxrX/G91YoPReJnQ+pEY61/z8M0TkuburDc9ga+dP8 XJ92L2QCcgXcrHNWTZTl3S95i0YhzEoZ3SH4lJGZJPd5q3DHpYkySxKZImaaBqwd behk7CUuTF0b1D+QSHoMGUQVipch7Yz/HtgkcvPrAtKZKybm99L3BorbgS+Ov2gv VVbBokg11MKn9QYvwhcoC5+RIS4Td/ZiZ4jpZmvm+iUQvmPw+x2wdd67MjCBxXer GKebAcWPJyhjYXSgmxzKfDQl7Ck/ErU+udaEXG3Ry/UJSpj4cKQgE/D+UE/b3P2T hhEKxQngz5nfbquKWmtYZ2R17QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJnxl8Bw kjG4CV9+EKIdEsIvV3n8MB8GA1UdIwQYMBaAFOC5oumTnVWPGL5iF1yV12jSRdMf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QjM2MS83QzhEODAwQUNB MzMxMUU5ODExM0EzNTRDNEY5QUUwMi80TG1pNlpPZFZZOFl2bUlYWEpYWGFOSkYw eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRMbWk2Wk9kVlk4WXZtSVhYSlhYYU5KRjB4OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUIzNjEvN0M4RDgwMEFDQTMzMTFFOTgxMTNBMzU0QzRGOUFFMDIvODMxNTdDNTAz ODU3MTFFQjg2Mjg0NjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFni8QwDwQCAAIwCQMHACABDfCOgDANBgkqhkiG9w0BAQsF AAOCAQEAw3GporX8kdizk7ZDvqU0XbT0Tn9VNCyUDdtLW+3NkDgovoKas+ycaahS loK312BeXSs6Z6JjkFP/JcIGzLp3j7JyQnmQL0A8Lr08b35/ZRUNStGJdrckkuwd ByrCqedkCmyWe9VixvflW0gpMwRRYrs0dVl8iphlTYoxxX8OqtLfLzfQ9G+REgB6 tBFas3U2kpz/DPGwVecbBO+dbk1Z4J40i4YneOvWU5djqIzuJSGliYvLoj6m+qY3 Nc9HmE9p/tSFjKuDQlpX5NJzC6KDlidrJBElZgi5uqMOLSlQvSJlI2uONoywSNGO T0bfUndnqNhQQxo3VsUHLQDO+mu5WA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org