$ rpki-client -vvf rpki.apnic.net/member_repository/A915D4F2/D299F8ECB9AB11EC91E3D165C4F9AE02/A38BA6BEB9AF11ECAC4BC97EC4F9AE02.roa File: A38BA6BEB9AF11ECAC4BC97EC4F9AE02.roa (raw, json) Hash identifier: y99qHJ9OVc/A/XAEYnRHaQqgSfNvTYhESyHYrQgVW9c= Subject key identifier: C9:64:87:18:8A:C6:38:C2:D8:45:4A:52:4E:49:38:D9:92:5E:03:48 Certificate issuer: /CN=A915D4F2/serialNumber=7D18D877502105FA1872ADEE4CF2623C414F16B5 Certificate serial: 0287 Authority key identifier: 7D:18:D8:77:50:21:05:FA:18:72:AD:EE:4C:F2:62:3C:41:4F:16:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fRjYd1AhBfoYcq3uTPJiPEFPFrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D4F2/D299F8ECB9AB11EC91E3D165C4F9AE02/A38BA6BEB9AF11ECAC4BC97EC4F9AE02.roa Signing time: Wed 01 May 2024 04:07:35 +0000 ROA not before: Wed 01 May 2024 04:07:35 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149770 IP address blocks: 103.185.250.0/23 maxlen: 23 103.185.250.0/24 maxlen: 24 103.185.251.0/24 maxlen: 24 2400:6b60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D4F2/D299F8ECB9AB11EC91E3D165C4F9AE02/fRjYd1AhBfoYcq3uTPJiPEFPFrU.crl rsync://rpki.apnic.net/member_repository/A915D4F2/D299F8ECB9AB11EC91E3D165C4F9AE02/fRjYd1AhBfoYcq3uTPJiPEFPFrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fRjYd1AhBfoYcq3uTPJiPEFPFrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 00:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 647 (0x287) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D4F2/serialNumber=7D18D877502105FA1872ADEE4CF2623C414F16B5 Validity Not Before: May 1 04:07:35 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6631c007-c560 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:23:2f:8e:15:11:94:3c:bd:64:87:b3:0f:d5: 0f:7d:52:f4:c3:42:74:30:39:d5:81:98:8a:57:0f: 3a:3b:35:a8:0a:b2:72:a1:bb:de:5d:e8:a7:a2:c7: d4:d1:25:7d:33:d7:2f:05:21:70:cb:1e:0d:5d:cd: 69:90:30:dc:8e:82:19:de:a7:3d:1c:9e:ef:5d:40: 65:c7:b5:5b:a5:94:01:52:1f:ec:68:1e:6a:0d:d0: ef:95:0c:5c:b6:eb:3f:aa:8b:35:ce:b1:2c:7b:fe: 35:e9:74:82:d4:35:18:77:0b:2e:a7:f7:b3:1f:66: be:d6:01:3d:24:61:34:42:aa:28:bf:a8:f7:53:7f: 58:66:e0:56:21:20:34:ba:35:13:eb:b8:f0:58:f9: eb:2c:10:a4:dc:a6:bc:a4:59:7e:f6:0b:51:29:e4: fc:ab:92:10:20:c0:7a:f4:89:d5:89:0a:be:15:c8: ea:ae:1f:1c:6e:0f:4e:02:14:e7:76:88:d2:e4:a5: 96:97:f2:0b:a0:ca:96:c8:f2:78:10:77:af:2b:1a: 41:8e:2f:4a:cf:7d:2d:35:a8:24:74:a9:43:80:52: 8a:8d:55:f0:d1:14:e8:ba:25:1d:01:c1:5a:d4:13: c5:85:25:28:90:d3:6a:95:51:b1:7b:04:62:2f:32: 61:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:64:87:18:8A:C6:38:C2:D8:45:4A:52:4E:49:38:D9:92:5E:03:48 X509v3 Authority Key Identifier: keyid:7D:18:D8:77:50:21:05:FA:18:72:AD:EE:4C:F2:62:3C:41:4F:16:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D4F2/D299F8ECB9AB11EC91E3D165C4F9AE02/fRjYd1AhBfoYcq3uTPJiPEFPFrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fRjYd1AhBfoYcq3uTPJiPEFPFrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D4F2/D299F8ECB9AB11EC91E3D165C4F9AE02/A38BA6BEB9AF11ECAC4BC97EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.185.250.0/23 IPv6: 2400:6b60::/32 Signature Algorithm: sha256WithRSAEncryption bd:c7:61:30:e3:37:3f:6b:77:b8:8e:d0:c4:b0:fa:51:69:dc: 18:9f:ba:9b:3b:ec:9a:de:44:89:56:62:8a:1d:36:de:d8:af: bb:74:b7:0f:26:c8:e0:e3:ef:98:4b:09:dd:ab:97:2b:2c:83: 66:5b:97:f7:53:82:c6:c9:ac:10:4e:9a:5c:96:6a:45:9c:30: c6:41:28:3f:1a:27:6b:84:ac:25:a9:96:08:0d:82:4c:16:e3: 0e:0f:1c:ee:bc:46:28:03:41:52:7d:4e:20:4a:f5:e9:26:a7: 66:e7:59:2e:25:6a:8f:fc:18:36:11:13:6a:65:f3:47:fc:b1: b5:90:89:3c:92:e2:4d:8b:07:58:00:38:82:b4:c0:3b:96:a1: 48:a0:af:9d:4e:eb:2d:76:7d:d2:32:ad:14:26:03:e3:b9:d1: ca:39:91:3f:a6:4b:35:4f:7c:5c:49:64:23:e7:41:3c:44:44: 35:75:bf:58:5d:c0:9e:28:19:41:1c:fe:94:5a:42:83:81:e4: b3:75:da:9b:e2:25:40:21:12:4b:00:d4:1b:b9:98:5f:29:a7: 1c:f1:00:ea:60:55:af:34:4b:6d:83:03:8a:58:97:0d:ac:f7: 69:f7:25:42:9b:32:e5:76:5a:5e:0e:df:a3:c7:36:bc:3e:a9: 05:0e:c1:b9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAocwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ0RjIxMTAvBgNVBAUTKDdEMThEODc3NTAyMTA1RkExODcyQURFRTRDRjI2MjND NDE0RjE2QjUwHhcNMjQwNTAxMDQwNzM1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxYzAwNy1jNTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyMvjhURlDy9ZIezD9UPfVL0w0J0MDnVgZiKVw86OzWoCrJyobveXeinosfU 0SV9M9cvBSFwyx4NXc1pkDDcjoIZ3qc9HJ7vXUBlx7VbpZQBUh/saB5qDdDvlQxc tus/qos1zrEse/416XSC1DUYdwsup/ezH2a+1gE9JGE0Qqoov6j3U39YZuBWISA0 ujUT67jwWPnrLBCk3Ka8pFl+9gtRKeT8q5IQIMB69InViQq+Fcjqrh8cbg9OAhTn dojS5KWWl/ILoMqWyPJ4EHevKxpBji9Kz30tNagkdKlDgFKKjVXw0RTouiUdAcFa 1BPFhSUokNNqlVGxewRiLzJhxwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMlkhxiK xjjC2EVKUk5JONmSXgNIMB8GA1UdIwQYMBaAFH0Y2HdQIQX6GHKt7kzyYjxBTxa1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDRGMi9EMjk5RjhFQ0I5 QUIxMUVDOTFFM0QxNjVDNEY5QUUwMi9mUmpZZDFBaEJmb1ljcTN1VFBKaVBFRlBG clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZSallkMUFoQmZvWWNxM3VUUEppUEVGUEZyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ0RjIvRDI5OUY4RUNCOUFCMTFFQzkxRTNEMTY1QzRGOUFFMDIvQTM4QkE2QkVC OUFGMTFFQ0FDNEJDOTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnufowDQQCAAIwBwMFACQAa2AwDQYJKoZIhvcNAQELBQAD ggEBAL3HYTDjNz9rd7iO0MSw+lFp3Bifups77JreRIlWYoodNt7Yr7t0tw8myODj 75hLCd2rlyssg2Zbl/dTgsbJrBBOmlyWakWcMMZBKD8aJ2uErCWplggNgkwW4w4P HO68RigDQVJ9TiBK9ekmp2bnWS4lao/8GDYRE2pl80f8sbWQiTyS4k2LB1gAOIK0 wDuWoUigr51O6y12fdIyrRQmA+O50co5kT+mSzVPfFxJZCPnQTxERDV1v1hdwJ4o GUEc/pRaQoOB5LN12pviJUAhEksA1Bu5mF8ppxzxAOpgVa80S22DA4pYlw2s92n3 JUKbMuV2Wl4O36PHNrw+qQUOwbk= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org