$ rpki-client -vvf rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/BA1EA120E6FC11EE96775810C4F9AE02.roa File: BA1EA120E6FC11EE96775810C4F9AE02.roa (raw, json) Hash identifier: A5fAuFOfiGUQaeu45xBTYCW02QdZE5mmyPLZM+zs/1w= Subject key identifier: F9:EF:81:10:FC:7E:41:CC:87:88:C9:CD:1A:6F:D5:2B:C7:46:1F:59 Certificate issuer: /CN=A91655EF/serialNumber=074E16CCA080D545FEF4F2D8ADCB909F0ECB20A2 Certificate serial: 10DA Authority key identifier: 07:4E:16:CC:A0:80:D5:45:FE:F4:F2:D8:AD:CB:90:9F:0E:CB:20:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/BA1EA120E6FC11EE96775810C4F9AE02.roa Signing time: Wed 20 Mar 2024 21:01:44 +0000 ROA not before: Wed 20 Mar 2024 21:01:44 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152479 IP address blocks: 103.126.148.0/24 maxlen: 24 103.126.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.crl rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4314 (0x10da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91655EF/serialNumber=074E16CCA080D545FEF4F2D8ADCB909F0ECB20A2 Validity Not Before: Mar 20 21:01:44 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65fb4eb8-6c12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:be:3c:62:ab:58:fd:35:25:ec:09:0d:ed:c6: 3e:5e:64:5f:3b:78:21:f4:a4:83:9e:fa:17:42:12: 92:60:7a:02:73:0e:26:58:26:1c:4b:ec:ab:a9:c2: f4:bc:9b:39:b7:a2:4e:12:a0:e5:ce:3a:ff:a0:f7: 6d:7f:5e:b6:1f:d8:2e:f6:e5:79:8b:43:c3:ce:46: dd:6a:e7:01:45:c7:95:ed:38:77:8b:b8:2b:32:76: 07:72:b0:77:25:12:bf:2c:ee:eb:3f:4e:2a:8a:69: b4:3e:4c:a8:5d:7d:14:0d:c7:1f:8d:b9:fe:b6:a9: d0:db:f9:9e:88:7c:33:8d:ea:a8:37:17:0c:ff:b2: 5c:0a:85:63:69:a1:c9:d0:d3:e0:66:2a:d4:d4:cc: 87:05:72:68:7c:9c:e0:75:5b:23:15:7d:b8:f2:a4: 4b:cf:f5:41:07:79:2c:3f:d5:68:0f:79:a7:d2:6b: c4:c1:ad:bd:44:6f:06:2f:43:83:dc:4b:3b:e1:10: c4:db:12:7e:b6:bd:a4:8a:48:ec:4e:d2:9e:a7:32: 00:ac:2a:c4:bb:ec:62:72:c3:82:75:56:ef:69:1f: 49:51:22:5d:ab:c2:53:fd:7c:3e:bb:9e:2c:83:8c: 71:2e:b0:02:ff:98:e1:70:2e:2d:57:55:3e:7d:ff: 9c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:EF:81:10:FC:7E:41:CC:87:88:C9:CD:1A:6F:D5:2B:C7:46:1F:59 X509v3 Authority Key Identifier: keyid:07:4E:16:CC:A0:80:D5:45:FE:F4:F2:D8:AD:CB:90:9F:0E:CB:20:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/B04WzKCA1UX-9PLYrcuQnw7LIKI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B04WzKCA1UX-9PLYrcuQnw7LIKI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91655EF/607729D0FAC111E8BC76D671C4F9AE02/BA1EA120E6FC11EE96775810C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.148.0/24 103.126.151.0/24 Signature Algorithm: sha256WithRSAEncryption 26:88:03:2d:8e:97:31:34:06:3c:04:61:3b:ce:59:0d:1a:bd: 9a:83:7a:f4:a8:25:9e:4c:fe:be:f2:f1:a4:58:d5:7f:75:14: d6:29:dd:15:20:a3:e9:a9:e1:fa:c8:1d:11:0a:31:57:32:b5: ce:b4:ff:0d:f7:12:f9:4a:c2:2e:9a:4b:89:ed:b2:18:50:1f: 04:04:d4:d0:cd:d9:97:9e:b6:77:2a:b3:e3:ce:b5:8b:05:f7: 2e:50:28:8d:b5:41:1b:39:15:31:b5:38:52:45:17:37:1d:55: 6f:7d:68:9e:0b:d6:c1:5e:b0:95:e6:3a:c7:cb:42:d4:ff:02: 99:cb:8f:eb:c5:68:e5:c4:de:e4:83:8a:6e:86:34:13:9d:44: 42:8e:eb:db:06:51:5c:00:31:31:75:8e:5f:8f:8b:87:cd:73: 57:ff:7a:ca:6f:1a:30:fb:9b:63:78:9e:9a:13:86:e2:3c:10: ed:b3:ac:c5:3a:70:b2:22:55:4f:6c:b7:0d:2e:ee:cf:18:20: 22:0c:88:e7:84:12:b3:21:ba:79:09:a5:49:a6:e1:95:7b:58: b5:99:de:70:8e:64:c1:a1:79:f7:25:bb:28:e0:4c:ff:17:dd: 94:8d:09:41:b8:89:41:e6:2e:e6:73:21:6d:90:2f:c9:7c:2b: cb:2a:c4:30 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICENowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1RUYxMTAvBgNVBAUTKDA3NEUxNkNDQTA4MEQ1NDVGRUY0RjJEOEFEQ0I5MDlG MEVDQjIwQTIwHhcNMjQwMzIwMjEwMTQ0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiNGViOC02YzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqL48YqtY/TUl7AkN7cY+XmRfO3gh9KSDnvoXQhKSYHoCcw4mWCYcS+yrqcL0 vJs5t6JOEqDlzjr/oPdtf162H9gu9uV5i0PDzkbdaucBRceV7Th3i7grMnYHcrB3 JRK/LO7rP04qimm0PkyoXX0UDccfjbn+tqnQ2/meiHwzjeqoNxcM/7JcCoVjaaHJ 0NPgZirU1MyHBXJofJzgdVsjFX248qRLz/VBB3ksP9VoD3mn0mvEwa29RG8GL0OD 3Es74RDE2xJ+tr2kikjsTtKepzIArCrEu+xicsOCdVbvaR9JUSJdq8JT/Xw+u54s g4xxLrAC/5jhcC4tV1U+ff+cBwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPnvgRD8 fkHMh4jJzRpv1SvHRh9ZMB8GA1UdIwQYMBaAFAdOFsyggNVF/vTy2K3LkJ8OyyCi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTVFRi82MDc3MjlEMEZB QzExMUU4QkM3NkQ2NzFDNEY5QUUwMi9CMDRXektDQTFVWC05UExZcmN1UW53N0xJ S0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IwNFd6S0NBMVVYLTlQTFlyY3VRbnc3TElLSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1RUYvNjA3NzI5RDBGQUMxMTFFOEJDNzZENjcxQzRGOUFFMDIvQkExRUExMjBF NkZDMTFFRTk2Nzc1ODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnfpQDBABnfpcwDQYJKoZIhvcNAQELBQADggEBACaIAy2O lzE0BjwEYTvOWQ0avZqDevSoJZ5M/r7y8aRY1X91FNYp3RUgo+mp4frIHREKMVcy tc60/w33EvlKwi6aS4ntshhQHwQE1NDN2Zeetncqs+POtYsF9y5QKI21QRs5FTG1 OFJFFzcdVW99aJ4L1sFesJXmOsfLQtT/ApnLj+vFaOXE3uSDim6GNBOdREKO69sG UVwAMTF1jl+Pi4fNc1f/espvGjD7m2N4npoThuI8EO2zrMU6cLIiVU9stw0u7s8Y ICIMiOeEErMhunkJpUmm4ZV7WLWZ3nCOZMGhefcluyjgTP8X3ZSNCUG4iUHmLuZz IW2QL8l8K8sqxDA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org