$ rpki-client -vvf rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/5AD6AAFE0F1111EA932F3E45C4F9AE02.roa File: 5AD6AAFE0F1111EA932F3E45C4F9AE02.roa (raw, json) Hash identifier: fVpTiz95zT96q52Sv8C+QJmIZKHHi2b0N2xlEcRtgMo= Subject key identifier: 03:62:E4:C6:0A:9F:5F:2D:60:94:81:EC:45:BC:4A:41:75:07:9F:D2 Certificate issuer: /CN=A916A0AA/serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Certificate serial: 0BAE Authority key identifier: BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/5AD6AAFE0F1111EA932F3E45C4F9AE02.roa Signing time: Fri 08 Nov 2024 19:07:29 +0000 ROA not before: Fri 08 Nov 2024 19:07:29 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139777 IP address blocks: 103.145.24.0/24 maxlen: 24 103.145.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:39:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2990 (0xbae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A0AA/serialNumber=BB741056B71C755D03FB9CF214A4124CA4F3760C Validity Not Before: Nov 8 19:07:29 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672e6170-c05f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:c8:58:5e:45:6c:fb:83:ff:68:d9:07:73:7b: 7f:c9:1d:49:fe:8a:1e:7d:79:56:9b:1b:fa:1a:62: 9a:c6:c8:11:fb:b2:f8:fa:5e:7a:0b:4a:5a:20:ac: b4:57:6a:25:ea:28:b4:ea:a4:c5:7c:68:0c:3b:af: 5a:d2:6d:08:38:28:b5:f1:e4:7d:62:69:fc:3c:fb: 45:64:ca:fc:f1:32:e9:92:e2:a9:94:a5:e9:d0:21: 07:1a:9d:8d:73:01:24:23:fa:8e:fd:f2:ca:23:33: 55:89:e9:7a:1a:c9:f5:fb:f8:33:a1:9f:d7:60:57: d1:63:f8:2d:25:52:42:30:42:c5:b5:b9:24:30:15: 8d:2e:4b:33:95:04:4f:94:3a:eb:1a:39:d2:2e:0a: 3d:da:ac:00:8a:1f:f0:d0:06:87:0c:3f:6f:c1:91: 02:44:f8:01:19:3f:7c:ce:bc:b4:b7:fa:43:f7:21: c2:50:b3:49:92:db:2c:33:6e:67:37:97:12:4e:13: c4:22:de:2e:33:64:15:68:43:5c:1d:8a:77:88:e2: fd:fa:89:b3:09:c2:46:32:2f:93:45:ca:18:55:b9: 59:75:76:c1:03:9b:27:14:ec:8a:ef:55:2b:2e:a8: 8c:c7:76:71:9b:8b:00:77:13:d9:21:64:40:b7:36: c7:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:62:E4:C6:0A:9F:5F:2D:60:94:81:EC:45:BC:4A:41:75:07:9F:D2 X509v3 Authority Key Identifier: keyid:BB:74:10:56:B7:1C:75:5D:03:FB:9C:F2:14:A4:12:4C:A4:F3:76:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/u3QQVrccdV0D-5zyFKQSTKTzdgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u3QQVrccdV0D-5zyFKQSTKTzdgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A0AA/6A4FFC7A0F1011EAA969FE43C4F9AE02/5AD6AAFE0F1111EA932F3E45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.24.0/23 Signature Algorithm: sha256WithRSAEncryption 29:81:ce:30:86:97:3f:68:65:81:f6:ec:77:87:ea:a7:94:0a: 1c:1e:21:b6:1b:ee:93:13:e0:ed:d2:9a:61:12:d2:67:0b:d1: 92:f7:59:c6:0e:cb:0e:cc:51:28:fe:a2:8e:65:e6:bf:d5:38: 08:67:46:21:4b:71:d6:68:2e:5b:b8:7b:4f:9b:43:b7:10:81: eb:79:77:86:fa:c3:cc:53:2a:36:9b:f2:42:aa:b4:d6:2d:d4: 9f:08:2b:99:82:45:74:b6:03:97:4d:1f:1c:5a:02:50:14:6c: bb:1e:65:20:e4:b9:4d:af:87:e8:66:5b:df:90:7a:eb:0f:91: 7c:ed:7e:67:33:d7:23:4c:79:c7:25:a4:1c:d1:3b:53:37:82: e1:33:ea:89:70:8f:66:3a:47:0a:d1:ea:24:5d:c4:dd:d5:ee: 8b:b5:f1:05:9f:b7:36:b3:35:d8:eb:1c:8b:3c:7d:34:64:bd: 0a:ca:29:48:74:a1:ed:2f:b6:6f:1e:bf:2f:7e:fe:1b:0a:cf: f1:fb:75:e6:9a:c6:25:93:3f:ff:30:01:34:e2:d6:3c:59:e0: 24:10:05:2f:d0:89:31:7f:ab:90:08:da:eb:04:eb:dc:ee:60: 86:a2:10:ad:7a:75:8a:c9:0c:99:35:f2:2d:25:76:5b:50:02: c7:e9:84:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC64wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkEwQUExMTAvBgNVBAUTKEJCNzQxMDU2QjcxQzc1NUQwM0ZCOUNGMjE0QTQxMjRD QTRGMzc2MEMwHhcNMjQxMTA4MTkwNzI5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJlNjE3MC1jMDVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5shYXkVs+4P/aNkHc3t/yR1J/ooefXlWmxv6GmKaxsgR+7L4+l56C0paIKy0 V2ol6ii06qTFfGgMO69a0m0IOCi18eR9Ymn8PPtFZMr88TLpkuKplKXp0CEHGp2N cwEkI/qO/fLKIzNViel6Gsn1+/gzoZ/XYFfRY/gtJVJCMELFtbkkMBWNLkszlQRP lDrrGjnSLgo92qwAih/w0AaHDD9vwZECRPgBGT98zry0t/pD9yHCULNJktssM25n N5cSThPEIt4uM2QVaENcHYp3iOL9+omzCcJGMi+TRcoYVblZdXbBA5snFOyK71Ur LqiMx3Zxm4sAdxPZIWRAtzbHowIDAQABo4IClTCCApEwHQYDVR0OBBYEFANi5MYK n18tYJSB7EW8SkF1B5/SMB8GA1UdIwQYMBaAFLt0EFa3HHVdA/uc8hSkEkyk83YM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QTBBQS82QTRGRkM3QTBG MTAxMUVBQTk2OUZFNDNDNEY5QUUwMi91M1FRVnJjY2RWMEQtNXp5RktRU1RLVHpk Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UzUVFWcmNjZFYwRC01enlGS1FTVEtUemRndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkEwQUEvNkE0RkZDN0EwRjEwMTFFQUE5NjlGRTQzQzRGOUFFMDIvNUFENkFBRkUw RjExMTFFQTkzMkYzRTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkRgwDQYJKoZIhvcNAQELBQADggEBACmBzjCGlz9oZYH2 7HeH6qeUChweIbYb7pMT4O3SmmES0mcL0ZL3WcYOyw7MUSj+oo5l5r/VOAhnRiFL cdZoLlu4e0+bQ7cQget5d4b6w8xTKjab8kKqtNYt1J8IK5mCRXS2A5dNHxxaAlAU bLseZSDkuU2vh+hmW9+QeusPkXztfmcz1yNMecclpBzRO1M3guEz6olwj2Y6RwrR 6iRdxN3V7ou18QWftzazNdjrHIs8fTRkvQrKKUh0oe0vtm8evy9+/hsKz/H7deaa xiWTP/8wATTi1jxZ4CQQBS/QiTF/q5AI2usE69zuYIaiEK16dYrJDJk18i0ldltQ AsfphM0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org