$ rpki-client -vvf rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa File: 2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa (raw, json) Hash identifier: ysruRwci+2YdWcWGjjenGU03TfndDBIRkaEgaw2RJEI= Subject key identifier: 06:A6:A1:CF:7A:3F:ED:6B:A6:CE:E2:56:CB:78:DE:38:59:9D:56:65 Certificate issuer: /CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Certificate serial: 0233 Authority key identifier: 95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa Signing time: Thu 19 Sep 2024 01:55:10 +0000 ROA not before: Thu 19 Sep 2024 01:55:10 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 150001 IP address blocks: 103.190.132.0/23 maxlen: 23 103.190.132.0/24 maxlen: 24 103.190.133.0/24 maxlen: 24 2400:90a0::/32 maxlen: 32 2400:90a0::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 563 (0x233) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B7B2/serialNumber=9512842664AC51BF67855BC6E4F46BE3551A4DA3 Validity Not Before: Sep 19 01:55:10 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66eb847e-66b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f4:ce:f4:a9:8e:59:b2:84:5a:8c:8c:f0:0e: 70:38:6d:e7:d2:34:1a:d3:f2:62:d8:86:50:71:0d: 55:b2:8a:02:f7:ad:bf:ba:64:1b:a6:e2:8e:69:1b: 0b:80:e0:c7:86:c9:53:37:3c:2a:67:93:a6:f9:39: 77:8c:60:6f:d5:62:e2:c9:65:1e:2b:b9:e7:37:14: ab:0d:56:87:63:f1:ea:48:c4:e6:4f:0e:0c:fb:66: 37:32:a6:19:64:2c:da:f3:20:32:1e:b5:4d:ca:0b: b6:19:a3:2f:90:4f:91:61:65:87:2e:a2:5e:34:83: 83:93:ad:98:1d:fb:a7:53:d6:9b:1b:aa:2d:8f:3f: e1:12:3c:70:6c:a1:0e:57:d9:e3:6a:ce:57:13:29: ce:75:a0:78:43:e1:87:bb:b9:c4:ee:bf:e9:d2:1d: f4:7e:8b:c8:56:17:be:08:c4:40:81:24:85:6a:27: 96:bc:6d:ef:fe:8a:dd:a1:55:a0:7c:91:da:2a:c9: 31:da:b6:70:37:65:f6:f9:a7:82:75:00:98:37:b3: eb:9a:74:02:8b:00:16:3b:1c:d6:e5:9d:7b:12:34: 27:fd:e3:0d:28:7a:b6:81:18:4d:ef:aa:3b:b3:2d: 41:c3:67:f0:49:8f:5d:93:9b:3c:55:18:91:fb:be: a1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A6:A1:CF:7A:3F:ED:6B:A6:CE:E2:56:CB:78:DE:38:59:9D:56:65 X509v3 Authority Key Identifier: keyid:95:12:84:26:64:AC:51:BF:67:85:5B:C6:E4:F4:6B:E3:55:1A:4D:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/lRKEJmSsUb9nhVvG5PRr41UaTaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lRKEJmSsUb9nhVvG5PRr41UaTaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B7B2/0E632194FB7B11ECA87A872EC4F9AE02/2A4EA10EFB7F11EC8FB58E4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.132.0/23 IPv6: 2400:90a0::/32 Signature Algorithm: sha256WithRSAEncryption 1d:36:65:1c:c8:1f:dd:6a:50:81:0e:b1:e1:e7:b3:44:7a:4d: ad:c3:57:c1:95:c7:7f:0d:74:9e:bc:d2:94:a0:56:b2:22:93: 18:f6:46:1d:e6:4a:7e:8d:8f:5e:dd:1e:39:ce:15:65:78:d1: 41:28:e8:ac:b1:ef:6f:a7:06:91:05:a5:3a:07:00:25:2c:0f: 8c:0e:ff:a4:c7:4a:b2:14:5b:45:d0:ff:68:a2:76:e8:db:b9: 66:93:b3:8c:e4:59:86:22:c8:58:07:0b:00:8d:b3:d7:5e:14: 54:cd:bc:bf:3f:b4:11:41:5c:43:a6:78:e2:f7:28:03:84:be: d3:75:48:3e:b0:20:7b:e6:c8:c9:72:43:af:b6:fe:dd:1b:17: cc:ed:6f:d6:8f:8b:5e:27:fc:f2:ba:29:23:67:3d:7d:62:3f: 77:f4:ad:68:2d:03:34:18:7f:54:5e:6d:62:27:31:f9:67:65: 9c:08:ac:6a:8a:71:da:76:89:46:5c:36:b9:7d:d6:8d:1e:33: 4e:73:0b:c7:a2:1e:9d:fc:51:69:fe:39:67:b8:80:37:70:ba: 93:df:0f:b2:85:05:48:97:9e:94:5d:99:66:73:5c:a8:12:9f: dd:2a:eb:1d:c1:64:37:c9:96:81:80:98:00:72:3b:ab:dc:a2: 20:72:95:6f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI3QjIxMTAvBgNVBAUTKDk1MTI4NDI2NjRBQzUxQkY2Nzg1NUJDNkU0RjQ2QkUz NTUxQTREQTMwHhcNMjQwOTE5MDE1NTEwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViODQ3ZS02NmI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsPTO9KmOWbKEWoyM8A5wOG3n0jQa0/Ji2IZQcQ1VsooC962/umQbpuKOaRsL gODHhslTNzwqZ5Om+Tl3jGBv1WLiyWUeK7nnNxSrDVaHY/HqSMTmTw4M+2Y3MqYZ ZCza8yAyHrVNygu2GaMvkE+RYWWHLqJeNIODk62YHfunU9abG6otjz/hEjxwbKEO V9njas5XEynOdaB4Q+GHu7nE7r/p0h30fovIVhe+CMRAgSSFaieWvG3v/ordoVWg fJHaKskx2rZwN2X2+aeCdQCYN7PrmnQCiwAWOxzW5Z17EjQn/eMNKHq2gRhN76o7 sy1Bw2fwSY9dk5s8VRiR+76hsQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAamoc96 P+1rps7iVst43jhZnVZlMB8GA1UdIwQYMBaAFJUShCZkrFG/Z4VbxuT0a+NVGk2j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjdCMi8wRTYzMjE5NEZC N0IxMUVDQTg3QTg3MkVDNEY5QUUwMi9sUktFSm1Tc1ViOW5oVnZHNVBScjQxVWFU YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xSS0VKbVNzVWI5bmhWdkc1UFJyNDFVYVRhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI3QjIvMEU2MzIxOTRGQjdCMTFFQ0E4N0E4NzJFQzRGOUFFMDIvMkE0RUExMEVG QjdGMTFFQzhGQjU4RTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnvoQwDQQCAAIwBwMFACQAkKAwDQYJKoZIhvcNAQELBQAD ggEBAB02ZRzIH91qUIEOseHns0R6Ta3DV8GVx38NdJ680pSgVrIikxj2Rh3mSn6N j17dHjnOFWV40UEo6Kyx72+nBpEFpToHACUsD4wO/6THSrIUW0XQ/2iidujbuWaT s4zkWYYiyFgHCwCNs9deFFTNvL8/tBFBXEOmeOL3KAOEvtN1SD6wIHvmyMlyQ6+2 /t0bF8ztb9aPi14n/PK6KSNnPX1iP3f0rWgtAzQYf1RebWInMflnZZwIrGqKcdp2 iUZcNrl91o0eM05zC8eiHp38UWn+OWe4gDdwupPfD7KFBUiXnpRdmWZzXKgSn90q 6x3BZDfJloGAmAByO6vcoiBylW8= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:38 2024 by rpki-client on console-fra.rpki-client.org