$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/EF2481168BCA11EDBED45E54C4F9AE02.roa File: EF2481168BCA11EDBED45E54C4F9AE02.roa (raw, json) Hash identifier: yDLtGnYU5lMrLDnFX8vRyhLOoi06rgga2yxVGlgTVrU= Subject key identifier: 4C:C0:78:69:12:2A:12:2A:8B:98:B3:B8:2F:DA:2D:A1:FF:55:AF:93 Certificate issuer: /CN=A916BC97/serialNumber=818B81229546F64A980C3D86EC52F31194F2FD8E Certificate serial: 0842 Authority key identifier: 81:8B:81:22:95:46:F6:4A:98:0C:3D:86:EC:52:F3:11:94:F2:FD:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/EF2481168BCA11EDBED45E54C4F9AE02.roa Signing time: Wed 06 Nov 2024 20:39:57 +0000 ROA not before: Wed 06 Nov 2024 20:39:57 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 9919 IP address blocks: 103.5.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.crl rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2114 (0x842) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC97/serialNumber=818B81229546F64A980C3D86EC52F31194F2FD8E Validity Not Before: Nov 6 20:39:57 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bd41c-1b95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7a:01:74:e7:c3:9c:19:02:bd:07:87:39:96: 54:e5:77:fa:b7:4f:d7:5e:30:21:dd:91:3e:19:ed: a8:0e:9f:7a:db:c2:f0:ac:b0:fb:49:d0:17:72:f6: 14:50:d6:66:24:9a:82:8c:76:68:0f:b4:2c:2a:63: a3:0d:84:b2:4c:8c:9b:99:3b:2c:0c:59:02:29:93: f2:5e:5c:22:25:fa:ac:8b:95:a4:85:fc:00:e4:49: e0:ce:b0:51:11:75:31:56:92:ad:36:db:09:1b:f1: fe:c8:cf:0f:ec:b8:05:e7:33:5f:1b:67:be:78:09: 26:4a:10:51:a4:e0:07:85:38:df:85:e9:fc:94:6f: 56:3e:97:ac:4b:01:fc:82:41:c8:b5:6a:1c:c9:31: ee:86:0a:64:13:5e:b2:82:7c:aa:cb:18:d9:8f:9d: b3:d7:c6:49:5f:89:a1:b3:40:12:75:a7:5c:49:49: 4e:7f:de:e0:2e:d3:80:f5:d7:97:3f:16:80:02:1e: a2:47:22:04:67:a7:92:76:d2:b0:84:5c:74:4d:44: d1:e1:0f:8c:be:b2:3f:7c:49:57:92:00:bb:9c:59: ca:43:49:d1:ff:02:4a:03:79:71:fd:e8:ea:a5:3d: e2:bd:9b:6b:ec:7e:3f:fd:56:b4:7b:9e:4e:a6:86: f0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:C0:78:69:12:2A:12:2A:8B:98:B3:B8:2F:DA:2D:A1:FF:55:AF:93 X509v3 Authority Key Identifier: keyid:81:8B:81:22:95:46:F6:4A:98:0C:3D:86:EC:52:F3:11:94:F2:FD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/EF2481168BCA11EDBED45E54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.248.0/24 Signature Algorithm: sha256WithRSAEncryption 19:61:c1:53:80:00:67:28:9d:8f:32:b8:c7:28:2a:d1:cf:94: 52:39:5e:92:a8:5a:ac:2f:fe:47:cb:5e:41:4b:f2:ce:4d:74: 75:bf:02:3c:b4:0d:2b:de:9b:4f:03:49:54:91:4e:88:7f:2c: 79:3d:bd:2b:9d:b1:5d:13:a7:7d:9a:c2:58:9b:a4:08:65:4b: c1:6e:d9:98:b3:df:6a:7b:42:ce:c6:ac:a2:c3:81:16:3a:9f: 27:32:04:8c:0f:02:37:d0:53:1f:8c:34:35:ff:ba:bc:c6:a6: 93:96:8b:ff:13:ba:75:e8:22:ac:6f:d9:3d:b9:29:c7:be:e3: 84:cd:47:34:89:84:2a:75:b7:c3:c1:c5:6a:7a:ed:33:65:ac: 3e:f5:f6:36:6e:f9:c6:55:e6:1c:e3:41:ab:64:60:4a:0c:00: 2e:95:43:f1:22:0a:54:6b:0a:00:f3:96:26:fa:fb:92:b3:93: 2a:35:bd:14:65:c8:d8:aa:9b:f8:f7:35:fe:c0:b1:fe:29:00: 96:b0:76:c3:8d:cd:03:8c:19:7c:f5:29:c7:91:ff:34:a9:65: 1d:ed:4b:67:af:3b:02:65:12:19:94:c4:92:aa:c7:ef:54:12: fa:66:64:4a:74:ee:b4:21:e7:2c:f0:80:c6:57:12:39:56:cc: 6c:fa:8f:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCEIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDOTcxMTAvBgNVBAUTKDgxOEI4MTIyOTU0NkY2NEE5ODBDM0Q4NkVDNTJGMzEx OTRGMkZEOEUwHhcNMjQxMTA2MjAzOTU3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZDQxYy0xYjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnoBdOfDnBkCvQeHOZZU5Xf6t0/XXjAh3ZE+Ge2oDp9628LwrLD7SdAXcvYU UNZmJJqCjHZoD7QsKmOjDYSyTIybmTssDFkCKZPyXlwiJfqsi5WkhfwA5EngzrBR EXUxVpKtNtsJG/H+yM8P7LgF5zNfG2e+eAkmShBRpOAHhTjfhen8lG9WPpesSwH8 gkHItWocyTHuhgpkE16ygnyqyxjZj52z18ZJX4mhs0ASdadcSUlOf97gLtOA9deX PxaAAh6iRyIEZ6eSdtKwhFx0TUTR4Q+MvrI/fElXkgC7nFnKQ0nR/wJKA3lx/ejq pT3ivZtr7H4//Va0e55OpobwSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEzAeGkS KhIqi5izuC/aLaH/Va+TMB8GA1UdIwQYMBaAFIGLgSKVRvZKmAw9huxS8xGU8v2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM5Ny9BMEIxRTQ0Q0JD RTcxMUVBOUVERjNFNkRDNEY5QUUwMi9nWXVCSXBWRzlrcVlERDJHN0ZMekVaVHlf WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZdUJJcFZHOWtxWUREMkc3Rkx6RVpUeV9ZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJDOTcvQTBCMUU0NENCQ0U3MTFFQTlFREYzRTZEQzRGOUFFMDIvRUYyNDgxMTY4 QkNBMTFFREJFRDQ1RTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnBfgwDQYJKoZIhvcNAQELBQADggEBABlhwVOAAGconY8y uMcoKtHPlFI5XpKoWqwv/kfLXkFL8s5NdHW/Ajy0DSvem08DSVSRToh/LHk9vSud sV0Tp32awlibpAhlS8Fu2Ziz32p7Qs7GrKLDgRY6nycyBIwPAjfQUx+MNDX/urzG ppOWi/8TunXoIqxv2T25Kce+44TNRzSJhCp1t8PBxWp67TNlrD719jZu+cZV5hzj QatkYEoMAC6VQ/EiClRrCgDzlib6+5Kzkyo1vRRlyNiqm/j3Nf7Asf4pAJawdsON zQOMGXz1KceR/zSpZR3tS2evOwJlEhmUxJKqx+9UEvpmZEp07rQh5yzwgMZXEjlW zGz6jzU= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:04 2024 by rpki-client on console-ams.rpki-client.org