$ rpki-client -vvf rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/81C5BFF8192811EA9B88D87DC4F9AE02.roa File: 81C5BFF8192811EA9B88D87DC4F9AE02.roa (raw, json) Hash identifier: wfQGJALYuSjZW88DDOeRHpYfVf4I2R7gOW04F4tJgxA= Subject key identifier: BE:53:C2:C0:B4:BD:76:99:54:52:E5:FC:36:B8:09:70:56:3E:62:7F Certificate issuer: /CN=A916EBCB/serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Certificate serial: 0AC1 Authority key identifier: CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/81C5BFF8192811EA9B88D87DC4F9AE02.roa Signing time: Tue 14 Nov 2023 19:47:36 +0000 ROA not before: Tue 14 Nov 2023 19:47:36 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139771 IP address blocks: 103.145.28.0/24 maxlen: 24 103.145.29.0/24 maxlen: 24 2001:df1:f180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:47:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2753 (0xac1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916EBCB/serialNumber=CC3690F896EF567311535BC444DF1EB741FD8BB4 Validity Not Before: Nov 14 19:47:36 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6553ced8-7894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:0a:81:cc:64:92:7e:b2:12:3c:d4:66:1a:f4: 86:e9:60:72:9f:f9:a4:a9:5c:1c:d4:93:17:a0:7a: 46:4b:0e:0c:8f:ba:4f:92:c7:0f:69:14:9a:72:ec: e3:a7:d6:89:d7:cf:09:a1:91:91:1f:f1:5c:f5:9d: de:ce:8c:0d:37:ad:9b:51:9e:b2:31:62:6f:5f:da: 0f:53:f8:31:57:f7:5c:27:49:38:3e:10:58:4b:72: 97:50:c3:7d:88:b9:5f:f4:3e:fc:d0:1a:de:1a:fc: 0d:ab:55:95:42:45:c9:c1:5e:98:c9:78:64:a2:5c: 53:e9:39:e9:30:0d:32:94:fd:47:9e:3a:53:9d:b3: 03:71:c3:c4:af:ba:74:3e:cd:7f:f0:99:ed:4d:e3: 57:fa:49:20:82:4c:b9:27:cf:a0:1c:86:09:1e:fd: ab:da:9c:1a:7c:8e:6a:1f:83:fa:02:6d:81:76:63: 2f:3a:60:8a:06:63:f6:51:44:cd:41:69:c6:08:63: ac:94:c2:b7:ef:64:f0:02:df:85:4a:df:fe:a8:6b: 8c:d2:c7:e4:09:3c:74:65:00:a3:e4:6c:dd:7e:bf: 40:de:70:f0:44:86:18:59:d4:a2:4e:70:e5:53:d2: 41:49:df:c4:18:7e:42:ca:db:51:c8:56:a7:4c:16: be:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:53:C2:C0:B4:BD:76:99:54:52:E5:FC:36:B8:09:70:56:3E:62:7F X509v3 Authority Key Identifier: keyid:CC:36:90:F8:96:EF:56:73:11:53:5B:C4:44:DF:1E:B7:41:FD:8B:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/zDaQ-JbvVnMRU1vERN8et0H9i7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zDaQ-JbvVnMRU1vERN8et0H9i7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916EBCB/E8D695AC192611EAA3361C7BC4F9AE02/81C5BFF8192811EA9B88D87DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.28.0/23 IPv6: 2001:df1:f180::/48 Signature Algorithm: sha256WithRSAEncryption 64:f9:33:96:f2:c3:59:ce:40:b7:e0:d4:29:58:62:4c:7c:26: 26:74:c8:81:b7:c1:b0:8e:ce:84:2f:e8:aa:e3:60:ed:f3:aa: 1c:a2:b5:4a:fb:97:40:82:6d:15:23:86:7d:c2:49:ee:e8:f0: 9e:a2:bc:e2:bd:8d:01:29:27:48:5f:79:1b:49:87:21:53:50: 5d:a5:81:68:ee:c1:fa:c7:b2:30:a9:12:b1:fb:01:25:2a:79: fc:ef:8a:2d:3e:b9:f3:37:5c:b2:79:c6:82:19:9a:7a:b7:3d: bc:b7:10:f6:b3:06:62:e8:b5:b0:aa:e3:9c:8b:ca:03:df:91: a2:44:d2:de:df:4d:9a:99:f7:01:fc:bd:10:4a:0a:95:56:d2: 3f:4d:63:9f:99:91:e0:f8:75:7c:23:f2:01:6d:e5:fd:aa:30: 50:2d:93:dc:ab:43:fc:5c:34:37:d4:4f:ac:6a:01:7b:ee:48: 53:8f:35:fb:af:76:81:85:cf:80:82:51:ce:f7:af:e4:64:42: b1:30:15:c4:b8:ef:19:de:e0:73:01:01:0c:4f:b3:b2:e5:3c: b9:51:eb:f9:db:01:a2:50:1c:d3:25:d3:6a:9e:ed:96:0f:26: ca:4d:03:b1:3b:1f:06:7f:b3:10:3d:ec:b3:67:30:6b:7a:54: d1:61:71:16 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCsEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkVCQ0IxMTAvBgNVBAUTKENDMzY5MEY4OTZFRjU2NzMxMTUzNUJDNDQ0REYxRUI3 NDFGRDhCQjQwHhcNMjMxMTE0MTk0NzM2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTUzY2VkOC03ODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAswqBzGSSfrISPNRmGvSG6WByn/mkqVwc1JMXoHpGSw4Mj7pPkscPaRSacuzj p9aJ188JoZGRH/Fc9Z3ezowNN62bUZ6yMWJvX9oPU/gxV/dcJ0k4PhBYS3KXUMN9 iLlf9D780BreGvwNq1WVQkXJwV6YyXhkolxT6TnpMA0ylP1HnjpTnbMDccPEr7p0 Ps1/8JntTeNX+kkggky5J8+gHIYJHv2r2pwafI5qH4P6Am2BdmMvOmCKBmP2UUTN QWnGCGOslMK372TwAt+FSt/+qGuM0sfkCTx0ZQCj5Gzdfr9A3nDwRIYYWdSiTnDl U9JBSd/EGH5CyttRyFanTBa+zwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFL5TwsC0 vXaZVFLl/Da4CXBWPmJ/MB8GA1UdIwQYMBaAFMw2kPiW71ZzEVNbxETfHrdB/Yu0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RUJDQi9FOEQ2OTVBQzE5 MjYxMUVBQTMzNjFDN0JDNEY5QUUwMi96RGFRLUpidlZuTVJVMXZFUk44ZXQwSDlp N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pEYVEtSmJ2Vm5NUlUxdkVSTjhldDBIOWk3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkVCQ0IvRThENjk1QUMxOTI2MTFFQUEzMzYxQzdCQzRGOUFFMDIvODFDNUJGRjgx OTI4MTFFQTlCODhEODdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkRwwDwQCAAIwCQMHACABDfHxgDANBgkqhkiG9w0BAQsF AAOCAQEAZPkzlvLDWc5At+DUKVhiTHwmJnTIgbfBsI7OhC/oquNg7fOqHKK1SvuX QIJtFSOGfcJJ7ujwnqK84r2NASknSF95G0mHIVNQXaWBaO7B+seyMKkSsfsBJSp5 /O+KLT658zdcsnnGghmaerc9vLcQ9rMGYui1sKrjnIvKA9+RokTS3t9Nmpn3Afy9 EEoKlVbSP01jn5mR4Ph1fCPyAW3l/aowUC2T3KtD/Fw0N9RPrGoBe+5IU481+692 gYXPgIJRzvev5GRCsTAVxLjvGd7gcwEBDE+zsuU8uVHr+dsBolAc0yXTap7tlg8m yk0DsTsfBn+zED3ss2cwa3pU0WFxFg== -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org