$ rpki-client -vvf rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C310545082C211EBBB08B280C4F9AE02.roa File: C310545082C211EBBB08B280C4F9AE02.roa (raw, json) Hash identifier: +qteBc7xk/iNE1OmAmAugB8Y+ErzQcUywqF9mnDTvtM= Subject key identifier: 71:91:A4:9B:2C:5C:D2:E8:7E:44:2A:CC:84:AD:D1:5B:D6:38:83:35 Certificate issuer: /CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Certificate serial: 060D Authority key identifier: 54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C310545082C211EBBB08B280C4F9AE02.roa Signing time: Sat 02 Nov 2024 22:21:31 +0000 ROA not before: Sat 02 Nov 2024 22:21:31 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 1221 IP address blocks: 103.143.185.0/24 maxlen: 24 103.168.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1549 (0x60d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Validity Not Before: Nov 2 22:21:31 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726a5ea-ec4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:76:f9:1c:7a:51:5b:d6:e9:db:41:1b:be:7b: fa:fe:db:b9:fd:fb:cf:25:f2:4f:bb:27:ed:e4:5f: 69:48:81:97:af:40:b8:e3:4b:69:e2:15:f8:05:15: 1f:9b:4c:ad:2d:28:7d:16:56:6f:48:ce:21:d4:12: 1b:e4:71:8d:0a:8e:f5:3a:3f:0f:ee:74:77:73:20: b2:d5:83:5a:9c:8b:f1:d4:68:75:0c:23:29:bd:aa: 33:3f:a1:e7:1b:81:ef:db:d1:bb:54:40:0e:67:a8: 7c:78:dd:3e:b6:c8:06:f4:dd:ab:67:28:38:53:a5: 49:61:71:68:ba:93:40:fc:42:95:6c:1d:93:06:62: 36:be:ba:41:3c:8e:77:0e:ac:be:fb:ab:5a:11:86: 93:b8:63:8f:e6:65:5a:a9:18:f6:a0:0f:d3:28:78: 66:47:ca:cd:29:3e:c3:a8:d7:51:9d:0a:7d:42:e1: d3:13:04:35:8e:e7:8c:bf:13:ae:63:f2:90:7f:dd: 14:35:9c:9a:68:28:93:ff:6b:f0:46:f8:96:9d:7c: 1d:3e:e9:0c:0a:b9:60:ce:fc:2d:48:bb:56:31:3a: aa:fc:76:6e:11:6a:08:c2:a3:09:09:7a:30:63:7b: 0c:5b:5c:95:24:f5:72:2b:96:0c:fa:56:ea:5b:16: c4:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:91:A4:9B:2C:5C:D2:E8:7E:44:2A:CC:84:AD:D1:5B:D6:38:83:35 X509v3 Authority Key Identifier: keyid:54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/C310545082C211EBBB08B280C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.185.0/24 103.168.45.0/24 Signature Algorithm: sha256WithRSAEncryption a5:bd:60:89:83:eb:d6:b7:e7:c7:84:90:b7:0e:9e:de:5e:ca: c8:a7:ef:5a:97:ee:0c:64:b1:5d:9b:9b:f3:0f:5b:a3:eb:fa: a4:03:ad:c0:41:f8:aa:8e:c8:2e:2e:e7:b8:e4:03:70:d7:46: 62:b7:57:c0:b1:6a:4a:6a:bb:90:9d:11:53:d0:cd:bc:ee:81: 37:67:7b:67:91:9b:13:ac:37:27:58:81:9c:e8:d1:2c:1e:c5: 7c:e4:21:d1:dd:ab:58:06:3a:e5:8a:e5:44:e9:c3:de:43:49: 75:1e:4e:49:bd:03:9c:55:c4:b0:aa:c6:53:9f:96:42:6c:f6: 61:98:36:0d:70:bd:64:24:12:2e:23:db:e6:01:ea:6f:14:82: 10:5e:00:cb:b0:8c:1a:6d:a4:ca:ba:39:5d:85:a8:91:bd:b1: 5a:6b:b3:e9:ec:44:65:77:e9:a1:fd:e9:d2:15:83:a8:6a:7d: 77:5b:07:40:47:4e:0f:1a:28:2f:d0:ef:38:0a:64:c7:6d:89: f0:e1:a4:49:ec:85:d1:b3:2d:fc:a2:b7:4d:ec:30:62:ab:ce: 78:b1:e9:f2:1f:ad:96:ad:25:35:53:74:ba:1d:03:75:c8:2c: d0:eb:5c:7c:b7:0f:17:12:06:0c:33:9a:e4:4c:88:57:13:b7: aa:d1:b6:ef -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBg0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwQzMxMTAvBgNVBAUTKDU0ODdCNjNGNDRENjkxRDQzNTY4OEFGRTNDOEFDMjdC RkQ5MTEyQUQwHhcNMjQxMTAyMjIyMTMxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YTVlYS1lYzRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3b5HHpRW9bp20Ebvnv6/tu5/fvPJfJPuyft5F9pSIGXr0C440tp4hX4BRUf m0ytLSh9FlZvSM4h1BIb5HGNCo71Oj8P7nR3cyCy1YNanIvx1Gh1DCMpvaozP6Hn G4Hv29G7VEAOZ6h8eN0+tsgG9N2rZyg4U6VJYXFoupNA/EKVbB2TBmI2vrpBPI53 Dqy++6taEYaTuGOP5mVaqRj2oA/TKHhmR8rNKT7DqNdRnQp9QuHTEwQ1jueMvxOu Y/KQf90UNZyaaCiT/2vwRviWnXwdPukMCrlgzvwtSLtWMTqq/HZuEWoIwqMJCXow Y3sMW1yVJPVyK5YM+lbqWxbEEwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHGRpJss XNLofkQqzISt0VvWOIM1MB8GA1UdIwQYMBaAFFSHtj9E1pHUNWiK/jyKwnv9kRKt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBDMy84NTUzMDVFMjgy QzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tkUTFhSXItUElyQ2VfMlJF cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJZTJQMFRXa2RRMWFJci1QSXJDZV8yUkVxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzkwQzMvODU1MzA1RTI4MkMwMTFFQkJBQ0UyQTdCQzRGOUFFMDIvQzMxMDU0NTA4 MkMyMTFFQkJCMDhCMjgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnj7kDBABnqC0wDQYJKoZIhvcNAQELBQADggEBAKW9YImD 69a358eEkLcOnt5eysin71qX7gxksV2bm/MPW6Pr+qQDrcBB+KqOyC4u57jkA3DX RmK3V8Cxakpqu5CdEVPQzbzugTdne2eRmxOsNydYgZzo0SwexXzkIdHdq1gGOuWK 5UTpw95DSXUeTkm9A5xVxLCqxlOflkJs9mGYNg1wvWQkEi4j2+YB6m8UghBeAMuw jBptpMq6OV2FqJG9sVprs+nsRGV36aH96dIVg6hqfXdbB0BHTg8aKC/Q7zgKZMdt ifDhpEnshdGzLfyit03sMGKrznix6fIfrZatJTVTdLodA3XILNDrXHy3DxcSBgwz muRMiFcTt6rRtu8= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org