$ rpki-client -vvf rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/113D35904DD611EE8F798349C4F9AE02.roa File: 113D35904DD611EE8F798349C4F9AE02.roa (raw, json) Hash identifier: /egOGavRQgmetbzvLfczJLgMzHXL9RZQguM8QCgkO14= Subject key identifier: D2:24:0C:CF:EC:86:37:AC:74:49:DC:77:49:F5:A4:33:97:83:D5:23 Certificate issuer: /CN=A917EFA9/serialNumber=7B91A8B011D619C4271D45203A0E33D9185EF781 Certificate serial: DD Authority key identifier: 7B:91:A8:B0:11:D6:19:C4:27:1D:45:20:3A:0E:33:D9:18:5E:F7:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5GosBHWGcQnHUUgOg4z2Rhe94E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/113D35904DD611EE8F798349C4F9AE02.roa Signing time: Wed 21 Aug 2024 05:38:41 +0000 ROA not before: Wed 21 Aug 2024 05:38:41 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135889 IP address blocks: 103.79.23.0/24 maxlen: 24 103.102.50.0/23 maxlen: 23 103.102.51.0/24 maxlen: 24 103.102.52.0/24 maxlen: 24 182.16.152.0/22 maxlen: 22 182.16.152.0/24 maxlen: 24 182.16.153.0/24 maxlen: 24 182.16.154.0/24 maxlen: 24 182.16.155.0/24 maxlen: 24 202.62.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/e5GosBHWGcQnHUUgOg4z2Rhe94E.crl rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/e5GosBHWGcQnHUUgOg4z2Rhe94E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5GosBHWGcQnHUUgOg4z2Rhe94E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917EFA9/serialNumber=7B91A8B011D619C4271D45203A0E33D9185EF781 Validity Not Before: Aug 21 05:38:41 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c57d61-21f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:b2:70:b1:ae:59:d4:cb:fe:9c:a9:07:10:f5: 43:af:13:fa:a9:00:62:cd:d2:27:f8:f0:b8:59:32: 57:fc:23:13:cb:f0:92:61:ce:d6:c4:6c:8c:2c:00: 15:2a:47:48:f1:c9:59:9c:a2:8f:25:c1:af:b2:db: 8c:68:b4:17:ac:be:05:ff:36:72:c5:d8:fe:83:3f: ba:70:88:67:56:7b:db:a7:fe:da:24:57:ba:3a:d6: 82:45:c0:30:a3:47:a6:b9:93:9e:8e:97:8a:54:55: 86:8a:64:07:f1:df:6a:0b:1a:4f:7a:23:3d:3b:10: 49:5f:2f:a3:89:e8:78:83:1d:f3:9d:32:b6:09:4b: 5e:32:f9:0b:32:93:14:9e:66:32:02:9f:a4:27:17: e0:38:e4:49:16:a9:5d:19:1b:99:72:93:6b:27:34: 31:b9:af:0e:d3:f1:a6:86:9e:ba:1f:a5:4d:f7:e0: 69:5a:6c:c3:4e:83:5e:7d:df:18:b7:5f:0e:db:cd: 08:e9:c8:c5:42:47:0c:a0:3d:6c:cc:ba:1d:47:8b: 67:a4:8e:a3:e1:82:6f:13:22:32:99:7c:06:7d:88: 18:1e:3b:83:e8:92:a8:2c:34:e8:a2:a9:9c:5e:7d: eb:e8:85:ea:f7:14:44:a0:ad:35:f6:ca:31:11:d4: 49:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:24:0C:CF:EC:86:37:AC:74:49:DC:77:49:F5:A4:33:97:83:D5:23 X509v3 Authority Key Identifier: keyid:7B:91:A8:B0:11:D6:19:C4:27:1D:45:20:3A:0E:33:D9:18:5E:F7:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/e5GosBHWGcQnHUUgOg4z2Rhe94E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e5GosBHWGcQnHUUgOg4z2Rhe94E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917EFA9/ED68B5F031A511EEBEF8BD2AC4F9AE02/113D35904DD611EE8F798349C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.23.0/24 103.102.50.0-103.102.52.255 182.16.152.0/22 202.62.245.0/24 Signature Algorithm: sha256WithRSAEncryption a5:2b:ae:95:a2:fa:49:01:9f:74:24:d8:ac:43:e7:01:df:70: ca:d1:b1:37:3c:5a:39:f3:4a:bc:04:68:66:17:01:02:84:f2: 8d:7d:e8:53:7f:41:87:aa:64:e4:b9:4f:c8:43:65:bc:67:ff: 90:38:8e:5d:1b:c9:06:f7:8c:fa:36:ed:a2:76:fe:be:7a:bd: fd:3d:40:53:45:95:18:0d:51:64:ae:f1:7a:72:55:60:6b:6b: a3:a4:00:6e:b4:64:91:91:c3:db:d0:ea:0a:e7:ed:39:9e:82: 91:e3:77:82:86:82:e4:69:5c:94:cd:06:04:0e:57:f1:d0:d8: 08:18:99:96:07:39:8f:1c:a9:4a:04:f2:21:88:00:9c:59:5d: 14:d4:a5:b0:8e:f1:4c:11:ff:ec:d8:1e:2d:1f:e8:fb:59:74: 7b:df:a8:33:7c:3e:f8:39:4d:16:50:a5:73:88:14:2a:03:81: 51:32:55:bf:ca:5f:9f:c9:e5:fd:2b:91:8f:f0:db:3e:83:72: 9b:0c:19:06:08:14:e0:64:2b:6e:88:20:af:6b:e2:8c:36:63: aa:bb:7d:13:70:9f:3d:4a:f0:e1:e1:d5:39:33:4b:60:bc:18: 32:13:a1:a4:2c:9a:0f:da:0a:81:af:22:4c:c2:87:df:da:07: bf:43:ee:37 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0VGQTkxMTAvBgNVBAUTKDdCOTFBOEIwMTFENjE5QzQyNzFENDUyMDNBMEUzM0Q5 MTg1RUY3ODEwHhcNMjQwODIxMDUzODQxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM1N2Q2MS0yMWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnbJwsa5Z1Mv+nKkHEPVDrxP6qQBizdIn+PC4WTJX/CMTy/CSYc7WxGyMLAAV KkdI8clZnKKPJcGvstuMaLQXrL4F/zZyxdj+gz+6cIhnVnvbp/7aJFe6OtaCRcAw o0emuZOejpeKVFWGimQH8d9qCxpPeiM9OxBJXy+jieh4gx3znTK2CUteMvkLMpMU nmYyAp+kJxfgOORJFqldGRuZcpNrJzQxua8O0/Gmhp66H6VN9+BpWmzDToNefd8Y t18O280I6cjFQkcMoD1szLodR4tnpI6j4YJvEyIymXwGfYgYHjuD6JKoLDTooqmc Xn3r6IXq9xREoK019soxEdRJTQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFNIkDM/s hjesdEncd0n1pDOXg9UjMB8GA1UdIwQYMBaAFHuRqLAR1hnEJx1FIDoOM9kYXveB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RUZBOS9FRDY4QjVGMDMx QTUxMUVFQkVGOEJEMkFDNEY5QUUwMi9lNUdvc0JIV0djUW5IVVVnT2c0ejJSaGU5 NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U1R29zQkhXR2NRbkhVVWdPZzR6MlJoZTk0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0VGQTkvRUQ2OEI1RjAzMUE1MTFFRUJFRjhCRDJBQzRGOUFFMDIvMTEzRDM1OTA0 REQ2MTFFRThGNzk4MzQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBABnTxcwDAMEAWdmMgMEAGdmNAMEArYQmAMEAMo+9TANBgkq hkiG9w0BAQsFAAOCAQEApSuulaL6SQGfdCTYrEPnAd9wytGxNzxaOfNKvARoZhcB AoTyjX3oU39Bh6pk5LlPyENlvGf/kDiOXRvJBveM+jbtonb+vnq9/T1AU0WVGA1R ZK7xenJVYGtro6QAbrRkkZHD29DqCuftOZ6CkeN3goaC5GlclM0GBA5X8dDYCBiZ lgc5jxypSgTyIYgAnFldFNSlsI7xTBH/7NgeLR/o+1l0e9+oM3w++DlNFlClc4gU KgOBUTJVv8pfn8nl/SuRj/DbPoNymwwZBggU4GQrboggr2vijDZjqrt9E3CfPUrw 4eHVOTNLYLwYMhOhpCyaD9oKga8iTMKH39oHv0PuNw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org