$ rpki-client -vvf rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/16745A82B1CD11EA9A31DA7DC4F9AE02.roa File: 16745A82B1CD11EA9A31DA7DC4F9AE02.roa (raw, json) Hash identifier: vous3xXvjFiAXL/Nl/pupAEtSC4yfMyFz8lsRruGfJA= Subject key identifier: 27:E3:C2:D1:7E:1D:BD:CC:51:7B:45:0E:34:6D:A2:22:57:9E:5E:81 Certificate issuer: /CN=A918E80E/serialNumber=5BBD66E86334E99817E2C6D5BCEB7DAD020FCA8A Certificate serial: 07FF Authority key identifier: 5B:BD:66:E8:63:34:E9:98:17:E2:C6:D5:BC:EB:7D:AD:02:0F:CA:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/16745A82B1CD11EA9A31DA7DC4F9AE02.roa Signing time: Sat 30 Mar 2024 22:00:58 +0000 ROA not before: Sat 30 Mar 2024 22:00:58 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 56081 IP address blocks: 103.5.89.0/24 maxlen: 24 103.5.90.0/23 maxlen: 24 202.90.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.crl rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:23:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2047 (0x7ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E80E/serialNumber=5BBD66E86334E99817E2C6D5BCEB7DAD020FCA8A Validity Not Before: Mar 30 22:00:58 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66088b99-533d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:34:c5:22:6c:b6:bc:ea:d3:6d:d6:ee:7f:5f: 56:f7:f5:43:a8:05:82:24:7d:e7:4f:7c:f3:65:f8: f6:5c:24:8e:c6:45:03:97:cd:7a:ea:93:51:30:28: cc:d5:5e:2e:a1:42:be:d7:af:65:81:4c:b8:66:93: 48:49:bd:56:3a:6f:8f:b7:62:ed:36:be:b0:7d:a1: bd:fa:e0:be:fa:c2:ec:80:97:9b:ae:55:a7:94:23: fd:ed:20:06:1c:cd:46:88:5d:65:2a:f8:b6:84:c8: fd:ab:cd:5f:1c:d0:62:33:a7:72:06:6f:ab:91:9a: be:09:1c:7d:01:9d:d7:8c:3a:d3:34:ef:b3:33:d8: 30:a9:af:23:09:42:5c:b9:5e:a9:ff:7b:b7:2e:40: 2f:e9:2c:02:d8:aa:1b:5b:a8:60:a1:ea:74:cb:a6: 02:c8:7b:f2:67:78:c0:88:4b:57:42:63:eb:8e:b3: 67:ee:8b:bd:d6:3d:0d:43:ab:20:62:56:bf:a6:1c: 07:5e:c0:8f:da:d1:62:e8:79:ab:7e:21:95:1b:72: 10:c8:f3:8f:fb:bf:38:ca:8d:b2:c1:63:14:05:7a: 26:1a:a1:15:2f:16:0a:4c:4f:14:61:18:a7:20:10: bc:56:04:f6:b9:b2:70:b9:ce:0c:cd:c0:1b:c2:82: 67:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E3:C2:D1:7E:1D:BD:CC:51:7B:45:0E:34:6D:A2:22:57:9E:5E:81 X509v3 Authority Key Identifier: keyid:5B:BD:66:E8:63:34:E9:98:17:E2:C6:D5:BC:EB:7D:AD:02:0F:CA:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/W71m6GM06ZgX4sbVvOt9rQIPyoo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W71m6GM06ZgX4sbVvOt9rQIPyoo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E80E/00E92504B1CC11EAA6A3CD7CC4F9AE02/16745A82B1CD11EA9A31DA7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.89.0-103.5.91.255 202.90.41.0/24 Signature Algorithm: sha256WithRSAEncryption bf:a7:2a:0b:59:5b:b5:5a:40:31:e0:53:52:81:67:db:d2:0b: 4a:51:06:c3:aa:a1:0f:13:2f:e3:ec:89:b9:96:65:e2:67:9a: ae:68:68:51:08:d0:eb:8f:a6:6c:71:26:08:d0:a6:4b:ee:97: 0d:f5:08:01:af:5c:85:5f:97:21:cc:9c:29:82:76:d8:9e:f3: 8d:09:71:98:ed:e6:1c:c8:b0:09:36:28:b4:fe:8f:8d:03:a8: 08:a3:05:71:08:67:b4:11:8d:c4:66:b9:a3:5c:77:d4:8c:01: bd:02:0a:8c:70:71:aa:93:73:85:21:68:38:e9:f4:d1:45:79: f7:71:83:39:4f:dc:4c:06:41:04:80:fb:86:59:a1:8f:cc:90: b3:aa:d6:f8:d6:96:f0:78:bd:1d:92:dd:a5:3f:91:30:31:72: 32:f9:76:10:a8:98:9c:b2:20:1d:54:d3:48:09:94:e9:fb:a7: ed:23:0e:e9:76:36:66:74:9d:bc:cd:0c:b8:42:71:8a:3c:a4: 59:b4:08:7c:3b:6f:57:c6:1f:bb:b8:9a:34:88:3e:c4:cd:37: ec:71:0a:34:96:28:4a:1e:ee:03:c1:f4:44:a7:10:45:43:34: a4:57:a9:6f:0f:50:86:37:1f:b3:40:e8:38:df:4e:12:de:74: ad:12:f6:15 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICB/8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU4MEUxMTAvBgNVBAUTKDVCQkQ2NkU4NjMzNEU5OTgxN0UyQzZENUJDRUI3REFE MDIwRkNBOEEwHhcNMjQwMzMwMjIwMDU4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4OGI5OS01MzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqzTFImy2vOrTbdbuf19W9/VDqAWCJH3nT3zzZfj2XCSOxkUDl8166pNRMCjM 1V4uoUK+169lgUy4ZpNISb1WOm+Pt2LtNr6wfaG9+uC++sLsgJebrlWnlCP97SAG HM1GiF1lKvi2hMj9q81fHNBiM6dyBm+rkZq+CRx9AZ3XjDrTNO+zM9gwqa8jCUJc uV6p/3u3LkAv6SwC2KobW6hgoep0y6YCyHvyZ3jAiEtXQmPrjrNn7ou91j0NQ6sg Yla/phwHXsCP2tFi6HmrfiGVG3IQyPOP+784yo2ywWMUBXomGqEVLxYKTE8UYRin IBC8VgT2ubJwuc4MzcAbwoJn+QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFCfjwtF+ Hb3MUXtFDjRtoiJXnl6BMB8GA1UdIwQYMBaAFFu9ZuhjNOmYF+LG1bzrfa0CD8qK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTgwRS8wMEU5MjUwNEIx Q0MxMUVBQTZBM0NEN0NDNEY5QUUwMi9XNzFtNkdNMDZaZ1g0c2JWdk90OXJRSVB5 b28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c3MW02R00wNlpnWDRzYlZ2T3Q5clFJUHlvby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU4MEUvMDBFOTI1MDRCMUNDMTFFQUE2QTNDRDdDQzRGOUFFMDIvMTY3NDVBODJC MUNEMTFFQTlBMzFEQTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGcFWQMEAmcFWAMEAMpaKTANBgkqhkiG9w0BAQsFAAOC AQEAv6cqC1lbtVpAMeBTUoFn29ILSlEGw6qhDxMv4+yJuZZl4mearmhoUQjQ64+m bHEmCNCmS+6XDfUIAa9chV+XIcycKYJ22J7zjQlxmO3mHMiwCTYotP6PjQOoCKMF cQhntBGNxGa5o1x31IwBvQIKjHBxqpNzhSFoOOn00UV593GDOU/cTAZBBID7hlmh j8yQs6rW+NaW8Hi9HZLdpT+RMDFyMvl2EKiYnLIgHVTTSAmU6fun7SMO6XY2ZnSd vM0MuEJxijykWbQIfDtvV8Yfu7iaNIg+xM037HEKNJYoSh7uA8H0RKcQRUM0pFep bw9Qhjcfs0DoON9OEt50rRL2FQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:34 2024 by rpki-client on console-ams.rpki-client.org