$ rpki-client -vvf rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2F459208AC5A11EDA8C03215C4F9AE02.roa File: 2F459208AC5A11EDA8C03215C4F9AE02.roa (raw, json) Hash identifier: rRYy1j2hI/cyQw9+l/Sq55dFhOUQV6tcRyGGsBwQzYE= Subject key identifier: A2:BB:4C:CA:B8:19:2F:CB:5F:FB:A8:E8:62:A7:3E:FD:79:7D:BC:EC Certificate issuer: /CN=A91912DD/serialNumber=DAE7508D11E47228DA1FE0032597BBD29F75890C Certificate serial: 15B4 Authority key identifier: DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2F459208AC5A11EDA8C03215C4F9AE02.roa Signing time: Sat 10 Feb 2024 17:14:51 +0000 ROA not before: Sat 10 Feb 2024 17:14:51 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 132861 IP address blocks: 103.63.188.0/24 maxlen: 24 2001:df3:e000::/48 maxlen: 48 2402:8d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.crl rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:43:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5556 (0x15b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91912DD/serialNumber=DAE7508D11E47228DA1FE0032597BBD29F75890C Validity Not Before: Feb 10 17:14:51 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c7af0b-38d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:12:98:d3:47:88:46:93:43:88:af:b6:f0:b8: 6e:24:b3:40:78:1b:63:36:fb:06:db:1d:5f:12:6a: ff:d1:32:0c:71:2a:0c:12:98:db:d2:ce:84:ee:31: 05:96:f3:ca:54:63:df:b9:70:d2:a6:bc:59:9d:b8: 98:36:b6:6d:86:17:7d:0c:d5:48:9c:e8:93:01:73: bb:83:2d:61:19:9f:3c:09:ea:7c:ab:47:59:1a:27: b5:57:ab:11:76:46:67:3d:1c:c0:59:cd:74:a4:24: d0:34:c5:04:e8:61:74:c2:73:0f:f6:53:c5:c0:f5: a3:cb:88:10:6e:ab:23:94:53:e6:52:0c:42:4d:7d: 75:04:35:1d:b0:50:1e:a4:b3:83:20:3b:7a:eb:62: e2:fc:e7:39:81:55:e9:0c:5a:7e:0a:80:78:d3:f4: 0c:25:3c:5e:17:e9:8a:c5:f3:4f:38:e9:ad:1b:5d: 57:22:ef:e9:23:48:0b:3e:53:90:41:63:34:9b:63: ef:9c:cb:97:20:a4:a5:26:c2:61:f1:b2:fd:30:fd: a6:11:ef:16:2f:8d:33:12:54:24:a9:39:ce:1e:9d: 8e:d5:03:e9:d9:c3:36:9b:8f:94:14:cc:9a:76:fd: b9:5c:44:c0:33:4e:b0:35:c6:f5:94:5d:b4:e4:e3: 44:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:BB:4C:CA:B8:19:2F:CB:5F:FB:A8:E8:62:A7:3E:FD:79:7D:BC:EC X509v3 Authority Key Identifier: keyid:DA:E7:50:8D:11:E4:72:28:DA:1F:E0:03:25:97:BB:D2:9F:75:89:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2udQjRHkcijaH-ADJZe70p91iQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2udQjRHkcijaH-ADJZe70p91iQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91912DD/4628BEC400D811E890610637C4F9AE02/2F459208AC5A11EDA8C03215C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.63.188.0/24 IPv6: 2001:df3:e000::/48 2402:8d80::/32 Signature Algorithm: sha256WithRSAEncryption 58:dd:79:98:77:4d:25:52:fd:a4:c6:07:58:9b:1e:16:60:91: e3:fa:71:ec:ec:85:7d:5b:71:8c:a5:5d:28:5d:0b:11:5a:ab: a8:3e:bd:77:08:31:15:d0:0e:81:c8:63:31:b6:69:85:ed:6d: 58:1e:4c:42:9e:26:bc:12:84:ef:cd:a9:53:43:91:a9:84:ed: 65:59:32:7f:48:8b:c7:08:cf:f2:7f:79:65:b8:e6:47:94:46: 95:d2:90:36:29:64:c3:98:a7:74:a9:98:a9:24:e3:af:47:54: ec:32:dd:24:50:1f:e8:a7:29:bd:b9:99:e3:a4:c4:65:8f:f2: 01:01:73:d5:60:83:92:e6:64:54:fa:f4:10:e6:d8:cc:c2:2a: af:7b:5c:dd:89:a6:b5:3e:8a:75:b2:f1:11:93:12:c2:fc:f4: 90:60:43:2a:d9:0d:c7:14:d1:5b:45:43:0b:61:ef:ec:05:50: ab:21:41:c4:e4:a0:7d:d6:96:58:47:bd:04:6a:e7:6a:87:a9: 29:ea:ba:8f:40:43:09:7c:fc:e6:e8:c1:86:1c:bd:43:d7:72: 56:3f:9a:f4:d3:30:b2:03:46:68:03:d5:3f:66:f3:11:0a:13: 60:07:07:0e:62:c4:1c:c7:1e:c2:c3:e3:62:92:1a:99:4c:67: e5:e3:5d:05 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICFbQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEyREQxMTAvBgNVBAUTKERBRTc1MDhEMTFFNDcyMjhEQTFGRTAwMzI1OTdCQkQy OUY3NTg5MEMwHhcNMjQwMjEwMTcxNDUxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM3YWYwYi0zOGQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5hKY00eIRpNDiK+28LhuJLNAeBtjNvsG2x1fEmr/0TIMcSoMEpjb0s6E7jEF lvPKVGPfuXDSprxZnbiYNrZthhd9DNVInOiTAXO7gy1hGZ88Cep8q0dZGie1V6sR dkZnPRzAWc10pCTQNMUE6GF0wnMP9lPFwPWjy4gQbqsjlFPmUgxCTX11BDUdsFAe pLODIDt662Li/Oc5gVXpDFp+CoB40/QMJTxeF+mKxfNPOOmtG11XIu/pI0gLPlOQ QWM0m2PvnMuXIKSlJsJh8bL9MP2mEe8WL40zElQkqTnOHp2O1QPp2cM2m4+UFMya dv25XETAM06wNcb1lF205ONE5QIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFKK7TMq4 GS/LX/uo6GKnPv15fbzsMB8GA1UdIwQYMBaAFNrnUI0R5HIo2h/gAyWXu9KfdYkM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTJERC80NjI4QkVDNDAw RDgxMUU4OTA2MTA2MzdDNEY5QUUwMi8ydWRRalJIa2NpamFILUFESlplNzBwOTFp UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJ1ZFFqUkhrY2lqYUgtQURKWmU3MHA5MWlRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEyREQvNDYyOEJFQzQwMEQ4MTFFODkwNjEwNjM3QzRGOUFFMDIvMkY0NTkyMDhB QzVBMTFFREE4QzAzMjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBABnP7wwFgQCAAIwEAMHACABDfPgAAMFACQCjYAwDQYJKoZI hvcNAQELBQADggEBAFjdeZh3TSVS/aTGB1ibHhZgkeP6cezshX1bcYylXShdCxFa q6g+vXcIMRXQDoHIYzG2aYXtbVgeTEKeJrwShO/NqVNDkamE7WVZMn9Ii8cIz/J/ eWW45keURpXSkDYpZMOYp3SpmKkk469HVOwy3SRQH+inKb25meOkxGWP8gEBc9Vg g5LmZFT69BDm2MzCKq97XN2JprU+inWy8RGTEsL89JBgQyrZDccU0VtFQwth7+wF UKshQcTkoH3WllhHvQRq52qHqSnquo9AQwl8/ObowYYcvUPXclY/mvTTMLIDRmgD 1T9m8xEKE2AHBw5ixBzHHsLD42KSGplMZ+XjXQU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:07 2024 by rpki-client on console-ams.rpki-client.org