$ rpki-client -vvf rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/1E2EB8D09F3811ECBB84BD76C4F9AE02.roa File: 1E2EB8D09F3811ECBB84BD76C4F9AE02.roa (raw, json) Hash identifier: 1WpEdRwcGN3vtWhbe0YafVKHoyPb3PH+roug1Q45T04= Subject key identifier: 5D:61:71:72:CD:01:0A:E0:38:00:11:D7:B9:C1:9A:2D:C6:43:F9:FC Certificate issuer: /CN=A9193045/serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Certificate serial: 031D Authority key identifier: 66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/1E2EB8D09F3811ECBB84BD76C4F9AE02.roa Signing time: Sat 07 Sep 2024 02:35:03 +0000 ROA not before: Sat 07 Sep 2024 02:35:03 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 131995 IP address blocks: 103.29.153.0/24 maxlen: 24 103.29.154.0/24 maxlen: 24 103.29.155.0/24 maxlen: 24 2401:af00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 797 (0x31d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193045/serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Validity Not Before: Sep 7 02:35:03 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66dbbbd7-5d98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:db:cb:da:6d:fd:d4:e2:e6:fb:c3:12:d0:8e: 7a:de:d2:12:29:26:4a:ac:15:9f:32:8f:60:01:4e: 2b:21:5f:bb:d3:d7:8b:ed:05:72:72:52:6a:ee:bb: cb:11:61:85:bd:5b:ca:0c:0e:3d:aa:c4:cc:82:42: a0:0f:18:4f:a6:27:7e:d6:f8:d4:6e:3c:86:23:cf: b2:f2:b8:ae:07:6e:b4:d7:77:d5:85:12:62:2d:33: 4a:2a:15:47:20:de:ca:60:af:84:c4:a5:b1:ba:ad: dd:fb:e2:a6:6d:bb:ab:e8:74:03:72:c9:82:ef:19: 93:2c:f5:33:a3:80:df:98:96:c7:76:eb:d9:00:a1: ac:b6:18:be:2d:36:46:99:d7:bb:b5:c8:79:23:01: 6b:fa:94:94:cd:46:be:f6:c3:f8:e7:df:aa:69:aa: c3:b8:0b:02:96:c8:f1:3a:11:de:77:a7:38:19:f1: 0b:05:05:79:7e:3d:18:ac:08:c4:29:aa:de:c4:32: 9f:96:7d:e6:77:7b:52:8f:e3:3e:cb:20:91:09:68: 9b:99:4f:a5:11:45:2d:84:38:89:c7:7f:96:69:76: 55:5c:ad:79:f2:72:01:c2:61:89:f3:9d:1d:61:f6: b1:4d:5a:1c:00:e6:42:a2:af:28:e8:47:89:cd:5a: 37:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:61:71:72:CD:01:0A:E0:38:00:11:D7:B9:C1:9A:2D:C6:43:F9:FC X509v3 Authority Key Identifier: keyid:66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/1E2EB8D09F3811ECBB84BD76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.153.0-103.29.155.255 IPv6: 2401:af00::/32 Signature Algorithm: sha256WithRSAEncryption 8f:fa:15:70:d1:f4:4c:d4:59:69:5b:e4:e4:c9:48:58:37:90: d3:da:df:23:40:ed:83:d3:a2:ad:83:b1:d3:5a:d0:7c:4d:70: 8a:29:a3:af:0e:d0:9d:58:21:17:17:ec:31:bb:31:d0:02:e5: b0:e3:5d:23:ff:ba:21:b1:fe:03:ad:b7:bf:d1:bf:7a:c1:fa: 1e:2e:58:f0:43:09:c6:43:3b:ce:16:44:50:c2:11:42:fa:40: fb:47:5c:30:2a:e6:d8:ce:af:0b:12:ed:7e:4b:77:d0:7a:ce: 01:db:8d:23:8f:79:14:ab:80:e9:ed:ee:41:d5:2e:85:50:25: d4:72:77:18:bb:e2:6d:f9:73:71:06:1f:bd:73:db:50:fd:9d: f9:1b:e7:f4:af:9f:94:3d:23:f6:0c:66:f9:3c:4a:13:62:54: b6:d1:84:36:d8:13:c6:5b:12:66:7c:67:84:cf:37:2b:90:de: 13:ff:eb:4b:a0:c0:64:35:67:80:e3:81:9f:e1:e1:a8:c3:5e: 40:49:1c:69:17:7c:65:58:67:da:e0:4c:60:9b:e4:40:77:63: f7:5d:d8:d5:19:ef:dd:79:7f:04:ae:46:a7:57:47:e7:4a:99: 9c:63:d1:4d:1d:36:fe:50:a2:94:91:6d:c0:7e:a7:41:a7:99: ef:35:2d:2e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwNDUxMTAvBgNVBAUTKDY2RTg1NDYxQkIzNTJBNDk4REI1NTcwMzY0NjMwNUNB MzdFNzRGQjQwHhcNMjQwOTA3MDIzNTAzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiYmJkNy01ZDk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdvL2m391OLm+8MS0I563tISKSZKrBWfMo9gAU4rIV+709eL7QVyclJq7rvL EWGFvVvKDA49qsTMgkKgDxhPpid+1vjUbjyGI8+y8riuB26013fVhRJiLTNKKhVH IN7KYK+ExKWxuq3d++Kmbbur6HQDcsmC7xmTLPUzo4DfmJbHduvZAKGsthi+LTZG mde7tch5IwFr+pSUzUa+9sP459+qaarDuAsClsjxOhHed6c4GfELBQV5fj0YrAjE KarexDKfln3md3tSj+M+yyCRCWibmU+lEUUthDiJx3+WaXZVXK158nIBwmGJ850d YfaxTVocAOZCoq8o6EeJzVo3bQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFF1hcXLN AQrgOAAR17nBmi3GQ/n8MB8GA1UdIwQYMBaAFGboVGG7NSpJjbVXA2RjBco350+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzA0NS9CRkFEQzYxMDlG MjkxMUVDOUMyRDY3ODVDNEY5QUUwMi9adWhVWWJzMUtrbU50VmNEWkdNRnlqZm5U N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1aFVZYnMxS2ttTnRWY0RaR01GeWpmblQ3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMwNDUvQkZBREM2MTA5RjI5MTFFQzlDMkQ2Nzg1QzRGOUFFMDIvMUUyRUI4RDA5 RjM4MTFFQ0JCODRCRDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAGcdmQMEAmcdmDANBAIAAjAHAwUAJAGvADANBgkqhkiG 9w0BAQsFAAOCAQEAj/oVcNH0TNRZaVvk5MlIWDeQ09rfI0Dtg9OirYOx01rQfE1w iimjrw7QnVghFxfsMbsx0ALlsONdI/+6IbH+A623v9G/esH6Hi5Y8EMJxkM7zhZE UMIRQvpA+0dcMCrm2M6vCxLtfkt30HrOAduNI495FKuA6e3uQdUuhVAl1HJ3GLvi bflzcQYfvXPbUP2d+Rvn9K+flD0j9gxm+TxKE2JUttGENtgTxlsSZnxnhM83K5De E//rS6DAZDVngOOBn+HhqMNeQEkcaRd8ZVhn2uBMYJvkQHdj913Y1Rnv3Xl/BK5G p1dH50qZnGPRTR02/lCilJFtwH6nQaeZ7zUtLg== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:41 2024 by rpki-client on console-fra.rpki-client.org