$ rpki-client -vvf rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/105A1F50778211EE997FD552C4F9AE02.roa File: 105A1F50778211EE997FD552C4F9AE02.roa (raw, json) Hash identifier: aQsHMdafTipMWqWSV46rK02/G7PlIH4QrZ4xAvLOfVg= Subject key identifier: 51:3B:7A:BF:54:C3:3A:8E:78:52:94:2E:66:9F:1E:73:B5:D7:11:EB Certificate issuer: /CN=A9193235/serialNumber=5A56F89F50812A810FF2DE845470F1092724A1AB Certificate serial: D4 Authority key identifier: 5A:56:F8:9F:50:81:2A:81:0F:F2:DE:84:54:70:F1:09:27:24:A1:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wlb4n1CBKoEP8t6EVHDxCSckoas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/105A1F50778211EE997FD552C4F9AE02.roa Signing time: Tue 19 Nov 2024 08:30:12 +0000 ROA not before: Tue 19 Nov 2024 08:30:12 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140664 IP address blocks: 103.151.118.0/23 maxlen: 23 103.151.118.0/24 maxlen: 24 103.151.119.0/24 maxlen: 24 2001:df3:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/Wlb4n1CBKoEP8t6EVHDxCSckoas.crl rsync://rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/Wlb4n1CBKoEP8t6EVHDxCSckoas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wlb4n1CBKoEP8t6EVHDxCSckoas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193235/serialNumber=5A56F89F50812A810FF2DE845470F1092724A1AB Validity Not Before: Nov 19 08:30:12 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673c4c94-3ce9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:de:a6:36:af:2a:a5:21:d4:6b:88:aa:fa:58: af:06:b1:d9:be:9c:25:54:1b:8f:d3:8c:da:2e:74: 89:76:80:d2:81:be:cd:10:95:dc:54:29:bc:3e:29: 89:41:f9:c7:28:73:14:06:d8:58:89:cf:d8:41:99: 35:44:a4:0d:88:0e:69:8f:eb:04:46:87:40:0b:36: 59:87:2a:c5:4b:11:f1:96:df:6a:3d:57:cc:84:89: 87:23:63:e2:28:9a:4e:42:80:60:b7:76:56:f7:a3: 97:40:b5:5a:16:e0:31:f9:58:0b:3e:31:c2:2a:ad: 33:c6:ff:68:20:f6:53:a2:7d:c1:03:3f:25:c2:25: 54:51:39:0e:9b:21:e9:4c:57:f1:da:da:5b:87:e9: 6a:ae:cb:cb:6f:e5:fe:a6:ef:45:06:7b:d8:c6:c5: 89:dd:5e:54:2d:3a:9f:d2:70:1a:e8:d5:b0:05:25: 43:6d:27:2b:0d:e2:21:ad:31:25:1e:74:62:76:7b: f5:f2:83:e1:c4:13:5f:a9:e6:3e:41:cd:16:ae:2e: a0:a0:65:fb:a1:e2:6a:2c:47:ff:e6:9f:09:ff:2f: 31:d7:d2:16:5d:b7:72:a4:10:4c:97:db:b0:da:ca: 88:49:7a:51:5c:ea:9d:3a:fb:0d:c7:b8:03:05:4e: 76:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:3B:7A:BF:54:C3:3A:8E:78:52:94:2E:66:9F:1E:73:B5:D7:11:EB X509v3 Authority Key Identifier: keyid:5A:56:F8:9F:50:81:2A:81:0F:F2:DE:84:54:70:F1:09:27:24:A1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/Wlb4n1CBKoEP8t6EVHDxCSckoas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wlb4n1CBKoEP8t6EVHDxCSckoas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193235/A4FC3B5A9FA011EB8042D537C4F9AE02/105A1F50778211EE997FD552C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.118.0/23 IPv6: 2001:df3:e080::/48 Signature Algorithm: sha256WithRSAEncryption 93:09:2c:86:45:b2:59:b0:60:85:92:1e:65:e6:dd:9a:d5:d2: 10:f4:8e:be:fa:c4:7d:a4:d8:ba:eb:15:66:1a:76:e0:23:d3: d6:34:08:ad:e5:c3:d2:9f:28:24:64:fd:bc:d8:12:10:0f:ba: cd:09:1a:36:1f:f1:60:86:60:ff:25:0a:7b:3d:f8:12:f0:ef: 61:7e:bb:f1:9b:ef:5d:0f:9e:9e:88:aa:00:03:26:d0:09:2d: 73:78:4e:ae:3a:59:b4:8e:fc:a9:42:54:60:b4:a0:be:23:bd: 0b:fb:d9:20:d2:6a:65:b7:fe:1a:b6:a5:4b:07:cb:0f:37:11: 63:6d:e7:26:71:bb:27:fd:66:3c:29:91:a1:26:5d:7f:ed:1d: 50:a2:33:24:bc:19:c5:f3:4c:f7:6e:50:2c:af:c5:b9:46:a2: 34:d8:7b:ec:c6:38:11:1d:4b:19:af:67:a3:fb:c4:8e:58:14: 7b:80:36:aa:16:81:c4:ab:0a:f4:93:3b:31:20:be:e6:6f:66: 87:d0:49:3a:68:52:e3:c0:bb:a2:da:38:26:5c:be:5c:1b:b8: c9:1a:b0:ab:e2:df:de:10:c0:c6:1f:2a:95:44:db:1d:bf:d5: 7f:2f:2e:e4:8f:35:a0:38:bc:39:31:17:e0:aa:05:b6:f3:b3: 00:41:04:68 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMyMzUxMTAvBgNVBAUTKDVBNTZGODlGNTA4MTJBODEwRkYyREU4NDU0NzBGMTA5 MjcyNEExQUIwHhcNMjQxMTE5MDgzMDEyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNjNGM5NC0zY2U5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs96mNq8qpSHUa4iq+livBrHZvpwlVBuP04zaLnSJdoDSgb7NEJXcVCm8PimJ QfnHKHMUBthYic/YQZk1RKQNiA5pj+sERodACzZZhyrFSxHxlt9qPVfMhImHI2Pi KJpOQoBgt3ZW96OXQLVaFuAx+VgLPjHCKq0zxv9oIPZTon3BAz8lwiVUUTkOmyHp TFfx2tpbh+lqrsvLb+X+pu9FBnvYxsWJ3V5ULTqf0nAa6NWwBSVDbScrDeIhrTEl HnRidnv18oPhxBNfqeY+Qc0Wri6goGX7oeJqLEf/5p8J/y8x19IWXbdypBBMl9uw 2sqISXpRXOqdOvsNx7gDBU52gwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFE7er9U wzqOeFKULmafHnO11xHrMB8GA1UdIwQYMBaAFFpW+J9QgSqBD/LehFRw8QknJKGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzIzNS9BNEZDM0I1QTlG QTAxMUVCODA0MkQ1MzdDNEY5QUUwMi9XbGI0bjFDQktvRVA4dDZFVkhEeENTY2tv YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dsYjRuMUNCS29FUDh0NkVWSER4Q1Nja29hcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMyMzUvQTRGQzNCNUE5RkEwMTFFQjgwNDJENTM3QzRGOUFFMDIvMTA1QTFGNTA3 NzgyMTFFRTk5N0ZENTUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnl3YwDwQCAAIwCQMHACABDfPggDANBgkqhkiG9w0BAQsF AAOCAQEAkwkshkWyWbBghZIeZebdmtXSEPSOvvrEfaTYuusVZhp24CPT1jQIreXD 0p8oJGT9vNgSEA+6zQkaNh/xYIZg/yUKez34EvDvYX678ZvvXQ+enoiqAAMm0Akt c3hOrjpZtI78qUJUYLSgviO9C/vZINJqZbf+GralSwfLDzcRY23nJnG7J/1mPCmR oSZdf+0dUKIzJLwZxfNM925QLK/FuUaiNNh77MY4ER1LGa9no/vEjlgUe4A2qhaB xKsK9JM7MSC+5m9mh9BJOmhS48C7oto4Jly+XBu4yRqwq+Lf3hDAxh8qlUTbHb/V fy8u5I81oDi8OTEX4KoFtvOzAEEEaA== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:31 2024 by rpki-client on console-fra.rpki-client.org