$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A4E3DD6A366311EEB376DC3AC4F9AE02.roa File: A4E3DD6A366311EEB376DC3AC4F9AE02.roa (raw, json) Hash identifier: MbDhYwCke6Hrj4x3H9Al82lP56JYcuHzTtWtttDpVx8= Subject key identifier: 0B:09:5C:47:7B:FE:14:E2:AD:F3:34:FA:23:91:EF:B2:68:12:91:5F Certificate issuer: /CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA Certificate serial: C4 Authority key identifier: 48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A4E3DD6A366311EEB376DC3AC4F9AE02.roa Signing time: Tue 25 Jun 2024 06:22:11 +0000 ROA not before: Tue 25 Jun 2024 06:22:11 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132876 IP address blocks: 103.14.11.0/24 maxlen: 24 2400:6280::/48 maxlen: 48 2400:6280:1::/48 maxlen: 48 2400:6280:20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C/serialNumber=488970506264EF96D81EC12E6ABD256DB30FDCFA Validity Not Before: Jun 25 06:22:11 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667a6213-eac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e7:f4:61:2f:54:60:e7:57:a8:17:80:90:40: b4:f0:d0:3f:83:3f:e3:bb:e7:ed:48:3b:17:a2:7a: 65:26:a7:6e:51:30:9d:86:a4:b3:79:71:cb:ff:c8: 11:04:6a:c4:1a:dc:a5:5d:8e:ea:20:ed:0c:b5:44: 1d:a1:61:64:8a:f3:98:12:42:a0:b4:e5:8a:ae:8b: 32:7a:b6:1e:80:e2:5d:09:7a:61:a4:7b:26:d6:69: d1:07:a0:7a:5f:fd:e0:0f:16:9f:14:dc:2a:18:fb: 18:5f:5d:48:af:64:fe:f6:57:64:e3:1c:27:a2:ed: f4:ab:ee:52:dc:bf:df:fc:23:f2:5b:f5:c5:12:bb: cc:17:c6:40:b8:67:21:47:1e:51:99:2c:87:4e:1f: 43:ee:f2:db:cb:67:6a:b2:ac:86:02:28:76:15:78: 21:78:15:5b:fe:80:1f:ab:b5:96:ff:12:a7:6e:9d: ff:32:9e:ff:9a:30:8f:9d:fc:eb:0c:e7:1c:f7:4b: b2:77:6a:32:b0:ff:45:3f:b5:79:a6:7b:72:52:15: 50:e0:89:8f:f5:06:01:0b:f9:92:65:c9:9f:22:5c: 46:cb:3e:05:25:e9:5e:51:d3:5f:3c:c5:b3:64:6c: 0e:47:21:e5:ac:35:01:45:5a:3c:4d:b5:d1:81:c4: 10:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:09:5C:47:7B:FE:14:E2:AD:F3:34:FA:23:91:EF:B2:68:12:91:5F X509v3 Authority Key Identifier: keyid:48:89:70:50:62:64:EF:96:D8:1E:C1:2E:6A:BD:25:6D:B3:0F:DC:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/SIlwUGJk75bYHsEuar0lbbMP3Po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SIlwUGJk75bYHsEuar0lbbMP3Po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/7E4D8460366011EE88E0F530C4F9AE02/A4E3DD6A366311EEB376DC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.11.0/24 IPv6: 2400:6280::/47 2400:6280:20::/48 Signature Algorithm: sha256WithRSAEncryption 91:d3:a5:fc:9a:7f:9c:59:06:13:6c:85:9b:60:95:9a:17:27: 26:c3:72:73:fb:43:8f:14:e5:65:de:b9:e8:17:8c:aa:20:11: 00:e0:db:54:ca:b2:0e:26:92:66:6c:be:b8:cf:eb:99:3b:b7: 34:b7:93:af:ac:71:9c:b2:21:67:03:d3:e1:a8:e1:d5:78:e1: 44:16:9e:20:e5:69:90:7d:63:d3:82:d6:db:99:5a:c0:27:a0: ba:06:23:43:02:17:68:40:71:2f:2f:ed:01:70:d8:47:37:9d: 1b:96:db:ae:39:09:26:40:cb:dc:81:01:be:0a:29:e7:55:aa: 65:d9:bb:77:d5:49:a8:2f:54:38:3c:d5:a7:3e:79:a3:09:b7: 25:30:d3:15:84:c1:ae:f7:e5:eb:06:c1:09:dc:8a:1c:4d:e1: a5:7b:6f:4e:d7:68:a1:03:cf:a8:f6:c1:cf:ce:6e:84:f9:b2: 9e:8b:87:7a:48:94:90:1c:e2:94:64:18:e2:f2:27:83:1f:18: 66:a9:ad:d8:69:25:ce:e1:0c:cd:b6:ad:65:e6:d0:5f:99:ab: d7:9d:28:be:7a:18:d1:22:63:8c:ba:1e:cb:4d:88:54:ab:05: 41:46:71:12:e2:f3:f4:d2:e0:70:10:7e:e2:54:40:cd:06:86: 4f:3b:94:b1 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKDQ4ODk3MDUwNjI2NEVGOTZEODFFQzEyRTZBQkQyNTZE QjMwRkRDRkEwHhcNMjQwNjI1MDYyMjExWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhNjIxMy1lYWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv+f0YS9UYOdXqBeAkEC08NA/gz/ju+ftSDsXonplJqduUTCdhqSzeXHL/8gR BGrEGtylXY7qIO0MtUQdoWFkivOYEkKgtOWKrosyerYegOJdCXphpHsm1mnRB6B6 X/3gDxafFNwqGPsYX11Ir2T+9ldk4xwnou30q+5S3L/f/CPyW/XFErvMF8ZAuGch Rx5RmSyHTh9D7vLby2dqsqyGAih2FXgheBVb/oAfq7WW/xKnbp3/Mp7/mjCPnfzr DOcc90uyd2oysP9FP7V5pntyUhVQ4ImP9QYBC/mSZcmfIlxGyz4FJeleUdNfPMWz ZGwORyHlrDUBRVo8TbXRgcQQwwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFAsJXEd7 /hTirfM0+iOR77JoEpFfMB8GA1UdIwQYMBaAFEiJcFBiZO+W2B7BLmq9JW2zD9z6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83RTREODQ2MDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9TSWx3VUdKazc1YllIc0V1YXIwbGJiTVAz UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NJbHdVR0prNzViWUhzRXVhcjBsYmJNUDNQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvN0U0RDg0NjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvQTRFM0RENkEz NjYzMTFFRUIzNzZEQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBABnDgswGAQCAAIwEgMHASQAYoAAAAMHACQAYoAAIDANBgkq hkiG9w0BAQsFAAOCAQEAkdOl/Jp/nFkGE2yFm2CVmhcnJsNyc/tDjxTlZd656BeM qiARAODbVMqyDiaSZmy+uM/rmTu3NLeTr6xxnLIhZwPT4ajh1XjhRBaeIOVpkH1j 04LW25lawCegugYjQwIXaEBxLy/tAXDYRzedG5bbrjkJJkDL3IEBvgop51WqZdm7 d9VJqC9UODzVpz55owm3JTDTFYTBrvfl6wbBCdyKHE3hpXtvTtdooQPPqPbBz85u hPmynouHekiUkBzilGQY4vIngx8YZqmt2GklzuEMzbatZebQX5mr150ovnoY0SJj jLoey02IVKsFQUZxEuLz9NLgcBB+4lRAzQaGTzuUsQ== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:01 2024 by rpki-client on console-fra.rpki-client.org