$ rpki-client -vvf rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/1DCABC72C57811EA950A8643C4F9AE02.roa File: 1DCABC72C57811EA950A8643C4F9AE02.roa (raw, json) Hash identifier: 3y+P8Wjw2NbNvaqBtjPXBVu0eGWr6eeBTOCTDHgw4uI= Subject key identifier: F2:FC:5E:59:80:8F:A0:75:A3:89:3F:8F:1B:B7:91:CC:90:60:F8:55 Certificate issuer: /CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Certificate serial: 0803 Authority key identifier: 7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/1DCABC72C57811EA950A8643C4F9AE02.roa Signing time: Sat 02 Nov 2024 20:49:07 +0000 ROA not before: Sat 02 Nov 2024 20:49:07 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139730 IP address blocks: 103.144.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:36:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2051 (0x803) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A285/serialNumber=7A31D5739798B064A6007133AA3E5B9CD0EED45F Validity Not Before: Nov 2 20:49:07 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67269043-528a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e6:9b:45:93:a5:c1:e6:da:09:dd:5b:dc:90: f5:d7:fa:b5:73:ec:42:8b:e3:44:5a:45:9a:d6:75: ed:82:88:5b:d2:70:0c:9f:30:aa:2d:41:ca:58:db: fd:31:bd:81:bb:d2:06:67:b2:20:b3:8d:c2:b8:79: 33:68:4d:b6:25:dc:89:88:28:f1:c4:02:be:19:e7: ac:d5:fa:e9:95:a6:fa:47:ef:0f:e4:97:b4:cc:da: e9:ee:57:ad:99:ae:45:06:10:e5:cd:f6:7e:b4:b7: 39:0f:2f:ae:e5:72:0d:b1:3c:2e:82:e6:83:56:5e: 75:f8:11:51:0c:a8:ca:82:14:1d:bc:12:1f:f0:87: f3:90:32:ea:61:86:74:71:a0:0b:e6:71:aa:aa:17: 19:9e:5d:cd:2d:e0:a5:2f:ee:94:e9:ad:99:12:cd: 3d:4c:5f:f7:04:2c:67:d8:74:3a:fa:eb:00:dc:aa: 7d:e3:31:04:17:4f:23:1b:42:4e:db:ff:bb:70:e7: c5:f6:83:4b:cb:da:86:19:56:4a:5e:3e:00:05:14: 43:0d:00:e3:78:1f:6f:90:5e:5b:a6:d2:97:ba:71: 40:dd:80:1f:0c:dc:15:f5:04:04:28:08:44:d4:c4: 11:d0:ec:a5:33:6e:d2:20:3d:f1:fc:55:6f:9c:15: 7a:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FC:5E:59:80:8F:A0:75:A3:89:3F:8F:1B:B7:91:CC:90:60:F8:55 X509v3 Authority Key Identifier: keyid:7A:31:D5:73:97:98:B0:64:A6:00:71:33:AA:3E:5B:9C:D0:EE:D4:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/ejHVc5eYsGSmAHEzqj5bnNDu1F8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ejHVc5eYsGSmAHEzqj5bnNDu1F8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A285/DD6289AAC57511EAA5581C40C4F9AE02/1DCABC72C57811EA950A8643C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.68.0/24 Signature Algorithm: sha256WithRSAEncryption c4:57:5c:a1:c5:60:e9:b6:2e:14:09:1f:4d:4b:28:bc:d3:26: 16:a8:ee:40:d0:bb:cf:7d:55:42:14:8d:3e:08:6e:b7:ed:f4: 8f:c6:82:4d:0b:ab:a8:cd:ee:05:6d:2c:c4:41:11:07:43:7b: 70:77:45:50:91:47:9e:b0:9e:55:f7:3a:95:73:62:bd:cf:11: 52:a2:fc:d7:70:ee:c1:56:78:a2:51:19:4d:73:13:f2:0a:e8: 80:6a:41:7f:d6:65:45:40:11:58:26:5e:4b:24:55:fc:bd:6e: db:10:00:74:e1:0e:15:8b:45:89:5c:fc:de:52:b5:5f:84:d9: 51:d3:7f:f4:97:ec:11:19:11:df:c1:66:31:7a:5f:29:aa:80: 03:18:15:8d:33:5c:cd:9a:e9:83:c3:db:95:35:dc:72:2e:fd: 59:d6:8f:1c:b0:ac:ec:cc:30:85:37:58:8e:0c:47:96:77:d6: 06:58:49:55:6b:0e:37:b0:dd:46:60:46:e5:67:15:d9:99:96: 6c:7f:1a:fb:c8:48:95:49:85:29:8b:db:b5:0e:29:27:a2:85: 9d:d6:83:2b:41:70:c4:aa:fb:52:77:c9:0e:56:99:c8:13:af: 67:4a:38:92:7a:8a:ef:ee:98:36:f0:7a:89:68:e1:6d:ee:95: ed:19:ef:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUEyODUxMTAvBgNVBAUTKDdBMzFENTczOTc5OEIwNjRBNjAwNzEzM0FBM0U1QjlD RDBFRUQ0NUYwHhcNMjQxMTAyMjA0OTA3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2OTA0My01MjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwuabRZOlwebaCd1b3JD11/q1c+xCi+NEWkWa1nXtgohb0nAMnzCqLUHKWNv9 Mb2Bu9IGZ7Igs43CuHkzaE22JdyJiCjxxAK+Gees1frplab6R+8P5Je0zNrp7let ma5FBhDlzfZ+tLc5Dy+u5XINsTwuguaDVl51+BFRDKjKghQdvBIf8IfzkDLqYYZ0 caAL5nGqqhcZnl3NLeClL+6U6a2ZEs09TF/3BCxn2HQ6+usA3Kp94zEEF08jG0JO 2/+7cOfF9oNLy9qGGVZKXj4ABRRDDQDjeB9vkF5bptKXunFA3YAfDNwV9QQEKAhE 1MQR0OylM27SID3x/FVvnBV6EQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPL8XlmA j6B1o4k/jxu3kcyQYPhVMB8GA1UdIwQYMBaAFHox1XOXmLBkpgBxM6o+W5zQ7tRf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QTI4NS9ERDYyODlBQUM1 NzUxMUVBQTU1ODFDNDBDNEY5QUUwMi9lakhWYzVlWXNHU21BSEV6cWo1Ym5ORHUx RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VqSFZjNWVZc0dTbUFIRXpxajVibk5EdTFGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUEyODUvREQ2Mjg5QUFDNTc1MTFFQUE1NTgxQzQwQzRGOUFFMDIvMURDQUJDNzJD NTc4MTFFQTk1MEE4NjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkEQwDQYJKoZIhvcNAQELBQADggEBAMRXXKHFYOm2LhQJ H01LKLzTJhao7kDQu899VUIUjT4Ibrft9I/Ggk0Lq6jN7gVtLMRBEQdDe3B3RVCR R56wnlX3OpVzYr3PEVKi/Ndw7sFWeKJRGU1zE/IK6IBqQX/WZUVAEVgmXkskVfy9 btsQAHThDhWLRYlc/N5StV+E2VHTf/SX7BEZEd/BZjF6XymqgAMYFY0zXM2a6YPD 25U13HIu/VnWjxywrOzMMIU3WI4MR5Z31gZYSVVrDjew3UZgRuVnFdmZlmx/GvvI SJVJhSmL27UOKSeihZ3WgytBcMSq+1J3yQ5WmcgTr2dKOJJ6iu/umDbweolo4W3u le0Z78Q= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:36 2024 by rpki-client on console-ams.rpki-client.org