$ rpki-client -vvf rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/E71AB92A7F7D11EE8C183162C4F9AE02.roa File: E71AB92A7F7D11EE8C183162C4F9AE02.roa (raw, json) Hash identifier: shdTH9d6PBZ6zz9OKDDb+zRKMfpyDz4E/FhykKTuDEk= Subject key identifier: 84:1E:9D:64:FC:86:8C:0F:4D:0A:9D:DE:E6:4D:BB:0E:47:B8:6E:0C Certificate issuer: /CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Certificate serial: 72 Authority key identifier: DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/E71AB92A7F7D11EE8C183162C4F9AE02.roa Signing time: Sat 01 Jun 2024 09:47:30 +0000 ROA not before: Sat 01 Jun 2024 09:47:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149793 IP address blocks: 103.186.158.0/24 maxlen: 24 103.186.159.0/24 maxlen: 24 2400:72e0:9f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 114 (0x72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919A7CA/serialNumber=DA1DB2CD31F454F69561D8665DC93EF812F397B0 Validity Not Before: Jun 1 09:47:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665aee32-41ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b4:f8:9e:cd:b8:84:a8:34:a4:cd:44:68:bc: d1:4a:86:15:40:a1:de:7f:7d:ba:77:cf:69:22:02: 08:da:8e:aa:30:c1:ff:23:09:17:61:b4:88:be:3e: 57:4e:af:d2:fd:34:91:ee:40:11:05:46:57:c8:03: 55:41:0c:87:b8:41:f9:61:4a:7f:bc:a3:d2:69:b0: e9:1d:01:6a:b4:6b:b1:8a:6b:83:62:ed:40:55:1a: ca:f9:94:2a:fb:ee:23:3e:9a:28:9e:21:4f:0e:d5: ef:7a:e0:65:9f:20:f8:b0:f9:78:fc:5d:f4:00:84: e6:e8:fa:0c:cf:d2:87:ac:94:c2:bd:7e:f6:23:b9: 06:c6:2b:c1:b6:c3:dd:8a:f6:c2:9b:89:95:29:ef: ff:a3:28:2b:78:69:ef:36:b5:43:41:db:20:c5:16: b5:83:64:23:96:23:68:09:a4:a1:c9:6d:13:14:4e: 6b:a6:11:1c:4f:13:0e:25:e9:3d:f7:47:51:37:6d: 90:ec:e8:83:db:7c:f3:4d:8e:bc:a4:12:c3:68:ad: c8:82:0b:ea:fc:3d:74:c5:e6:2f:03:16:cd:6b:d7: 3d:4e:4e:f2:70:e9:9d:42:cd:c8:5a:6a:95:87:b0: ae:c2:16:ec:22:30:b9:66:fe:c7:03:4f:cc:92:c4: 48:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:1E:9D:64:FC:86:8C:0F:4D:0A:9D:DE:E6:4D:BB:0E:47:B8:6E:0C X509v3 Authority Key Identifier: keyid:DA:1D:B2:CD:31:F4:54:F6:95:61:D8:66:5D:C9:3E:F8:12:F3:97:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/2h2yzTH0VPaVYdhmXck--BLzl7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2h2yzTH0VPaVYdhmXck--BLzl7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919A7CA/4CF7F1587EB711EE9623E91AC4F9AE02/E71AB92A7F7D11EE8C183162C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.158.0/23 IPv6: 2400:72e0:9f00::/40 Signature Algorithm: sha256WithRSAEncryption 7b:ed:c5:cd:1e:e4:0c:d9:f5:93:91:9f:ca:ff:7a:be:b6:24: d2:8d:11:32:81:96:ab:ae:32:b2:6d:da:60:7e:31:3f:aa:c6: 76:b9:0d:b3:3b:c9:3c:45:0b:38:57:74:1f:8c:68:31:68:50: 38:2b:e6:b9:75:24:67:c0:b7:ee:b6:aa:19:61:14:64:fe:1a: 9e:6d:96:31:76:12:2f:f4:b6:ee:41:83:c9:b4:a9:ff:a5:2a: 33:af:76:a1:84:ba:cf:d5:4d:0d:9d:7e:41:38:d0:e0:c0:a1: 64:3e:c8:66:f3:1d:3c:9c:98:2f:0f:63:06:a6:8f:c9:83:e7: ec:27:ff:5f:da:4c:8b:bb:ff:79:f4:3f:73:04:09:c2:75:a1: 0a:c9:22:56:d4:f2:ac:e8:65:71:6d:12:b5:ec:2f:b9:0f:d8: e3:a2:77:56:7e:94:99:0e:e0:e9:a0:b1:99:3b:29:7a:e1:44: 15:c2:68:78:7b:03:3f:68:cf:48:d6:fb:7e:b7:1f:19:7a:ed: ec:e2:c8:e8:02:96:16:62:f8:03:4a:6b:29:79:1c:cc:d3:5e: 9b:10:9c:eb:11:6c:b8:99:57:35:23:16:73:b1:d1:75:49:90: c6:2c:e5:24:16:35:e4:4a:4e:6b:c1:59:21:6c:9e:aa:4b:7b: 5f:d0:a6:4b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIBcjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QTdDQTExMC8GA1UEBRMoREExREIyQ0QzMUY0NTRGNjk1NjFEODY2NURDOTNFRjgx MkYzOTdCMDAeFw0yNDA2MDEwOTQ3MzBaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWFlZTMyLTQxYWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDtPiezbiEqDSkzURovNFKhhVAod5/fbp3z2kiAgjajqowwf8jCRdhtIi+PldO r9L9NJHuQBEFRlfIA1VBDIe4QflhSn+8o9JpsOkdAWq0a7GKa4Ni7UBVGsr5lCr7 7iM+miieIU8O1e964GWfIPiw+Xj8XfQAhObo+gzP0oeslMK9fvYjuQbGK8G2w92K 9sKbiZUp7/+jKCt4ae82tUNB2yDFFrWDZCOWI2gJpKHJbRMUTmumERxPEw4l6T33 R1E3bZDs6IPbfPNNjrykEsNorciCC+r8PXTF5i8DFs1r1z1OTvJw6Z1CzchaapWH sK7CFuwiMLlm/scDT8ySxEjpAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUhB6dZPyG jA9NCp3e5k27Dke4bgwwHwYDVR0jBBgwFoAU2h2yzTH0VPaVYdhmXck++BLzl7Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlBN0NBLzRDRjdGMTU4N0VC NzExRUU5NjIzRTkxQUM0RjlBRTAyLzJoMnl6VEgwVlBhVllkaG1YY2stLUJMemw3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMmgyeXpUSDBWUGFWWWRobVhjay0tQkx6bDdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QTdDQS80Q0Y3RjE1ODdFQjcxMUVFOTYyM0U5MUFDNEY5QUUwMi9FNzFBQjkyQTdG N0QxMUVFOEMxODMxNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAvBggrBgEFBQcBBwEB/wQg MB4wDAQCAAEwBgMEAWe6njAOBAIAAjAIAwYAJABy4J8wDQYJKoZIhvcNAQELBQAD ggEBAHvtxc0e5AzZ9ZORn8r/er62JNKNETKBlquuMrJt2mB+MT+qxna5DbM7yTxF CzhXdB+MaDFoUDgr5rl1JGfAt+62qhlhFGT+Gp5tljF2Ei/0tu5Bg8m0qf+lKjOv dqGEus/VTQ2dfkE40ODAoWQ+yGbzHTycmC8PYwamj8mD5+wn/1/aTIu7/3n0P3ME CcJ1oQrJIlbU8qzoZXFtErXsL7kP2OOid1Z+lJkO4OmgsZk7KXrhRBXCaHh7Az9o z0jW+363Hxl67eziyOgClhZi+ANKayl5HMzTXpsQnOsRbLiZVzUjFnOx0XVJkMYs 5SQWNeRKTmvBWSFsnqpLe1/Qpks= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:13 2024 by rpki-client on console-ams.rpki-client.org