$ rpki-client -vvf rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/A8EF2B58A89A11EFA52A9970C4F9AE02.roa File: A8EF2B58A89A11EFA52A9970C4F9AE02.roa (raw, json) Hash identifier: W41UGNX+U3pkh1MUhjtjxt+m5tecoSOo5ggoTHhxJd0= Subject key identifier: 4A:31:BC:83:00:FF:8E:EA:91:EE:D6:EE:E3:66:1A:71:74:A0:8D:4E Certificate issuer: /CN=A919EC2D/serialNumber=304D64E3F1051297E4B62AC7DE3480F47A29AE0F Certificate serial: 03 Authority key identifier: 30:4D:64:E3:F1:05:12:97:E4:B6:2A:C7:DE:34:80:F4:7A:29:AE:0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ME1k4_EFEpfktirH3jSA9Hoprg8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/A8EF2B58A89A11EFA52A9970C4F9AE02.roa Signing time: Fri 22 Nov 2024 06:26:09 +0000 ROA not before: Fri 22 Nov 2024 06:26:09 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136969 IP address blocks: 103.188.92.0/23 maxlen: 23 103.188.92.0/24 maxlen: 24 103.188.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.crl rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ME1k4_EFEpfktirH3jSA9Hoprg8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EC2D/serialNumber=304D64E3F1051297E4B62AC7DE3480F47A29AE0F Validity Not Before: Nov 22 06:26:09 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67402400-a040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:42:76:68:aa:47:f6:28:79:f8:11:b0:dd:dc: d7:de:af:6e:a1:e6:38:af:d4:a2:57:e9:72:5f:83: 6f:bb:1e:a4:81:ec:eb:c8:29:fe:96:ea:60:82:cb: ea:6d:d0:1c:2f:e4:0e:75:74:f4:9d:50:f7:5c:1c: 0f:ed:f3:27:6e:64:9a:52:e0:1c:ed:ce:7a:bb:b8: bd:51:c8:60:b1:97:39:20:8d:9b:c7:8a:d7:09:c6: 63:b8:36:9d:0f:72:2e:9c:d1:ca:f7:38:47:3e:27: b7:88:b7:b9:cb:57:b8:7e:58:82:2b:3d:9c:3b:e3: 1c:c4:c8:ee:7a:63:17:2a:f6:d9:7b:ff:66:1b:bc: ef:34:04:f7:f2:31:8f:42:20:48:54:5a:0d:25:93: 8b:01:6d:6a:45:78:84:8e:6a:4e:ef:11:b1:b4:b2: c5:2c:af:0e:f6:71:4f:d8:34:1c:e4:6b:9c:bb:32: fe:75:81:7e:bf:30:cb:66:90:b7:4b:52:ea:9d:e7: c2:a8:83:73:04:d6:e8:e8:13:e2:c1:0a:fd:42:67: ba:e2:73:b1:b6:b4:4e:0d:7a:e4:18:85:3d:c4:a6: e1:d8:55:a7:79:a8:df:ae:02:5d:e7:ef:77:00:e4: 43:03:6e:b5:e5:7b:9e:a3:a2:a0:b3:39:1d:19:66: 76:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:31:BC:83:00:FF:8E:EA:91:EE:D6:EE:E3:66:1A:71:74:A0:8D:4E X509v3 Authority Key Identifier: keyid:30:4D:64:E3:F1:05:12:97:E4:B6:2A:C7:DE:34:80:F4:7A:29:AE:0F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/ME1k4_EFEpfktirH3jSA9Hoprg8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ME1k4_EFEpfktirH3jSA9Hoprg8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EC2D/82B725E8BCE311ED849F9331C4F9AE02/A8EF2B58A89A11EFA52A9970C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.188.92.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:5a:cf:5f:ab:5c:61:8f:4f:dd:4e:63:47:2a:32:4f:4c:1b: fd:67:c0:f8:29:cd:3f:95:26:cb:f1:f4:85:cb:f3:6a:2c:db: 48:b5:72:a8:d8:f8:a8:09:43:57:3f:2c:35:c5:55:f6:c0:ca: 55:2f:8b:76:5a:b0:51:d9:d5:56:39:b5:32:7a:c0:a5:3c:ea: ee:d3:61:a4:97:30:7a:1c:d4:91:d5:1c:af:5a:67:1d:21:26: 61:54:db:c4:00:a2:ae:dd:19:72:4b:6e:d7:ad:b1:c4:e9:f8: 76:d8:d0:35:98:4f:cb:a3:6d:0f:60:86:f3:a1:cf:cf:f1:a9: 36:b1:13:2c:eb:1d:68:19:46:e5:ce:7c:f8:b0:73:55:af:eb: 5c:ac:2b:0d:61:e4:51:b2:fe:a4:df:cb:ea:ed:dc:5c:82:14: cb:85:97:aa:ee:0a:3f:88:35:21:ae:4b:4e:50:b4:e2:c3:71: 90:34:fd:be:2b:d9:6b:f4:57:93:b2:ec:86:e0:ea:d1:46:9a: 32:d8:2c:01:cd:00:a3:8b:55:31:c2:1e:45:f7:71:99:9e:6c: a1:b7:7c:8d:7f:b7:3c:0c:50:b3:25:61:d9:61:81:8c:0f:61: 55:d0:02:a6:57:a7:57:2d:2d:a6:a8:d1:6a:7f:04:25:b5:92: 5d:c5:f9:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RUMyRDExMC8GA1UEBRMoMzA0RDY0RTNGMTA1MTI5N0U0QjYyQUM3REUzNDgwRjQ3 QTI5QUUwRjAeFw0yNDExMjIwNjI2MDlaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NDAyNDAwLWEwNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDvQnZoqkf2KHn4EbDd3Nfer26h5jiv1KJX6XJfg2+7HqSB7OvIKf6W6mCCy+pt 0Bwv5A51dPSdUPdcHA/t8yduZJpS4Bztznq7uL1RyGCxlzkgjZvHitcJxmO4Np0P ci6c0cr3OEc+J7eIt7nLV7h+WIIrPZw74xzEyO56Yxcq9tl7/2YbvO80BPfyMY9C IEhUWg0lk4sBbWpFeISOak7vEbG0ssUsrw72cU/YNBzka5y7Mv51gX6/MMtmkLdL Uuqd58Kog3ME1ujoE+LBCv1CZ7ric7G2tE4NeuQYhT3EpuHYVad5qN+uAl3n73cA 5EMDbrXle56joqCzOR0ZZnYfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSjG8gwD/ juqR7tbu42YacXSgjU4wHwYDVR0jBBgwFoAUME1k4/EFEpfktirH3jSA9Hoprg8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlFQzJELzgyQjcyNUU4QkNF MzExRUQ4NDlGOTMzMUM0RjlBRTAyL01FMWs0X0VGRXBma3RpckgzalNBOUhvcHJn OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTUUxazRfRUZFcGZrdGlySDNqU0E5SG9wcmc4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RUMyRC84MkI3MjVFOEJDRTMxMUVEODQ5RjkzMzFDNEY5QUUwMi9BOEVGMkI1OEE4 OUExMUVGQTUyQTk5NzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWe8XDANBgkqhkiG9w0BAQsFAAOCAQEAG1rPX6tcYY9P3U5j RyoyT0wb/WfA+CnNP5Umy/H0hcvzaizbSLVyqNj4qAlDVz8sNcVV9sDKVS+Ldlqw UdnVVjm1MnrApTzq7tNhpJcwehzUkdUcr1pnHSEmYVTbxACirt0Zcktu162xxOn4 dtjQNZhPy6NtD2CG86HPz/GpNrETLOsdaBlG5c58+LBzVa/rXKwrDWHkUbL+pN/L 6u3cXIIUy4WXqu4KP4g1Ia5LTlC04sNxkDT9vivZa/RXk7LshuDq0UaaMtgsAc0A o4tVMcIeRfdxmZ5sobd8jX+3PAxQsyVh2WGBjA9hVdACplenVy0tpqjRan8EJbWS XcX5TA== -----END CERTIFICATE-----Generated at Fri Nov 22 08:02:28 2024 by rpki-client on console-ams.rpki-client.org