$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BED3A706C47B11ECB544A26DC4F9AE02.roa File: BED3A706C47B11ECB544A26DC4F9AE02.roa (raw, json) Hash identifier: cVTpVB0HjeGscf84X1eLdlFXbVPY9qzMIR76NUjE5so= Subject key identifier: FE:6A:FE:44:47:8D:5A:8B:D8:1D:DF:9C:4E:8D:E4:3A:30:65:B9:BE Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4543 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BED3A706C47B11ECB544A26DC4F9AE02.roa Signing time: Thu 05 Sep 2024 03:32:00 +0000 ROA not before: Thu 05 Sep 2024 03:32:00 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131396 IP address blocks: 103.144.84.0/23 maxlen: 24 103.253.88.0/23 maxlen: 24 103.253.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 11:15:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17731 (0x4543) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 5 03:32:00 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d9262f-a34c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c9:1b:5d:df:da:d9:9c:41:91:0e:a4:52:0e: cf:8e:d9:17:f1:90:e6:2b:10:5d:14:e5:98:64:16: 2a:85:2a:3f:bf:05:24:25:98:0e:e3:e5:d5:14:2f: ab:fe:ee:08:10:47:e6:fb:55:08:96:a0:12:7d:83: cf:a7:35:e5:57:cc:d2:e4:5c:8d:78:37:01:33:e8: ea:6e:05:20:71:e5:1b:d5:cd:a7:64:5d:9e:cc:c4: ba:c5:32:1d:69:f2:d0:3d:4f:f0:48:59:ba:5c:89: e8:8b:80:54:f7:3b:ca:84:03:84:19:19:a3:34:c3: 1e:0b:b5:b7:d8:c7:f5:31:50:1e:7b:8b:dc:63:19: d2:a8:55:79:49:41:e0:55:4f:ae:3c:e3:5b:2c:de: a1:d8:51:9c:f7:33:f6:cc:78:bc:19:a1:c0:0b:f8: e1:b1:41:4e:23:1d:9d:e4:85:b4:d0:4e:1c:43:21: 84:67:9a:80:20:28:a4:d5:04:d2:2c:c7:95:d4:f8: 4e:f1:d8:ef:b6:f2:e1:38:b2:fe:c4:95:c7:dd:91: ac:0b:29:74:ef:42:5c:ca:46:23:0a:76:a7:1c:b8: 62:68:70:a8:2b:33:14:a2:fb:e6:5a:57:5f:3f:53: 25:15:e2:00:34:ac:c7:89:76:c4:59:46:46:56:d8: 4f:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6A:FE:44:47:8D:5A:8B:D8:1D:DF:9C:4E:8D:E4:3A:30:65:B9:BE X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/BED3A706C47B11ECB544A26DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.84.0/23 103.253.88.0/22 Signature Algorithm: sha256WithRSAEncryption 87:d4:a9:13:f6:9f:e9:7d:03:2a:b6:b9:d5:02:cf:7e:46:d6: 45:dd:e8:8d:ae:b5:3b:7a:c6:6a:26:e8:07:e3:df:2d:71:77: 76:06:0c:d9:3f:9e:35:cd:ef:99:7e:28:5f:26:e5:83:0d:53: af:48:5d:5f:8b:91:04:15:e3:5d:63:8f:82:94:2e:7c:df:e4: 1c:30:9c:0f:66:2d:40:c4:85:ca:c7:ec:b6:ef:29:41:a8:a9: 86:93:63:06:77:81:b2:d5:04:0e:45:db:fd:27:ef:46:35:b8: a9:c9:2b:2a:31:f1:1b:a0:af:f7:0f:61:f5:b6:d8:91:f4:cc: 9a:20:4f:71:94:6d:50:56:cf:ff:42:d1:3c:2f:8e:1d:f6:b1: 98:d2:a4:fa:eb:48:3b:7f:52:ed:c9:47:b9:aa:ae:b8:01:90: 9f:bd:ce:2e:15:93:a3:14:8a:e5:76:6c:a6:fe:0a:e7:e0:86: 33:28:f3:12:8f:d2:39:b3:26:67:02:ef:cd:cf:13:08:16:20: bc:40:d3:4f:dc:3e:80:5e:82:de:ed:83:f1:88:87:18:dd:33: 67:e1:9a:17:9c:4f:03:e9:49:9a:62:72:fa:41:59:14:05:01: 3a:f8:de:8a:45:e0:3c:b2:36:a9:b9:bc:6d:cb:7b:73:2f:9b: 5d:dd:66:57 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICRUMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwOTA1MDMzMjAwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MjYyZi1hMzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6skbXd/a2ZxBkQ6kUg7PjtkX8ZDmKxBdFOWYZBYqhSo/vwUkJZgO4+XVFC+r /u4IEEfm+1UIlqASfYPPpzXlV8zS5FyNeDcBM+jqbgUgceUb1c2nZF2ezMS6xTId afLQPU/wSFm6XInoi4BU9zvKhAOEGRmjNMMeC7W32Mf1MVAee4vcYxnSqFV5SUHg VU+uPONbLN6h2FGc9zP2zHi8GaHAC/jhsUFOIx2d5IW00E4cQyGEZ5qAICik1QTS LMeV1PhO8djvtvLhOLL+xJXH3ZGsCyl070JcykYjCnanHLhiaHCoKzMUovvmWldf P1MlFeIANKzHiXbEWUZGVthP5wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFP5q/kRH jVqL2B3fnE6N5DowZbm+MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQkVEM0E3MDZD NDdCMTFFQ0I1NDRBMjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnkFQDBAJn/VgwDQYJKoZIhvcNAQELBQADggEBAIfUqRP2 n+l9Ayq2udUCz35G1kXd6I2utTt6xmom6Afj3y1xd3YGDNk/njXN75l+KF8m5YMN U69IXV+LkQQV411jj4KULnzf5BwwnA9mLUDEhcrH7LbvKUGoqYaTYwZ3gbLVBA5F 2/0n70Y1uKnJKyox8Rugr/cPYfW22JH0zJogT3GUbVBWz/9C0Twvjh32sZjSpPrr SDt/Uu3JR7mqrrgBkJ+9zi4Vk6MUiuV2bKb+CufghjMo8xKP0jmzJmcC783PEwgW ILxA00/cPoBegt7tg/GIhxjdM2fhmhecTwPpSZpicvpBWRQFATr43opF4DyyNqm5 vG3Le3Mvm13dZlc= -----END CERTIFICATE-----Generated at Mon Nov 25 13:17:33 2024 by rpki-client on console-ams.rpki-client.org