$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/2A3D8B5EA97D11EABA31B843C4F9AE02.roa File: 2A3D8B5EA97D11EABA31B843C4F9AE02.roa (raw, json) Hash identifier: mlji510395Oygfniyac8KKWq0dtqfkqm0EekbIqX4BU= Subject key identifier: B2:C9:18:94:B5:B0:70:A6:E7:9F:15:24:89:0D:FE:80:21:2B:5D:EE Certificate issuer: /CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Certificate serial: 0F0E Authority key identifier: 28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/2A3D8B5EA97D11EABA31B843C4F9AE02.roa Signing time: Mon 12 Feb 2024 18:35:59 +0000 ROA not before: Mon 12 Feb 2024 18:35:59 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 132298 IP address blocks: 103.133.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:30:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3854 (0xf0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACC22/serialNumber=28F5E65D7505961DC550A94924DBCEFBB67694BD Validity Not Before: Feb 12 18:35:59 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65ca650f-6641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:42:7c:4e:81:51:06:5f:4f:b0:09:f6:97:7d: 64:d5:48:bb:29:87:c0:92:28:78:da:6e:1b:40:f6: 3f:7d:4b:23:fe:0d:d1:de:cd:8e:7e:c1:99:e8:72: f6:a5:40:d4:ad:bf:91:16:0e:87:a8:a0:9f:58:99: 29:d7:76:44:23:d6:e1:49:c6:60:71:43:f4:62:57: 29:16:57:44:2f:89:54:b5:39:88:53:4c:8c:a3:ce: 4f:f9:4e:fd:ad:ff:0b:27:71:9d:e6:c6:c2:f4:9d: 77:8d:00:b0:b9:36:1b:c4:0a:ef:c2:e4:45:33:91: 7c:db:f6:27:31:8c:80:a2:81:86:2f:16:81:25:78: 04:ac:c5:79:fa:9f:03:cb:05:4d:9c:d1:13:7e:30: b4:c3:f8:69:4b:30:22:5b:ae:f1:f4:b6:4a:d8:d2: e5:f7:d9:d4:8e:3e:48:c8:3f:b1:a3:f9:aa:10:44: 98:fd:fd:86:e8:b6:fb:b9:03:36:e1:a8:2e:e0:89: 63:55:f9:10:c6:9c:c3:07:60:96:e8:9e:be:4d:bb: 0d:2a:b6:14:20:d9:32:58:e8:65:9e:de:b8:a2:56: 2f:3a:91:1e:d2:51:58:e3:6f:f9:bb:12:db:6e:0a: 24:91:4d:17:85:b6:92:6d:84:ff:41:df:c6:01:fa: b2:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C9:18:94:B5:B0:70:A6:E7:9F:15:24:89:0D:FE:80:21:2B:5D:EE X509v3 Authority Key Identifier: keyid:28:F5:E6:5D:75:05:96:1D:C5:50:A9:49:24:DB:CE:FB:B6:76:94:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KPXmXXUFlh3FUKlJJNvO-7Z2lL0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACC22/6906C6FA4C7411E9B7C4BB55C4F9AE02/2A3D8B5EA97D11EABA31B843C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.200.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:8a:37:a8:22:2d:9e:df:67:1d:2a:14:1e:a3:8a:c6:a7:55: bf:f4:6e:95:7a:49:0e:32:a3:b4:b2:53:b9:e6:94:f0:18:b6: 99:b2:b2:8a:0e:16:cc:03:93:c5:47:3f:c7:8d:b7:21:58:20: 66:77:39:99:76:f9:d5:60:2d:04:3a:3b:84:e3:e5:0b:9b:f2: d8:a2:33:2c:5d:bd:3f:5e:83:cb:79:0c:0f:32:53:ff:43:28: b7:a2:9b:4f:ab:84:eb:bd:df:b5:24:e2:d0:19:7a:66:13:d7: 3f:1c:c2:a2:15:f8:fa:c5:bf:71:92:b9:97:a7:b6:86:a0:76: a1:bf:20:7b:a1:e9:20:f4:6a:ac:f0:9c:da:39:f6:a3:02:36: 91:ec:ae:4f:d4:a6:c0:ab:a2:f0:95:cc:99:c0:16:51:aa:18: 56:ae:c5:97:78:b9:d7:dc:76:cf:1f:4e:46:87:45:6e:f4:ad: ae:8a:c8:dd:20:00:fc:87:60:c3:83:de:a8:76:d5:57:15:78: 4c:a6:71:c6:99:4f:28:0a:73:77:fd:e3:4d:16:22:b0:a2:34: 44:09:99:56:5f:4e:8e:62:fc:86:72:2e:2b:e5:9a:c0:87:95: 8c:1a:27:64:94:3c:0c:fe:10:66:e6:9a:76:a1:64:7c:98:ff: 40:6b:6e:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNDMjIxMTAvBgNVBAUTKDI4RjVFNjVENzUwNTk2MURDNTUwQTk0OTI0REJDRUZC QjY3Njk0QkQwHhcNMjQwMjEyMTgzNTU5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNhNjUwZi02NjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtUJ8ToFRBl9PsAn2l31k1Ui7KYfAkih42m4bQPY/fUsj/g3R3s2OfsGZ6HL2 pUDUrb+RFg6HqKCfWJkp13ZEI9bhScZgcUP0YlcpFldEL4lUtTmIU0yMo85P+U79 rf8LJ3Gd5sbC9J13jQCwuTYbxArvwuRFM5F82/YnMYyAooGGLxaBJXgErMV5+p8D ywVNnNETfjC0w/hpSzAiW67x9LZK2NLl99nUjj5IyD+xo/mqEESY/f2G6Lb7uQM2 4agu4IljVfkQxpzDB2CW6J6+TbsNKrYUINkyWOhlnt64olYvOpEe0lFY42/5uxLb bgokkU0XhbaSbYT/Qd/GAfqyfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLLJGJS1 sHCm558VJIkN/oAhK13uMB8GA1UdIwQYMBaAFCj15l11BZYdxVCpSSTbzvu2dpS9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0MyMi82OTA2QzZGQTRD NzQxMUU5QjdDNEJCNTVDNEY5QUUwMi9LUFhtWFhVRmxoM0ZVS2xKSk52Ty03WjJs TDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tQWG1YWFVGbGgzRlVLbEpKTnZPLTdaMmxMMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNDMjIvNjkwNkM2RkE0Qzc0MTFFOUI3QzRCQjU1QzRGOUFFMDIvMkEzRDhCNUVB OTdEMTFFQUJBMzFCODQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhcgwDQYJKoZIhvcNAQELBQADggEBAC+KN6giLZ7fZx0q FB6jisanVb/0bpV6SQ4yo7SyU7nmlPAYtpmysooOFswDk8VHP8eNtyFYIGZ3OZl2 +dVgLQQ6O4Tj5Qub8tiiMyxdvT9eg8t5DA8yU/9DKLeim0+rhOu937Uk4tAZemYT 1z8cwqIV+PrFv3GSuZentoagdqG/IHuh6SD0aqzwnNo59qMCNpHsrk/UpsCrovCV zJnAFlGqGFauxZd4udfcds8fTkaHRW70ra6KyN0gAPyHYMOD3qh21VcVeEymccaZ TygKc3f9400WIrCiNEQJmVZfTo5i/IZyLivlmsCHlYwaJ2SUPAz+EGbmmnahZHyY /0Brbms= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org