$ rpki-client -vvf rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/5A0FAE220F7011EAB8E21167C4F9AE02.roa File: 5A0FAE220F7011EAB8E21167C4F9AE02.roa (raw, json) Hash identifier: Y/uzlOIUU0V4v9M321Rye0oS4n7e4WmILr/kHV5za9Y= Subject key identifier: ED:A2:3F:C0:8B:62:5A:35:D8:9C:92:70:0B:E2:E8:F0:CF:37:07:54 Certificate issuer: /CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Certificate serial: 0B0B Authority key identifier: AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/5A0FAE220F7011EAB8E21167C4F9AE02.roa Signing time: Thu 28 Dec 2023 19:37:27 +0000 ROA not before: Thu 28 Dec 2023 19:37:27 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138437 IP address blocks: 103.125.120.0/22 maxlen: 24 2403:f340::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2827 (0xb0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B97DB/serialNumber=AD3D8703850B1271E8F31AE03E3CC9AC4660D942 Validity Not Before: Dec 28 19:37:27 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658dce77-6843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:28:0b:6c:eb:26:02:ff:b3:1d:e5:29:92:26: e0:e8:01:ad:09:75:c9:51:ca:31:c8:4d:a2:0d:bc: a8:bb:f7:fd:94:4e:df:48:f6:45:03:4f:5c:bd:f5: dd:11:38:c5:28:a6:49:41:ee:df:5b:c9:22:0c:07: b6:d7:e4:bf:51:19:c3:2a:3d:18:13:10:4c:a2:fe: f7:a3:32:6b:df:57:c4:02:7e:7b:a8:d0:c6:11:a8: fa:cd:2f:b9:ee:1d:1b:fe:81:73:21:e0:7e:0c:17: 6c:58:a7:3b:36:a7:b0:90:1d:dc:55:70:bf:d5:01: 79:95:d7:27:04:40:e4:6a:eb:f3:c4:96:99:e9:a3: 31:23:13:f6:21:73:9e:92:56:ea:9f:89:17:95:a1: f4:f8:3f:3e:dc:22:99:5d:95:c8:b1:02:82:f2:81: 40:ce:42:34:32:28:8f:98:8f:b7:ad:0d:25:95:d6: 79:e2:2e:76:e4:9d:fa:81:18:8b:86:53:52:d5:eb: a1:3c:f1:36:ff:18:d9:de:c2:a3:49:8c:7e:d4:ff: 44:0c:60:4c:04:f4:26:6a:25:47:c6:df:4f:f5:33: e7:f1:79:aa:f8:72:63:33:0b:a6:ea:93:53:e7:67: 74:ed:a3:10:b9:f0:c1:4b:43:cb:1a:42:69:3b:6c: e7:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:A2:3F:C0:8B:62:5A:35:D8:9C:92:70:0B:E2:E8:F0:CF:37:07:54 X509v3 Authority Key Identifier: keyid:AD:3D:87:03:85:0B:12:71:E8:F3:1A:E0:3E:3C:C9:AC:46:60:D9:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/rT2HA4ULEnHo8xrgPjzJrEZg2UI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rT2HA4ULEnHo8xrgPjzJrEZg2UI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B97DB/4E410ACE0F6F11EAAB0ADB64C4F9AE02/5A0FAE220F7011EAB8E21167C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.120.0/22 IPv6: 2403:f340::/32 Signature Algorithm: sha256WithRSAEncryption bc:c3:e7:7a:a5:89:b9:a8:ec:08:1e:81:8c:05:4f:61:a4:1f: da:26:82:00:c4:0b:83:9d:db:2e:d5:4a:c2:53:dd:bd:41:46: 63:dc:c4:73:ef:37:51:a4:0a:d8:0b:fd:58:be:71:84:61:6f: aa:5c:4b:b6:77:42:ba:49:a7:c0:6b:43:11:e3:24:38:6a:d3: 2e:4d:8e:a9:ac:4f:2f:56:a2:dc:15:2f:8e:dc:a3:d2:e0:5b: ba:8c:bf:17:c4:e9:4f:a2:ae:5c:dc:eb:84:0d:54:60:e0:6b: 53:11:07:e2:46:eb:03:05:c1:82:2f:a7:6a:f9:aa:db:c3:94: 89:ee:57:15:ed:f4:76:0a:f4:8e:8e:ad:65:a1:54:7e:19:bc: ee:00:85:b2:d7:62:b3:84:7d:a9:5d:32:6b:6c:6a:c2:09:5a: b7:6d:8a:ce:af:66:9b:43:5e:5a:64:4f:87:ba:41:81:be:83: 9f:17:70:6f:b9:5b:97:ea:17:c1:0f:8d:aa:d3:48:94:72:44: f4:c9:8d:aa:5e:4c:d2:94:76:db:ba:d6:1c:7d:9c:48:e3:49: f6:1f:70:0d:a5:47:c6:e9:73:c7:06:09:a8:da:6f:20:47:a5: bf:18:16:12:52:ee:11:ed:e1:24:33:e1:04:ce:7f:67:26:d3: 36:d1:9d:18 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCwswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjk3REIxMTAvBgNVBAUTKEFEM0Q4NzAzODUwQjEyNzFFOEYzMUFFMDNFM0NDOUFD NDY2MEQ5NDIwHhcNMjMxMjI4MTkzNzI3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkY2U3Ny02ODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqigLbOsmAv+zHeUpkibg6AGtCXXJUcoxyE2iDbyou/f9lE7fSPZFA09cvfXd ETjFKKZJQe7fW8kiDAe21+S/URnDKj0YExBMov73ozJr31fEAn57qNDGEaj6zS+5 7h0b/oFzIeB+DBdsWKc7NqewkB3cVXC/1QF5ldcnBEDkauvzxJaZ6aMxIxP2IXOe klbqn4kXlaH0+D8+3CKZXZXIsQKC8oFAzkI0MiiPmI+3rQ0lldZ54i525J36gRiL hlNS1euhPPE2/xjZ3sKjSYx+1P9EDGBMBPQmaiVHxt9P9TPn8Xmq+HJjMwum6pNT 52d07aMQufDBS0PLGkJpO2znRwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFO2iP8CL Ylo12JyScAvi6PDPNwdUMB8GA1UdIwQYMBaAFK09hwOFCxJx6PMa4D48yaxGYNlC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTdEQi80RTQxMEFDRTBG NkYxMUVBQUIwQURCNjRDNEY5QUUwMi9yVDJIQTRVTEVuSG84eHJnUGp6SnJFWmcy VUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JUMkhBNFVMRW5Ibzh4cmdQanpKckVaZzJVSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjk3REIvNEU0MTBBQ0UwRjZGMTFFQUFCMEFEQjY0QzRGOUFFMDIvNUEwRkFFMjIw RjcwMTFFQUI4RTIxMTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfXgwDQQCAAIwBwMFACQD80AwDQYJKoZIhvcNAQELBQAD ggEBALzD53qlibmo7AgegYwFT2GkH9omggDEC4Od2y7VSsJT3b1BRmPcxHPvN1Gk CtgL/Vi+cYRhb6pcS7Z3QrpJp8BrQxHjJDhq0y5NjqmsTy9WotwVL47co9LgW7qM vxfE6U+irlzc64QNVGDga1MRB+JG6wMFwYIvp2r5qtvDlInuVxXt9HYK9I6OrWWh VH4ZvO4AhbLXYrOEfaldMmtsasIJWrdtis6vZptDXlpkT4e6QYG+g58XcG+5W5fq F8EPjarTSJRyRPTJjapeTNKUdtu61hx9nEjjSfYfcA2lR8bpc8cGCajabyBHpb8Y FhJS7hHt4SQz4QTOf2cm0zbRnRg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:16 2024 by rpki-client on console-ams.rpki-client.org