$ rpki-client -vvf rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3583B2616B711ECBD752D47C4F9AE02.roa File: A3583B2616B711ECBD752D47C4F9AE02.roa (raw, json) Hash identifier: 1xVLNQlNrVwrhPb266jUjImDeI1JBJLkEMDQeKUBnFI= Subject key identifier: 6F:18:1E:19:DA:99:8B:67:6D:D3:0E:00:6F:55:10:8D:3A:7F:D0:3D Certificate issuer: /CN=A91D891D/serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Certificate serial: 0462 Authority key identifier: 41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3583B2616B711ECBD752D47C4F9AE02.roa Signing time: Wed 24 Jul 2024 22:41:08 +0000 ROA not before: Wed 24 Jul 2024 22:41:08 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 55799 IP address blocks: 103.113.156.0/22 maxlen: 22 103.113.156.0/24 maxlen: 24 103.113.157.0/24 maxlen: 24 103.113.158.0/24 maxlen: 24 103.113.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1122 (0x462) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D891D/serialNumber=41D268C5113EF3ED7B173B780E017ED3FE8555F7 Validity Not Before: Jul 24 22:41:08 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66a18304-972d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:56:00:a3:be:d6:17:76:4b:ea:c8:00:13:34: 7f:06:28:3d:70:7c:cf:80:50:da:91:07:a3:61:8d: 37:e5:17:bc:b7:37:99:53:cf:89:29:3c:de:db:0d: e8:eb:ec:e6:cb:44:85:d0:1c:f0:ff:e9:99:f5:66: 40:4c:89:ea:08:c0:f9:74:70:10:7e:0f:b8:3f:13: 45:01:34:a3:3a:f9:1d:d3:9d:da:20:60:38:09:98: b7:d9:7e:52:a6:e3:9f:b8:f5:dc:e1:58:8e:db:9c: 0a:89:ba:46:ad:63:6c:e7:4c:cc:ae:f4:d7:9a:19: de:4c:c1:f6:c7:b1:48:17:ec:92:4f:3b:05:be:3d: 03:ac:a7:ad:bd:ce:49:33:41:18:66:20:7b:94:f5: 58:14:56:35:b1:6b:af:16:37:df:9b:33:bb:32:65: cc:4c:08:b9:0e:21:c2:dd:27:fa:05:a2:cc:2f:1a: ed:93:1a:7c:3c:52:5a:cb:5c:50:9a:da:35:c2:f5: 9c:15:6f:36:3a:ca:8e:83:cd:19:75:11:3b:8e:d9: 02:31:8b:c3:f9:10:d4:d0:58:8d:1d:33:6d:73:f6: e8:85:12:af:fe:12:f2:63:97:91:d7:aa:9d:a2:d0: 75:92:bf:1a:db:1e:89:a2:92:56:62:81:5f:55:b1: e1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:18:1E:19:DA:99:8B:67:6D:D3:0E:00:6F:55:10:8D:3A:7F:D0:3D X509v3 Authority Key Identifier: keyid:41:D2:68:C5:11:3E:F3:ED:7B:17:3B:78:0E:01:7E:D3:FE:85:55:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/QdJoxRE-8-17Fzt4DgF-0_6FVfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QdJoxRE-8-17Fzt4DgF-0_6FVfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D891D/381A8F2A1CC211EB82B57178C4F9AE02/A3583B2616B711ECBD752D47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.156.0/22 Signature Algorithm: sha256WithRSAEncryption 02:e0:c5:c4:d6:5e:fc:48:ab:bc:ff:6a:2c:96:45:5a:c2:cf: 19:3e:94:80:d1:9f:1e:48:f7:1a:fd:90:6e:b7:50:13:76:ae: 10:96:43:c4:69:f1:d9:d9:8d:ac:96:a8:24:58:40:83:8f:1f: 72:e7:d4:f1:95:b9:5e:2e:b4:55:c4:2b:9d:c5:a3:41:68:7c: cf:24:12:9e:39:91:7c:b2:49:1f:98:8f:24:7f:aa:6e:ec:95: 72:64:a7:58:e4:fe:2f:34:d2:28:28:97:16:36:e4:73:15:9e: a9:96:c4:a7:3f:25:b0:1c:28:30:b2:4c:43:ea:e9:a1:cc:2e: dc:41:b5:e3:55:7d:14:fc:cb:4a:89:23:bb:6e:3f:c7:d2:a1: 37:5f:04:95:4a:1a:f2:9b:55:17:99:e9:8b:e4:90:7b:6a:00: a7:73:91:7e:e8:57:ef:65:b0:56:0d:e1:8c:44:36:ae:64:b8: fc:b5:b9:f5:33:0d:7c:f7:31:32:eb:b0:4f:9c:ee:35:5f:49: 37:25:c9:cd:d4:54:ef:82:6b:fb:04:8f:5a:10:48:c0:d4:fd: b1:7d:0d:ff:e9:91:f1:0c:70:a4:ab:5d:8f:e6:b1:2a:4b:55: 13:5d:39:53:1a:9b:c1:fe:41:81:39:cd:ce:31:b3:d5:23:2c: df:d7:65:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MUQxMTAvBgNVBAUTKDQxRDI2OEM1MTEzRUYzRUQ3QjE3M0I3ODBFMDE3RUQz RkU4NTU1RjcwHhcNMjQwNzI0MjI0MTA4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExODMwNC05NzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlYAo77WF3ZL6sgAEzR/Big9cHzPgFDakQejYY035Re8tzeZU8+JKTze2w3o 6+zmy0SF0Bzw/+mZ9WZATInqCMD5dHAQfg+4PxNFATSjOvkd053aIGA4CZi32X5S puOfuPXc4ViO25wKibpGrWNs50zMrvTXmhneTMH2x7FIF+ySTzsFvj0DrKetvc5J M0EYZiB7lPVYFFY1sWuvFjffmzO7MmXMTAi5DiHC3Sf6BaLMLxrtkxp8PFJay1xQ mto1wvWcFW82OsqOg80ZdRE7jtkCMYvD+RDU0FiNHTNtc/bohRKv/hLyY5eR16qd otB1kr8a2x6JopJWYoFfVbHh9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFG8YHhna mYtnbdMOAG9VEI06f9A9MB8GA1UdIwQYMBaAFEHSaMURPvPtexc7eA4BftP+hVX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkxRC8zODFBOEYyQTFD QzIxMUVCODJCNTcxNzhDNEY5QUUwMi9RZEpveFJFLTgtMTdGenQ0RGdGLTBfNkZW ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FkSm94UkUtOC0xN0Z6dDREZ0YtMF82RlZmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5MUQvMzgxQThGMkExQ0MyMTFFQjgyQjU3MTc4QzRGOUFFMDIvQTM1ODNCMjYx NkI3MTFFQ0JENzUyRDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncZwwDQYJKoZIhvcNAQELBQADggEBAALgxcTWXvxIq7z/ aiyWRVrCzxk+lIDRnx5I9xr9kG63UBN2rhCWQ8Rp8dnZjayWqCRYQIOPH3Ln1PGV uV4utFXEK53Fo0FofM8kEp45kXyySR+YjyR/qm7slXJkp1jk/i800igolxY25HMV nqmWxKc/JbAcKDCyTEPq6aHMLtxBteNVfRT8y0qJI7tuP8fSoTdfBJVKGvKbVReZ 6YvkkHtqAKdzkX7oV+9lsFYN4YxENq5kuPy1ufUzDXz3MTLrsE+c7jVfSTclyc3U VO+Ca/sEj1oQSMDU/bF9Df/pkfEMcKSrXY/msSpLVRNdOVMam8H+QYE5zc4xs9Uj LN/XZUk= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:51 2024 by rpki-client on console-ams.rpki-client.org