$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/146FD366653611EB99BE491DC4F9AE02.roa File: 146FD366653611EB99BE491DC4F9AE02.roa (raw, json) Hash identifier: zHq4FTYpjaRXOiDoDnd+154qUu41MS1ZHnyKS70WNy8= Subject key identifier: 55:F5:12:83:15:CE:50:39:FF:56:0A:51:EA:DD:CD:74:1D:D9:A4:10 Certificate issuer: /CN=A91E0D8B/serialNumber=568D179152473C809A62E585E5ADC942866BE659 Certificate serial: 05D1 Authority key identifier: 56:8D:17:91:52:47:3C:80:9A:62:E5:85:E5:AD:C9:42:86:6B:E6:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/146FD366653611EB99BE491DC4F9AE02.roa Signing time: Thu 21 Mar 2024 00:02:08 +0000 ROA not before: Thu 21 Mar 2024 00:02:08 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137487 IP address blocks: 103.110.75.0/24 maxlen: 24 103.119.134.0/24 maxlen: 24 103.119.135.0/24 maxlen: 24 103.119.136.0/24 maxlen: 24 2001:df4:6300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1489 (0x5d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0D8B/serialNumber=568D179152473C809A62E585E5ADC942866BE659 Validity Not Before: Mar 21 00:02:08 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fb7900-a2f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:dc:1e:9c:5b:c1:f2:87:eb:1b:26:1d:ca:b1: 32:ce:02:a6:49:0b:4d:d9:6f:5a:69:7a:66:c0:fa: 6f:b4:96:c6:d4:fe:6a:e9:32:29:eb:b0:1b:d3:06: f4:d2:c8:44:02:a1:21:f5:bc:4b:1c:ba:2e:75:1a: 71:e1:6c:4d:a0:74:f4:e4:db:35:e4:58:e6:25:47: 3f:49:1c:70:85:d8:1c:cf:0b:b5:cc:06:24:61:06: 30:04:3f:d2:23:b3:67:e0:6d:5b:44:d9:76:a3:30: 7d:95:40:88:bc:51:65:b9:95:1b:ce:6c:79:a0:7b: 2c:64:4c:1a:db:df:31:0d:a0:a4:a2:49:d8:52:46: 2b:4c:5a:fb:58:5e:e8:11:1a:ac:42:ac:44:78:01: 2d:8b:da:88:70:2b:d6:8b:57:34:43:ac:80:b0:b6: 24:8f:87:78:10:d6:6b:03:04:e2:4c:6d:fd:3a:0c: f0:89:f4:94:87:32:ac:42:fd:2e:51:15:bb:60:c2: ed:5f:cf:33:64:cd:24:61:07:00:5f:ef:0b:c7:42: f2:b9:0b:c7:93:27:95:4d:18:b9:b6:c6:32:4c:4b: ef:1a:52:51:15:9d:e6:32:30:59:76:54:b1:5e:41: 84:4f:96:81:84:17:e0:87:cc:3e:e3:de:b2:70:9a: a1:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:F5:12:83:15:CE:50:39:FF:56:0A:51:EA:DD:CD:74:1D:D9:A4:10 X509v3 Authority Key Identifier: keyid:56:8D:17:91:52:47:3C:80:9A:62:E5:85:E5:AD:C9:42:86:6B:E6:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/Vo0XkVJHPICaYuWF5a3JQoZr5lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vo0XkVJHPICaYuWF5a3JQoZr5lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0D8B/4A6D6C0A653411EBB6B8F019C4F9AE02/146FD366653611EB99BE491DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.110.75.0/24 103.119.134.0-103.119.136.255 IPv6: 2001:df4:6300::/48 Signature Algorithm: sha256WithRSAEncryption 7f:84:fb:89:3f:7d:2c:95:6e:0f:b6:54:06:4e:87:ac:39:d5: 6a:16:a1:be:0c:b6:4a:8a:b4:24:10:4d:94:cd:e4:2d:d1:9f: 09:6b:e4:4d:17:06:73:96:b8:95:26:ff:8c:25:be:12:55:16: 41:ea:e6:bf:71:c6:a4:c2:9d:cf:f7:35:c4:a0:27:40:99:7f: f7:b9:73:ce:30:64:86:e9:ac:7b:96:93:46:4c:2b:1f:99:f1: 71:a2:d7:76:1b:5c:1f:92:b4:93:73:86:81:95:85:77:38:39: 48:dc:e1:f5:95:42:a9:c2:3d:58:3e:33:fa:44:80:c6:31:81: c6:ef:59:71:6a:c5:e0:71:57:02:87:06:51:e2:db:70:81:4e: 16:9d:5e:98:ee:86:46:7a:7a:78:21:d7:15:55:03:13:64:42: 15:73:59:f2:b1:1c:fe:aa:27:e4:8c:36:28:95:24:b3:5d:1e: 98:d5:57:40:8e:3d:70:f1:41:08:4e:78:5f:ce:c8:14:ad:c9: 6c:de:a2:40:9d:d5:6a:a0:94:eb:db:8f:d4:6e:f6:db:51:fc: 3c:a3:38:b4:0f:0e:c9:40:56:46:41:11:27:66:e8:b9:91:e5: 75:3a:83:18:1c:f8:f3:ff:cf:97:51:13:56:0a:7f:e2:b9:ed: 16:40:8f:21 -----BEGIN CERTIFICATE----- MIIFkDCCBHigAwIBAgICBdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBEOEIxMTAvBgNVBAUTKDU2OEQxNzkxNTI0NzNDODA5QTYyRTU4NUU1QURDOTQy ODY2QkU2NTkwHhcNMjQwMzIxMDAwMjA4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiNzkwMC1hMmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dwenFvB8ofrGyYdyrEyzgKmSQtN2W9aaXpmwPpvtJbG1P5q6TIp67Ab0wb0 0shEAqEh9bxLHLoudRpx4WxNoHT05Ns15FjmJUc/SRxwhdgczwu1zAYkYQYwBD/S I7Nn4G1bRNl2ozB9lUCIvFFluZUbzmx5oHssZEwa298xDaCkoknYUkYrTFr7WF7o ERqsQqxEeAEti9qIcCvWi1c0Q6yAsLYkj4d4ENZrAwTiTG39OgzwifSUhzKsQv0u URW7YMLtX88zZM0kYQcAX+8Lx0LyuQvHkyeVTRi5tsYyTEvvGlJRFZ3mMjBZdlSx XkGET5aBhBfgh8w+496ycJqhOwIDAQABo4ICtDCCArAwHQYDVR0OBBYEFFX1EoMV zlA5/1YKUerdzXQd2aQQMB8GA1UdIwQYMBaAFFaNF5FSRzyAmmLlheWtyUKGa+ZZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEQ4Qi80QTZENkMwQTY1 MzQxMUVCQjZCOEYwMTlDNEY5QUUwMi9WbzBYa1ZKSFBJQ2FZdVdGNWEzSlFvWnI1 bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZvMFhrVkpIUElDYVl1V0Y1YTNKUW9acjVsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBEOEIvNEE2RDZDMEE2NTM0MTFFQkI2QjhGMDE5QzRGOUFFMDIvMTQ2RkQzNjY2 NTM2MTFFQjk5QkU0OTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPgYIKwYBBQUHAQcBAf8E LzAtMBoEAgABMBQDBABnbkswDAMEAWd3hgMEAGd3iDAPBAIAAjAJAwcAIAEN9GMA MA0GCSqGSIb3DQEBCwUAA4IBAQB/hPuJP30slW4PtlQGToesOdVqFqG+DLZKirQk EE2UzeQt0Z8Ja+RNFwZzlriVJv+MJb4SVRZB6ua/ccakwp3P9zXEoCdAmX/3uXPO MGSG6ax7lpNGTCsfmfFxotd2G1wfkrSTc4aBlYV3ODlI3OH1lUKpwj1YPjP6RIDG MYHG71lxasXgcVcChwZR4ttwgU4WnV6Y7oZGenp4IdcVVQMTZEIVc1nysRz+qifk jDYolSSzXR6Y1VdAjj1w8UEITnhfzsgUrcls3qJAndVqoJTr24/UbvbbUfw8ozi0 Dw7JQFZGQREnZui5keV1OoMYHPjz/8+XURNWCn/iue0WQI8h -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:52 2024 by rpki-client on console-ams.rpki-client.org