$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/BB3452D6C0A411EEBD3E267CC4F9AE02.roa File: BB3452D6C0A411EEBD3E267CC4F9AE02.roa (raw, json) Hash identifier: 9n4V08WG+OloTqtzJ1z96h6EXgYA2PvCQ9rEyslTXuI= Subject key identifier: 45:D0:23:AB:3C:3B:99:61:94:B7:1B:B5:F7:7E:E4:E1:D6:52:0C:A8 Certificate issuer: /CN=A91E7290/serialNumber=8D5BAB370CA92E4F5FD789FC2273310F9AEA38F6 Certificate serial: 04A3 Authority key identifier: 8D:5B:AB:37:0C:A9:2E:4F:5F:D7:89:FC:22:73:31:0F:9A:EA:38:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVurNwypLk9f14n8InMxD5rqOPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/BB3452D6C0A411EEBD3E267CC4F9AE02.roa Signing time: Sun 08 Sep 2024 05:59:33 +0000 ROA not before: Sun 08 Sep 2024 05:59:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134504 IP address blocks: 103.43.168.0/22 maxlen: 22 103.43.168.0/24 maxlen: 24 103.43.169.0/24 maxlen: 24 103.43.170.0/24 maxlen: 24 103.43.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/jVurNwypLk9f14n8InMxD5rqOPY.crl rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/jVurNwypLk9f14n8InMxD5rqOPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVurNwypLk9f14n8InMxD5rqOPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1187 (0x4a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7290/serialNumber=8D5BAB370CA92E4F5FD789FC2273310F9AEA38F6 Validity Not Before: Sep 8 05:59:33 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66dd3d45-1718 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d4:d2:6d:fb:5d:7d:8f:fd:b4:96:19:0c:ea: 29:92:dd:c0:e5:c4:62:b0:db:3e:e5:2e:59:42:74: 66:2a:e0:1c:f3:ed:57:da:4f:33:fa:fe:5e:a4:91: e3:aa:c7:fa:de:94:82:05:99:81:bf:c5:59:18:82: ab:f1:0c:86:bc:c4:b6:cc:3d:8f:2e:f1:dd:4d:ac: ee:36:dc:e0:5a:ad:8a:dd:d0:7f:bf:e3:af:f4:8e: 7e:77:f4:8a:e3:09:d7:8a:b3:d9:38:32:7d:09:2d: 71:ac:9e:67:8f:ce:2c:21:4d:2f:31:27:80:f2:56: 0b:f6:54:e2:fe:21:47:b9:e8:60:eb:38:15:ed:5e: 7f:63:52:b8:ae:28:a1:39:97:da:ae:03:79:40:64: 9a:b1:7d:91:25:84:3c:31:7a:89:bb:b1:4e:08:4f: b8:fe:1c:18:59:40:ed:5b:d6:86:18:52:44:3f:63: 0d:3a:87:39:81:4b:5e:17:23:3b:cc:02:4a:81:27: 37:5f:18:ef:ad:5d:e8:4e:5e:db:40:83:49:54:66: f5:4f:83:7b:91:f4:53:0a:34:2d:6f:0e:17:44:ad: 8f:60:99:59:3e:e9:62:50:5c:41:3d:87:8a:33:3e: cf:29:87:46:9c:96:c7:bf:75:3f:b8:af:2b:d2:16: 28:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:D0:23:AB:3C:3B:99:61:94:B7:1B:B5:F7:7E:E4:E1:D6:52:0C:A8 X509v3 Authority Key Identifier: keyid:8D:5B:AB:37:0C:A9:2E:4F:5F:D7:89:FC:22:73:31:0F:9A:EA:38:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/jVurNwypLk9f14n8InMxD5rqOPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVurNwypLk9f14n8InMxD5rqOPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/BB3452D6C0A411EEBD3E267CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.168.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:c1:b6:2e:1d:ec:d4:c2:32:f7:82:00:bf:c7:3d:7b:74:57: 55:74:47:6b:0b:87:02:fc:32:4e:2b:a6:13:e5:60:39:f5:3a: 57:d2:35:06:55:4b:5a:2b:6b:20:a4:20:e2:67:14:78:dd:11: 27:2d:3a:ce:3b:e7:ec:a3:0a:59:a6:33:9c:d3:49:d7:75:4e: c2:2f:15:9a:b7:04:44:1c:d9:97:cf:88:64:49:74:73:74:47: 4d:9b:f7:49:a3:fe:60:44:cc:18:28:bd:1c:ef:e4:7c:e5:70: 68:02:b6:85:fd:67:f6:47:4d:1c:1b:c9:6f:76:75:8e:22:cc: c4:10:7f:85:7f:71:66:46:7c:01:8f:a6:29:a5:26:38:ed:15: 18:ce:d7:4d:4d:66:79:12:84:9f:35:f8:c8:d2:66:2b:e1:67: 5d:9d:98:08:29:4c:a0:3b:8f:44:75:10:68:d8:a3:36:cb:18: cd:0f:e0:dd:63:4c:74:ed:69:6b:13:c7:4a:4c:7e:b1:c2:fb: 56:f4:f2:1f:4a:f6:14:4c:b4:56:c4:fc:a9:3b:8b:2f:78:73: 1b:10:01:9d:3c:b3:d9:c0:42:19:19:df:29:22:2f:7b:e5:aa: 71:6b:d3:57:6f:e4:8a:2d:b5:80:a3:52:8f:d5:65:a3:50:dd: d0:42:05:b2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcyOTAxMTAvBgNVBAUTKDhENUJBQjM3MENBOTJFNEY1RkQ3ODlGQzIyNzMzMTBG OUFFQTM4RjYwHhcNMjQwOTA4MDU1OTMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRkM2Q0NS0xNzE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNTSbftdfY/9tJYZDOopkt3A5cRisNs+5S5ZQnRmKuAc8+1X2k8z+v5epJHj qsf63pSCBZmBv8VZGIKr8QyGvMS2zD2PLvHdTazuNtzgWq2K3dB/v+Ov9I5+d/SK 4wnXirPZODJ9CS1xrJ5nj84sIU0vMSeA8lYL9lTi/iFHuehg6zgV7V5/Y1K4riih OZfargN5QGSasX2RJYQ8MXqJu7FOCE+4/hwYWUDtW9aGGFJEP2MNOoc5gUteFyM7 zAJKgSc3XxjvrV3oTl7bQINJVGb1T4N7kfRTCjQtbw4XRK2PYJlZPuliUFxBPYeK Mz7PKYdGnJbHv3U/uK8r0hYoTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEXQI6s8 O5lhlLcbtfd+5OHWUgyoMB8GA1UdIwQYMBaAFI1bqzcMqS5PX9eJ/CJzMQ+a6jj2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzI5MC9GNjgxNDFFMDBC MDMxMUVDQTQ0NjA3NTRDNEY5QUUwMi9qVnVyTnd5cExrOWYxNG44SW5NeEQ1cnFP UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pWdXJOd3lwTGs5ZjE0bjhJbk14RDVycU9QWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcyOTAvRjY4MTQxRTAwQjAzMTFFQ0E0NDYwNzU0QzRGOUFFMDIvQkIzNDUyRDZD MEE0MTFFRUJEM0UyNjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnK6gwDQYJKoZIhvcNAQELBQADggEBABvBti4d7NTCMveC AL/HPXt0V1V0R2sLhwL8Mk4rphPlYDn1OlfSNQZVS1orayCkIOJnFHjdESctOs47 5+yjClmmM5zTSdd1TsIvFZq3BEQc2ZfPiGRJdHN0R02b90mj/mBEzBgovRzv5Hzl cGgCtoX9Z/ZHTRwbyW92dY4izMQQf4V/cWZGfAGPpimlJjjtFRjO101NZnkShJ81 +MjSZivhZ12dmAgpTKA7j0R1EGjYozbLGM0P4N1jTHTtaWsTx0pMfrHC+1b08h9K 9hRMtFbE/Kk7iy94cxsQAZ08s9nAQhkZ3ykiL3vlqnFr01dv5IottYCjUo/VZaNQ 3dBCBbI= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org