$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/2A8DE0F42FA611EB980DEF79C4F9AE02.roa File: 2A8DE0F42FA611EB980DEF79C4F9AE02.roa (raw, json) Hash identifier: YiyWCIvNLdPDV222FaDBu9f6FoqEAO4drbd6AsmezW0= Subject key identifier: 7C:E6:A1:59:75:DD:6D:94:40:73:CA:BC:BC:FF:2E:D0:E3:FD:71:7A Certificate issuer: /CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Certificate serial: 0BE7 Authority key identifier: 0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/2A8DE0F42FA611EB980DEF79C4F9AE02.roa Signing time: Wed 20 Nov 2024 18:47:18 +0000 ROA not before: Wed 20 Nov 2024 18:47:18 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139756 IP address blocks: 103.144.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3BDE/serialNumber=0CA407F0DD53072FA8A060816919296E6577D682 Validity Not Before: Nov 20 18:47:18 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673e2eb6-b939 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:0c:10:05:32:90:2c:4b:82:39:34:fe:f8:f5: f9:dd:ec:c6:16:9f:6c:55:7b:28:57:a8:cd:fb:57: 6b:b2:be:b0:02:a8:b4:97:1d:b1:54:91:0b:fa:21: 3e:fc:85:ea:3a:59:f3:4f:a8:fd:1e:94:df:64:75: 00:fc:d2:af:4b:cc:09:fc:5d:11:6c:35:0d:5a:78: 99:0c:32:2f:ec:3a:f8:59:d2:e9:0c:c9:47:97:64: 81:b7:03:ad:99:96:c1:f8:42:e2:0e:75:87:e9:4a: fc:8f:2b:db:0f:45:16:b2:72:d0:63:37:97:e8:59: 3c:be:ce:8b:2a:20:e7:fd:6f:e5:26:f1:b2:d8:21: 90:91:ac:57:7b:80:eb:ea:dc:98:d7:97:ac:dd:b6: 55:34:d8:1d:6e:aa:be:d0:96:9d:5d:2d:ba:d6:3e: e2:20:32:bf:ed:9b:27:da:ae:6f:37:29:71:e2:3f: 3f:6d:b2:87:89:0a:68:dc:94:db:dd:2d:fe:b5:96: 36:ea:4f:32:b6:c0:12:1d:02:1f:3a:7b:df:b0:18: 66:7a:ac:c2:1d:dc:49:dd:cb:1d:3b:2a:1d:b1:5f: f2:8c:cf:ad:80:f3:e3:22:1d:94:b6:08:57:25:5b: 35:74:73:e0:ac:30:11:f6:e9:6a:a5:40:b9:5f:44: 5d:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E6:A1:59:75:DD:6D:94:40:73:CA:BC:BC:FF:2E:D0:E3:FD:71:7A X509v3 Authority Key Identifier: keyid:0C:A4:07:F0:DD:53:07:2F:A8:A0:60:81:69:19:29:6E:65:77:D6:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/DKQH8N1TBy-ooGCBaRkpbmV31oI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DKQH8N1TBy-ooGCBaRkpbmV31oI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3BDE/50A90E36081411EA8EB5F810C4F9AE02/2A8DE0F42FA611EB980DEF79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.151.0/24 Signature Algorithm: sha256WithRSAEncryption 55:53:67:e8:59:ee:70:e4:b0:9f:ab:1d:cd:dd:32:e4:63:14: 92:8e:ea:d2:17:34:77:19:c0:68:e4:d5:78:d8:48:cc:3e:b2: c5:41:45:f6:61:63:8d:51:99:99:48:ca:ef:29:ab:13:bc:38: 7a:06:8b:fd:11:32:9f:0c:db:28:66:21:ae:f6:0e:62:f1:75: eb:fe:47:4e:f6:30:7c:92:ba:e8:32:2d:ec:f1:34:f1:c6:81: 99:e7:fb:53:f9:dc:e8:ef:b6:4f:e3:34:86:34:17:7f:00:fa: 5c:18:80:b1:1a:9b:fe:8c:57:24:ed:bf:25:30:9f:31:0c:5f: 81:0f:5a:91:71:9f:a3:75:62:1f:42:73:7c:e1:b9:f5:be:ed: 87:5a:db:a8:c5:68:a1:f4:ce:68:24:e5:e9:54:83:ca:6c:22: dd:0a:1b:f2:b2:a2:de:5d:55:d9:f4:92:b9:10:a7:3d:56:ca: d8:a4:33:16:bb:56:cc:8b:bd:bc:25:55:2f:4f:de:12:4a:24: 87:cb:61:7a:2d:e7:48:0f:dc:23:22:93:dc:86:21:97:47:b5: 19:24:46:87:29:59:6a:aa:8c:03:21:46:45:f9:72:7f:3b:5b: 76:67:3f:fb:cb:e6:2f:f7:40:24:cb:00:73:29:2a:f9:55:e3: 48:46:a7:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNCREUxMTAvBgNVBAUTKDBDQTQwN0YwREQ1MzA3MkZBOEEwNjA4MTY5MTkyOTZF NjU3N0Q2ODIwHhcNMjQxMTIwMTg0NzE4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNlMmViNi1iOTM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QwQBTKQLEuCOTT++PX53ezGFp9sVXsoV6jN+1drsr6wAqi0lx2xVJEL+iE+ /IXqOlnzT6j9HpTfZHUA/NKvS8wJ/F0RbDUNWniZDDIv7Dr4WdLpDMlHl2SBtwOt mZbB+ELiDnWH6Ur8jyvbD0UWsnLQYzeX6Fk8vs6LKiDn/W/lJvGy2CGQkaxXe4Dr 6tyY15es3bZVNNgdbqq+0JadXS261j7iIDK/7Zsn2q5vNylx4j8/bbKHiQpo3JTb 3S3+tZY26k8ytsASHQIfOnvfsBhmeqzCHdxJ3csdOyodsV/yjM+tgPPjIh2UtghX JVs1dHPgrDAR9ulqpUC5X0RdbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHzmoVl1 3W2UQHPKvLz/LtDj/XF6MB8GA1UdIwQYMBaAFAykB/DdUwcvqKBggWkZKW5ld9aC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0JERS81MEE5MEUzNjA4 MTQxMUVBOEVCNUY4MTBDNEY5QUUwMi9ES1FIOE4xVEJ5LW9vR0NCYVJrcGJtVjMx b0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RLUUg4TjFUQnktb29HQ0JhUmtwYm1WMzFvSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNCREUvNTBBOTBFMzYwODE0MTFFQThFQjVGODEwQzRGOUFFMDIvMkE4REUwRjQy RkE2MTFFQjk4MERFRjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkJcwDQYJKoZIhvcNAQELBQADggEBAFVTZ+hZ7nDksJ+r Hc3dMuRjFJKO6tIXNHcZwGjk1XjYSMw+ssVBRfZhY41RmZlIyu8pqxO8OHoGi/0R Mp8M2yhmIa72DmLxdev+R072MHySuugyLezxNPHGgZnn+1P53Ojvtk/jNIY0F38A +lwYgLEam/6MVyTtvyUwnzEMX4EPWpFxn6N1Yh9Cc3zhufW+7Yda26jFaKH0zmgk 5elUg8psIt0KG/Kyot5dVdn0krkQpz1WytikMxa7VsyLvbwlVS9P3hJKJIfLYXot 50gP3CMik9yGIZdHtRkkRocpWWqqjAMhRkX5cn87W3ZnP/vL5i/3QCTLAHMpKvlV 40hGp8s= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:22 2024 by rpki-client on console-ams.rpki-client.org