$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/11328E82645511EBAE4A4633C4F9AE02.roa File: 11328E82645511EBAE4A4633C4F9AE02.roa (raw, json) Hash identifier: t7mfrUSDQrKIp8JEdIvGwr5fOfRSKBqvcJKp6zu78N8= Subject key identifier: B4:03:5C:C7:CE:AB:76:52:EA:96:14:B0:01:28:A2:B8:CD:69:49:A3 Certificate issuer: /CN=A91FDB80/serialNumber=8D668AFD3E03E70B8449881FA350131BACAC4856 Certificate serial: 05D9 Authority key identifier: 8D:66:8A:FD:3E:03:E7:0B:84:49:88:1F:A3:50:13:1B:AC:AC:48:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWaK_T4D5wuESYgfo1ATG6ysSFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/11328E82645511EBAE4A4633C4F9AE02.roa Signing time: Sat 23 Mar 2024 00:02:49 +0000 ROA not before: Sat 23 Mar 2024 00:02:49 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 141689 IP address blocks: 103.162.6.0/24 maxlen: 24 103.165.242.0/24 maxlen: 24 2001:df5:dc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/jWaK_T4D5wuESYgfo1ATG6ysSFY.crl rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/jWaK_T4D5wuESYgfo1ATG6ysSFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWaK_T4D5wuESYgfo1ATG6ysSFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1497 (0x5d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDB80/serialNumber=8D668AFD3E03E70B8449881FA350131BACAC4856 Validity Not Before: Mar 23 00:02:49 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65fe1c29-bc70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:73:6b:f4:d0:e5:bb:fd:a4:c2:a9:9e:41:af: fc:18:dd:6a:05:8e:3f:ac:46:e0:d4:4e:13:33:b6: be:2b:be:6b:66:c9:e2:a6:a4:1c:e4:fb:a7:9d:84: 4b:b8:f0:5b:ec:64:ff:b2:2b:ab:20:0c:18:04:30: ed:30:5a:63:dd:a8:ed:c6:77:45:0a:03:7d:9f:bf: 2c:2a:c9:72:88:5e:aa:ce:67:65:70:1c:15:08:98: eb:39:db:20:df:bb:4b:cb:8b:da:b3:6b:80:c5:a2: 63:de:79:af:76:68:92:ce:47:e7:33:5c:cf:ad:d1: eb:12:49:b4:f3:a8:a9:a0:86:46:78:f7:b3:75:f9: a2:15:13:4c:6c:ed:8e:cf:50:4d:ee:43:03:a7:93: 82:7a:a4:44:09:ab:09:74:f5:38:c0:65:61:83:05: c0:be:aa:d9:62:44:69:f5:de:37:52:f3:75:9c:dc: 30:fa:5c:d3:da:2d:53:d1:01:c5:6a:a4:00:ac:b0: 87:77:94:0d:2b:49:b1:22:45:09:c0:86:f1:8b:b0: 5f:83:c3:2f:db:67:b2:c2:e8:f6:16:aa:c6:5a:1c: bc:a9:4a:ef:d3:4f:66:e7:2e:5c:72:df:ed:c1:06: bd:1c:ce:83:1c:ef:14:72:76:5f:04:07:1d:b4:28: 6a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:03:5C:C7:CE:AB:76:52:EA:96:14:B0:01:28:A2:B8:CD:69:49:A3 X509v3 Authority Key Identifier: keyid:8D:66:8A:FD:3E:03:E7:0B:84:49:88:1F:A3:50:13:1B:AC:AC:48:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/jWaK_T4D5wuESYgfo1ATG6ysSFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jWaK_T4D5wuESYgfo1ATG6ysSFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDB80/BE9F61A0645311EBAF774D32C4F9AE02/11328E82645511EBAE4A4633C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.6.0/24 103.165.242.0/24 IPv6: 2001:df5:dc80::/48 Signature Algorithm: sha256WithRSAEncryption 18:3e:3b:2c:d7:ee:ec:e0:94:b5:9d:b3:c7:ed:c3:88:ab:01: 1f:c9:75:cd:c6:8d:f4:6e:f1:30:f8:ef:02:66:9e:0e:5c:3e: 4d:85:72:c9:28:f9:47:68:3f:57:8f:7d:21:b0:97:a7:1b:79: 2a:04:9f:d4:78:81:c4:e7:b0:ee:53:59:38:a7:1d:43:a2:a6: 9a:18:e1:37:81:5a:f1:4b:22:00:f7:fb:37:5a:7c:b8:2e:8b: b6:29:38:43:26:14:f8:54:cc:ad:aa:ef:6d:7a:5b:e9:18:74: 29:22:a5:a3:2e:71:ec:bf:55:e8:f3:c2:74:f9:5d:be:ed:e4: e3:05:6b:19:d8:ec:ca:71:63:72:00:ae:f3:e1:80:79:4e:99: 06:3e:77:3e:ff:df:d5:9d:75:cd:58:ae:00:b2:4a:ec:78:24: 6d:1a:de:db:cd:0f:b3:9e:e5:8e:7d:92:43:ea:84:6b:46:01: 11:30:32:4c:f6:3a:2f:9f:68:4d:24:34:78:20:48:05:06:97: 3e:23:c8:bc:6a:31:a1:f9:5c:65:33:b8:7b:b5:17:8b:f0:7c: 47:8c:1b:13:19:85:61:c3:24:99:ec:c1:32:3c:5d:fa:be:3b: ea:c7:83:78:fb:b0:66:30:75:03:63:62:2a:06:f6:b7:03:82: cb:0a:2d:24 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBdkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRCODAxMTAvBgNVBAUTKDhENjY4QUZEM0UwM0U3MEI4NDQ5ODgxRkEzNTAxMzFC QUNBQzQ4NTYwHhcNMjQwMzIzMDAwMjQ5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZlMWMyOS1iYzcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXNr9NDlu/2kwqmeQa/8GN1qBY4/rEbg1E4TM7a+K75rZsnipqQc5PunnYRL uPBb7GT/siurIAwYBDDtMFpj3ajtxndFCgN9n78sKslyiF6qzmdlcBwVCJjrOdsg 37tLy4vas2uAxaJj3nmvdmiSzkfnM1zPrdHrEkm086ipoIZGePezdfmiFRNMbO2O z1BN7kMDp5OCeqRECasJdPU4wGVhgwXAvqrZYkRp9d43UvN1nNww+lzT2i1T0QHF aqQArLCHd5QNK0mxIkUJwIbxi7Bfg8Mv22eywuj2FqrGWhy8qUrv009m5y5cct/t wQa9HM6DHO8UcnZfBAcdtChqLQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLQDXMfO q3ZS6pYUsAEoorjNaUmjMB8GA1UdIwQYMBaAFI1miv0+A+cLhEmIH6NQExusrEhW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREI4MC9CRTlGNjFBMDY0 NTMxMUVCQUY3NzREMzJDNEY5QUUwMi9qV2FLX1Q0RDV3dUVTWWdmbzFBVEc2eXNT RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pXYUtfVDRENXd1RVNZZ2ZvMUFURzZ5c1NGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRCODAvQkU5RjYxQTA2NDUzMTFFQkFGNzc0RDMyQzRGOUFFMDIvMTEzMjhFODI2 NDU1MTFFQkFFNEE0NjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnogYDBABnpfIwDwQCAAIwCQMHACABDfXcgDANBgkqhkiG 9w0BAQsFAAOCAQEAGD47LNfu7OCUtZ2zx+3DiKsBH8l1zcaN9G7xMPjvAmaeDlw+ TYVyySj5R2g/V499IbCXpxt5KgSf1HiBxOew7lNZOKcdQ6KmmhjhN4Fa8UsiAPf7 N1p8uC6Ltik4QyYU+FTMrarvbXpb6Rh0KSKloy5x7L9V6PPCdPldvu3k4wVrGdjs ynFjcgCu8+GAeU6ZBj53Pv/f1Z11zViuALJK7HgkbRre280Ps57ljn2SQ+qEa0YB ETAyTPY6L59oTSQ0eCBIBQaXPiPIvGoxoflcZTO4e7UXi/B8R4wbExmFYcMkmezB Mjxd+r476seDePuwZjB1A2NiKgb2twOCywotJA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:54 2024 by rpki-client on console-ams.rpki-client.org