$ rpki-client -vvf rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/D30F4BB807D511EF86AD0733C4F9AE02.roa File: D30F4BB807D511EF86AD0733C4F9AE02.roa (raw, json) Hash identifier: hyPyTgVROwH264cYH1g18w3q6Dp/RsLhE4jRRmTdm6Y= Subject key identifier: 82:D9:4E:78:91:4F:80:15:87:87:D1:CC:A8:20:83:29:E2:C8:1E:C5 Certificate issuer: /CN=A91115D5/serialNumber=476F572A380236AF33F62D82A5BA264D2FBBAD7C Certificate serial: 11B9 Authority key identifier: 47:6F:57:2A:38:02:36:AF:33:F6:2D:82:A5:BA:26:4D:2F:BB:AD:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R29XKjgCNq8z9i2CpbomTS-7rXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/D30F4BB807D511EF86AD0733C4F9AE02.roa Signing time: Wed 01 May 2024 16:14:02 +0000 ROA not before: Wed 01 May 2024 16:14:02 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 23607 IP address blocks: 103.86.36.0/23 maxlen: 23 103.86.36.0/24 maxlen: 24 103.86.37.0/24 maxlen: 24 116.204.164.0/22 maxlen: 22 116.204.164.0/24 maxlen: 24 116.204.165.0/24 maxlen: 24 116.204.166.0/24 maxlen: 24 116.204.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/R29XKjgCNq8z9i2CpbomTS-7rXw.crl rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/R29XKjgCNq8z9i2CpbomTS-7rXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R29XKjgCNq8z9i2CpbomTS-7rXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:05:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4537 (0x11b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91115D5/serialNumber=476F572A380236AF33F62D82A5BA264D2FBBAD7C Validity Not Before: May 1 16:14:02 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66326a4a-fe20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8d:d2:86:ed:19:19:10:cf:3d:4b:b7:51:b6: 5d:32:e8:13:31:1f:d9:83:20:ff:21:3c:a9:0e:35: 97:c1:91:5f:18:4a:e1:47:42:31:3f:cf:4c:aa:be: cc:ce:01:b7:28:e1:77:16:eb:8d:c3:3f:f1:97:21: b0:c2:03:d7:ef:d4:ed:70:87:21:7a:19:f8:7d:81: ba:4a:7d:71:64:38:a2:0a:36:7f:50:96:33:2b:31: 8e:97:58:ca:5d:4f:8c:58:92:d2:78:6a:c9:21:cc: 44:2e:25:68:11:c1:6f:e2:70:be:c6:f8:0e:d8:19: 7f:53:c5:fb:a7:80:e1:4d:fa:cf:01:fb:62:8f:74: 6f:89:1b:8d:80:ab:53:e1:33:f6:f2:bb:4a:58:63: 28:9b:3e:17:9a:57:27:21:fa:ef:de:c3:94:14:84: 6c:4e:bb:31:4d:92:c1:b9:23:bb:ee:b6:79:20:28: f3:ea:84:76:ee:c4:f1:e1:35:ca:f1:8e:f0:d3:28: f2:5d:cc:e5:4d:50:45:fd:7f:c7:3e:ea:13:0e:62: 85:4d:26:25:6b:2a:87:ae:4f:2a:35:dd:9d:f3:fe: 04:f3:7c:6c:b6:74:f3:c6:1a:f3:3b:5d:97:27:a7: a5:37:83:05:6a:6c:42:44:92:89:39:cd:7d:97:b6: cc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:D9:4E:78:91:4F:80:15:87:87:D1:CC:A8:20:83:29:E2:C8:1E:C5 X509v3 Authority Key Identifier: keyid:47:6F:57:2A:38:02:36:AF:33:F6:2D:82:A5:BA:26:4D:2F:BB:AD:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/R29XKjgCNq8z9i2CpbomTS-7rXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R29XKjgCNq8z9i2CpbomTS-7rXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/D30F4BB807D511EF86AD0733C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.36.0/23 116.204.164.0/22 Signature Algorithm: sha256WithRSAEncryption ad:bd:38:3a:7b:89:0c:b8:6c:db:f6:ff:fa:62:7c:ef:5c:d8: bc:9e:15:57:dd:99:a3:76:c0:de:46:93:3a:e1:3b:08:e7:71: 7c:54:5d:cf:b2:8b:33:56:cc:0a:86:ba:c7:71:0b:a6:c8:3f: 47:e3:3b:22:a7:e2:56:7d:33:fe:99:c1:ae:42:4c:91:4e:26: 1e:f0:7c:5b:20:3c:88:9d:38:3b:03:16:29:f0:ab:a8:04:7f: 39:85:61:38:f1:45:21:4e:91:d5:f6:d7:c2:67:81:c7:af:4b: 27:53:9c:86:21:69:bb:9e:25:c9:cf:2e:0d:48:63:89:3e:6d: ea:77:6b:b8:3e:35:31:6a:99:3d:55:82:b0:12:60:a6:fd:73: 48:18:66:a5:23:0c:ad:1f:d8:3c:2b:51:67:7a:e4:31:00:3e: 46:f2:c4:02:c1:73:9b:42:76:b2:c5:e2:5a:9e:2b:67:15:9e: bc:be:ee:bf:1a:94:78:a7:8f:f9:bf:ab:ab:25:84:60:64:f2: c9:a2:26:44:80:5a:d4:fa:b4:9b:c2:cb:5e:5d:8e:4d:8f:6e: fc:93:f1:5d:0d:c3:db:3f:59:19:c0:75:6c:45:12:21:f7:67: a1:2b:fd:e5:3d:07:41:bc:e0:0d:b2:39:aa:55:74:e7:b9:a5: 89:91:2a:2a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE1RDUxMTAvBgNVBAUTKDQ3NkY1NzJBMzgwMjM2QUYzM0Y2MkQ4MkE1QkEyNjRE MkZCQkFEN0MwHhcNMjQwNTAxMTYxNDAyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjMyNmE0YS1mZTIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnI3Shu0ZGRDPPUu3UbZdMugTMR/ZgyD/ITypDjWXwZFfGErhR0IxP89Mqr7M zgG3KOF3FuuNwz/xlyGwwgPX79TtcIchehn4fYG6Sn1xZDiiCjZ/UJYzKzGOl1jK XU+MWJLSeGrJIcxELiVoEcFv4nC+xvgO2Bl/U8X7p4DhTfrPAftij3RviRuNgKtT 4TP28rtKWGMomz4XmlcnIfrv3sOUFIRsTrsxTZLBuSO77rZ5ICjz6oR27sTx4TXK 8Y7w0yjyXczlTVBF/X/HPuoTDmKFTSYlayqHrk8qNd2d8/4E83xstnTzxhrzO12X J6elN4MFamxCRJKJOc19l7bMbQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFILZTniR T4AVh4fRzKgggyniyB7FMB8GA1UdIwQYMBaAFEdvVyo4AjavM/YtgqW6Jk0vu618 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTVENS80RUJDQUYyNkQw QUYxMUU4QUFFQjA3NTZDNEY5QUUwMi9SMjlYS2pnQ05xOHo5aTJDcGJvbVRTLTdy WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IyOVhLamdDTnE4ejlpMkNwYm9tVFMtN3JYdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTE1RDUvNEVCQ0FGMjZEMEFGMTFFOEFBRUIwNzU2QzRGOUFFMDIvRDMwRjRCQjgw N0Q1MTFFRjg2QUQwNzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnViQDBAJ0zKQwDQYJKoZIhvcNAQELBQADggEBAK29ODp7 iQy4bNv2//pifO9c2LyeFVfdmaN2wN5GkzrhOwjncXxUXc+yizNWzAqGusdxC6bI P0fjOyKn4lZ9M/6Zwa5CTJFOJh7wfFsgPIidODsDFinwq6gEfzmFYTjxRSFOkdX2 18JngcevSydTnIYhabueJcnPLg1IY4k+bep3a7g+NTFqmT1VgrASYKb9c0gYZqUj DK0f2DwrUWd65DEAPkbyxALBc5tCdrLF4lqeK2cVnry+7r8alHinj/m/q6slhGBk 8smiJkSAWtT6tJvCy15djk2PbvyT8V0Nw9s/WRnAdWxFEiH3Z6Er/eU9B0G84A2y OapVdOe5pYmRKio= -----END CERTIFICATE-----Generated at Fri May 31 19:47:46 2024 by rpki-client on console-fra.rpki-client.org