$ rpki-client -vvf rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/ABB5B52C0EF211ECBE14BD4FC4F9AE02.roa File: ABB5B52C0EF211ECBE14BD4FC4F9AE02.roa (raw, json) Hash identifier: hHFsEibxFmfGBgF40FeRIvgD0ColRb+tpcQ8s+0vLA0= Subject key identifier: F1:A8:3B:B9:70:FF:34:D7:C8:52:D0:A0:D1:AC:D7:B3:12:F0:CC:7F Certificate issuer: /CN=A9111A96/serialNumber=C6903BF5EF1A4070FC983C34D9C503CF4313FC8B Certificate serial: 03D7 Authority key identifier: C6:90:3B:F5:EF:1A:40:70:FC:98:3C:34:D9:C5:03:CF:43:13:FC:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpA79e8aQHD8mDw02cUDz0MT_Is.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/ABB5B52C0EF211ECBE14BD4FC4F9AE02.roa Signing time: Fri 27 Oct 2023 01:13:24 +0000 ROA not before: Fri 27 Oct 2023 01:13:24 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 147007 IP address blocks: 103.172.216.0/23 maxlen: 23 103.172.216.0/24 maxlen: 24 103.172.217.0/24 maxlen: 24 2001:df7:7980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.crl rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpA79e8aQHD8mDw02cUDz0MT_Is.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 983 (0x3d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111A96/serialNumber=C6903BF5EF1A4070FC983C34D9C503CF4313FC8B Validity Not Before: Oct 27 01:13:24 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=653b0eb4-2fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:67:50:06:61:e3:09:89:b7:95:0c:06:bb:81: 5c:08:30:ee:f5:64:bb:7c:5e:30:61:4e:b8:bb:7f: 57:d0:7c:92:2b:73:fc:9f:5f:1e:d9:cd:96:6e:e2: 80:b9:57:9e:8a:1a:b6:4d:82:b5:f8:20:a4:3c:7f: da:73:79:12:88:5e:88:b5:5e:84:0a:94:c2:27:17: 30:b0:ae:cc:0d:53:1a:45:e7:d0:0c:aa:5b:e2:bd: 60:e1:45:64:46:7a:95:aa:b8:9d:1d:d4:63:e4:fd: fa:9b:53:85:2a:16:b6:06:d9:59:a7:b9:23:7a:30: 28:77:ff:21:30:14:2c:60:4c:a8:20:44:47:a3:47: 2c:6c:57:63:8e:5e:af:5c:68:85:d4:08:21:e6:52: 84:d3:63:5b:71:3c:ed:aa:34:65:2f:77:5a:fd:ee: 1c:57:b8:7c:32:60:08:4b:f9:ac:82:b8:fe:00:de: f8:d1:34:88:66:bf:ff:3b:ad:38:fc:7e:87:d7:3f: 2a:8a:81:d2:50:41:22:dd:89:73:a2:4f:ad:d4:8a: 04:66:9a:dd:41:20:4a:42:18:e3:3c:57:3e:85:50: a8:e9:75:32:47:7e:0b:6b:c2:68:5c:49:98:b5:c0: 17:1d:bc:48:74:bb:95:a3:9d:8f:a8:2a:d3:3a:f8: db:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:A8:3B:B9:70:FF:34:D7:C8:52:D0:A0:D1:AC:D7:B3:12:F0:CC:7F X509v3 Authority Key Identifier: keyid:C6:90:3B:F5:EF:1A:40:70:FC:98:3C:34:D9:C5:03:CF:43:13:FC:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/xpA79e8aQHD8mDw02cUDz0MT_Is.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xpA79e8aQHD8mDw02cUDz0MT_Is.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111A96/4589C6380EEF11EC86ADE04BC4F9AE02/ABB5B52C0EF211ECBE14BD4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.216.0/23 IPv6: 2001:df7:7980::/48 Signature Algorithm: sha256WithRSAEncryption 04:c8:57:d6:26:b7:5c:7c:43:79:95:20:52:e5:02:95:53:f9: 3f:38:b2:70:98:12:9f:37:9a:1f:54:58:ab:57:cb:77:a8:97: 4a:2f:5d:63:b2:93:a1:f6:0f:83:f3:b1:f1:6c:0d:32:43:8c: 3b:08:57:79:1c:18:90:e5:bd:59:4c:5d:b9:5c:77:42:e0:28: 45:bf:3c:b1:1c:84:ee:87:96:0f:2c:73:18:5a:e1:b3:80:5b: 2d:d2:0b:07:fc:0b:93:ae:cc:f9:06:77:54:4c:5c:a7:c6:c2: cf:45:25:b1:a5:1a:d7:bc:1d:4f:af:b2:0b:ab:4e:20:58:8b: 34:7b:a8:d4:53:91:26:15:21:fb:41:8a:21:d6:6b:be:f4:62: c0:9f:a7:1a:7a:48:f9:84:08:50:72:65:fb:d7:fa:65:27:76: 45:e5:ab:15:76:2e:3d:86:17:be:f4:42:68:4c:15:16:77:df: fa:d8:c4:ed:f8:1d:87:4b:2d:4f:b8:ac:1f:02:14:cf:73:a3: ad:a6:3b:19:5c:12:bf:99:77:1d:b8:7d:93:04:78:3c:b1:df: 7a:69:91:cb:c4:0d:93:f2:09:12:1b:cb:7b:6d:3c:30:6e:ca: 55:46:1b:9d:8d:78:a4:65:5b:e8:b3:3d:3b:1a:b2:f6:bd:2e: 9e:0c:93:84 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA9cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTFBOTYxMTAvBgNVBAUTKEM2OTAzQkY1RUYxQTQwNzBGQzk4M0MzNEQ5QzUwM0NG NDMxM0ZDOEIwHhcNMjMxMDI3MDExMzI0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNiMGViNC0yZmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmdQBmHjCYm3lQwGu4FcCDDu9WS7fF4wYU64u39X0HySK3P8n18e2c2WbuKA uVeeihq2TYK1+CCkPH/ac3kSiF6ItV6ECpTCJxcwsK7MDVMaRefQDKpb4r1g4UVk RnqVqridHdRj5P36m1OFKha2BtlZp7kjejAod/8hMBQsYEyoIERHo0csbFdjjl6v XGiF1Agh5lKE02NbcTztqjRlL3da/e4cV7h8MmAIS/msgrj+AN740TSIZr//O604 /H6H1z8qioHSUEEi3Ylzok+t1IoEZprdQSBKQhjjPFc+hVCo6XUyR34La8JoXEmY tcAXHbxIdLuVo52PqCrTOvjbVwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPGoO7lw /zTXyFLQoNGs17MS8Mx/MB8GA1UdIwQYMBaAFMaQO/XvGkBw/Jg8NNnFA89DE/yL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMUE5Ni80NTg5QzYzODBF RUYxMUVDODZBREUwNEJDNEY5QUUwMi94cEE3OWU4YVFIRDhtRHcwMmNVRHowTVRf SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hwQTc5ZThhUUhEOG1EdzAyY1VEejBNVF9Jcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTFBOTYvNDU4OUM2MzgwRUVGMTFFQzg2QURFMDRCQzRGOUFFMDIvQUJCNUI1MkMw RUYyMTFFQ0JFMTRCRDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrNgwDwQCAAIwCQMHACABDfd5gDANBgkqhkiG9w0BAQsF AAOCAQEABMhX1ia3XHxDeZUgUuUClVP5PziycJgSnzeaH1RYq1fLd6iXSi9dY7KT ofYPg/Ox8WwNMkOMOwhXeRwYkOW9WUxduVx3QuAoRb88sRyE7oeWDyxzGFrhs4Bb LdILB/wLk67M+QZ3VExcp8bCz0UlsaUa17wdT6+yC6tOIFiLNHuo1FORJhUh+0GK IdZrvvRiwJ+nGnpI+YQIUHJl+9f6ZSd2ReWrFXYuPYYXvvRCaEwVFnff+tjE7fgd h0stT7isHwIUz3OjraY7GVwSv5l3Hbh9kwR4PLHfemmRy8QNk/IJEhvLe208MG7K VUYbnY14pGVb6LM9Oxqy9r0ungyThA== -----END CERTIFICATE-----Generated at Sat Jun 1 04:58:59 2024 by rpki-client on console-fra.rpki-client.org