$ rpki-client -vvf rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EF1E23F896FF11ED87B56F84C4F9AE02.roa File: EF1E23F896FF11ED87B56F84C4F9AE02.roa (raw, json) Hash identifier: I9Pcv4IIcwx4nw81OeoGh2DbUKg+x99yv1jaTnfKTew= Subject key identifier: B2:C1:C6:E3:E5:F8:69:38:6B:7C:DB:DB:D0:3D:82:00:06:A0:4F:11 Certificate issuer: /CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Certificate serial: 018C Authority key identifier: AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EF1E23F896FF11ED87B56F84C4F9AE02.roa Signing time: Tue 29 Oct 2024 02:58:29 +0000 ROA not before: Tue 29 Oct 2024 02:58:29 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147012 IP address blocks: 103.172.232.0/23 maxlen: 23 103.172.232.0/24 maxlen: 24 2407:dac0::/32 maxlen: 32 2407:dac0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 396 (0x18c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Validity Not Before: Oct 29 02:58:29 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67204f55-b63a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:f1:c0:3e:30:e0:2e:7a:5b:ea:a2:5c:4c:d6: 00:66:81:cd:cd:de:68:e7:56:fd:00:89:7b:81:6d: 1b:9d:29:f8:01:c5:3b:87:59:0d:e0:16:91:8b:b3: dd:61:a3:11:d4:36:54:fe:57:09:ab:ef:3a:0d:12: 1e:8f:d9:cd:f5:66:cf:73:02:c4:87:bb:0a:c0:33: 45:5d:a8:a8:b3:29:fd:35:8e:be:ca:23:4d:25:5a: cb:77:50:31:21:50:9d:7f:8b:9e:1b:57:44:e9:e4: 3a:fd:3f:66:6a:1b:7d:49:eb:f2:03:ef:85:aa:06: 6f:b0:ed:f7:5c:56:57:d1:7f:df:36:bd:7a:20:8e: 2e:a4:7e:8e:05:e4:c5:b8:8d:99:b9:8a:b1:5f:56: 0e:ae:e8:b6:dc:a1:93:7e:a6:0d:3a:fc:fe:ed:03: e6:af:b5:4c:dc:15:54:9f:70:21:2f:fb:38:a9:34: 74:92:78:7c:28:27:70:96:b7:3d:14:52:b3:0b:be: 89:1b:30:7d:70:79:87:a6:49:02:bc:f4:d8:d7:c0: ae:57:9a:33:48:c7:1b:70:ea:fc:ea:0e:3a:f5:98: 4f:5c:7e:f2:f4:e3:99:fe:f9:04:1d:df:39:4f:62: 67:d0:3f:b8:76:47:c4:c9:fc:1c:b8:0d:b3:15:13: 6f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C1:C6:E3:E5:F8:69:38:6B:7C:DB:DB:D0:3D:82:00:06:A0:4F:11 X509v3 Authority Key Identifier: keyid:AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/EF1E23F896FF11ED87B56F84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.232.0/23 IPv6: 2407:dac0::/32 Signature Algorithm: sha256WithRSAEncryption 45:a4:dc:d5:10:91:f9:de:6d:bd:20:26:e1:cd:01:a9:b2:2c: 49:1f:f9:dd:36:19:0b:a7:08:22:05:09:90:88:35:95:e9:a0: 04:02:10:d2:70:ed:a8:32:93:56:77:1f:28:13:70:67:c4:ff: 89:cc:f6:29:57:4a:f7:de:86:bd:96:77:a0:14:1b:65:8c:11: 4f:d2:41:68:75:46:71:12:78:ea:9a:8e:b0:e4:76:d6:b3:61: 42:9b:87:c1:d0:58:49:b1:dd:b9:d2:1f:75:00:6a:6a:31:56: c9:f9:a6:fa:4c:4a:5f:53:ba:dc:2e:fb:4b:20:75:c4:84:9a: 65:11:e3:3f:33:70:c2:87:84:e5:cb:db:8c:45:ce:2a:6a:5c: d1:bf:73:8a:1d:52:d4:9c:8b:2c:46:ca:15:36:18:68:46:5a: 88:20:90:1a:9e:00:30:66:90:ca:ae:2d:84:65:29:29:87:1b: fe:39:a7:30:d9:43:d0:ee:2e:0f:fc:fd:05:84:98:39:18:b6: bf:e2:94:cd:10:fa:ec:bf:67:9a:cb:f9:21:e6:70:c7:48:4c: e6:4b:10:2b:1e:a3:b6:87:fd:fe:cc:b0:9f:eb:d2:71:ce:64: 8f:94:9c:6f:37:6f:05:87:c4:f7:a2:58:c1:de:d0:b4:fd:73: 4e:64:f8:68 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4NUMxMTAvBgNVBAUTKEFDOTEyQ0VGQTc1OEExMTk5QzFCRURFMDZCMTRBOUVB Mzk4OTc1RjcwHhcNMjQxMDI5MDI1ODI5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwNGY1NS1iNjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9fHAPjDgLnpb6qJcTNYAZoHNzd5o51b9AIl7gW0bnSn4AcU7h1kN4BaRi7Pd YaMR1DZU/lcJq+86DRIej9nN9WbPcwLEh7sKwDNFXaiosyn9NY6+yiNNJVrLd1Ax IVCdf4ueG1dE6eQ6/T9maht9SevyA++FqgZvsO33XFZX0X/fNr16II4upH6OBeTF uI2ZuYqxX1YOrui23KGTfqYNOvz+7QPmr7VM3BVUn3AhL/s4qTR0knh8KCdwlrc9 FFKzC76JGzB9cHmHpkkCvPTY18CuV5ozSMcbcOr86g469ZhPXH7y9OOZ/vkEHd85 T2Jn0D+4dkfEyfwcuA2zFRNv4wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLLBxuPl +Gk4a3zb29A9ggAGoE8RMB8GA1UdIwQYMBaAFKyRLO+nWKEZnBvt4GsUqeo5iXX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjg1Qy8wQTY4QjExODYw OEQxMUVEQUYyQzY1NjdDNEY5QUUwMi9ySkVzNzZkWW9SbWNHLTNnYXhTcDZqbUpk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JKRXM3NmRZb1JtY0ctM2dheFNwNmptSmRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4NUMvMEE2OEIxMTg2MDhEMTFFREFGMkM2NTY3QzRGOUFFMDIvRUYxRTIzRjg5 NkZGMTFFRDg3QjU2Rjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrOgwDQQCAAIwBwMFACQH2sAwDQYJKoZIhvcNAQELBQAD ggEBAEWk3NUQkfnebb0gJuHNAamyLEkf+d02GQunCCIFCZCINZXpoAQCENJw7agy k1Z3HygTcGfE/4nM9ilXSvfehr2Wd6AUG2WMEU/SQWh1RnESeOqajrDkdtazYUKb h8HQWEmx3bnSH3UAamoxVsn5pvpMSl9Tutwu+0sgdcSEmmUR4z8zcMKHhOXL24xF zipqXNG/c4odUtSciyxGyhU2GGhGWoggkBqeADBmkMquLYRlKSmHG/45pzDZQ9Du Lg/8/QWEmDkYtr/ilM0Q+uy/Z5rL+SHmcMdITOZLECseo7aH/f7MsJ/r0nHOZI+U nG83bwWHxPeiWMHe0LT9c05k+Gg= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:32 2024 by rpki-client on console-ams.rpki-client.org