$ rpki-client -vvf rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/6538D178628E11EEBF375134C4F9AE02.roa File: 6538D178628E11EEBF375134C4F9AE02.roa (raw, json) Hash identifier: a5Qs3LUcbSVUj/0GZbXTErNFIjAHGfhVv7lawUtiA/w= Subject key identifier: 71:7C:99:4E:1B:37:2E:9E:1A:94:6D:1F:7A:F8:67:A9:AE:CE:C4:1B Certificate issuer: /CN=A911393B/serialNumber=21CBAAA044DE1A5664469F418BCD0877B213973A Certificate serial: EC Authority key identifier: 21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/6538D178628E11EEBF375134C4F9AE02.roa Signing time: Sun 29 Dec 2024 03:36:55 +0000 ROA not before: Sun 29 Dec 2024 03:36:55 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151838 IP address blocks: 103.240.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:08:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911393B Validity Not Before: Dec 29 03:36:55 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6770c3d7-2f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b4:7c:c3:c5:d7:e4:ae:00:f9:2c:a1:68:19: 64:38:a2:e5:01:b6:56:44:30:07:b1:4b:34:3d:ba: 5d:58:6b:a9:40:bb:5c:7b:3e:7e:b3:68:d8:3c:4a: 73:2a:b4:91:09:91:51:a7:35:25:14:8f:16:b6:1e: 60:b4:03:56:83:03:a4:26:36:14:b7:9f:c6:7a:5f: 26:7a:b8:3d:4b:5d:9f:52:a8:3f:92:80:0f:68:b2: 13:7a:79:9b:47:fc:10:87:b9:74:d5:67:82:b1:8f: 87:f8:e6:3b:08:97:87:b1:84:98:ec:8d:64:77:9e: 00:82:2f:1e:34:4b:53:bf:49:d9:03:70:79:b2:10: 74:11:51:f9:43:4b:f7:11:25:94:d9:90:fc:c9:a8: 01:77:1e:45:34:5e:dc:8e:fb:78:f5:fb:1c:74:cc: c0:5d:0e:0e:cc:cb:3b:80:65:00:c9:63:90:45:58: 20:3d:16:1d:62:56:8e:48:b4:53:26:34:01:bb:cd: ba:30:f7:1a:f8:79:06:8b:f7:43:ff:c0:1b:66:0f: 41:dd:2b:8f:33:0a:46:d6:de:93:94:a3:95:bd:c9: da:f2:16:a2:fd:da:e3:99:c2:c9:33:11:3e:fe:c9: 9c:9d:ae:ca:e7:11:8a:93:50:e9:57:f7:16:31:22: 1a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:7C:99:4E:1B:37:2E:9E:1A:94:6D:1F:7A:F8:67:A9:AE:CE:C4:1B X509v3 Authority Key Identifier: keyid:21:CB:AA:A0:44:DE:1A:56:64:46:9F:41:8B:CD:08:77:B2:13:97:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/IcuqoETeGlZkRp9Bi80Id7ITlzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcuqoETeGlZkRp9Bi80Id7ITlzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911393B/67D08BA8628C11EE9565B569C4F9AE02/6538D178628E11EEBF375134C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.1.0/24 Signature Algorithm: sha256WithRSAEncryption 56:9d:05:a7:8a:23:2c:cd:7f:95:7a:82:20:ca:79:22:57:4c: 98:a0:19:17:b6:9e:62:02:dc:82:b3:c5:74:b5:08:ab:6c:e3: 84:f4:c7:31:78:48:2a:01:e7:86:98:2c:98:86:ac:4d:50:34: 2c:c6:d9:41:66:85:c6:48:9b:2d:40:ce:2a:49:3d:55:5e:6e: 01:c4:17:cb:ea:d3:ed:8a:7a:f3:03:2c:36:b5:62:86:bc:e8: 38:73:fa:2f:e7:93:c0:7a:49:20:bd:38:43:f6:ff:97:ba:fe: de:b7:50:a0:57:97:87:03:29:4b:8c:b5:99:6d:05:af:bc:d6: 6f:3f:c7:73:68:f8:a6:44:20:c5:68:df:66:18:36:2d:c0:55: c9:fe:f4:3b:60:4b:48:69:ac:f6:c1:18:24:83:2f:6b:c5:56: 15:dd:ca:5a:72:22:07:78:32:b8:b4:45:69:46:75:df:7f:57: cc:f6:1b:b4:5c:1d:7f:c2:b5:a8:c0:51:dd:6e:c6:02:aa:99: e1:59:10:49:5b:d9:0a:6f:9c:65:4f:a2:30:94:c4:3c:d4:7a: 23:a3:99:04:61:93:3f:a7:a9:16:9e:20:be:3c:4a:12:96:f3: a3:cc:f4:8e:06:c3:2e:26:1d:f3:af:bf:46:00:a1:da:b4:8c: 65:9e:7a:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM5M0IxMTAvBgNVBAUTKDIxQ0JBQUEwNDRERTFBNTY2NDQ2OUY0MThCQ0QwODc3 QjIxMzk3M0EwHhcNMjQxMjI5MDMzNjU1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcwYzNkNy0yZjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07R8w8XX5K4A+SyhaBlkOKLlAbZWRDAHsUs0PbpdWGupQLtcez5+s2jYPEpz KrSRCZFRpzUlFI8Wth5gtANWgwOkJjYUt5/Gel8merg9S12fUqg/koAPaLITenmb R/wQh7l01WeCsY+H+OY7CJeHsYSY7I1kd54Agi8eNEtTv0nZA3B5shB0EVH5Q0v3 ESWU2ZD8yagBdx5FNF7cjvt49fscdMzAXQ4OzMs7gGUAyWOQRVggPRYdYlaOSLRT JjQBu826MPca+HkGi/dD/8AbZg9B3SuPMwpG1t6TlKOVvcna8hai/drjmcLJMxE+ /smcna7K5xGKk1DpV/cWMSIahQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHF8mU4b Ny6eGpRtH3r4Z6muzsQbMB8GA1UdIwQYMBaAFCHLqqBE3hpWZEafQYvNCHeyE5c6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzkzQi82N0QwOEJBODYy OEMxMUVFOTU2NUI1NjlDNEY5QUUwMi9JY3Vxb0VUZUdsWmtScDlCaTgwSWQ3SVRs em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdXFvRVRlR2xaa1JwOUJpODBJZDdJVGx6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTM5M0IvNjdEMDhCQTg2MjhDMTFFRTk1NjVCNTY5QzRGOUFFMDIvNjUzOEQxNzg2 MjhFMTFFRUJGMzc1MTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn8AEwDQYJKoZIhvcNAQELBQADggEBAFadBaeKIyzNf5V6 giDKeSJXTJigGRe2nmIC3IKzxXS1CKts44T0xzF4SCoB54aYLJiGrE1QNCzG2UFm hcZImy1AzipJPVVebgHEF8vq0+2KevMDLDa1Yoa86Dhz+i/nk8B6SSC9OEP2/5e6 /t63UKBXl4cDKUuMtZltBa+81m8/x3No+KZEIMVo32YYNi3AVcn+9DtgS0hprPbB GCSDL2vFVhXdylpyIgd4Mri0RWlGdd9/V8z2G7RcHX/CtajAUd1uxgKqmeFZEElb 2QpvnGVPojCUxDzUeiOjmQRhkz+nqRaeIL48ShKW86PM9I4Gwy4mHfOvv0YAodq0 jGWeesk= -----END CERTIFICATE-----Generated at Sat Apr 5 07:12:16 2025 by rpki-client