$ rpki-client -vvf rpki.apnic.net/member_repository/A911681C/BC78E36A8E7F11EA9471D168C4F9AE02/E7BABAC2217111EC9C97E95CC4F9AE02.roa File: E7BABAC2217111EC9C97E95CC4F9AE02.roa (raw, json) Hash identifier: 5aI99GUDZShXwnlxZx4fEHO4WkhnQZ4b/FSeYn7GuUU= Subject key identifier: 34:46:F6:A4:8F:CB:F6:84:4E:BA:C1:1C:7F:FE:EA:A6:43:DA:CA:C4 Certificate issuer: /CN=A911681C/serialNumber=8D5BE6F50585DAFE7B4806BA09E225B0CC6F290B Certificate serial: 0864 Authority key identifier: 8D:5B:E6:F5:05:85:DA:FE:7B:48:06:BA:09:E2:25:B0:CC:6F:29:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVvm9QWF2v57SAa6CeIlsMxvKQs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911681C/BC78E36A8E7F11EA9471D168C4F9AE02/E7BABAC2217111EC9C97E95CC4F9AE02.roa Signing time: Mon 16 Oct 2023 21:08:56 +0000 ROA not before: Mon 16 Oct 2023 21:08:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 140504 IP address blocks: 43.230.6.0/24 maxlen: 24 103.20.124.0/24 maxlen: 24 103.49.173.0/24 maxlen: 24 103.49.174.0/23 maxlen: 23 203.190.216.0/24 maxlen: 24 2403:ae80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911681C/BC78E36A8E7F11EA9471D168C4F9AE02/jVvm9QWF2v57SAa6CeIlsMxvKQs.crl rsync://rpki.apnic.net/member_repository/A911681C/BC78E36A8E7F11EA9471D168C4F9AE02/jVvm9QWF2v57SAa6CeIlsMxvKQs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVvm9QWF2v57SAa6CeIlsMxvKQs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2148 (0x864) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911681C/serialNumber=8D5BE6F50585DAFE7B4806BA09E225B0CC6F290B Validity Not Before: Oct 16 21:08:56 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652da668-4115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:2e:18:2e:f4:aa:5c:ef:b9:0e:50:83:c1:44: 89:25:05:d9:af:f3:7a:b7:70:54:40:9c:da:2c:88: 25:f2:4f:32:d9:3e:96:e3:4a:16:03:0f:12:9a:3c: 01:74:b6:36:d7:9e:79:17:ed:b6:94:38:a5:4d:0d: e3:79:91:a9:0d:6d:00:eb:55:81:ea:0f:28:46:6d: 2f:a8:cc:52:ed:70:38:e6:df:41:53:dd:22:8e:a4: 90:08:7b:dc:30:dd:58:50:c6:cd:3d:bf:da:38:d6: 56:45:07:86:48:93:c3:92:78:f5:ba:a1:35:b2:f0: 59:9c:c4:d9:5e:8a:98:87:d0:74:9a:6a:6f:53:63: 68:2f:05:bb:14:5d:58:0a:f7:78:ec:03:13:14:57: b1:78:f6:01:36:b4:07:98:b9:68:62:ea:eb:2d:6a: 2b:4d:64:5c:12:f5:ff:2c:24:68:ee:98:fa:ca:76: d8:eb:7f:1d:50:6f:1f:76:f2:c1:fc:af:70:d8:aa: 61:bd:7c:c6:9b:06:26:78:3c:45:d5:e9:ad:93:74: 15:7b:9d:5c:b0:c0:8f:3b:38:0c:b1:ef:1d:95:d2: 8b:4b:a0:90:34:ad:0e:a2:b7:d8:78:62:15:a0:f4: 5d:a3:c5:e7:71:2c:86:1d:1f:ef:0e:17:cb:ed:c1: b9:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:46:F6:A4:8F:CB:F6:84:4E:BA:C1:1C:7F:FE:EA:A6:43:DA:CA:C4 X509v3 Authority Key Identifier: keyid:8D:5B:E6:F5:05:85:DA:FE:7B:48:06:BA:09:E2:25:B0:CC:6F:29:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911681C/BC78E36A8E7F11EA9471D168C4F9AE02/jVvm9QWF2v57SAa6CeIlsMxvKQs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVvm9QWF2v57SAa6CeIlsMxvKQs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911681C/BC78E36A8E7F11EA9471D168C4F9AE02/E7BABAC2217111EC9C97E95CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.6.0/24 103.20.124.0/24 103.49.173.0-103.49.175.255 203.190.216.0/24 IPv6: 2403:ae80::/32 Signature Algorithm: sha256WithRSAEncryption 57:fa:61:f9:5d:65:ef:bc:ff:e4:46:81:d3:b0:48:d1:c6:16: 94:cc:de:c2:7c:a7:5c:8e:e3:17:07:45:13:42:66:ba:ea:52: 7b:c6:d9:01:79:0f:44:aa:d2:72:6c:60:7a:56:14:d3:4d:78: b5:11:cd:1a:c1:f6:b3:b5:6e:67:e4:e4:b0:b0:4e:78:01:8c: 48:c0:d3:b5:bb:41:b1:c7:e8:09:e5:8f:f6:8e:7c:20:02:eb: ff:71:83:f3:58:a5:ef:70:5f:0f:71:a0:12:5d:bb:28:2b:ed: 83:c9:54:93:cb:b7:d3:30:fa:2f:34:95:e1:2d:ca:6c:e2:ec: ab:c7:ef:59:09:c6:7f:d3:63:ea:7f:0f:68:5e:d6:4c:fd:5e: 2b:57:e2:ad:33:33:e7:4b:3c:75:78:82:dc:3c:ef:58:4f:74: 37:72:80:0b:40:fd:bc:f7:4f:5d:63:f6:83:70:5a:c7:b1:a9: 56:f2:bf:b1:b8:48:b9:af:d1:55:e7:28:18:39:68:b7:3c:ff: e7:03:2d:47:67:1e:78:09:b6:6c:45:a4:ba:97:ed:b5:8d:f8: 77:59:46:74:0c:00:f1:79:37:a8:39:8c:eb:60:b3:59:d0:66: 13:8d:29:63:d0:06:b5:58:c7:b5:d2:0a:8e:47:db:4b:a3:0f: e7:10:27:2a -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICCGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY4MUMxMTAvBgNVBAUTKDhENUJFNkY1MDU4NURBRkU3QjQ4MDZCQTA5RTIyNUIw Q0M2RjI5MEIwHhcNMjMxMDE2MjEwODU2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkYTY2OC00MTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7S4YLvSqXO+5DlCDwUSJJQXZr/N6t3BUQJzaLIgl8k8y2T6W40oWAw8SmjwB dLY21555F+22lDilTQ3jeZGpDW0A61WB6g8oRm0vqMxS7XA45t9BU90ijqSQCHvc MN1YUMbNPb/aONZWRQeGSJPDknj1uqE1svBZnMTZXoqYh9B0mmpvU2NoLwW7FF1Y Cvd47AMTFFexePYBNrQHmLloYurrLWorTWRcEvX/LCRo7pj6ynbY638dUG8fdvLB /K9w2KphvXzGmwYmeDxF1emtk3QVe51csMCPOzgMse8dldKLS6CQNK0OorfYeGIV oPRdo8XncSyGHR/vDhfL7cG5pwIDAQABo4ICvjCCArowHQYDVR0OBBYEFDRG9qSP y/aETrrBHH/+6qZD2srEMB8GA1UdIwQYMBaAFI1b5vUFhdr+e0gGugniJbDMbykL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjgxQy9CQzc4RTM2QThF N0YxMUVBOTQ3MUQxNjhDNEY5QUUwMi9qVnZtOVFXRjJ2NTdTQWE2Q2VJbHNNeHZL UXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pWdm05UVdGMnY1N1NBYTZDZUlsc014dktRcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY4MUMvQkM3OEUzNkE4RTdGMTFFQTk0NzFEMTY4QzRGOUFFMDIvRTdCQUJBQzIy MTcxMTFFQzlDOTdFOTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCYEAgABMCADBAAr5gYDBABnFHwwDAMEAGcxrQMEBGcxoAMEAMu+2DANBAIA AjAHAwUAJAOugDANBgkqhkiG9w0BAQsFAAOCAQEAV/ph+V1l77z/5EaB07BI0cYW lMzewnynXI7jFwdFE0JmuupSe8bZAXkPRKrScmxgelYU0014tRHNGsH2s7VuZ+Tk sLBOeAGMSMDTtbtBscfoCeWP9o58IALr/3GD81il73BfD3GgEl27KCvtg8lUk8u3 0zD6LzSV4S3KbOLsq8fvWQnGf9Nj6n8PaF7WTP1eK1firTMz50s8dXiC3DzvWE90 N3KAC0D9vPdPXWP2g3Bax7GpVvK/sbhIua/RVecoGDlotzz/5wMtR2ceeAm2bEWk upfttY34d1lGdAwA8Xk3qDmM62CzWdBmE40pY9AGtVjHtdIKjkfbS6MP5xAnKg== -----END CERTIFICATE-----Generated at Fri May 31 22:56:56 2024 by rpki-client on console-fra.rpki-client.org