$ rpki-client -vvf rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/211EA566FEC411EAA6579A78C4F9AE02.roa File: 211EA566FEC411EAA6579A78C4F9AE02.roa (raw, json) Hash identifier: cAsn+ZLvFSOZU0pEtCrrDWsBwNszEN0eL2057zAiYjQ= Subject key identifier: A5:3A:40:D4:0E:13:B1:7F:64:62:EE:BA:05:BF:D3:D7:85:8B:36:D9 Certificate issuer: /CN=A911784E/serialNumber=7E7E3BE889370A71E5521557BB03A00F1B39BFD8 Certificate serial: 06C7 Authority key identifier: 7E:7E:3B:E8:89:37:0A:71:E5:52:15:57:BB:03:A0:0F:1B:39:BF:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/211EA566FEC411EAA6579A78C4F9AE02.roa Signing time: Sat 10 Feb 2024 22:30:29 +0000 ROA not before: Sat 10 Feb 2024 22:30:29 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 10143 IP address blocks: 103.47.233.0/24 maxlen: 24 203.19.75.0/24 maxlen: 24 203.30.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.crl rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:33:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1735 (0x6c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911784E/serialNumber=7E7E3BE889370A71E5521557BB03A00F1B39BFD8 Validity Not Before: Feb 10 22:30:29 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c7f904-7f4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:c0:91:34:94:1d:e3:eb:19:8c:cb:66:cc:fe: e1:ac:ac:8e:80:15:d1:30:8b:1a:c3:33:bc:f1:6f: 35:56:9c:bc:cc:11:08:62:05:77:fe:78:38:55:fa: 4c:9e:21:9f:5c:cc:f9:cc:13:e7:46:80:d1:72:23: 9f:c3:18:2e:c6:56:fc:ab:e5:17:15:c5:bb:62:0a: 0c:dd:41:49:a7:8d:c3:b3:30:84:88:37:29:07:9e: 2f:6b:c7:27:9a:20:97:a2:09:c0:da:be:25:3d:94: a6:21:a3:d3:65:d7:08:42:43:aa:61:2d:e0:14:9e: 57:12:f4:51:4f:72:92:28:3d:34:40:a6:d5:59:31: 5b:f2:c9:46:5e:3d:36:a9:63:45:f3:08:fe:35:34: dd:29:be:a7:ee:d9:7e:dc:68:5e:e7:cd:2e:97:9a: 7b:f7:29:36:95:cb:d2:47:d8:20:f0:8a:9c:98:31: c0:02:9a:ec:23:11:e2:08:96:43:6e:c3:bb:d5:2f: a0:fb:31:1e:b4:ee:90:3c:24:08:ea:7a:87:e6:02: 31:9b:70:16:03:13:12:d4:35:b5:75:9c:0c:5b:d5: b1:1d:44:83:19:6e:2c:91:0e:db:68:83:37:92:bb: 17:2e:7b:bc:38:21:c8:cc:d5:f2:bb:2d:c7:fc:b2: 3a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:3A:40:D4:0E:13:B1:7F:64:62:EE:BA:05:BF:D3:D7:85:8B:36:D9 X509v3 Authority Key Identifier: keyid:7E:7E:3B:E8:89:37:0A:71:E5:52:15:57:BB:03:A0:0F:1B:39:BF:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/fn476Ik3CnHlUhVXuwOgDxs5v9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fn476Ik3CnHlUhVXuwOgDxs5v9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911784E/6B54D9C8FEC111EA9E733375C4F9AE02/211EA566FEC411EAA6579A78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.47.233.0/24 203.19.75.0/24 203.30.228.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:6e:57:a4:ee:0d:a5:75:b8:bd:5a:68:52:2c:1a:62:d0:58: ee:ff:39:ef:5a:c7:27:45:3f:d9:b9:b4:d8:6c:23:fc:f4:f1: 91:06:35:de:ac:72:4c:a0:6c:91:7a:c0:a7:e6:c5:4a:4f:d0: 4c:8e:30:25:17:66:53:1a:3f:81:9c:d0:b7:a3:fe:41:8a:1b: 91:65:c5:18:2c:e4:d4:c8:91:0b:63:02:75:0f:68:56:46:e3: 8d:39:2a:be:a1:8b:63:67:2a:99:a6:09:8d:56:15:80:46:d4: 25:ea:5e:56:a8:ec:6f:96:50:b5:e9:ef:68:84:41:e1:f3:4c: c7:b7:4e:d0:e5:2f:3c:46:7f:5f:5a:5f:4c:69:0a:17:ab:eb: 63:35:bf:e6:d5:e0:7e:4f:a7:77:b2:5e:9d:f4:28:28:14:1e: f6:c0:02:b4:c5:b3:ef:bf:3e:80:3b:f7:70:d0:db:33:1a:c9: 9e:71:d9:3a:0f:eb:17:62:47:df:bd:8d:a7:ff:f6:c2:97:24: 3e:5d:eb:9d:d9:f7:8f:6d:56:2a:02:63:99:4b:60:ba:1c:66: fe:36:95:bb:b7:82:38:4a:3f:c6:02:9b:86:48:d1:65:74:70: 60:7a:4a:8b:66:38:dd:8b:d3:ef:1c:86:32:c8:b3:b5:49:53: e1:1b:44:9e -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc4NEUxMTAvBgNVBAUTKDdFN0UzQkU4ODkzNzBBNzFFNTUyMTU1N0JCMDNBMDBG MUIzOUJGRDgwHhcNMjQwMjEwMjIzMDI5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM3ZjkwNC03ZjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7cCRNJQd4+sZjMtmzP7hrKyOgBXRMIsawzO88W81Vpy8zBEIYgV3/ng4VfpM niGfXMz5zBPnRoDRciOfwxguxlb8q+UXFcW7YgoM3UFJp43DszCEiDcpB54va8cn miCXognA2r4lPZSmIaPTZdcIQkOqYS3gFJ5XEvRRT3KSKD00QKbVWTFb8slGXj02 qWNF8wj+NTTdKb6n7tl+3Ghe580ul5p79yk2lcvSR9gg8IqcmDHAAprsIxHiCJZD bsO71S+g+zEetO6QPCQI6nqH5gIxm3AWAxMS1DW1dZwMW9WxHUSDGW4skQ7baIM3 krsXLnu8OCHIzNXyuy3H/LI6mQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKU6QNQO E7F/ZGLuugW/09eFizbZMB8GA1UdIwQYMBaAFH5+O+iJNwpx5VIVV7sDoA8bOb/Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzg0RS82QjU0RDlDOEZF QzExMUVBOUU3MzMzNzVDNEY5QUUwMi9mbjQ3NklrM0NuSGxVaFZYdXdPZ0R4czV2 OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZuNDc2SWszQ25IbFVoVlh1d09nRHhzNXY5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc4NEUvNkI1NEQ5QzhGRUMxMTFFQTlFNzMzMzc1QzRGOUFFMDIvMjExRUE1NjZG RUM0MTFFQUE2NTc5QTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnL+kDBADLE0sDBADLHuQwDQYJKoZIhvcNAQELBQADggEB AC5uV6TuDaV1uL1aaFIsGmLQWO7/Oe9axydFP9m5tNhsI/z08ZEGNd6sckygbJF6 wKfmxUpP0EyOMCUXZlMaP4Gc0Lej/kGKG5FlxRgs5NTIkQtjAnUPaFZG4405Kr6h i2NnKpmmCY1WFYBG1CXqXlao7G+WULXp72iEQeHzTMe3TtDlLzxGf19aX0xpCher 62M1v+bV4H5Pp3eyXp30KCgUHvbAArTFs++/PoA793DQ2zMayZ5x2ToP6xdiR9+9 jaf/9sKXJD5d653Z949tVioCY5lLYLocZv42lbu3gjhKP8YCm4ZI0WV0cGB6Sotm ON2L0+8chjLIs7VJU+EbRJ4= -----END CERTIFICATE-----Generated at Sat Jun 1 00:32:58 2024 by rpki-client on console-fra.rpki-client.org