$ rpki-client -vvf rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/1B000B60A70A11EE9D90E754C4F9AE02.roa File: 1B000B60A70A11EE9D90E754C4F9AE02.roa (raw, json) Hash identifier: DAdzrCTjSXLAdQ/ahzO4J1jSOYJKGFTd/4G8C3uhYEY= Subject key identifier: 1B:65:E7:C6:44:F8:F3:51:4A:5C:EB:06:0C:72:9A:A4:83:35:01:AA Certificate issuer: /CN=A911933B/serialNumber=86DA1900E6150CBD9CD815AC67DC53A5E6D3C027 Certificate serial: 15 Authority key identifier: 86:DA:19:00:E6:15:0C:BD:9C:D8:15:AC:67:DC:53:A5:E6:D3:C0:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/1B000B60A70A11EE9D90E754C4F9AE02.roa Signing time: Sun 31 Dec 2023 04:20:17 +0000 ROA not before: Sun 31 Dec 2023 04:20:17 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137975 IP address blocks: 103.119.24.0/24 maxlen: 24 103.119.25.0/24 maxlen: 24 103.119.26.0/24 maxlen: 24 103.119.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.crl rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911933B/serialNumber=86DA1900E6150CBD9CD815AC67DC53A5E6D3C027 Validity Not Before: Dec 31 04:20:17 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6590ec00-e229 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8b:1a:60:fa:df:a5:4e:c2:3c:f8:ab:7d:bf: d2:ed:d6:cd:50:7d:e7:1a:46:4d:a0:e3:16:c1:bc: cb:22:f6:2a:fe:a3:fe:ea:97:8f:8a:78:3b:a0:3a: 50:ee:61:fa:1f:3e:e2:c4:a8:1d:ef:45:2c:15:5d: ad:7e:31:82:ea:c0:36:44:55:0d:67:f0:bd:ec:9f: 13:6c:53:b6:9e:69:40:fa:81:5e:af:e0:e1:92:6d: e0:d6:aa:d4:f0:63:42:7a:f7:d6:7e:be:d0:41:ab: ec:29:92:82:d1:c3:2f:c0:77:d3:32:97:1d:b7:a3: fd:01:21:cb:b2:01:cb:b4:9f:43:d4:2d:c8:e0:30: d3:a0:95:b9:de:f7:45:92:05:19:7f:4b:db:58:0b: 5c:f7:73:af:b0:fd:36:9f:2c:70:ec:2a:9c:67:4f: 6c:6f:24:ae:46:1c:b0:53:2f:a0:8e:16:0d:10:3d: e7:24:fa:de:ee:63:72:87:36:6c:dc:9c:ba:30:4b: 02:a7:57:f4:ca:69:dd:a2:89:cc:2c:78:a9:e1:96: 6c:dd:1d:7d:80:94:18:92:f8:60:cd:bc:1c:14:32: 20:60:f6:8e:da:96:7c:af:9c:0e:3a:90:18:2b:39: 20:3a:81:b7:35:53:e7:16:6f:45:d3:e4:14:a0:db: 0f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:65:E7:C6:44:F8:F3:51:4A:5C:EB:06:0C:72:9A:A4:83:35:01:AA X509v3 Authority Key Identifier: keyid:86:DA:19:00:E6:15:0C:BD:9C:D8:15:AC:67:DC:53:A5:E6:D3:C0:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/htoZAOYVDL2c2BWsZ9xTpebTwCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/htoZAOYVDL2c2BWsZ9xTpebTwCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911933B/E98A113E926411EE9947DA5BC4F9AE02/1B000B60A70A11EE9D90E754C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.24.0/22 Signature Algorithm: sha256WithRSAEncryption 97:43:29:68:00:e1:66:10:fd:2b:5e:06:e9:f1:53:fd:02:57: 99:73:d1:39:13:d1:4e:3e:64:e8:b5:7c:fb:74:64:c6:0e:8a: d6:a3:48:9f:a7:bb:d1:aa:d5:62:a4:41:18:f2:ee:09:a4:ae: 5a:c3:3d:df:4d:5a:7a:41:ea:2c:b4:d1:28:13:ca:20:df:35: 09:46:04:84:98:30:47:48:bd:45:51:ab:83:c9:72:1a:25:93: c4:8a:4b:cc:d7:63:5c:8f:39:25:83:23:10:52:bd:d6:d9:fb: 0e:e8:cf:ef:8a:d7:73:29:9f:cf:97:6f:0e:7d:80:5c:4d:8f: fd:0a:3f:61:35:c4:28:c2:f1:80:a5:2e:c7:d1:ad:93:fd:1f: 24:55:99:c1:34:a1:c3:5f:66:26:f3:63:49:52:32:19:99:10: 32:76:e8:82:91:5d:bc:0b:b6:f4:3b:a9:56:22:d5:56:04:ed: cd:fa:39:9f:88:c9:b6:f7:d4:a3:b4:40:0a:5e:1e:5f:a3:7a: af:ea:df:6b:88:c8:38:62:20:cb:07:82:e2:ba:22:4a:e1:82: 23:4f:8e:88:aa:97:1c:91:1b:e6:16:a6:62:91:41:87:f0:10: e1:00:5c:08:eb:66:a6:cb:7e:0e:f9:db:68:81:50:4a:3b:e0: 9a:36:c5:bf -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OTMzQjExMC8GA1UEBRMoODZEQTE5MDBFNjE1MENCRDlDRDgxNUFDNjdEQzUzQTVF NkQzQzAyNzAeFw0yMzEyMzEwNDIwMTdaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTBlYzAwLWUyMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWixpg+t+lTsI8+Kt9v9Lt1s1QfecaRk2g4xbBvMsi9ir+o/7ql4+KeDugOlDu YfofPuLEqB3vRSwVXa1+MYLqwDZEVQ1n8L3snxNsU7aeaUD6gV6v4OGSbeDWqtTw Y0J699Z+vtBBq+wpkoLRwy/Ad9Mylx23o/0BIcuyAcu0n0PULcjgMNOglbne90WS BRl/S9tYC1z3c6+w/TafLHDsKpxnT2xvJK5GHLBTL6COFg0QPeck+t7uY3KHNmzc nLowSwKnV/TKad2iicwseKnhlmzdHX2AlBiS+GDNvBwUMiBg9o7alnyvnA46kBgr OSA6gbc1U+cWb0XT5BSg2w8pAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUG2XnxkT4 81FKXOsGDHKapIM1AaowHwYDVR0jBBgwFoAUhtoZAOYVDL2c2BWsZ9xTpebTwCcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE5MzNCL0U5OEExMTNFOTI2 NDExRUU5OTQ3REE1QkM0RjlBRTAyL2h0b1pBT1lWREwyYzJCV3NaOXhUcGViVHdD Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaHRvWkFPWVZETDJjMkJXc1o5eFRwZWJUd0NjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OTMzQi9FOThBMTEzRTkyNjQxMUVFOTk0N0RBNUJDNEY5QUUwMi8xQjAwMEI2MEE3 MEExMUVFOUQ5MEU3NTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmd3GDANBgkqhkiG9w0BAQsFAAOCAQEAl0MpaADhZhD9K14G 6fFT/QJXmXPRORPRTj5k6LV8+3Rkxg6K1qNIn6e70arVYqRBGPLuCaSuWsM9301a ekHqLLTRKBPKIN81CUYEhJgwR0i9RVGrg8lyGiWTxIpLzNdjXI85JYMjEFK91tn7 DujP74rXcymfz5dvDn2AXE2P/Qo/YTXEKMLxgKUux9Gtk/0fJFWZwTShw19mJvNj SVIyGZkQMnbogpFdvAu29DupViLVVgTtzfo5n4jJtvfUo7RACl4eX6N6r+rfa4jI OGIgyweC4roiSuGCI0+OiKqXHJEb5hamYpFBh/AQ4QBcCOtmpst+DvnbaIFQSjvg mjbFvw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org