$ rpki-client -vvf rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/F44E8EBCF3B511EE8451152DC4F9AE02.roa File: F44E8EBCF3B511EE8451152DC4F9AE02.roa (raw, json) Hash identifier: LnyEnapgR4NWJ58uRDjQWaBGFO6rX2ZjgINHA+tVi+Q= Subject key identifier: 1D:0F:27:C3:4F:BB:13:56:83:5C:54:C3:A6:FA:08:90:E6:50:86:2B Certificate issuer: /CN=A911A2B1/serialNumber=1A45247B3A1B0269271D746C5A5FAC0145FF3322 Certificate serial: 1E Authority key identifier: 1A:45:24:7B:3A:1B:02:69:27:1D:74:6C:5A:5F:AC:01:45:FF:33:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkUkezobAmknHXRsWl-sAUX_MyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/F44E8EBCF3B511EE8451152DC4F9AE02.roa Signing time: Wed 22 May 2024 16:48:52 +0000 ROA not before: Wed 22 May 2024 16:48:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152680 IP address blocks: 117.103.112.0/23 maxlen: 23 117.103.112.0/24 maxlen: 24 117.103.113.0/24 maxlen: 24 2001:df3:a540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/GkUkezobAmknHXRsWl-sAUX_MyI.crl rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/GkUkezobAmknHXRsWl-sAUX_MyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkUkezobAmknHXRsWl-sAUX_MyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A2B1/serialNumber=1A45247B3A1B0269271D746C5A5FAC0145FF3322 Validity Not Before: May 22 16:48:52 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664e21f3-2136 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3f:9f:17:57:73:67:7f:09:e2:b5:02:73:36: 1b:2f:7d:5d:90:66:43:ec:04:1f:0e:29:63:4b:d8: 9f:04:ea:bb:d9:67:ce:e2:b1:0b:d2:b6:6f:93:b5: b2:56:74:7b:92:aa:80:d5:28:99:23:f2:fc:5c:37: d4:1b:ae:61:7c:b0:61:bd:33:95:a7:bc:dd:3c:d5: f8:e4:30:1a:1c:eb:c0:fc:5d:2a:27:64:97:42:52: 6f:25:df:20:72:36:77:21:bb:d5:d1:17:5d:9c:e5: b6:5d:a3:3d:90:2c:b5:fd:4c:58:c9:07:5c:52:cc: 0a:f3:70:0c:f9:86:aa:e7:04:64:36:1e:bf:af:d6: 69:fa:9b:68:ae:6e:3f:d2:ca:01:8b:ca:7c:48:80: 3b:01:4f:97:87:c6:41:db:97:64:7b:4e:0e:c7:85: ad:7d:06:e3:c6:f1:0f:2b:39:2d:d0:11:cb:f0:89: 63:7b:16:03:c4:7b:5b:f5:6f:6c:75:2c:52:d8:ed: d8:79:d7:48:81:70:70:e5:35:38:f2:8a:6f:70:9b: ee:ca:dc:5a:b7:8b:21:69:d7:fc:7c:be:7c:90:cb: a8:d6:7e:b0:7d:ca:ce:c3:72:6e:78:ec:94:dc:39: ba:4f:fe:4d:44:12:0a:7d:a4:f1:e2:ee:a5:5a:9a: cf:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:0F:27:C3:4F:BB:13:56:83:5C:54:C3:A6:FA:08:90:E6:50:86:2B X509v3 Authority Key Identifier: keyid:1A:45:24:7B:3A:1B:02:69:27:1D:74:6C:5A:5F:AC:01:45:FF:33:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/GkUkezobAmknHXRsWl-sAUX_MyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkUkezobAmknHXRsWl-sAUX_MyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A2B1/19A82F66F3B511EEB1E2230EC4F9AE02/F44E8EBCF3B511EE8451152DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.103.112.0/23 IPv6: 2001:df3:a540::/48 Signature Algorithm: sha256WithRSAEncryption 62:db:56:1d:6e:5d:88:bb:00:87:33:45:93:47:7b:de:52:a5: 5c:50:79:34:db:53:7f:d0:87:d0:8e:02:1b:80:c4:c7:7e:33: 55:65:13:3e:f9:76:4b:c1:ea:94:12:59:c4:16:2e:61:90:97: 9c:cc:a3:ca:f5:fb:f2:b0:30:c5:03:85:df:a2:b0:45:9e:a3: 34:f0:4a:71:d3:e8:c7:80:55:48:45:36:64:92:f7:16:5d:3d: ea:27:18:f0:72:0d:9a:66:bf:28:ec:9c:0a:61:0f:73:9e:8b: 31:c5:f5:c9:fa:5c:a6:6b:03:9d:b4:f5:b4:bb:3f:66:83:03: e0:90:bc:d5:a3:83:88:86:65:c8:e7:96:4c:43:de:f6:ac:42: c6:21:25:b5:89:3f:08:52:73:c4:ba:d0:06:05:cc:2e:e8:92: 77:c4:82:05:c5:05:1d:fc:3d:17:bc:6f:8e:2a:45:31:fd:d6: fd:9c:a5:9a:ba:91:2f:a5:ae:0f:4b:ee:d1:18:49:8e:cc:57: 4b:83:25:a8:53:73:b5:0a:06:e4:68:db:a9:38:80:8e:a3:26: 51:25:43:2e:bf:0f:bd:17:95:0f:ca:bb:0f:85:98:1a:89:bb: 39:9a:31:12:9b:24:f2:92:cb:5d:6e:35:8a:8e:85:a6:48:a3: 32:38:77:24 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QTJCMTExMC8GA1UEBRMoMUE0NTI0N0IzQTFCMDI2OTI3MUQ3NDZDNUE1RkFDMDE0 NUZGMzMyMjAeFw0yNDA1MjIxNjQ4NTJaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NGUyMWYzLTIxMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5P58XV3NnfwnitQJzNhsvfV2QZkPsBB8OKWNL2J8E6rvZZ87isQvStm+TtbJW dHuSqoDVKJkj8vxcN9QbrmF8sGG9M5WnvN081fjkMBoc68D8XSonZJdCUm8l3yBy Nnchu9XRF12c5bZdoz2QLLX9TFjJB1xSzArzcAz5hqrnBGQ2Hr+v1mn6m2iubj/S ygGLynxIgDsBT5eHxkHbl2R7Tg7Hha19BuPG8Q8rOS3QEcvwiWN7FgPEe1v1b2x1 LFLY7dh510iBcHDlNTjyim9wm+7K3Fq3iyFp1/x8vnyQy6jWfrB9ys7Dcm547JTc ObpP/k1EEgp9pPHi7qVams87AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUHQ8nw0+7 E1aDXFTDpvoIkOZQhiswHwYDVR0jBBgwFoAUGkUkezobAmknHXRsWl+sAUX/MyIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBMkIxLzE5QTgyRjY2RjNC NTExRUVCMUUyMjMwRUM0RjlBRTAyL0drVWtlem9iQW1rbkhYUnNXbC1zQVVYX015 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR2tVa2V6b2JBbWtuSFhSc1dsLXNBVVhfTXlJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTJCMS8xOUE4MkY2NkYzQjUxMUVFQjFFMjIzMEVDNEY5QUUwMi9GNDRFOEVCQ0Yz QjUxMUVFODQ1MTE1MkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAXVncDAPBAIAAjAJAwcAIAEN86VAMA0GCSqGSIb3DQEBCwUA A4IBAQBi21Ydbl2IuwCHM0WTR3veUqVcUHk021N/0IfQjgIbgMTHfjNVZRM++XZL weqUElnEFi5hkJeczKPK9fvysDDFA4XforBFnqM08Epx0+jHgFVIRTZkkvcWXT3q Jxjwcg2aZr8o7JwKYQ9znosxxfXJ+lymawOdtPW0uz9mgwPgkLzVo4OIhmXI55ZM Q972rELGISW1iT8IUnPEutAGBcwu6JJ3xIIFxQUd/D0XvG+OKkUx/db9nKWaupEv pa4PS+7RGEmOzFdLgyWoU3O1CgbkaNupOICOoyZRJUMuvw+9F5UPyrsPhZgaibs5 mjESmyTykstdbjWKjoWmSKMyOHck -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org