$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/32774EE811D111EF9084EB51C4F9AE02.roa File: 32774EE811D111EF9084EB51C4F9AE02.roa (raw, json) Hash identifier: V9usOzPAdKK9jMVQGcuVGweVP8nCtZVwDrKv/1lQBEU= Subject key identifier: 1B:CA:88:89:39:92:41:CF:86:71:1F:DD:C1:81:43:CA:C3:64:FE:59 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 05E5 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/32774EE811D111EF9084EB51C4F9AE02.roa Signing time: Tue 14 May 2024 09:08:01 +0000 ROA not before: Tue 14 May 2024 09:08:01 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 140630 IP address blocks: 103.209.235.0/24 maxlen: 24 163.53.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 09:17:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1509 (0x5e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: May 14 09:08:01 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=664329f1-482d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:4f:5c:af:05:eb:2e:ed:f0:a4:36:9f:76:87: 9a:07:fd:8d:f0:ce:44:c1:24:08:50:56:9e:d4:31: 34:88:54:43:ba:e2:ac:b5:2e:4e:44:61:32:9d:cc: ac:4b:48:0c:90:2a:27:65:45:35:11:78:d5:ce:58: 16:ad:41:24:62:ba:49:da:c1:49:d7:62:6a:3c:e5: 02:b1:4b:a2:75:5f:47:87:df:19:e9:87:18:74:c9: bd:f7:03:08:ea:4b:79:5a:e5:3c:30:eb:a7:7e:1a: c6:dc:66:5e:da:8a:d0:13:58:6c:01:7c:da:ef:0f: 25:52:af:2d:02:aa:2f:52:7f:ef:56:e6:3c:4d:b3: 31:90:0e:a4:53:df:8b:15:7d:6a:fa:30:99:93:77: 2f:9d:d5:80:72:a0:a4:fb:38:1a:07:7a:47:d1:44: 01:63:9d:f5:34:ae:4e:fe:69:ee:53:dd:0f:f7:ba: 2f:67:6c:47:89:ea:05:fa:5f:9b:a4:34:02:a3:ae: f1:6d:16:4a:32:d4:66:db:5c:04:06:02:04:d0:ba: cc:25:0c:71:33:be:e9:f7:62:74:c5:2a:0a:0c:20: 77:4a:91:e1:33:10:5d:84:a7:16:55:92:d1:08:a5: 4c:63:ba:77:f9:7a:b0:d9:1e:f1:7a:96:55:75:3c: 1a:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:CA:88:89:39:92:41:CF:86:71:1F:DD:C1:81:43:CA:C3:64:FE:59 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/32774EE811D111EF9084EB51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.235.0/24 163.53.19.0/24 Signature Algorithm: sha256WithRSAEncryption 70:00:aa:78:96:9d:d0:09:cf:57:5e:5f:18:66:40:47:09:fd: 9d:12:09:b8:50:6a:2c:f1:00:e3:e1:17:69:2b:7f:ef:e8:a1: 09:40:ce:95:fa:52:66:da:d1:3f:bb:4a:f7:c4:5c:67:8d:e4: a8:b6:20:5a:4a:fd:25:03:f0:05:62:a8:14:0d:b3:43:94:74: 1d:f6:b5:44:71:b8:52:a5:de:36:e0:66:a3:b0:c1:1b:43:61: a3:88:6f:51:98:19:b3:2c:9d:2c:6b:c1:ee:3d:a2:6f:aa:8e: 79:09:9c:74:98:20:55:4d:be:5d:73:e0:04:55:c2:e6:69:6a: 06:9c:90:fb:64:65:0b:ea:bd:a4:14:52:4a:5a:9c:f5:b5:ea: 66:a6:11:67:3e:6c:3f:6d:9e:97:46:a0:bb:ff:8f:cb:26:5f: 1e:cf:5e:6f:f2:42:ef:79:73:81:d5:70:30:75:af:13:14:54: 58:0b:39:99:6a:f0:f6:46:52:9d:a5:e2:c9:0a:76:bc:7a:cd: 05:7e:e6:3c:17:b3:c6:82:a7:ab:8b:b0:62:71:ce:d9:91:a3: 1e:5d:ba:b2:28:58:62:9e:2c:d2:2f:fb:f8:ce:41:7d:fe:84: 74:a7:8c:e4:a3:55:37:ca:6a:49:7b:fb:45:a9:56:a3:56:fa: f6:27:27:a0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQwNTE0MDkwODAxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzMjlmMS00ODJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtk9crwXrLu3wpDafdoeaB/2N8M5EwSQIUFae1DE0iFRDuuKstS5ORGEyncys S0gMkConZUU1EXjVzlgWrUEkYrpJ2sFJ12JqPOUCsUuidV9Hh98Z6YcYdMm99wMI 6kt5WuU8MOunfhrG3GZe2orQE1hsAXza7w8lUq8tAqovUn/vVuY8TbMxkA6kU9+L FX1q+jCZk3cvndWAcqCk+zgaB3pH0UQBY531NK5O/mnuU90P97ovZ2xHieoF+l+b pDQCo67xbRZKMtRm21wEBgIE0LrMJQxxM77p92J0xSoKDCB3SpHhMxBdhKcWVZLR CKVMY7p3+Xqw2R7xepZVdTwadQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBvKiIk5 kkHPhnEf3cGBQ8rDZP5ZMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvMzI3NzRFRTgx MUQxMTFFRjkwODRFQjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn0esDBACjNRMwDQYJKoZIhvcNAQELBQADggEBAHAAqniW ndAJz1deXxhmQEcJ/Z0SCbhQaizxAOPhF2krf+/ooQlAzpX6Umba0T+7SvfEXGeN 5Ki2IFpK/SUD8AViqBQNs0OUdB32tURxuFKl3jbgZqOwwRtDYaOIb1GYGbMsnSxr we49om+qjnkJnHSYIFVNvl1z4ARVwuZpagackPtkZQvqvaQUUkpanPW16mamEWc+ bD9tnpdGoLv/j8smXx7PXm/yQu95c4HVcDB1rxMUVFgLOZlq8PZGUp2l4skKdrx6 zQV+5jwXs8aCp6uLsGJxztmRox5durIoWGKeLNIv+/jOQX3+hHSnjOSjVTfKakl7 +0WpVqNW+vYnJ6A= -----END CERTIFICATE-----Generated at Mon Jun 17 11:41:52 2024 by rpki-client on console-ams.rpki-client.org