$ rpki-client -vvf rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/318BC266FEA911E8BF138B59C4F9AE02.roa File: 318BC266FEA911E8BF138B59C4F9AE02.roa (raw, json) Hash identifier: J/CivEwQllds1vZh7Qpd8MrT8E7MxLEHwHoWEk2nUKg= Subject key identifier: 62:0C:5E:4C:16:77:12:5C:6E:C0:8F:79:4D:19:A1:73:94:AE:2D:4E Certificate issuer: /CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Certificate serial: 10A3 Authority key identifier: 96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/318BC266FEA911E8BF138B59C4F9AE02.roa Signing time: Thu 07 Mar 2024 18:41:28 +0000 ROA not before: Thu 07 Mar 2024 18:41:28 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 10222 IP address blocks: 103.77.192.0/23 maxlen: 23 103.77.192.0/24 maxlen: 24 103.77.193.0/24 maxlen: 24 103.77.194.0/23 maxlen: 24 116.206.208.0/23 maxlen: 23 116.206.208.0/24 maxlen: 24 116.206.209.0/24 maxlen: 24 116.206.210.0/23 maxlen: 23 116.206.210.0/24 maxlen: 24 116.206.211.0/24 maxlen: 24 2402:15c0:1::/48 maxlen: 48 2402:15c0:2::/48 maxlen: 48 2402:15c0:3::/48 maxlen: 48 2402:15c0:4::/48 maxlen: 48 2402:15c0:5::/48 maxlen: 48 2402:15c0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:07:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4259 (0x10a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BA4B/serialNumber=96A799A2F4B308B22522BCE45E318D6A7026292B Validity Not Before: Mar 7 18:41:28 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65ea0a58-9ca7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:32:1a:90:ce:dc:e6:3b:f5:95:8b:d0:bd:3f: 87:22:b3:1e:79:2b:b3:27:c1:c7:9b:02:62:b9:f7: de:a0:2b:7f:8c:97:00:1b:d6:21:28:b9:b0:92:c0: 04:ea:c2:4c:c1:a8:26:77:d7:a7:b9:7c:b8:f1:90: 09:47:94:1b:da:8b:46:e2:be:ec:16:35:9f:67:d2: 7b:46:3e:3b:0d:47:f9:9a:66:d4:f6:0d:67:ae:3d: c5:a0:26:0a:73:94:17:a9:ac:5a:38:73:f8:b5:6d: 1e:94:5d:ed:c1:98:92:52:d4:c5:5f:48:46:51:5d: 7c:a1:b2:44:44:ef:d3:15:b6:c3:9e:89:91:db:d4: 12:50:58:6f:74:5c:09:33:48:d1:16:9e:24:e6:e1: 9a:80:5a:d6:23:6d:b7:bd:a9:76:5d:ec:bd:72:ea: 5c:ca:3d:6c:ec:70:75:16:40:71:21:1f:de:27:eb: 0a:7f:82:91:31:b3:2c:a2:6e:cb:b6:79:99:45:e5: 81:e9:26:04:93:9c:d6:91:d7:71:cc:c3:51:a0:c5: 0e:c0:84:46:c8:b7:e2:7a:8c:5c:3a:76:53:06:b8: 96:e2:fe:bf:87:70:82:3d:c1:35:e7:1a:00:b6:2f: 35:b5:80:3d:88:ee:6f:d2:53:4e:31:59:e5:4a:4e: cd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:0C:5E:4C:16:77:12:5C:6E:C0:8F:79:4D:19:A1:73:94:AE:2D:4E X509v3 Authority Key Identifier: keyid:96:A7:99:A2:F4:B3:08:B2:25:22:BC:E4:5E:31:8D:6A:70:26:29:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/lqeZovSzCLIlIrzkXjGNanAmKSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lqeZovSzCLIlIrzkXjGNanAmKSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BA4B/E377FD7AFEA711E8A2E4B457C4F9AE02/318BC266FEA911E8BF138B59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.192.0/22 116.206.208.0/22 IPv6: 2402:15c0:1::-2402:15c0:6:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a4:c8:95:f0:13:85:b4:44:d1:b9:dc:f0:ef:69:19:58:58:89: b8:fc:8a:39:ab:f7:be:8d:87:17:fc:91:1c:f1:cd:57:ce:95: a4:13:ef:ee:35:02:0b:35:cb:c6:4f:e9:f0:4a:9e:c2:f8:c2: c3:f8:3a:d5:b0:f9:09:3f:1f:e1:85:2b:9b:29:12:86:87:6c: 8b:53:58:ce:13:cf:cb:0a:15:c0:8f:b6:f7:0b:a0:fd:18:91: d5:ce:7f:17:67:73:d3:15:d6:f9:4b:b3:26:b3:75:f6:0d:2e: d5:10:78:ca:ac:05:e7:65:bf:35:0b:31:b0:25:2b:b0:f7:df: a7:3c:2a:5f:3a:79:2c:e3:52:a0:b0:e3:a4:9e:e5:d6:0a:9d: a9:f4:8e:9a:c2:a4:0b:9a:3a:ed:c4:79:96:42:f5:e0:ef:1e: 65:55:07:d2:39:a0:5e:1c:34:cb:cb:a6:5b:34:73:cf:72:87: 3b:16:eb:b7:e3:a7:e2:03:59:4a:75:be:35:3f:a7:4c:97:9d: 2b:1b:74:d6:b4:10:0c:20:fa:1e:1c:12:64:0e:cb:38:f6:af: 07:14:53:0b:2c:fe:6d:f5:0a:39:02:4c:5f:27:94:4c:e6:6f: fd:3a:01:ff:c3:57:18:5e:37:ea:b6:67:1e:28:a6:2b:bd:f7: b8:da:c7:1f -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICEKMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJBNEIxMTAvBgNVBAUTKDk2QTc5OUEyRjRCMzA4QjIyNTIyQkNFNDVFMzE4RDZB NzAyNjI5MkIwHhcNMjQwMzA3MTg0MTI4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWVhMGE1OC05Y2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzIakM7c5jv1lYvQvT+HIrMeeSuzJ8HHmwJiuffeoCt/jJcAG9YhKLmwksAE 6sJMwagmd9enuXy48ZAJR5Qb2otG4r7sFjWfZ9J7Rj47DUf5mmbU9g1nrj3FoCYK c5QXqaxaOHP4tW0elF3twZiSUtTFX0hGUV18obJERO/TFbbDnomR29QSUFhvdFwJ M0jRFp4k5uGagFrWI223val2Xey9cupcyj1s7HB1FkBxIR/eJ+sKf4KRMbMsom7L tnmZReWB6SYEk5zWkddxzMNRoMUOwIRGyLfieoxcOnZTBriW4v6/h3CCPcE15xoA ti81tYA9iO5v0lNOMVnlSk7NLwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFGIMXkwW dxJcbsCPeU0ZoXOUri1OMB8GA1UdIwQYMBaAFJanmaL0swiyJSK85F4xjWpwJikr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkE0Qi9FMzc3RkQ3QUZF QTcxMUU4QTJFNEI0NTdDNEY5QUUwMi9scWVab3ZTekNMSWxJcnprWGpHTmFuQW1L U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xxZVpvdlN6Q0xJbElyemtYakdOYW5BbUtTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJBNEIvRTM3N0ZEN0FGRUE3MTFFOEEyRTRCNDU3QzRGOUFFMDIvMzE4QkMyNjZG RUE5MTFFOEJGMTM4QjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMBIEAgABMAwDBAJnTcADBAJ0ztAwGgQCAAIwFDASAwcAJAIVwAABAwcAJAIV wAAGMA0GCSqGSIb3DQEBCwUAA4IBAQCkyJXwE4W0RNG53PDvaRlYWIm4/Io5q/e+ jYcX/JEc8c1XzpWkE+/uNQILNcvGT+nwSp7C+MLD+DrVsPkJPx/hhSubKRKGh2yL U1jOE8/LChXAj7b3C6D9GJHVzn8XZ3PTFdb5S7Mms3X2DS7VEHjKrAXnZb81CzGw JSuw99+nPCpfOnks41KgsOOknuXWCp2p9I6awqQLmjrtxHmWQvXg7x5lVQfSOaBe HDTLy6ZbNHPPcoc7Fuu346fiA1lKdb41P6dMl50rG3TWtBAMIPoeHBJkDss49q8H FFMLLP5t9Qo5AkxfJ5RM5m/9OgH/w1cYXjfqtmceKKYrvfe42scf -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:03 2024 by rpki-client on console-ams.rpki-client.org