$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/969AE080A14211EC8C49D660C4F9AE02.roa File: 969AE080A14211EC8C49D660C4F9AE02.roa (raw, json) Hash identifier: TeNDnRuuYAnbCLS3WXII+1iDKTVyNVShsBnh2Tnr5KY= Subject key identifier: 6A:26:B9:E8:9E:C5:E7:39:7B:60:70:F0:31:0B:84:75:1F:63:88:77 Certificate issuer: /CN=A911EA62/serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Certificate serial: 02FF Authority key identifier: 89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/969AE080A14211EC8C49D660C4F9AE02.roa Signing time: Thu 25 Jan 2024 02:45:20 +0000 ROA not before: Thu 25 Jan 2024 02:45:20 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149419 IP address blocks: 103.178.216.0/23 maxlen: 23 103.178.216.0/24 maxlen: 24 103.178.217.0/24 maxlen: 24 2001:df0:4440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA62/serialNumber=89F596110030BDC9B3BAD76CFD05C3124617C952 Validity Not Before: Jan 25 02:45:20 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b1cb40-c677 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:7c:b7:56:ea:23:da:17:76:35:b2:e5:84:1d: 3c:58:d2:e8:eb:40:58:89:72:23:49:aa:aa:9d:e5: 95:1b:bb:a1:d3:81:a8:42:e8:66:17:65:79:3b:a4: b5:39:52:c9:0e:11:19:2b:30:62:44:f1:9a:11:87: 8d:4d:10:0d:8b:0b:a1:d9:ac:2c:5c:57:ac:6b:0e: 89:b8:5d:fd:e6:39:83:52:3c:24:7d:bc:a8:49:28: d5:0f:6e:56:48:9f:e3:d2:31:38:e4:68:60:1e:1a: 45:70:dc:5e:fa:9f:37:02:26:ad:3f:7a:e7:08:9a: 40:75:54:28:e5:83:1c:94:62:29:af:df:f4:40:28: 0f:f6:f0:62:22:92:ae:41:f8:f1:cc:4f:08:25:fe: 5f:2c:65:49:ea:e0:21:04:88:46:72:dc:9b:c3:4c: bf:9c:e3:d1:5c:3a:70:42:09:3a:b3:5f:8f:86:29: 33:11:d4:44:99:14:0f:6a:1a:ff:4b:1c:0a:5c:3b: 0b:40:1e:1e:cc:59:b2:41:7a:a3:5d:c9:06:cf:cb: 40:e6:3e:3d:d0:52:3d:d6:09:58:f3:c2:89:7c:ee: ca:ae:a3:11:56:1b:47:81:e0:02:46:ff:31:e2:be: 38:7a:31:e2:35:14:7d:34:19:43:22:64:a5:14:a5: 1f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:26:B9:E8:9E:C5:E7:39:7B:60:70:F0:31:0B:84:75:1F:63:88:77 X509v3 Authority Key Identifier: keyid:89:F5:96:11:00:30:BD:C9:B3:BA:D7:6C:FD:05:C3:12:46:17:C9:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/ifWWEQAwvcmzutds_QXDEkYXyVI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ifWWEQAwvcmzutds_QXDEkYXyVI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA62/1168211C806C11EC92B51C5AC4F9AE02/969AE080A14211EC8C49D660C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.216.0/23 IPv6: 2001:df0:4440::/48 Signature Algorithm: sha256WithRSAEncryption 54:52:49:c7:ef:ca:68:5b:b4:12:91:71:e8:59:57:02:03:d4: 84:dc:13:eb:15:fc:c7:71:54:2f:e1:e7:61:4f:4b:4e:30:5d: 3a:ea:3f:76:4a:56:ac:8c:d4:4e:86:0b:bc:b6:df:fb:30:e5: ed:64:01:6f:7b:ac:54:16:44:15:43:0b:e0:26:d8:5b:40:1a: 88:15:ea:71:c0:d3:77:dd:26:11:fa:42:5a:95:ce:87:83:58: 09:31:41:9f:85:0e:0e:58:38:73:b3:ce:4e:0e:f0:57:20:58: 66:bf:69:98:40:e9:0e:82:f8:c9:40:1b:e5:1c:e5:3a:20:a6: db:81:6d:7a:48:07:00:d6:6d:42:a3:4a:8b:90:9e:d6:87:bf: 57:a3:50:40:e3:8a:3a:0d:2d:f0:3e:14:49:f1:65:19:67:60: fa:8f:fe:cf:f9:2e:c7:bc:94:78:43:90:d0:1b:65:56:7d:8c: 3d:56:4a:41:fb:75:23:50:3d:22:48:b9:c4:67:0b:54:a7:53: 63:d1:fb:87:d3:5a:10:f4:69:55:6f:21:bc:a3:01:2b:fe:05: fd:ca:82:21:f9:ab:79:73:85:d5:93:8e:6d:0e:52:7a:08:a4: d8:f7:27:6c:47:f4:ad:7a:73:61:4c:3c:be:2a:d6:47:3c:c1: 4c:9f:dd:d6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBNjIxMTAvBgNVBAUTKDg5RjU5NjExMDAzMEJEQzlCM0JBRDc2Q0ZEMDVDMzEy NDYxN0M5NTIwHhcNMjQwMTI1MDI0NTIwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIxY2I0MC1jNjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwny3Vuoj2hd2NbLlhB08WNLo60BYiXIjSaqqneWVG7uh04GoQuhmF2V5O6S1 OVLJDhEZKzBiRPGaEYeNTRANiwuh2awsXFesaw6JuF395jmDUjwkfbyoSSjVD25W SJ/j0jE45GhgHhpFcNxe+p83AiatP3rnCJpAdVQo5YMclGIpr9/0QCgP9vBiIpKu QfjxzE8IJf5fLGVJ6uAhBIhGctybw0y/nOPRXDpwQgk6s1+PhikzEdREmRQPahr/ SxwKXDsLQB4ezFmyQXqjXckGz8tA5j490FI91glY88KJfO7KrqMRVhtHgeACRv8x 4r44ejHiNRR9NBlDImSlFKUf6wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGomueie xec5e2Bw8DELhHUfY4h3MB8GA1UdIwQYMBaAFIn1lhEAML3Js7rXbP0FwxJGF8lS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUE2Mi8xMTY4MjExQzgw NkMxMUVDOTJCNTFDNUFDNEY5QUUwMi9pZldXRVFBd3ZjbXp1dGRzX1FYREVrWVh5 VkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lmV1dFUUF3dmNtenV0ZHNfUVhERWtZWHlWSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVBNjIvMTE2ODIxMUM4MDZDMTFFQzkyQjUxQzVBQzRGOUFFMDIvOTY5QUUwODBB MTQyMTFFQzhDNDlENjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnstgwDwQCAAIwCQMHACABDfBEQDANBgkqhkiG9w0BAQsF AAOCAQEAVFJJx+/KaFu0EpFx6FlXAgPUhNwT6xX8x3FUL+HnYU9LTjBdOuo/dkpW rIzUToYLvLbf+zDl7WQBb3usVBZEFUML4CbYW0AaiBXqccDTd90mEfpCWpXOh4NY CTFBn4UODlg4c7POTg7wVyBYZr9pmEDpDoL4yUAb5RzlOiCm24FtekgHANZtQqNK i5Ce1oe/V6NQQOOKOg0t8D4USfFlGWdg+o/+z/kux7yUeEOQ0BtlVn2MPVZKQft1 I1A9Iki5xGcLVKdTY9H7h9NaEPRpVW8hvKMBK/4F/cqCIfmreXOF1ZOObQ5Segik 2PcnbEf0rXpzYUw8virWRzzBTJ/d1g== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:31 2024 by rpki-client on console-fra.rpki-client.org