$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/EC985F92AD6D11EE83DA6253C4F9AE02.roa File: EC985F92AD6D11EE83DA6253C4F9AE02.roa (raw, json) Hash identifier: 0e05LN2SDiZX/SSemFkZCiPIBxRNvjcncCXU0klfz00= Subject key identifier: E1:4B:32:F1:F0:F2:8F:3C:32:EB:83:F0:A5:D6:F6:F6:D2:B6:D2:AE Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: 36 Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/EC985F92AD6D11EE83DA6253C4F9AE02.roa Signing time: Fri 16 Feb 2024 03:30:52 +0000 ROA not before: Fri 16 Feb 2024 03:30:52 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136593 IP address blocks: 103.94.185.0/24 maxlen: 24 103.99.115.0/24 maxlen: 24 103.99.178.0/23 maxlen: 23 103.99.179.0/24 maxlen: 24 202.91.33.0/24 maxlen: 24 202.91.34.0/24 maxlen: 24 202.91.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Validity Not Before: Feb 16 03:30:52 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ced6ec-8f09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:87:3f:70:da:7f:62:ea:ed:d4:10:f9:57:0c: c4:53:ea:5a:3b:9a:55:27:88:da:42:75:64:94:73: 23:11:6f:a1:56:25:d3:66:87:54:75:6c:cb:72:7d: ca:c0:1b:63:e2:eb:52:bf:dc:58:24:d9:01:24:22: bd:41:53:b8:ae:31:1c:a6:cc:c3:97:d7:4e:d8:be: d3:07:78:e9:68:ba:c5:47:d4:2a:a0:39:38:05:69: 42:8f:cc:ab:d9:d5:18:a4:01:d0:d1:51:b3:7b:fd: 8c:4e:58:00:8a:82:db:96:d5:c4:ca:0f:0e:78:c9: a8:36:85:e8:4e:3c:e7:2c:7c:3a:02:75:ba:c2:3f: aa:75:4d:6f:85:24:64:37:1c:3e:c2:3e:15:89:bf: 8a:71:e2:29:3a:bb:96:60:81:c9:14:54:85:bd:41: 08:50:38:13:0b:90:a7:61:ed:ae:95:6b:1f:44:75: a4:a6:57:e0:a9:26:bf:56:1a:d4:96:44:e3:50:53: 3b:52:65:2c:eb:0e:4d:68:f1:5d:ea:e4:73:ff:eb: da:69:2f:c7:bc:78:b3:c1:07:a9:f5:d9:01:c8:eb: b2:54:5b:91:be:23:3b:39:50:b6:4e:4c:f5:f6:b0: bc:6c:f3:77:66:2f:34:cb:68:66:8a:3a:93:c9:27: 32:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:4B:32:F1:F0:F2:8F:3C:32:EB:83:F0:A5:D6:F6:F6:D2:B6:D2:AE X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/EC985F92AD6D11EE83DA6253C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.185.0/24 103.99.115.0/24 103.99.178.0/23 202.91.33.0-202.91.35.255 Signature Algorithm: sha256WithRSAEncryption 14:0a:b7:c8:a0:27:85:94:3e:58:9a:a1:43:cd:3a:66:c1:11: 11:24:b6:6c:9a:b4:11:7f:d4:f4:96:27:56:ca:26:78:15:88: a1:64:57:37:c8:d6:61:14:c8:7e:fc:2d:61:d3:ae:9c:0f:ad: 2f:7f:6b:be:d6:6c:55:5f:a1:ad:52:d1:8b:4c:64:94:91:b8: c4:6a:6d:e7:f5:2b:da:cc:bf:8d:bd:5c:de:28:e6:9d:eb:95: 25:6a:ba:2c:b0:5f:29:0f:1e:0d:c5:34:b0:93:1c:ca:36:20: 11:6c:51:58:df:69:83:3f:08:00:05:cc:6d:2f:2b:dd:9c:87: d8:65:7d:b9:1d:00:fe:d9:a7:9e:09:a4:2a:3a:77:66:b1:84: b0:e4:c9:4d:f6:65:f0:f1:f9:47:de:42:b4:42:b2:52:b2:78: 9e:a5:4e:35:e9:f5:81:00:f6:74:07:4d:e3:8d:37:6e:71:72: 02:0b:b2:d6:d2:d4:4e:d2:f2:f1:e5:f0:c7:89:08:3d:09:25: 11:f5:20:ea:aa:7f:6e:d3:31:0b:cc:1d:12:ef:20:0c:7c:ea: e8:b9:c7:90:10:d4:50:cc:3b:b8:ab:d6:bb:c9:b3:a0:02:14: 4f:f5:d5:60:5f:fa:98:89:fc:33:88:da:47:2c:89:14:ea:45: 52:6b:c8:e0 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RUQyQzExMC8GA1UEBRMoOUQzNDE0MjgzQjIyN0I4RjUxMkYzMDVGMkFDREI0M0NE RTlFNEQxMjAeFw0yNDAyMTYwMzMwNTJaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Y2VkNmVjLThmMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDShz9w2n9i6u3UEPlXDMRT6lo7mlUniNpCdWSUcyMRb6FWJdNmh1R1bMtyfcrA G2Pi61K/3Fgk2QEkIr1BU7iuMRymzMOX107YvtMHeOlousVH1CqgOTgFaUKPzKvZ 1RikAdDRUbN7/YxOWACKgtuW1cTKDw54yag2hehOPOcsfDoCdbrCP6p1TW+FJGQ3 HD7CPhWJv4px4ik6u5ZggckUVIW9QQhQOBMLkKdh7a6Vax9EdaSmV+CpJr9WGtSW RONQUztSZSzrDk1o8V3q5HP/69ppL8e8eLPBB6n12QHI67JUW5G+Izs5ULZOTPX2 sLxs83dmLzTLaGaKOpPJJzK7AgMBAAGjggKvMIICqzAdBgNVHQ4EFgQU4Usy8fDy jzwy64Pwpdb29tK20q4wHwYDVR0jBBgwFoAUnTQUKDsie49RLzBfKs20PN6eTRIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFRDJDLzAwMzczQzZDOUJC QzExRUU4NTFBREQ1MEM0RjlBRTAyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRS SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvblRRVUtEc2llNDlSTHpCZktzMjBQTjZlVFJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUQyQy8wMDM3M0M2QzlCQkMxMUVFODUxQURENTBDNEY5QUUwMi9FQzk4NUY5MkFE NkQxMUVFODNEQTYyNTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA5BggrBgEFBQcBBwEB/wQq MCgwJgQCAAEwIAMEAGdeuQMEAGdjcwMEAWdjsjAMAwQAylshAwQCylsgMA0GCSqG SIb3DQEBCwUAA4IBAQAUCrfIoCeFlD5YmqFDzTpmwRERJLZsmrQRf9T0lidWyiZ4 FYihZFc3yNZhFMh+/C1h066cD60vf2u+1mxVX6GtUtGLTGSUkbjEam3n9SvazL+N vVzeKOad65UlarossF8pDx4NxTSwkxzKNiARbFFY32mDPwgABcxtLyvdnIfYZX25 HQD+2aeeCaQqOndmsYSw5MlN9mXw8flH3kK0QrJSsniepU416fWBAPZ0B03jjTdu cXICC7LW0tRO0vLx5fDHiQg9CSUR9SDqqn9u0zELzB0S7yAMfOrouceQENRQzDu4 q9a7ybOgAhRP9dVgX/qYifwziNpHLIkU6kVSa8jg -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org