$ rpki-client -vvf rpki.apnic.net/member_repository/A911FA99/06023C76383F11EAAEE89445C4F9AE02/730BD0EC384011EAADE7134BC4F9AE02.roa File: 730BD0EC384011EAADE7134BC4F9AE02.roa (raw, json) Hash identifier: paapjxPleKLebHDMRnmQwPcu9J7d7Sr7UlJFEzedjKg= Subject key identifier: C5:60:F2:40:C5:4B:20:91:2E:72:43:36:2F:95:5F:AF:97:79:93:65 Certificate issuer: /CN=A911FA99/serialNumber=03A8566C8031F562199DF99D9B99B9C7E719F890 Certificate serial: 0A77 Authority key identifier: 03:A8:56:6C:80:31:F5:62:19:9D:F9:9D:9B:99:B9:C7:E7:19:F8:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6hWbIAx9WIZnfmdm5m5x-cZ-JA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FA99/06023C76383F11EAAEE89445C4F9AE02/730BD0EC384011EAADE7134BC4F9AE02.roa Signing time: Mon 22 Apr 2024 20:29:16 +0000 ROA not before: Mon 22 Apr 2024 20:29:16 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137510 IP address blocks: 103.111.72.0/22 maxlen: 22 103.111.72.0/23 maxlen: 23 103.111.72.0/24 maxlen: 24 103.111.73.0/24 maxlen: 24 103.111.74.0/24 maxlen: 24 103.111.75.0/24 maxlen: 24 2402:97c0::/32 maxlen: 32 2402:97c0:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FA99/06023C76383F11EAAEE89445C4F9AE02/A6hWbIAx9WIZnfmdm5m5x-cZ-JA.crl rsync://rpki.apnic.net/member_repository/A911FA99/06023C76383F11EAAEE89445C4F9AE02/A6hWbIAx9WIZnfmdm5m5x-cZ-JA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6hWbIAx9WIZnfmdm5m5x-cZ-JA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 20:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2679 (0xa77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FA99/serialNumber=03A8566C8031F562199DF99D9B99B9C7E719F890 Validity Not Before: Apr 22 20:29:16 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6626c89b-2f9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:5a:fd:fb:3c:21:2f:ef:fa:d5:a3:77:5c:c5: 19:38:c4:e3:29:15:64:81:c2:2d:74:19:03:bb:1b: 96:d6:44:8d:74:46:28:7c:cb:e3:3a:e8:c6:41:7c: e5:c3:49:c1:86:c1:0e:40:1a:1f:41:e8:55:d7:7b: 41:0a:d6:b1:3b:a4:d1:c2:98:13:09:7d:c7:50:3d: 6b:a9:f9:a0:a3:a3:60:0c:33:aa:b4:b5:fe:d9:f3: 30:3f:f1:0a:4e:34:62:b0:90:dc:db:48:c3:f5:0b: 5f:49:e8:01:e5:53:3d:e3:e1:f2:c1:0a:1e:28:29: 4d:83:df:5c:96:f1:52:41:a1:ab:82:c8:6f:0c:df: 95:ea:62:10:c9:bb:2d:84:26:70:b6:b3:27:f6:e7: a7:b7:21:6e:35:b6:d9:e6:4f:5a:94:8c:d2:26:6a: 32:7f:0f:6f:ea:d6:b1:db:d1:9a:8b:8b:9e:f8:63: 9b:0d:42:5e:46:26:72:6c:66:a7:29:98:d2:d5:a2: 44:36:0f:8a:28:03:a3:52:8f:05:07:1e:d2:af:d4: e8:4d:51:61:bb:c3:22:1c:ee:84:2e:fa:18:f3:94: 94:3a:87:12:82:5d:f7:fd:d4:60:8e:1e:e1:9a:d4: 3b:85:ae:1c:18:5c:8f:23:98:06:d1:0d:fc:b8:bf: 92:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:60:F2:40:C5:4B:20:91:2E:72:43:36:2F:95:5F:AF:97:79:93:65 X509v3 Authority Key Identifier: keyid:03:A8:56:6C:80:31:F5:62:19:9D:F9:9D:9B:99:B9:C7:E7:19:F8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FA99/06023C76383F11EAAEE89445C4F9AE02/A6hWbIAx9WIZnfmdm5m5x-cZ-JA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A6hWbIAx9WIZnfmdm5m5x-cZ-JA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FA99/06023C76383F11EAAEE89445C4F9AE02/730BD0EC384011EAADE7134BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.72.0/22 IPv6: 2402:97c0::/32 Signature Algorithm: sha256WithRSAEncryption 50:59:94:9c:64:ac:40:21:07:16:4e:a3:92:80:94:81:5f:37: cb:7a:26:ed:d6:c8:74:4c:72:bf:99:cc:36:8c:00:cc:d1:30: 51:46:b2:1d:73:e1:d5:a1:62:f5:3b:e2:ff:38:31:ee:c7:2a: da:d1:2e:e9:24:9d:e5:38:f0:1a:ba:aa:86:97:3f:45:f1:28: 93:16:a0:5e:52:06:d6:77:9b:af:6c:3d:13:5a:af:c6:57:f3: 66:ca:d8:1a:86:57:c1:b8:a1:2b:5f:a5:12:74:95:dd:c3:c5: 29:4d:5c:81:c2:43:19:74:07:0c:f6:6c:c3:37:37:63:77:04: 5b:8f:a5:d2:f4:1e:6c:08:fa:fa:86:be:4d:a1:a8:b5:ef:21: 9f:9d:f7:d7:76:4b:db:71:03:f3:9e:fd:39:d7:66:a4:94:71: 1a:ba:f4:b0:6d:c8:a7:ac:c5:04:19:9b:60:ee:67:36:42:88: f5:c8:3c:23:52:ad:24:5f:be:ab:35:db:db:57:5e:16:b6:02: 01:bf:31:47:3d:57:18:d4:df:f3:ea:d9:b6:32:fc:09:0c:fd: 4c:50:94:8e:ad:86:31:0d:20:a1:65:25:c1:e3:d5:1d:a5:51: ed:70:cf:2b:47:80:3a:bd:80:93:15:bf:48:47:f6:3b:1c:30: f2:f3:2a:98 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBOTkxMTAvBgNVBAUTKDAzQTg1NjZDODAzMUY1NjIxOTlERjk5RDlCOTlCOUM3 RTcxOUY4OTAwHhcNMjQwNDIyMjAyOTE2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI2Yzg5Yi0yZjlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulr9+zwhL+/61aN3XMUZOMTjKRVkgcItdBkDuxuW1kSNdEYofMvjOujGQXzl w0nBhsEOQBofQehV13tBCtaxO6TRwpgTCX3HUD1rqfmgo6NgDDOqtLX+2fMwP/EK TjRisJDc20jD9QtfSegB5VM94+HywQoeKClNg99clvFSQaGrgshvDN+V6mIQybst hCZwtrMn9uentyFuNbbZ5k9alIzSJmoyfw9v6tax29Gai4ue+GObDUJeRiZybGan KZjS1aJENg+KKAOjUo8FBx7Sr9ToTVFhu8MiHO6ELvoY85SUOocSgl33/dRgjh7h mtQ7ha4cGFyPI5gG0Q38uL+SRwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMVg8kDF SyCRLnJDNi+VX6+XeZNlMB8GA1UdIwQYMBaAFAOoVmyAMfViGZ35nZuZucfnGfiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkE5OS8wNjAyM0M3NjM4 M0YxMUVBQUVFODk0NDVDNEY5QUUwMi9BNmhXYklBeDlXSVpuZm1kbTVtNXgtY1ot SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E2aFdiSUF4OVdJWm5mbWRtNW01eC1jWi1KQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZBOTkvMDYwMjNDNzYzODNGMTFFQUFFRTg5NDQ1QzRGOUFFMDIvNzMwQkQwRUMz ODQwMTFFQUFERTcxMzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnb0gwDQQCAAIwBwMFACQCl8AwDQYJKoZIhvcNAQELBQAD ggEBAFBZlJxkrEAhBxZOo5KAlIFfN8t6Ju3WyHRMcr+ZzDaMAMzRMFFGsh1z4dWh YvU74v84Me7HKtrRLukkneU48Bq6qoaXP0XxKJMWoF5SBtZ3m69sPRNar8ZX82bK 2BqGV8G4oStfpRJ0ld3DxSlNXIHCQxl0Bwz2bMM3N2N3BFuPpdL0HmwI+vqGvk2h qLXvIZ+d99d2S9txA/Oe/TnXZqSUcRq69LBtyKesxQQZm2DuZzZCiPXIPCNSrSRf vqs129tXXha2AgG/MUc9VxjU3/Pq2bYy/AkM/UxQlI6thjENIKFlJcHj1R2lUe1w zytHgDq9gJMVv0hH9jscMPLzKpg= -----END CERTIFICATE-----Generated at Fri Jun 14 21:14:23 2024 by rpki-client on console-fra.rpki-client.org