$ rpki-client -vvf rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/F7D11060619811ED9437B344C4F9AE02.roa File: F7D11060619811ED9437B344C4F9AE02.roa (raw, json) Hash identifier: peR4Q1RC/id5WG6A9+mOWQmV5w0o0mAu0N3EHAwzZMM= Subject key identifier: 18:DB:43:CA:BB:E8:FF:C3:73:05:56:FA:72:AE:45:FE:11:F8:D3:27 Certificate issuer: /CN=A9124679/serialNumber=0A480517741076FE763E4E9E32F35BD459893292 Certificate serial: DD Authority key identifier: 0A:48:05:17:74:10:76:FE:76:3E:4E:9E:32:F3:5B:D4:59:89:32:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkgFF3QQdv52Pk6eMvNb1FmJMpI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/F7D11060619811ED9437B344C4F9AE02.roa Signing time: Sat 09 Dec 2023 04:34:37 +0000 ROA not before: Sat 09 Dec 2023 04:34:37 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134840 IP address blocks: 103.203.132.0/24 maxlen: 24 103.203.133.0/24 maxlen: 24 103.203.134.0/24 maxlen: 24 103.203.135.0/24 maxlen: 24 116.206.192.0/24 maxlen: 24 116.206.193.0/24 maxlen: 24 116.206.194.0/24 maxlen: 24 116.206.195.0/24 maxlen: 24 121.46.71.0/24 maxlen: 24 180.235.116.0/24 maxlen: 24 180.235.117.0/24 maxlen: 24 180.235.118.0/24 maxlen: 24 180.235.119.0/24 maxlen: 24 2403:c280::/32 maxlen: 32 2403:c280::/48 maxlen: 48 2403:c280:1::/48 maxlen: 48 2403:c280:2::/48 maxlen: 48 2403:c280:3::/48 maxlen: 48 2403:c280:4::/48 maxlen: 48 2403:c280:5::/48 maxlen: 48 2403:c280:6::/48 maxlen: 48 2403:c280:7::/48 maxlen: 48 2403:c280:8::/48 maxlen: 48 2403:c280:9::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/CkgFF3QQdv52Pk6eMvNb1FmJMpI.crl rsync://rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/CkgFF3QQdv52Pk6eMvNb1FmJMpI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkgFF3QQdv52Pk6eMvNb1FmJMpI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124679/serialNumber=0A480517741076FE763E4E9E32F35BD459893292 Validity Not Before: Dec 9 04:34:37 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6573ee5c-cb7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:75:a6:a9:65:31:40:07:b3:c6:56:ed:c8:8a: 88:8d:a5:34:c7:db:9f:5d:b8:7c:80:ff:c1:3e:8a: 8c:30:36:39:b8:5e:60:23:4f:d9:e9:dc:c0:90:57: f7:a8:e5:9a:13:c5:1e:1d:c4:45:94:09:d5:63:9c: 45:c5:82:27:bf:e9:0d:47:e9:a6:d5:12:10:10:c6: b4:49:d3:15:b1:dc:62:6e:87:9b:bd:12:c7:ae:94: 47:39:7e:9a:de:8b:3b:12:e6:16:1b:64:15:b5:3a: 71:ab:4c:e6:48:76:be:bb:a0:a8:f4:e3:d9:41:2e: 32:ce:fc:19:d5:c1:93:32:c0:65:e1:c0:c8:be:96: 26:85:04:c0:07:97:a0:04:a6:ac:3a:b4:56:45:23: d1:68:76:90:4d:f4:9f:d9:9d:8f:b4:fb:1d:2d:7c: b0:2f:f6:e0:88:39:29:00:a0:74:58:05:1b:8c:af: 03:d1:1c:cc:bc:4d:0e:c2:f7:3e:59:65:8b:d0:d6: f2:a8:c2:fa:38:68:fc:e7:56:64:8c:f4:3b:2e:f2: 9d:d0:5c:bc:9d:3c:37:01:07:89:87:59:f2:9f:d6: 2e:f6:cc:e9:20:17:a6:d3:58:5b:f7:39:d8:17:36: fd:e0:6e:6c:be:0e:ce:4c:cc:a9:0c:e4:06:57:dd: 7a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:DB:43:CA:BB:E8:FF:C3:73:05:56:FA:72:AE:45:FE:11:F8:D3:27 X509v3 Authority Key Identifier: keyid:0A:48:05:17:74:10:76:FE:76:3E:4E:9E:32:F3:5B:D4:59:89:32:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/CkgFF3QQdv52Pk6eMvNb1FmJMpI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CkgFF3QQdv52Pk6eMvNb1FmJMpI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124679/F5B78A88619411ED8CDBA23EC4F9AE02/F7D11060619811ED9437B344C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.132.0/22 116.206.192.0/22 121.46.71.0/24 180.235.116.0/22 IPv6: 2403:c280::/32 Signature Algorithm: sha256WithRSAEncryption 1d:ee:54:75:f6:7c:75:01:1e:1e:23:e9:45:0f:ef:58:2c:c6: 51:f4:47:4d:33:5e:c4:f7:e5:c1:5d:75:65:c7:a8:76:04:9a: 65:3b:39:74:65:94:3b:93:ca:c5:35:e0:eb:9b:57:8d:b9:17: 9d:4d:2f:58:08:dd:fa:e9:45:21:7d:a4:ec:20:c7:23:49:b2: b1:a5:05:39:4e:ef:b8:0d:ad:42:c9:09:0c:35:c5:f6:24:5d: 7a:ee:58:27:07:26:ce:35:fe:fe:52:8d:8f:b5:99:00:ac:c2: 04:b0:03:67:88:67:ab:36:a8:5f:3e:79:53:34:13:91:87:58: 6b:0b:ab:28:40:9e:63:2c:06:e9:06:c6:81:19:c0:81:98:c4: 95:0d:f8:da:fd:9e:e3:23:92:07:24:17:f8:0e:e2:34:f3:bb: 2f:87:2f:e7:c7:49:59:02:f4:a9:63:28:5b:49:f6:93:bd:ae: 2d:3f:61:d5:f9:9f:04:8d:ae:46:70:e4:6c:52:3b:51:d0:3f: e3:6b:cf:6b:c4:bd:30:ca:b2:b6:c0:be:4a:4e:c9:01:c7:f6: 7f:00:ab:80:99:bb:d3:92:97:b6:ce:ee:8d:d6:df:82:6c:10: ec:d9:cd:3b:5d:15:13:6a:0f:09:5b:3a:5e:ad:e9:b3:a1:ae: 69:3f:cf:53 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ2NzkxMTAvBgNVBAUTKDBBNDgwNTE3NzQxMDc2RkU3NjNFNEU5RTMyRjM1QkQ0 NTk4OTMyOTIwHhcNMjMxMjA5MDQzNDM3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTczZWU1Yy1jYjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5HWmqWUxQAezxlbtyIqIjaU0x9ufXbh8gP/BPoqMMDY5uF5gI0/Z6dzAkFf3 qOWaE8UeHcRFlAnVY5xFxYInv+kNR+mm1RIQEMa0SdMVsdxiboebvRLHrpRHOX6a 3os7EuYWG2QVtTpxq0zmSHa+u6Co9OPZQS4yzvwZ1cGTMsBl4cDIvpYmhQTAB5eg BKasOrRWRSPRaHaQTfSf2Z2PtPsdLXywL/bgiDkpAKB0WAUbjK8D0RzMvE0Owvc+ WWWL0NbyqML6OGj851ZkjPQ7LvKd0Fy8nTw3AQeJh1nyn9Yu9szpIBem01hb9znY Fzb94G5svg7OTMypDOQGV916TwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFBjbQ8q7 6P/DcwVW+nKuRf4R+NMnMB8GA1UdIwQYMBaAFApIBRd0EHb+dj5OnjLzW9RZiTKS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDY3OS9GNUI3OEE4ODYx OTQxMUVEOENEQkEyM0VDNEY5QUUwMi9Da2dGRjNRUWR2NTJQazZlTXZOYjFGbUpN cEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NrZ0ZGM1FRZHY1MlBrNmVNdk5iMUZtSk1wSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ2NzkvRjVCNzhBODg2MTk0MTFFRDhDREJBMjNFQzRGOUFFMDIvRjdEMTEwNjA2 MTk4MTFFRDk0MzdCMzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJny4QDBAJ0zsADBAB5LkcDBAK063QwDQQCAAIwBwMFACQD woAwDQYJKoZIhvcNAQELBQADggEBAB3uVHX2fHUBHh4j6UUP71gsxlH0R00zXsT3 5cFddWXHqHYEmmU7OXRllDuTysU14OubV425F51NL1gI3frpRSF9pOwgxyNJsrGl BTlO77gNrULJCQw1xfYkXXruWCcHJs41/v5SjY+1mQCswgSwA2eIZ6s2qF8+eVM0 E5GHWGsLqyhAnmMsBukGxoEZwIGYxJUN+Nr9nuMjkgckF/gO4jTzuy+HL+fHSVkC 9KljKFtJ9pO9ri0/YdX5nwSNrkZw5GxSO1HQP+Nrz2vEvTDKsrbAvkpOyQHH9n8A q4CZu9OSl7bO7o3W34JsEOzZzTtdFRNqDwlbOl6t6bOhrmk/z1M= -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:18 2024 by rpki-client on console-fra.rpki-client.org