$ rpki-client -vvf rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/0E01F66437F511EEA737AD17C4F9AE02.roa File: 0E01F66437F511EEA737AD17C4F9AE02.roa (raw, json) Hash identifier: JntOPTcB6nd+2Xt8FHYJCMbsmM98wj2vD8x8EymL3po= Subject key identifier: CE:14:57:6E:A0:8C:18:17:88:56:48:2C:F5:02:F6:36:4E:7A:9C:6B Certificate issuer: /CN=A912ACC3/serialNumber=C1AA5CE52E11533B641E3B685AB323C46976A401 Certificate serial: 1826 Authority key identifier: C1:AA:5C:E5:2E:11:53:3B:64:1E:3B:68:5A:B3:23:C4:69:76:A4:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/0E01F66437F511EEA737AD17C4F9AE02.roa Signing time: Wed 04 Oct 2023 16:53:58 +0000 ROA not before: Wed 04 Oct 2023 16:53:58 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136902 IP address blocks: 103.98.85.0/24 maxlen: 24 103.119.208.0/24 maxlen: 24 103.119.209.0/24 maxlen: 24 2401:24a0::/34 maxlen: 34 2401:24a0:4000::/34 maxlen: 34 2401:24a0:8000::/34 maxlen: 34 2401:24a0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.crl rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:47:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6182 (0x1826) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912ACC3/serialNumber=C1AA5CE52E11533B641E3B685AB323C46976A401 Validity Not Before: Oct 4 16:53:58 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651d98a6-377e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:10:be:a2:1f:c1:aa:de:a3:ea:9e:e9:b5:6b: 05:93:76:18:70:ee:5d:80:98:a6:e9:fa:28:45:a6: e8:49:a7:70:14:61:09:77:21:d8:cd:79:f5:08:2b: df:17:cc:9d:87:a9:88:79:40:33:a3:2e:fd:a3:6b: 87:2c:3f:a7:8d:48:6c:83:15:3f:6b:0e:b5:d2:b3: 69:17:61:8c:23:fa:1a:f0:a9:dc:03:03:47:05:48: 43:e3:1e:0b:ea:5b:81:d0:58:67:17:51:7c:ac:35: f7:04:39:30:db:51:21:26:6d:f5:88:78:59:1c:4d: dc:39:af:3d:c8:1d:d1:dd:dc:5c:11:5e:44:82:c5: c9:6b:13:f8:e0:04:29:4c:0e:75:1c:96:c7:86:c3: ee:e2:78:33:66:72:2f:69:33:8b:0a:a5:10:80:bb: b8:a2:11:68:0f:c9:27:39:58:16:08:03:07:ae:23: f5:d9:63:48:45:fc:ee:e4:2b:54:7e:6a:a7:27:b6: 07:46:4c:8b:9a:f3:94:16:83:e2:19:bb:18:4a:3a: 7d:9b:af:ca:6f:98:3f:57:ae:39:8e:48:45:b7:10: 54:ad:ae:be:4a:16:e0:8c:68:ee:f5:ca:7b:e4:68: 66:50:9a:d8:f6:b1:6c:e5:7e:9f:f3:36:3d:82:a0: 8e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:14:57:6E:A0:8C:18:17:88:56:48:2C:F5:02:F6:36:4E:7A:9C:6B X509v3 Authority Key Identifier: keyid:C1:AA:5C:E5:2E:11:53:3B:64:1E:3B:68:5A:B3:23:C4:69:76:A4:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/wapc5S4RUztkHjtoWrMjxGl2pAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wapc5S4RUztkHjtoWrMjxGl2pAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912ACC3/D4F4B48877F711E7B2D33264C4F9AE02/0E01F66437F511EEA737AD17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.85.0/24 103.119.208.0/23 IPv6: 2401:24a0::/32 Signature Algorithm: sha256WithRSAEncryption 4c:b1:3a:2b:7e:4c:cb:da:43:11:27:8d:6e:9d:39:32:4f:ea: 53:46:41:d4:c8:3a:ce:18:bc:9f:72:f0:f3:4e:e9:bd:5b:96: 66:9b:ba:6d:5b:fe:5c:a0:e5:d6:97:ec:bd:24:2a:08:ac:1c: be:e1:ae:05:9e:ea:64:ef:27:ab:e2:1d:61:7d:a2:0f:9e:f8: 8f:74:fc:9c:05:33:5d:ef:ba:3d:f3:b7:d5:5e:d0:fe:85:98: a9:d3:45:9c:2c:a1:00:1e:c6:ae:a0:f7:86:25:ce:4c:26:f1: f5:91:f2:46:13:1b:12:09:82:5d:5c:c0:38:06:b8:f2:d2:df: 65:f5:b5:87:e1:2e:c9:bd:00:1b:7d:e9:05:37:2a:94:0d:56: 5d:ff:40:0b:4f:53:12:0f:c9:4b:1d:c2:5b:69:6a:66:54:51: c9:59:ef:9a:51:a2:38:61:3d:8e:0e:7a:9d:7f:04:a3:f5:3c: 56:14:88:6a:27:52:c4:b6:31:af:c6:c1:fa:91:62:eb:8a:8a: 38:8c:3e:33:1f:da:99:4d:3f:61:c1:4c:ee:37:f7:d0:c9:bf: 7e:5f:38:04:65:ce:67:1a:f6:77:69:80:bd:71:b7:a4:eb:e1: 21:d2:27:a8:f8:07:6b:9d:d8:8c:4c:b5:a6:41:fa:e2:02:71: d0:e4:ba:e5 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICGCYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDQzMxMTAvBgNVBAUTKEMxQUE1Q0U1MkUxMTUzM0I2NDFFM0I2ODVBQjMyM0M0 Njk3NkE0MDEwHhcNMjMxMDA0MTY1MzU4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkOThhNi0zNzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsBC+oh/Bqt6j6p7ptWsFk3YYcO5dgJim6fooRaboSadwFGEJdyHYzXn1CCvf F8ydh6mIeUAzoy79o2uHLD+njUhsgxU/aw610rNpF2GMI/oa8KncAwNHBUhD4x4L 6luB0FhnF1F8rDX3BDkw21EhJm31iHhZHE3cOa89yB3R3dxcEV5EgsXJaxP44AQp TA51HJbHhsPu4ngzZnIvaTOLCqUQgLu4ohFoD8knOVgWCAMHriP12WNIRfzu5CtU fmqnJ7YHRkyLmvOUFoPiGbsYSjp9m6/Kb5g/V645jkhFtxBUra6+ShbgjGju9cp7 5GhmUJrY9rFs5X6f8zY9gqCOgQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFM4UV26g jBgXiFZILPUC9jZOepxrMB8GA1UdIwQYMBaAFMGqXOUuEVM7ZB47aFqzI8RpdqQB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUNDMy9ENEY0QjQ4ODc3 RjcxMUU3QjJEMzMyNjRDNEY5QUUwMi93YXBjNVM0UlV6dGtIanRvV3JNanhHbDJw QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dhcGM1UzRSVXp0a0hqdG9Xck1qeEdsMnBBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFDQzMvRDRGNEI0ODg3N0Y3MTFFN0IyRDMzMjY0QzRGOUFFMDIvMEUwMUY2NjQz N0Y1MTFFRUE3MzdBRDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnYlUDBAFnd9AwDQQCAAIwBwMFACQBJKAwDQYJKoZIhvcN AQELBQADggEBAEyxOit+TMvaQxEnjW6dOTJP6lNGQdTIOs4YvJ9y8PNO6b1blmab um1b/lyg5daX7L0kKgisHL7hrgWe6mTvJ6viHWF9og+e+I90/JwFM13vuj3zt9Ve 0P6FmKnTRZwsoQAexq6g94Ylzkwm8fWR8kYTGxIJgl1cwDgGuPLS32X1tYfhLsm9 ABt96QU3KpQNVl3/QAtPUxIPyUsdwltpamZUUclZ75pRojhhPY4Oep1/BKP1PFYU iGonUsS2Ma/GwfqRYuuKijiMPjMf2plNP2HBTO4399DJv35fOARlzmca9ndpgL1x t6Tr4SHSJ6j4B2ud2IxMtaZB+uICcdDkuuU= -----END CERTIFICATE-----Generated at Fri May 31 17:44:22 2024 by rpki-client on console-fra.rpki-client.org