$ rpki-client -vvf rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/1D11FFD4352D11EE9543B52FC4F9AE02.roa File: 1D11FFD4352D11EE9543B52FC4F9AE02.roa (raw, json) Hash identifier: AmYH7h99l0kQZHh8xqqRpPR6xJXsOcOtrNgzhtyVzxQ= Subject key identifier: 98:05:05:09:11:09:E6:68:3F:AE:01:23:12:C0:0F:8D:A6:05:A1:B4 Certificate issuer: /CN=A912B017/serialNumber=D3D3D860F868C93ED10E2ED5A97A879454C84C16 Certificate serial: 0F Authority key identifier: D3:D3:D8:60:F8:68:C9:3E:D1:0E:2E:D5:A9:7A:87:94:54:C8:4C:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09PYYPhoyT7RDi7VqXqHlFTITBY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/1D11FFD4352D11EE9543B52FC4F9AE02.roa Signing time: Mon 07 Aug 2023 14:25:14 +0000 ROA not before: Mon 07 Aug 2023 14:25:14 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132366 IP address blocks: 103.242.8.0/24 maxlen: 24 2401:1d20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/09PYYPhoyT7RDi7VqXqHlFTITBY.crl rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/09PYYPhoyT7RDi7VqXqHlFTITBY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09PYYPhoyT7RDi7VqXqHlFTITBY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 06:38:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912B017/serialNumber=D3D3D860F868C93ED10E2ED5A97A879454C84C16 Validity Not Before: Aug 7 14:25:14 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64d0feca-fd13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:0e:b1:e5:02:59:e4:5d:2d:9a:38:e4:ba:7e: 79:0e:36:34:8f:07:4d:03:f4:1e:b3:b6:5e:44:80: b6:61:89:d7:0c:6a:4b:d3:97:7b:36:67:0f:cf:75: 6e:cb:01:4e:d1:62:6f:3f:30:31:a1:13:a3:d6:5c: 35:99:17:f6:55:d2:13:5f:a4:8b:e3:96:bd:63:30: 6c:23:1e:2e:da:8a:66:95:50:1b:01:a5:67:20:73: eb:8a:3b:2a:a0:72:70:c5:1d:a3:31:2a:d5:cc:0d: 72:93:22:46:68:00:b9:ee:fa:a5:3e:18:ce:98:1c: d7:41:d3:d4:6a:d9:d0:24:55:74:11:cb:9f:d4:c6: ed:ed:98:79:34:ae:64:ae:7b:fc:ca:df:92:43:90: ca:39:c6:b9:ab:1d:9c:a1:51:6c:e3:01:50:01:08: d9:6b:77:e6:b6:b0:da:04:91:2c:cd:f6:fc:8d:6f: 7d:57:c0:65:87:31:d8:be:91:c4:a3:fd:5d:79:96: f3:1b:7a:d3:50:b9:b2:0a:43:5d:df:45:9e:ec:f2: 86:42:25:68:28:05:b5:ba:ce:a6:a3:f0:9d:7c:e8: cb:dd:ae:87:44:63:ab:e1:a6:c4:fa:06:7f:0a:2e: 5d:1f:07:a1:ed:93:65:47:6b:07:a6:46:8b:dd:9b: d4:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:05:05:09:11:09:E6:68:3F:AE:01:23:12:C0:0F:8D:A6:05:A1:B4 X509v3 Authority Key Identifier: keyid:D3:D3:D8:60:F8:68:C9:3E:D1:0E:2E:D5:A9:7A:87:94:54:C8:4C:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/09PYYPhoyT7RDi7VqXqHlFTITBY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/09PYYPhoyT7RDi7VqXqHlFTITBY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912B017/DE75F2222A1311EE95D58A66C4F9AE02/1D11FFD4352D11EE9543B52FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.242.8.0/24 IPv6: 2401:1d20::/48 Signature Algorithm: sha256WithRSAEncryption 2c:9e:d4:74:75:20:1f:e3:e0:99:7d:42:9f:15:73:cc:25:2c: 3a:8f:b0:ba:cb:11:cc:9d:ef:da:cc:86:d0:4e:71:cd:96:eb: c2:5e:96:45:c8:e9:eb:38:3e:05:23:f0:af:9f:56:e7:0d:e5: a4:a3:b9:9d:be:56:c2:4f:d4:37:46:78:a0:40:4b:ae:a8:3b: e0:e4:8d:f7:3e:71:21:07:c9:a4:dc:bb:81:85:3b:e6:66:9c: b4:37:21:2a:af:c6:91:40:15:be:73:b8:cc:8c:2f:78:be:d0: c2:df:85:76:88:99:d4:0a:4b:f3:2d:ad:55:ad:04:a2:11:5b: 8d:c5:c2:91:4c:aa:a2:24:26:b8:c8:14:e8:83:84:7d:c5:a1: e6:a5:41:77:ae:e2:1f:94:42:d9:e2:e9:5c:7c:20:3b:36:31: f3:c8:42:bb:46:2f:eb:e4:31:99:fc:97:07:99:bb:c3:a4:72: ab:17:90:90:fa:ef:8a:96:21:f9:1a:22:46:1d:08:65:ed:38: 2f:9d:a8:29:7e:2c:50:83:59:56:e6:07:0c:1d:83:d7:99:05: 52:31:e8:cd:58:04:03:21:df:57:77:16:04:c5:46:fa:57:07: 5d:18:2a:b8:32:42:9d:1d:4b:73:db:6a:1c:eb:3b:6f:7d:8e: 61:ef:2a:b2 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy QjAxNzExMC8GA1UEBRMoRDNEM0Q4NjBGODY4QzkzRUQxMEUyRUQ1QTk3QTg3OTQ1 NEM4NEMxNjAeFw0yMzA4MDcxNDI1MTRaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZDBmZWNhLWZkMTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0DrHlAlnkXS2aOOS6fnkONjSPB00D9B6ztl5EgLZhidcMakvTl3s2Zw/PdW7L AU7RYm8/MDGhE6PWXDWZF/ZV0hNfpIvjlr1jMGwjHi7aimaVUBsBpWcgc+uKOyqg cnDFHaMxKtXMDXKTIkZoALnu+qU+GM6YHNdB09Rq2dAkVXQRy5/Uxu3tmHk0rmSu e/zK35JDkMo5xrmrHZyhUWzjAVABCNlrd+a2sNoEkSzN9vyNb31XwGWHMdi+kcSj /V15lvMbetNQubIKQ13fRZ7s8oZCJWgoBbW6zqaj8J186MvdrodEY6vhpsT6Bn8K Ll0fB6Htk2VHawemRovdm9TfAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUmAUFCREJ 5mg/rgEjEsAPjaYFobQwHwYDVR0jBBgwFoAU09PYYPhoyT7RDi7VqXqHlFTITBYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJCMDE3L0RFNzVGMjIyMkEx MzExRUU5NUQ1OEE2NkM0RjlBRTAyLzA5UFlZUGhveVQ3UkRpN1ZxWHFIbEZUSVRC WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDlQWVlQaG95VDdSRGk3VnFYcUhsRlRJVEJZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy QjAxNy9ERTc1RjIyMjJBMTMxMUVFOTVENThBNjZDNEY5QUUwMi8xRDExRkZENDM1 MkQxMUVFOTU0M0I1MkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGfyCDAPBAIAAjAJAwcAJAEdIAAAMA0GCSqGSIb3DQEBCwUA A4IBAQAsntR0dSAf4+CZfUKfFXPMJSw6j7C6yxHMne/azIbQTnHNluvCXpZFyOnr OD4FI/Cvn1bnDeWko7mdvlbCT9Q3RnigQEuuqDvg5I33PnEhB8mk3LuBhTvmZpy0 NyEqr8aRQBW+c7jMjC94vtDC34V2iJnUCkvzLa1VrQSiEVuNxcKRTKqiJCa4yBTo g4R9xaHmpUF3ruIflELZ4ulcfCA7NjHzyEK7Ri/r5DGZ/JcHmbvDpHKrF5CQ+u+K liH5GiJGHQhl7TgvnagpfixQg1lW5gcMHYPXmQVSMejNWAQDId9XdxYExUb6Vwdd GCq4MkKdHUtz22oc6ztvfY5h7yqy -----END CERTIFICATE-----Generated at Thu Jun 13 08:01:36 2024 by rpki-client on console-ams.rpki-client.org