$ rpki-client -vvf rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/923B6404466B11EE8B37E13CC4F9AE02.roa File: 923B6404466B11EE8B37E13CC4F9AE02.roa (raw, json) Hash identifier: 2PTTTwQLgh4fXXfTwObsWVUAWIktXTAcMw+Xyyr0VJ8= Subject key identifier: C9:38:C3:64:C6:4C:CB:AD:A7:7F:38:6E:B1:D4:47:97:BF:A0:47:A4 Certificate issuer: /CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Certificate serial: 096E Authority key identifier: ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/923B6404466B11EE8B37E13CC4F9AE02.roa Signing time: Wed 14 Feb 2024 20:58:46 +0000 ROA not before: Wed 14 Feb 2024 20:58:46 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58895 IP address blocks: 103.83.20.0/22 maxlen: 22 103.83.20.0/24 maxlen: 24 103.83.21.0/24 maxlen: 24 103.83.22.0/24 maxlen: 24 103.83.23.0/24 maxlen: 24 123.108.94.0/24 maxlen: 24 123.108.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2414 (0x96e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D3CB/serialNumber=EDD2A69686865256C9B0FDDD6B714966D5378F33 Validity Not Before: Feb 14 20:58:46 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cd2985-4dcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:20:08:d3:b1:9c:07:97:8d:60:b3:d7:d7:62: 74:be:c7:0c:55:6a:bc:43:f5:d4:ab:84:cc:b2:22: fe:56:d3:2a:52:54:1a:8e:88:a0:0e:78:e0:9f:9a: 43:78:61:c8:9f:3f:26:79:46:95:ab:0d:67:b7:ea: ba:04:18:d6:3b:54:bb:9a:05:5f:ea:d7:c5:74:e5: 92:1f:3f:eb:db:16:e3:e7:2f:ba:3e:07:a7:32:f1: 15:cd:e8:e0:4e:5c:33:68:72:5a:e6:61:ce:98:1d: 8e:82:30:fd:e4:b2:f9:33:1c:55:5d:49:65:de:96: 56:da:34:bd:40:81:4e:ff:34:0b:b5:a4:6e:61:a2: 18:74:54:15:74:fe:90:63:8d:a0:70:4a:2b:26:99: 0c:77:2c:75:43:d0:6b:7e:6e:a8:56:08:78:05:ac: c8:93:d0:3c:6f:81:b8:49:2e:2b:3c:b3:64:2f:1f: 97:a7:52:9b:08:d6:89:e7:d7:fd:6c:22:c4:c1:91: 86:40:61:87:fd:21:06:24:8b:b3:ff:7c:c9:fd:48: a9:99:14:52:be:cf:8f:00:a6:eb:8e:3a:27:ee:a3: d0:9b:d9:fc:3d:e5:c6:c9:0a:c3:c8:99:14:f4:b9: 9e:fd:e1:bd:81:35:e7:0a:a1:77:b5:83:75:61:b3: e7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:38:C3:64:C6:4C:CB:AD:A7:7F:38:6E:B1:D4:47:97:BF:A0:47:A4 X509v3 Authority Key Identifier: keyid:ED:D2:A6:96:86:86:52:56:C9:B0:FD:DD:6B:71:49:66:D5:37:8F:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/7dKmloaGUlbJsP3da3FJZtU3jzM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7dKmloaGUlbJsP3da3FJZtU3jzM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D3CB/A9A439FC69B211EA9779DD48C4F9AE02/923B6404466B11EE8B37E13CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.20.0/22 123.108.94.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:c8:f2:e5:36:46:43:b7:fa:c1:60:ac:ba:63:2f:72:90:d2: ba:b6:8f:f5:45:cd:bf:fe:5e:a1:d3:e5:90:de:ad:48:14:57: 57:6d:a9:5c:65:d3:ac:cc:af:fd:f8:13:a8:f7:1f:89:fc:2f: 37:e7:20:e7:64:0f:9d:65:81:26:07:9c:f9:f4:fc:c4:05:2f: 64:b0:d5:6e:91:c1:07:44:ad:5d:33:77:70:03:c7:45:0c:cb: e9:f1:36:ae:cc:3b:b9:0c:b2:67:7f:61:f1:3c:c6:48:04:a9: d4:95:12:2e:9b:97:aa:f3:19:6b:b2:3f:4d:fa:1d:0e:7e:76: 9e:f9:d0:c2:f6:77:30:69:31:48:ed:d6:54:16:55:93:ff:83: b5:e5:fb:d0:b1:78:1b:41:b3:80:bd:2e:9e:a3:42:5a:77:54: 03:08:2c:e9:51:d9:01:a6:be:65:62:bb:52:3a:9e:1d:0e:86: 49:10:0f:db:10:69:50:10:27:f7:7a:35:58:f1:2f:d4:e0:4a: 8c:b6:e4:5c:9d:f8:92:2b:6b:ec:7d:78:3c:6b:e0:9b:ad:00: de:fa:42:5a:d2:aa:3b:0b:77:db:4d:12:77:7e:f6:c5:d0:91: 3d:98:38:c8:95:d0:b6:9c:24:87:19:ed:c6:f5:16:46:5c:22: 18:e9:79:30 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQzQ0IxMTAvBgNVBAUTKEVERDJBNjk2ODY4NjUyNTZDOUIwRkRERDZCNzE0OTY2 RDUzNzhGMzMwHhcNMjQwMjE0MjA1ODQ2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNkMjk4NS00ZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iAI07GcB5eNYLPX12J0vscMVWq8Q/XUq4TMsiL+VtMqUlQajoigDnjgn5pD eGHInz8meUaVqw1nt+q6BBjWO1S7mgVf6tfFdOWSHz/r2xbj5y+6PgenMvEVzejg TlwzaHJa5mHOmB2OgjD95LL5MxxVXUll3pZW2jS9QIFO/zQLtaRuYaIYdFQVdP6Q Y42gcEorJpkMdyx1Q9Brfm6oVgh4BazIk9A8b4G4SS4rPLNkLx+Xp1KbCNaJ59f9 bCLEwZGGQGGH/SEGJIuz/3zJ/UipmRRSvs+PAKbrjjon7qPQm9n8PeXGyQrDyJkU 9Lme/eG9gTXnCqF3tYN1YbPnLwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMk4w2TG TMutp384brHUR5e/oEekMB8GA1UdIwQYMBaAFO3SppaGhlJWybD93WtxSWbVN48z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDNDQi9BOUE0MzlGQzY5 QjIxMUVBOTc3OURENDhDNEY5QUUwMi83ZEttbG9hR1VsYkpzUDNkYTNGSlp0VTNq ek0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdkS21sb2FHVWxiSnNQM2RhM0ZKWnRVM2p6TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQzQ0IvQTlBNDM5RkM2OUIyMTFFQTk3NzlERDQ4QzRGOUFFMDIvOTIzQjY0MDQ0 NjZCMTFFRThCMzdFMTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUxQDBAF7bF4wDQYJKoZIhvcNAQELBQADggEBAJ7I8uU2 RkO3+sFgrLpjL3KQ0rq2j/VFzb/+XqHT5ZDerUgUV1dtqVxl06zMr/34E6j3H4n8 LzfnIOdkD51lgSYHnPn0/MQFL2Sw1W6RwQdErV0zd3ADx0UMy+nxNq7MO7kMsmd/ YfE8xkgEqdSVEi6bl6rzGWuyP036HQ5+dp750ML2dzBpMUjt1lQWVZP/g7Xl+9Cx eBtBs4C9Lp6jQlp3VAMILOlR2QGmvmViu1I6nh0OhkkQD9sQaVAQJ/d6NVjxL9Tg Soy25Fyd+JIra+x9eDxr4JutAN76QlrSqjsLd9tNEnd+9sXQkT2YOMiV0LacJIcZ 7cb1FkZcIhjpeTA= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org