$ rpki-client -vvf rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/D9A5C1BA4DFE11EDBF00BA6BC4F9AE02.roa File: D9A5C1BA4DFE11EDBF00BA6BC4F9AE02.roa (raw, json) Hash identifier: tBxHDkOiB4//dJ9enHkPFOOnK+Domc0l/7++tuCkRRU= Subject key identifier: 81:04:92:96:74:CF:D0:64:94:AB:3A:61:24:57:B2:45:43:AC:06:A3 Certificate issuer: /CN=A912D937/serialNumber=7B1C6E2F442D2D0DDEFA49940280C2D70EF2B14C Certificate serial: E4 Authority key identifier: 7B:1C:6E:2F:44:2D:2D:0D:DE:FA:49:94:02:80:C2:D7:0E:F2:B1:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exxuL0QtLQ3e-kmUAoDC1w7ysUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/D9A5C1BA4DFE11EDBF00BA6BC4F9AE02.roa Signing time: Fri 15 Dec 2023 04:35:38 +0000 ROA not before: Fri 15 Dec 2023 04:35:38 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 150375 IP address blocks: 103.18.204.0/23 maxlen: 23 2001:df1:6740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/exxuL0QtLQ3e-kmUAoDC1w7ysUw.crl rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/exxuL0QtLQ3e-kmUAoDC1w7ysUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exxuL0QtLQ3e-kmUAoDC1w7ysUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 228 (0xe4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D937/serialNumber=7B1C6E2F442D2D0DDEFA49940280C2D70EF2B14C Validity Not Before: Dec 15 04:35:38 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657bd799-4edd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bc:c1:0a:d1:f4:41:57:d1:19:e6:31:98:7e: 66:28:77:52:45:f0:b3:68:6f:c2:0c:49:92:4e:c3: 9d:94:17:7b:c6:07:84:db:41:5f:f2:88:44:cd:75: c5:8f:b9:ea:12:56:0c:4b:06:32:fd:58:fc:0f:bd: 1b:86:e1:f8:2a:f7:f3:0f:de:01:5b:4c:18:23:f4: 4d:54:ff:73:e8:50:e2:79:6c:5f:15:84:0a:b5:87: 70:87:81:b2:6d:03:d1:ea:14:98:59:94:85:4d:51: 34:6e:1b:cf:ef:e9:72:28:bd:8d:e9:1d:ea:0b:dd: 9c:19:e4:59:a7:2b:df:0f:3c:d9:75:a1:7f:b1:92: 14:07:98:37:11:2f:3e:70:00:35:b3:60:c1:7f:3a: d6:13:b1:1e:e1:26:0f:91:8a:37:5f:a7:ee:eb:2b: 58:60:b0:94:d3:2b:fe:04:41:50:27:55:d9:59:fa: 2d:5a:bb:d9:cb:cc:c7:6c:28:c0:73:3b:4e:fb:be: 0a:cf:1c:6f:5c:7f:36:8f:96:74:9d:fa:4f:e8:5b: b2:a1:46:c1:b9:d7:58:f1:b4:fd:99:1a:6f:3b:ab: 08:17:88:f8:4f:25:9e:ac:68:3d:82:cc:09:30:a9: d3:3f:c8:5b:5d:32:7e:50:37:cc:f4:d4:7c:48:4b: dd:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:04:92:96:74:CF:D0:64:94:AB:3A:61:24:57:B2:45:43:AC:06:A3 X509v3 Authority Key Identifier: keyid:7B:1C:6E:2F:44:2D:2D:0D:DE:FA:49:94:02:80:C2:D7:0E:F2:B1:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/exxuL0QtLQ3e-kmUAoDC1w7ysUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exxuL0QtLQ3e-kmUAoDC1w7ysUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D937/BF2DAB6A4DFC11ED94BD666BC4F9AE02/D9A5C1BA4DFE11EDBF00BA6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.18.204.0/23 IPv6: 2001:df1:6740::/48 Signature Algorithm: sha256WithRSAEncryption 27:9d:8c:5f:93:98:95:53:14:19:8f:3a:39:f2:b1:6b:13:55: 88:14:d7:95:36:00:a6:04:1d:7f:47:db:c0:79:f6:0b:09:3f: fb:18:9a:42:3c:20:ed:dd:57:73:10:03:b3:af:26:8c:bb:90: 2c:73:2e:93:29:62:4d:58:a4:c6:7c:ee:88:23:80:5c:52:af: 18:7c:a0:85:41:58:eb:a8:9f:86:68:34:94:2c:2e:f0:41:3f: 9f:26:7a:59:96:2e:e1:0f:3a:57:a3:20:3c:ac:7c:1e:2e:0c: 12:94:fb:db:8a:7f:da:41:ea:c2:95:d5:00:7b:88:00:cf:68: 23:43:71:af:42:a6:4f:6e:58:81:fc:e0:55:0e:a6:42:ae:26: 45:21:2c:83:d2:7c:43:43:44:30:80:ce:cf:39:40:15:99:54: 8a:66:95:40:27:b2:d1:16:11:ca:bf:23:a1:e5:b8:88:e0:2d: 85:ba:3d:18:e8:3b:1e:3f:2d:ba:78:15:b1:82:09:73:d6:b6: c7:c8:7e:75:62:9b:ac:cd:8a:f2:42:73:d7:3b:93:c9:11:8f: 1c:36:b2:5e:3b:5a:02:f4:14:64:15:78:e5:1e:37:37:02:cd: 90:f9:c5:a7:c3:70:c3:85:2c:f1:c2:de:cd:39:32:4a:7a:85: d1:9c:97:98 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ5MzcxMTAvBgNVBAUTKDdCMUM2RTJGNDQyRDJEMERERUZBNDk5NDAyODBDMkQ3 MEVGMkIxNEMwHhcNMjMxMjE1MDQzNTM4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiZDc5OS00ZWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbzBCtH0QVfRGeYxmH5mKHdSRfCzaG/CDEmSTsOdlBd7xgeE20Ff8ohEzXXF j7nqElYMSwYy/Vj8D70bhuH4KvfzD94BW0wYI/RNVP9z6FDieWxfFYQKtYdwh4Gy bQPR6hSYWZSFTVE0bhvP7+lyKL2N6R3qC92cGeRZpyvfDzzZdaF/sZIUB5g3ES8+ cAA1s2DBfzrWE7Ee4SYPkYo3X6fu6ytYYLCU0yv+BEFQJ1XZWfotWrvZy8zHbCjA cztO+74KzxxvXH82j5Z0nfpP6FuyoUbBuddY8bT9mRpvO6sIF4j4TyWerGg9gswJ MKnTP8hbXTJ+UDfM9NR8SEvdmQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIEEkpZ0 z9BklKs6YSRXskVDrAajMB8GA1UdIwQYMBaAFHscbi9ELS0N3vpJlAKAwtcO8rFM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDkzNy9CRjJEQUI2QTRE RkMxMUVEOTRCRDY2NkJDNEY5QUUwMi9leHh1TDBRdExRM2Uta21VQW9EQzF3N3lz VXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V4eHVMMFF0TFEzZS1rbVVBb0RDMXc3eXNVdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ5MzcvQkYyREFCNkE0REZDMTFFRDk0QkQ2NjZCQzRGOUFFMDIvRDlBNUMxQkE0 REZFMTFFREJGMDBCQTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnEswwDwQCAAIwCQMHACABDfFnQDANBgkqhkiG9w0BAQsF AAOCAQEAJ52MX5OYlVMUGY86OfKxaxNViBTXlTYApgQdf0fbwHn2Cwk/+xiaQjwg 7d1XcxADs68mjLuQLHMukyliTVikxnzuiCOAXFKvGHyghUFY66ifhmg0lCwu8EE/ nyZ6WZYu4Q86V6MgPKx8Hi4MEpT724p/2kHqwpXVAHuIAM9oI0Nxr0KmT25Ygfzg VQ6mQq4mRSEsg9J8Q0NEMIDOzzlAFZlUimaVQCey0RYRyr8joeW4iOAthbo9GOg7 Hj8tungVsYIJc9a2x8h+dWKbrM2K8kJz1zuTyRGPHDayXjtaAvQUZBV45R43NwLN kPnFp8Nww4Us8cLezTkySnqF0ZyXmA== -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:19 2024 by rpki-client on console-fra.rpki-client.org