$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/24AE273C2D1111EE85C59810C4F9AE02.roa File: 24AE273C2D1111EE85C59810C4F9AE02.roa (raw, json) Hash identifier: rZFcblo6K26RB/GbDb/30c5D3yJIwfCSDrCYJ6qeFGM= Subject key identifier: 82:FF:05:64:50:5F:DE:19:65:94:1E:6B:18:2E:A8:85:F2:D2:E9:C0 Certificate issuer: /CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Certificate serial: 03CB Authority key identifier: C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/24AE273C2D1111EE85C59810C4F9AE02.roa Signing time: Fri 28 Jul 2023 06:36:55 +0000 ROA not before: Fri 28 Jul 2023 06:36:55 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 211392 IP address blocks: 103.172.110.0/23 maxlen: 23 103.172.110.0/24 maxlen: 24 103.172.111.0/24 maxlen: 24 103.204.13.0/24 maxlen: 24 2001:df7:6e80::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:55:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 971 (0x3cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D25/serialNumber=C2F28E9D188439C4FE69F63A4CAA6DA42496291D Validity Not Before: Jul 28 06:36:55 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64c36207-23cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:43:2f:a2:07:e3:e4:92:e3:ac:ae:98:37:0f: 85:24:29:2c:a9:e9:49:13:23:61:40:84:b5:b9:68: a1:7d:1c:8e:61:06:86:64:ff:82:9a:a9:1e:41:16: a0:64:6f:8a:28:3d:51:ca:d0:88:19:88:d2:ba:6b: 83:ef:c7:40:44:f0:44:df:fb:10:47:c8:3c:75:13: 47:22:00:eb:24:80:84:81:b3:bc:76:94:09:ed:ed: 75:44:5a:07:4a:60:fa:a3:f7:d8:d5:e0:00:99:32: 6e:3b:29:1f:ae:28:a7:bc:d8:82:dc:2f:48:74:30: 73:30:3d:4c:40:58:66:1e:b1:04:5b:6a:c5:4f:70: a9:29:ff:e1:62:e9:c6:fa:be:15:ea:3b:7a:bc:1d: e8:3b:66:c7:95:65:c7:fe:1b:2d:e7:ba:84:7b:27: 33:88:95:89:70:8f:0a:bf:24:31:49:a3:ec:7c:e2: 77:54:aa:b5:07:29:23:05:e0:3b:58:10:46:70:da: 6e:5d:7d:11:da:2a:1f:48:d9:d0:b5:25:82:dc:7b: e0:fe:51:9c:7f:aa:c3:3d:0f:14:31:69:af:dc:bb: 82:f3:65:c4:b1:f0:f0:d0:1f:a4:89:74:09:a4:b3: 60:a6:63:19:dd:17:83:78:a9:b4:23:3a:7f:f3:27: 56:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:FF:05:64:50:5F:DE:19:65:94:1E:6B:18:2E:A8:85:F2:D2:E9:C0 X509v3 Authority Key Identifier: keyid:C2:F2:8E:9D:18:84:39:C4:FE:69:F6:3A:4C:AA:6D:A4:24:96:29:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/wvKOnRiEOcT-afY6TKptpCSWKR0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvKOnRiEOcT-afY6TKptpCSWKR0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D25/67F2B0D80BD211ECBAA4806AC4F9AE02/24AE273C2D1111EE85C59810C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.110.0/23 103.204.13.0/24 IPv6: 2001:df7:6e80::/47 Signature Algorithm: sha256WithRSAEncryption 48:61:4a:48:76:82:38:84:77:35:42:39:a4:96:2b:ab:21:74: 69:f1:4f:3c:c5:2e:22:fb:a5:5d:5a:55:de:4f:4d:2f:f6:fa: f4:11:a4:9d:fc:26:f1:5f:67:cb:95:a1:b5:d8:4d:f5:e6:4d: b3:f7:16:66:d4:a4:79:37:b2:d1:b6:78:2b:74:a2:04:ad:72: 05:da:89:d6:63:ab:9c:cc:b5:6a:43:d4:b3:88:96:07:79:5d: 7a:6f:f5:b5:4a:d2:0d:24:e4:54:97:fb:4f:a1:c2:1a:bb:a1: 23:e8:a2:a1:d2:92:67:77:c3:c1:3b:ad:1b:9a:24:0d:ad:f7: aa:db:09:53:0c:64:64:2e:80:25:3d:ff:4d:21:fd:df:68:b3: 08:df:a0:2a:1e:99:d0:41:53:d8:9c:2d:0e:98:c0:ec:19:1d: 33:d9:7d:a7:bf:a6:b4:bc:2b:7f:eb:d2:e0:41:92:74:bb:dd: 40:27:e6:91:10:bb:d1:a9:b5:6d:17:88:30:d0:9c:ac:3d:36: 7f:69:9f:e6:31:13:9a:05:0d:9e:3f:6a:f4:18:9c:56:b7:1e: 27:28:be:e3:bd:c2:7b:63:e0:ae:78:e7:3a:63:bb:6d:8a:cc: 89:6a:64:46:03:ea:d8:68:b8:5a:5a:4d:17:8e:87:c7:6c:79: ea:0a:4d:15 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICA8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVEMjUxMTAvBgNVBAUTKEMyRjI4RTlEMTg4NDM5QzRGRTY5RjYzQTRDQUE2REE0 MjQ5NjI5MUQwHhcNMjMwNzI4MDYzNjU1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMzNjIwNy0yM2NjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkMvogfj5JLjrK6YNw+FJCksqelJEyNhQIS1uWihfRyOYQaGZP+CmqkeQRag ZG+KKD1RytCIGYjSumuD78dARPBE3/sQR8g8dRNHIgDrJICEgbO8dpQJ7e11RFoH SmD6o/fY1eAAmTJuOykfriinvNiC3C9IdDBzMD1MQFhmHrEEW2rFT3CpKf/hYunG +r4V6jt6vB3oO2bHlWXH/hst57qEeycziJWJcI8KvyQxSaPsfOJ3VKq1BykjBeA7 WBBGcNpuXX0R2iofSNnQtSWC3Hvg/lGcf6rDPQ8UMWmv3LuC82XEsfDw0B+kiXQJ pLNgpmMZ3ReDeKm0Izp/8ydWXwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFIL/BWRQ X94ZZZQeaxguqIXy0unAMB8GA1UdIwQYMBaAFMLyjp0YhDnE/mn2OkyqbaQklikd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQyNS82N0YyQjBEODBC RDIxMUVDQkFBNDgwNkFDNEY5QUUwMi93dktPblJpRU9jVC1hZlk2VEtwdHBDU1dL UjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2S09uUmlFT2NULWFmWTZUS3B0cENTV0tSMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVEMjUvNjdGMkIwRDgwQkQyMTFFQ0JBQTQ4MDZBQzRGOUFFMDIvMjRBRTI3M0My RDExMTFFRTg1QzU5ODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnrG4DBABnzA0wDwQCAAIwCQMHASABDfdugDANBgkqhkiG 9w0BAQsFAAOCAQEASGFKSHaCOIR3NUI5pJYrqyF0afFPPMUuIvulXVpV3k9NL/b6 9BGknfwm8V9ny5WhtdhN9eZNs/cWZtSkeTey0bZ4K3SiBK1yBdqJ1mOrnMy1akPU s4iWB3ldem/1tUrSDSTkVJf7T6HCGruhI+iiodKSZ3fDwTutG5okDa33qtsJUwxk ZC6AJT3/TSH932izCN+gKh6Z0EFT2JwtDpjA7BkdM9l9p7+mtLwrf+vS4EGSdLvd QCfmkRC70am1bReIMNCcrD02f2mf5jETmgUNnj9q9BicVrceJyi+473Ce2Pgrnjn OmO7bYrMiWpkRgPq2Gi4WlpNF46Hx2x56gpNFQ== -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:01 2024 by rpki-client on console-fra.rpki-client.org