$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/325A2ABA2F6D11EBAE27D010C4F9AE02.roa File: 325A2ABA2F6D11EBAE27D010C4F9AE02.roa (raw, json) Hash identifier: Ii70CLVt7TySUHN/1bK+N/jJYtwbSV5rRTFy8thyAAM= Subject key identifier: 17:FB:58:37:6D:25:3F:EA:1C:51:47:4B:DD:A2:C9:6D:30:5E:A0:59 Certificate issuer: /CN=A9148F18/serialNumber=25C2052CEF3D8EDEF1AE38855FE7FB11B4578115 Certificate serial: 05EC Authority key identifier: 25:C2:05:2C:EF:3D:8E:DE:F1:AE:38:85:5F:E7:FB:11:B4:57:81:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcIFLO89jt7xrjiFX-f7EbRXgRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/325A2ABA2F6D11EBAE27D010C4F9AE02.roa Signing time: Tue 22 Aug 2023 22:40:07 +0000 ROA not before: Tue 22 Aug 2023 22:40:07 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137903 IP address blocks: 103.116.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/JcIFLO89jt7xrjiFX-f7EbRXgRU.crl rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/JcIFLO89jt7xrjiFX-f7EbRXgRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcIFLO89jt7xrjiFX-f7EbRXgRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:18:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1516 (0x5ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F18/serialNumber=25C2052CEF3D8EDEF1AE38855FE7FB11B4578115 Validity Not Before: Aug 22 22:40:07 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64e53947-d58e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:9e:fc:c0:18:c8:65:71:e0:47:d5:ae:a1: 3e:4e:c4:c3:39:12:ae:a7:0c:98:56:50:de:c7:5b: e3:5f:14:a6:0a:93:87:f7:cb:17:39:2b:39:fc:00: 0a:4f:d5:c4:bd:48:3e:80:61:90:c9:c2:87:26:3c: fb:7e:a7:e7:e1:81:61:05:06:3e:03:e3:ca:08:fd: b6:55:ee:04:01:89:6b:73:74:c5:f3:0b:ea:c4:88: ae:b7:c0:cb:15:98:cc:09:09:b1:20:ff:38:00:f7: 6c:24:c7:9e:cc:ac:14:e3:04:fb:d6:0f:ab:d4:dc: f9:b6:e4:6a:47:67:7e:95:f2:72:32:a4:ce:80:0a: 4f:89:87:e7:ca:37:ee:fe:40:2b:2b:3c:a9:bd:6e: da:98:30:2c:80:cb:1d:a4:43:15:b8:dc:62:fb:60: fd:c6:86:17:dd:17:3d:80:e6:7f:57:3c:d5:88:c9: 87:ab:c8:3b:22:ec:e0:84:84:31:aa:cc:a9:c1:aa: e9:80:c8:52:cf:b1:4d:98:99:3c:9f:d3:e5:17:b7: e9:54:30:c6:60:4e:94:5b:e3:7a:f2:3d:aa:c0:0e: ec:9a:5b:b7:5a:2f:a7:6d:25:c5:25:ad:f5:90:8b: 03:15:c9:3b:5d:d4:40:8e:94:c2:31:f9:74:22:90: 7a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FB:58:37:6D:25:3F:EA:1C:51:47:4B:DD:A2:C9:6D:30:5E:A0:59 X509v3 Authority Key Identifier: keyid:25:C2:05:2C:EF:3D:8E:DE:F1:AE:38:85:5F:E7:FB:11:B4:57:81:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/JcIFLO89jt7xrjiFX-f7EbRXgRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcIFLO89jt7xrjiFX-f7EbRXgRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/325A2ABA2F6D11EBAE27D010C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.211.0/24 Signature Algorithm: sha256WithRSAEncryption 55:3f:02:d9:84:de:df:08:c4:bd:a3:4a:31:6e:30:e0:9d:a1: 04:da:f1:0a:a4:f3:a5:36:5b:7c:ab:f8:1d:26:5a:88:5f:6c: 6c:40:2f:31:79:ac:4a:32:1f:53:9c:68:b0:b1:4b:76:cd:3c: bd:dc:ee:86:7c:fb:f5:de:9b:b4:c1:22:d2:13:ec:32:e0:5c: a1:81:21:5d:7c:da:c5:ae:bb:63:4d:cf:84:8f:90:fd:95:3b: 9d:4b:b6:dc:75:db:bf:75:8f:cc:06:cb:44:96:d4:ad:75:b1: 7d:aa:91:7b:54:d5:d9:4f:0e:75:f7:5e:50:f6:ee:3e:da:ce: 1d:70:04:34:4c:83:79:2b:5f:b5:9e:c0:ae:fc:fa:fd:6d:29: f2:19:d9:17:e7:2f:b5:4b:00:ae:d5:1a:77:65:15:4e:c1:7c: 12:4a:0d:75:5b:6c:a8:6b:43:22:a8:5a:f5:d4:d9:4d:64:2a: f4:a8:b5:5e:72:38:5a:8a:57:f7:57:d0:66:78:8b:5e:dd:fb: 95:13:03:1b:7b:dd:a9:78:a4:15:72:3e:a9:ee:d2:e6:0c:b0: ea:2d:60:8b:0d:e2:6c:5a:66:c6:ae:ff:d5:59:2e:5e:57:e9: f4:18:c2:d6:81:9b:bb:99:c4:74:b2:0c:f1:43:e4:77:0b:b8: 1b:58:f1:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBewwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGMTgxMTAvBgNVBAUTKDI1QzIwNTJDRUYzRDhFREVGMUFFMzg4NTVGRTdGQjEx QjQ1NzgxMTUwHhcNMjMwODIyMjI0MDA3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGU1Mzk0Ny1kNThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtwue/MAYyGVx4EfVrqE+TsTDORKupwyYVlDex1vjXxSmCpOH98sXOSs5/AAK T9XEvUg+gGGQycKHJjz7fqfn4YFhBQY+A+PKCP22Ve4EAYlrc3TF8wvqxIiut8DL FZjMCQmxIP84APdsJMeezKwU4wT71g+r1Nz5tuRqR2d+lfJyMqTOgApPiYfnyjfu /kArKzypvW7amDAsgMsdpEMVuNxi+2D9xoYX3Rc9gOZ/VzzViMmHq8g7IuzghIQx qsypwarpgMhSz7FNmJk8n9PlF7fpVDDGYE6UW+N68j2qwA7smlu3Wi+nbSXFJa31 kIsDFck7XdRAjpTCMfl0IpB61QIDAQABo4IClTCCApEwHQYDVR0OBBYEFBf7WDdt JT/qHFFHS92iyW0wXqBZMB8GA1UdIwQYMBaAFCXCBSzvPY7e8a44hV/n+xG0V4EV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYxOC82QzE0MTY4RTJG NjQxMUVCQjVDRkNGNUVDNEY5QUUwMi9KY0lGTE84OWp0N3hyamlGWC1mN0ViUlhn UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pjSUZMTzg5anQ3eHJqaUZYLWY3RWJSWGdSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhGMTgvNkMxNDE2OEUyRjY0MTFFQkI1Q0ZDRjVFQzRGOUFFMDIvMzI1QTJBQkEy RjZEMTFFQkFFMjdEMDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABndNMwDQYJKoZIhvcNAQELBQADggEBAFU/AtmE3t8IxL2j SjFuMOCdoQTa8Qqk86U2W3yr+B0mWohfbGxALzF5rEoyH1OcaLCxS3bNPL3c7oZ8 +/Xem7TBItIT7DLgXKGBIV182sWuu2NNz4SPkP2VO51Lttx12791j8wGy0SW1K11 sX2qkXtU1dlPDnX3XlD27j7azh1wBDRMg3krX7WewK78+v1tKfIZ2RfnL7VLAK7V GndlFU7BfBJKDXVbbKhrQyKoWvXU2U1kKvSotV5yOFqKV/dX0GZ4i17d+5UTAxt7 3al4pBVyPqnu0uYMsOotYIsN4mxaZsau/9VZLl5X6fQYwtaBm7uZxHSyDPFD5HcL uBtY8WE= -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:43 2024 by rpki-client on console-fra.rpki-client.org