$ rpki-client -vvf rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/DE437646F8A911EB98242219C4F9AE02.roa File: DE437646F8A911EB98242219C4F9AE02.roa (raw, json) Hash identifier: ttCm1MPGwsxBxNTAWbkYeii7tkd0QoF3neo8cMILzsE= Subject key identifier: A6:E2:69:F3:2E:2B:CF:46:0B:5E:9C:A2:27:9C:F5:49:F6:F6:78:66 Certificate issuer: /CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Certificate serial: 0A69 Authority key identifier: D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/DE437646F8A911EB98242219C4F9AE02.roa Signing time: Thu 02 May 2024 20:39:22 +0000 ROA not before: Thu 02 May 2024 20:39:22 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.248.128.0/24 maxlen: 24 2403:5f40:ca00::/44 maxlen: 44 2403:5f40:ca00::/48 maxlen: 48 2403:5f40:ca01::/48 maxlen: 48 2403:5f40:ca02::/48 maxlen: 48 2403:5f40:ca03::/48 maxlen: 48 2403:5f40:ca04::/48 maxlen: 48 2403:5f40:ca05::/48 maxlen: 48 2403:5f40:ca06::/48 maxlen: 48 2403:5f40:ca07::/48 maxlen: 48 2403:5f40:ca08::/48 maxlen: 48 2403:5f40:ca09::/48 maxlen: 48 2403:5f40:ca0a::/48 maxlen: 48 2403:5f40:ca0b::/48 maxlen: 48 2403:5f40:ca0c::/48 maxlen: 48 2403:5f40:ca0d::/48 maxlen: 48 2403:5f40:ca0e::/48 maxlen: 48 2403:5f40:ca0f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:44:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2665 (0xa69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DD78/serialNumber=D3C66C26A9FD1B9E7C455BDDB35159688D0140FE Validity Not Before: May 2 20:39:22 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6633f9f9-f8cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:52:a4:69:18:40:d4:47:8d:a2:89:98:5a:f8: 71:ce:33:d0:3c:56:44:66:8b:57:55:42:d8:b5:fb: cb:a8:fa:5a:c1:85:14:cb:73:15:18:dc:4b:b5:b8: 1f:e3:00:5c:b5:b9:9f:c8:e3:76:2a:c6:14:f7:16: 70:52:ae:b0:18:0c:22:10:cb:5b:b6:06:a4:a6:f7: ec:cb:4b:3b:bb:09:aa:9b:94:59:e6:7a:48:5b:61: 4b:3a:bf:48:c4:75:7e:27:48:b2:ce:f4:db:62:23: c2:21:91:68:f6:09:f4:50:d8:f5:fb:bb:78:56:9e: f7:a3:09:54:58:96:fe:f0:44:a0:4d:9c:d1:74:41: 56:ef:e4:2f:27:f3:08:ec:70:af:cc:6e:4a:24:a8: a4:f6:8c:98:46:a9:84:c9:64:1e:92:11:bd:f1:45: 8d:d4:71:74:c6:c0:0a:dc:7d:79:b3:ca:7e:e6:0b: 57:da:1b:f5:86:f7:ee:11:a0:2a:bc:28:bf:b4:63: 12:9d:e1:0f:18:2a:ad:9e:ae:fc:9d:98:28:44:bc: 2b:ac:c2:36:e9:b0:89:49:b1:8b:f8:82:f3:3f:e9: 74:37:d7:bb:34:64:81:b3:cb:26:67:03:96:39:59: 9f:04:6a:59:29:b3:41:a4:71:08:d9:64:53:bf:22: 88:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E2:69:F3:2E:2B:CF:46:0B:5E:9C:A2:27:9C:F5:49:F6:F6:78:66 X509v3 Authority Key Identifier: keyid:D3:C6:6C:26:A9:FD:1B:9E:7C:45:5B:DD:B3:51:59:68:8D:01:40:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/08ZsJqn9G558RVvds1FZaI0BQP4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/08ZsJqn9G558RVvds1FZaI0BQP4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DD78/D4E9649C42F811EAB460E93FC4F9AE02/DE437646F8A911EB98242219C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.128.0/24 IPv6: 2403:5f40:ca00::/44 Signature Algorithm: sha256WithRSAEncryption 93:e2:2c:0b:9f:3a:b2:b6:81:c1:9b:2a:24:94:99:0e:07:07: c4:d7:93:c4:6e:9b:e6:2a:cb:c9:8e:bc:be:86:81:5d:e6:bf: 27:a1:37:37:66:06:33:90:87:db:f9:c7:db:19:3b:77:0d:2f: 39:6c:c4:5f:0f:1e:b2:c0:5e:cc:2c:8b:c3:ec:24:e1:43:31: da:5a:79:86:96:f7:d0:69:22:21:05:a0:2a:29:fa:a2:a1:c0: a2:fb:e8:51:bb:25:b2:f0:75:37:c0:d1:12:fe:41:f0:e0:a2: 16:38:2b:d0:b6:66:6c:4a:06:54:8c:e7:e7:74:8b:1a:f8:64: 06:f9:1b:41:76:33:0f:3d:ae:a0:af:e6:41:80:6d:bb:ab:4e: 76:b2:87:e9:ca:9a:08:be:a7:5a:59:21:18:79:60:1b:7c:f5: 89:94:2b:c2:21:41:07:4d:d5:cd:36:ad:1a:75:77:73:71:da: 4f:7d:d9:c1:76:94:22:79:39:1e:22:df:93:ac:6d:89:86:0c: 54:65:97:1d:be:a0:b9:58:5f:83:95:5b:b4:91:c6:54:7a:f9: fb:78:a5:48:6c:b2:5d:2b:48:20:3e:21:2a:14:6e:ce:ee:a4: d7:42:6b:6a:a5:58:67:8b:86:fa:77:7e:eb:47:b4:15:df:d6: 88:55:0c:ea -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERENzgxMTAvBgNVBAUTKEQzQzY2QzI2QTlGRDFCOUU3QzQ1NUJEREIzNTE1OTY4 OEQwMTQwRkUwHhcNMjQwNTAyMjAzOTIyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzZjlmOS1mOGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl1KkaRhA1EeNoomYWvhxzjPQPFZEZotXVULYtfvLqPpawYUUy3MVGNxLtbgf 4wBctbmfyON2KsYU9xZwUq6wGAwiEMtbtgakpvfsy0s7uwmqm5RZ5npIW2FLOr9I xHV+J0iyzvTbYiPCIZFo9gn0UNj1+7t4Vp73owlUWJb+8ESgTZzRdEFW7+QvJ/MI 7HCvzG5KJKik9oyYRqmEyWQekhG98UWN1HF0xsAK3H15s8p+5gtX2hv1hvfuEaAq vCi/tGMSneEPGCqtnq78nZgoRLwrrMI26bCJSbGL+ILzP+l0N9e7NGSBs8smZwOW OVmfBGpZKbNBpHEI2WRTvyKIwwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKbiafMu K89GC16coiec9Un29nhmMB8GA1UdIwQYMBaAFNPGbCap/RuefEVb3bNRWWiNAUD+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REQ3OC9ENEU5NjQ5QzQy RjgxMUVBQjQ2MEU5M0ZDNEY5QUUwMi8wOFpzSnFuOUc1NThSVnZkczFGWmFJMEJR UDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA4WnNKcW45RzU1OFJWdmRzMUZaYUkwQlFQNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERENzgvRDRFOTY0OUM0MkY4MTFFQUI0NjBFOTNGQzRGOUFFMDIvREU0Mzc2NDZG OEE5MTFFQjk4MjQyMjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABn+IAwDwQCAAIwCQMHBCQDX0DKADANBgkqhkiG9w0BAQsF AAOCAQEAk+IsC586sraBwZsqJJSZDgcHxNeTxG6b5irLyY68voaBXea/J6E3N2YG M5CH2/nH2xk7dw0vOWzEXw8essBezCyLw+wk4UMx2lp5hpb30GkiIQWgKin6oqHA ovvoUbslsvB1N8DREv5B8OCiFjgr0LZmbEoGVIzn53SLGvhkBvkbQXYzDz2uoK/m QYBtu6tOdrKH6cqaCL6nWlkhGHlgG3z1iZQrwiFBB03VzTatGnV3c3HaT33ZwXaU Ink5HiLfk6xtiYYMVGWXHb6guVhfg5VbtJHGVHr5+3ilSGyyXStIID4hKhRuzu6k 10JraqVYZ4uG+nd+60e0Fd/WiFUM6g== -----END CERTIFICATE-----Generated at Sat May 4 21:19:28 2024 by rpki-client on console-ams.rpki-client.org