$ rpki-client -vvf rpki.apnic.net/member_repository/A9161FF7/21862C64E0C011E89E9BFE15C4F9AE02/44A110AE77F311EEBFBD3064C4F9AE02.roa File: 44A110AE77F311EEBFBD3064C4F9AE02.roa (raw, json) Hash identifier: V7wsrR/V3W0D132tlUg223REdCz2I0Rx3mNRza94jvM= Subject key identifier: 4C:31:E3:97:FB:76:BA:25:3B:0C:63:A4:1E:E9:12:26:AE:29:B9:F1 Certificate issuer: /CN=A9161FF7/serialNumber=EEE94E3AF40EAC8CA36DC32E49E4446ECFB33505 Certificate serial: 10F7 Authority key identifier: EE:E9:4E:3A:F4:0E:AC:8C:A3:6D:C3:2E:49:E4:44:6E:CF:B3:35:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ulOOvQOrIyjbcMuSeREbs-zNQU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161FF7/21862C64E0C011E89E9BFE15C4F9AE02/44A110AE77F311EEBFBD3064C4F9AE02.roa Signing time: Tue 31 Oct 2023 18:05:19 +0000 ROA not before: Tue 31 Oct 2023 18:05:19 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 138403 IP address blocks: 103.124.180.0/24 maxlen: 24 103.124.181.0/24 maxlen: 24 103.124.182.0/24 maxlen: 24 2403:e3c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161FF7/21862C64E0C011E89E9BFE15C4F9AE02/7ulOOvQOrIyjbcMuSeREbs-zNQU.crl rsync://rpki.apnic.net/member_repository/A9161FF7/21862C64E0C011E89E9BFE15C4F9AE02/7ulOOvQOrIyjbcMuSeREbs-zNQU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ulOOvQOrIyjbcMuSeREbs-zNQU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:08:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4343 (0x10f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161FF7/serialNumber=EEE94E3AF40EAC8CA36DC32E49E4446ECFB33505 Validity Not Before: Oct 31 18:05:19 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654141df-ab66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:15:51:92:e4:14:bd:5f:ea:43:5b:7d:89:b5: 10:57:b6:53:e3:44:99:4d:99:35:fd:e1:6a:f3:e8: 70:e8:31:58:a4:95:ff:ce:55:f4:6c:ca:a0:cf:e4: 27:0e:fc:9f:44:49:77:a9:bf:54:67:c3:a5:cc:92: 99:bb:0c:3a:d2:3a:dc:8e:35:d9:97:bf:71:47:53: a1:ae:5b:58:35:62:4b:87:d2:07:b3:5f:4a:32:46: a8:68:fa:e1:55:6f:6d:d0:38:ee:70:84:79:e1:bd: 72:43:e0:e8:ee:00:19:e8:7c:cb:97:76:39:2e:58: cd:4c:87:6e:d4:d2:f7:22:3a:3b:55:d5:3b:76:47: 1e:43:cf:7d:f8:5a:bf:62:4b:96:92:aa:62:43:75: 7d:37:fc:65:65:c0:e6:d8:4e:01:34:10:7f:e6:8a: bd:fc:2a:f7:a5:c0:3e:a8:b9:b4:29:7c:99:fe:71: 12:23:1d:3e:7d:8c:d4:7c:e4:ab:c5:a1:44:9b:10: b7:03:53:d2:4a:2b:3a:39:e0:6f:99:18:56:e9:bf: 84:ad:5d:c8:d2:40:ee:31:33:aa:f7:a1:33:70:cc: 30:3b:f3:57:e0:3f:c8:5a:d0:5d:19:f3:b9:2a:f2: 8c:cc:bc:a8:57:a7:9d:68:b7:b1:b6:7e:1f:d1:f6: 1e:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:31:E3:97:FB:76:BA:25:3B:0C:63:A4:1E:E9:12:26:AE:29:B9:F1 X509v3 Authority Key Identifier: keyid:EE:E9:4E:3A:F4:0E:AC:8C:A3:6D:C3:2E:49:E4:44:6E:CF:B3:35:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161FF7/21862C64E0C011E89E9BFE15C4F9AE02/7ulOOvQOrIyjbcMuSeREbs-zNQU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7ulOOvQOrIyjbcMuSeREbs-zNQU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161FF7/21862C64E0C011E89E9BFE15C4F9AE02/44A110AE77F311EEBFBD3064C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.180.0-103.124.182.255 IPv6: 2403:e3c0::/32 Signature Algorithm: sha256WithRSAEncryption 5d:64:7d:b7:4e:5b:99:9d:ef:25:a5:85:41:83:2d:f0:12:98: a6:8e:9b:5e:ca:02:b7:ec:25:14:52:8a:b2:d6:41:7b:b6:03: aa:51:3c:0f:7f:0f:1f:cf:fd:16:67:8f:7d:7f:aa:5f:50:d0: f9:fb:05:68:a6:22:de:f3:bc:03:cb:25:63:55:51:95:c3:10: fe:6c:d9:0e:52:77:09:b2:4a:1c:dd:3b:6e:b0:b6:b5:14:2a: 45:43:96:0f:b7:5c:a4:69:c9:86:f6:ba:0c:a3:0e:d3:d6:f2: 1e:8d:17:0d:1c:00:df:22:38:2e:16:ab:69:2f:47:44:09:5a: c8:e8:b1:da:b1:e6:5f:91:93:fc:74:5a:f3:09:d6:18:26:32: 1d:09:09:51:f1:ed:e1:52:28:a4:82:c2:1f:22:bc:bf:f1:fd: 41:3a:95:c2:93:65:05:32:50:93:e0:91:9a:a5:76:4f:63:83: 9e:63:ec:fd:96:cd:71:3f:24:64:ad:23:fe:39:78:ad:9e:1d: c7:cb:25:ca:cd:53:78:3b:67:a4:18:65:73:f0:0d:94:ca:35: 61:8c:2b:80:ef:04:1e:7c:47:35:b1:57:71:9c:0f:b2:f5:bf: 76:6b:6c:3f:d9:12:27:b9:73:b9:69:20:7a:59:fd:2c:41:44: 7b:7a:96:9b -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICEPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFGRjcxMTAvBgNVBAUTKEVFRTk0RTNBRjQwRUFDOENBMzZEQzMyRTQ5RTQ0NDZF Q0ZCMzM1MDUwHhcNMjMxMDMxMTgwNTE5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxNDFkZi1hYjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+hVRkuQUvV/qQ1t9ibUQV7ZT40SZTZk1/eFq8+hw6DFYpJX/zlX0bMqgz+Qn DvyfREl3qb9UZ8OlzJKZuww60jrcjjXZl79xR1OhrltYNWJLh9IHs19KMkaoaPrh VW9t0DjucIR54b1yQ+Do7gAZ6HzLl3Y5LljNTIdu1NL3Ijo7VdU7dkceQ899+Fq/ YkuWkqpiQ3V9N/xlZcDm2E4BNBB/5oq9/Cr3pcA+qLm0KXyZ/nESIx0+fYzUfOSr xaFEmxC3A1PSSis6OeBvmRhW6b+ErV3I0kDuMTOq96EzcMwwO/NX4D/IWtBdGfO5 KvKMzLyoV6edaLextn4f0fYeWwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFEwx45f7 drolOwxjpB7pEiauKbnxMB8GA1UdIwQYMBaAFO7pTjr0DqyMo23DLknkRG7PszUF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MUZGNy8yMTg2MkM2NEUw QzAxMUU4OUU5QkZFMTVDNEY5QUUwMi83dWxPT3ZRT3JJeWpiY011U2VSRWJzLXpO UVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzd1bE9PdlFPckl5amJjTXVTZVJFYnMtek5RVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFGRjcvMjE4NjJDNjRFMEMwMTFFODlFOUJGRTE1QzRGOUFFMDIvNDRBMTEwQUU3 N0YzMTFFRUJGQkQzMDY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAmd8tAMEAGd8tjANBAIAAjAHAwUAJAPjwDANBgkqhkiG 9w0BAQsFAAOCAQEAXWR9t05bmZ3vJaWFQYMt8BKYpo6bXsoCt+wlFFKKstZBe7YD qlE8D38PH8/9FmePfX+qX1DQ+fsFaKYi3vO8A8slY1VRlcMQ/mzZDlJ3CbJKHN07 brC2tRQqRUOWD7dcpGnJhva6DKMO09byHo0XDRwA3yI4LharaS9HRAlayOix2rHm X5GT/HRa8wnWGCYyHQkJUfHt4VIopILCHyK8v/H9QTqVwpNlBTJQk+CRmqV2T2OD nmPs/ZbNcT8kZK0j/jl4rZ4dx8slys1TeDtnpBhlc/ANlMo1YYwrgO8EHnxHNbFX cZwPsvW/dmtsP9kSJ7lzuWkgeln9LEFEe3qWmw== -----END CERTIFICATE-----Generated at Fri May 31 19:47:49 2024 by rpki-client on console-fra.rpki-client.org