$ rpki-client -vvf rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/ACE844F047AA11ECA0F05026C4F9AE02.roa File: ACE844F047AA11ECA0F05026C4F9AE02.roa (raw, json) Hash identifier: RB7zIrr0vmaPJFrKM5hv3nF1tNHSBNjXihwLxIeXId8= Subject key identifier: 0B:B8:0F:6F:AF:AC:D7:CA:87:B0:48:A0:33:DE:B8:5F:DE:3C:A3:A1 Certificate issuer: /CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Certificate serial: 0377 Authority key identifier: 5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/ACE844F047AA11ECA0F05026C4F9AE02.roa Signing time: Fri 01 Dec 2023 02:54:08 +0000 ROA not before: Fri 01 Dec 2023 02:54:08 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132075 IP address blocks: 103.23.24.0/22 maxlen: 22 103.23.24.0/23 maxlen: 23 103.23.24.0/24 maxlen: 24 103.23.25.0/24 maxlen: 24 103.23.26.0/23 maxlen: 23 103.23.26.0/24 maxlen: 24 103.23.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:33:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 887 (0x377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167CC5/serialNumber=5D2785B54D163ED01EA5418BCFA34F1B7456B713 Validity Not Before: Dec 1 02:54:08 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65694acf-787a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:07:d6:e3:27:b3:6d:f0:fe:9b:fe:f1:db:c6: 3d:b2:35:93:b0:93:dd:69:a0:db:3f:fe:23:19:cc: d1:30:da:1b:ec:fe:03:f6:a0:16:a4:a7:6e:5b:79: 59:24:00:aa:72:2b:e0:34:b9:fb:df:8d:55:8c:09: 69:1e:f5:b0:ec:aa:ca:5a:aa:c1:b2:63:de:ce:8d: 5e:49:18:5e:99:6f:25:d7:15:f9:33:b0:a0:c9:d7: fe:c7:e1:3a:e6:15:f2:db:f0:10:1a:7a:d9:b3:6f: 0c:69:52:8d:f9:e9:04:0d:2f:25:db:cc:5b:37:e9: be:76:b7:24:da:b2:51:94:6e:92:a3:35:47:bc:33: b7:16:46:41:3e:6c:ac:73:7f:a0:d0:3b:27:7b:96: 11:32:73:0b:76:b9:71:bb:5f:e6:57:da:9e:ce:e4: e8:fc:31:a7:a8:47:ff:d1:af:03:ee:c0:57:25:8c: 45:fe:90:f2:44:34:38:58:f0:82:82:bf:aa:4f:9d: a5:53:a2:0e:c0:24:9d:b0:fd:ae:a6:72:e3:14:9e: 72:f9:ac:5c:b1:16:78:1b:c1:bb:80:64:16:d4:68: 6b:16:79:dc:ea:50:80:f0:a2:2f:59:7a:37:63:ac: e3:63:36:e5:0c:cc:6c:e4:95:49:eb:78:e8:b3:04: b1:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B8:0F:6F:AF:AC:D7:CA:87:B0:48:A0:33:DE:B8:5F:DE:3C:A3:A1 X509v3 Authority Key Identifier: keyid:5D:27:85:B5:4D:16:3E:D0:1E:A5:41:8B:CF:A3:4F:1B:74:56:B7:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/XSeFtU0WPtAepUGLz6NPG3RWtxM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XSeFtU0WPtAepUGLz6NPG3RWtxM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167CC5/2AC4D33E46B111EC945B4F57C4F9AE02/ACE844F047AA11ECA0F05026C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.24.0/22 Signature Algorithm: sha256WithRSAEncryption 50:a3:21:3f:df:ae:05:48:fb:0f:03:bf:7c:0f:5d:3e:11:67: 74:19:91:8c:72:6f:58:8c:7d:fc:af:41:d8:03:18:f6:4f:17: d5:5a:03:ec:85:d2:22:38:4e:7c:ab:36:99:25:56:fc:07:13: c1:27:65:e1:5b:e9:62:20:b3:86:fc:8d:c8:bc:20:1b:bf:6e: ff:7f:26:b5:bf:e9:22:c3:0f:c1:72:0e:02:9b:de:a6:9b:f7: c5:f0:eb:30:61:30:b1:bd:c9:f6:5d:6d:91:a9:88:58:08:2b: fa:09:a3:2b:93:65:4f:1c:ff:91:49:c8:f8:a3:83:88:83:76: 8c:99:5f:a6:15:3f:67:06:2c:8b:6e:4a:5b:4f:9d:05:56:b1: 85:0a:cb:da:d9:17:c1:4e:f7:9c:53:39:4d:af:cc:be:f6:a9: 60:99:e0:72:00:4e:43:dd:cc:50:19:01:33:2d:d7:e4:14:a2: 9d:32:1c:ab:ee:7f:96:6a:64:9f:df:6f:85:35:a3:d4:6d:cb: a1:1e:00:9e:b4:73:c4:50:ec:21:df:a8:13:91:52:70:6c:e4: 7a:a4:93:f7:05:56:f3:10:7b:57:9f:27:8f:f5:b8:69:37:51: 4a:ca:3a:50:16:e1:01:46:80:80:b5:7d:fc:37:59:cd:6c:b0: f1:4a:08:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDQzUxMTAvBgNVBAUTKDVEMjc4NUI1NEQxNjNFRDAxRUE1NDE4QkNGQTM0RjFC NzQ1NkI3MTMwHhcNMjMxMjAxMDI1NDA4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY5NGFjZi03ODdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wfW4yezbfD+m/7x28Y9sjWTsJPdaaDbP/4jGczRMNob7P4D9qAWpKduW3lZ JACqcivgNLn7341VjAlpHvWw7KrKWqrBsmPezo1eSRhemW8l1xX5M7Cgydf+x+E6 5hXy2/AQGnrZs28MaVKN+ekEDS8l28xbN+m+drck2rJRlG6SozVHvDO3FkZBPmys c3+g0Dsne5YRMnMLdrlxu1/mV9qezuTo/DGnqEf/0a8D7sBXJYxF/pDyRDQ4WPCC gr+qT52lU6IOwCSdsP2upnLjFJ5y+axcsRZ4G8G7gGQW1GhrFnnc6lCA8KIvWXo3 Y6zjYzblDMxs5JVJ63joswSxoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAu4D2+v rNfKh7BIoDPeuF/ePKOhMB8GA1UdIwQYMBaAFF0nhbVNFj7QHqVBi8+jTxt0VrcT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0NDNS8yQUM0RDMzRTQ2 QjExMUVDOTQ1QjRGNTdDNEY5QUUwMi9YU2VGdFUwV1B0QWVwVUdMejZOUEczUld0 eE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTZUZ0VTBXUHRBZXBVR0x6Nk5QRzNSV3R4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdDQzUvMkFDNEQzM0U0NkIxMTFFQzk0NUI0RjU3QzRGOUFFMDIvQUNFODQ0RjA0 N0FBMTFFQ0EwRjA1MDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnFxgwDQYJKoZIhvcNAQELBQADggEBAFCjIT/frgVI+w8D v3wPXT4RZ3QZkYxyb1iMffyvQdgDGPZPF9VaA+yF0iI4TnyrNpklVvwHE8EnZeFb 6WIgs4b8jci8IBu/bv9/JrW/6SLDD8FyDgKb3qab98Xw6zBhMLG9yfZdbZGpiFgI K/oJoyuTZU8c/5FJyPijg4iDdoyZX6YVP2cGLItuSltPnQVWsYUKy9rZF8FO95xT OU2vzL72qWCZ4HIATkPdzFAZATMt1+QUop0yHKvuf5ZqZJ/fb4U1o9Rty6EeAJ60 c8RQ7CHfqBORUnBs5Hqkk/cFVvMQe1efJ4/1uGk3UUrKOlAW4QFGgIC1ffw3Wc1s sPFKCKs= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:02 2024 by rpki-client on console-fra.rpki-client.org