$ rpki-client -vvf rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/D11B9044112011EDAC1D3B15C4F9AE02.roa File: D11B9044112011EDAC1D3B15C4F9AE02.roa (raw, json) Hash identifier: jBBbANmuNZVxVrVIl9nOmJTDHehO/z/tNRNLXj+1oS0= Subject key identifier: 6E:18:E2:94:DE:44:B9:06:BC:61:A0:77:0F:6E:2B:FB:E3:7F:18:6E Certificate issuer: /CN=A916B19D/serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Certificate serial: 01F4 Authority key identifier: 5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/D11B9044112011EDAC1D3B15C4F9AE02.roa Signing time: Thu 19 Sep 2024 02:16:13 +0000 ROA not before: Thu 19 Sep 2024 02:16:13 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132161 IP address blocks: 103.14.216.0/23 maxlen: 23 103.14.218.0/23 maxlen: 23 203.190.208.0/22 maxlen: 22 203.190.212.0/23 maxlen: 23 203.190.212.0/24 maxlen: 24 203.190.213.0/24 maxlen: 24 203.190.214.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B19D/serialNumber=5C41422C4ECF1DFA689A70DE3C0391B1D47E55EC Validity Not Before: Sep 19 02:16:13 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eb896d-f38e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:e0:3e:95:21:39:c4:c9:d2:35:d2:54:a1:e1: 07:ba:47:e6:3a:db:3c:c7:88:d0:a3:63:25:29:75: 45:8e:6c:9d:ee:20:59:06:60:9b:d7:bd:7e:0d:19: b8:8a:b9:19:d6:2d:61:87:fc:5a:31:d7:51:de:6d: 6d:8a:8b:df:2b:d6:56:96:45:68:2d:18:ff:c6:63: 35:09:03:05:dd:37:e2:f3:f9:43:53:3b:de:5f:fa: 0a:21:e1:d9:ed:ba:e4:85:1c:2b:aa:e2:d2:41:09: 81:e9:07:28:33:58:67:ec:2b:b3:14:1e:30:50:8b: 9e:3e:96:bd:0b:86:1f:1f:e1:dd:d3:e1:e5:71:9b: d4:f1:2c:5c:92:bb:12:a8:06:5e:80:d2:01:41:03: 12:64:10:b4:70:22:02:b1:be:0b:cd:b2:83:d1:d8: ba:d8:04:fc:8a:ec:3c:73:0f:42:22:80:e3:70:ba: 16:ef:c8:85:80:4f:b2:6e:83:41:21:2a:9b:68:42: a4:26:63:fa:04:6e:ec:a4:b7:76:41:45:7f:95:4b: 03:4a:78:49:b0:7f:5b:20:97:b4:0e:4d:af:70:5d: 13:f1:f1:6f:c1:90:a1:d0:60:ba:7c:89:1f:7a:21: 66:f7:0f:1b:42:6f:72:22:d3:a1:64:e5:ec:54:12: 5b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:18:E2:94:DE:44:B9:06:BC:61:A0:77:0F:6E:2B:FB:E3:7F:18:6E X509v3 Authority Key Identifier: keyid:5C:41:42:2C:4E:CF:1D:FA:68:9A:70:DE:3C:03:91:B1:D4:7E:55:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/XEFCLE7PHfpomnDePAORsdR-Vew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XEFCLE7PHfpomnDePAORsdR-Vew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B19D/D2695DDE111E11ED9B58FD14C4F9AE02/D11B9044112011EDAC1D3B15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.216.0/22 203.190.208.0/21 Signature Algorithm: sha256WithRSAEncryption aa:39:3c:9e:1d:28:b1:36:9f:01:c2:4b:3f:3a:da:04:bb:cc: c9:1e:a2:64:7a:ca:49:2d:df:20:1d:1d:b6:37:ad:e7:ba:1b: 97:96:29:bb:e0:ce:21:b9:67:0b:65:60:73:da:04:ed:5f:bf: e2:6b:c5:8b:d1:33:2a:e4:28:4c:3d:31:0c:af:12:85:f5:42: 6d:80:32:48:ef:1d:d4:9f:9d:5a:96:df:1f:2e:cd:8c:b8:20: 06:da:73:bc:a4:b5:74:88:c7:7f:69:52:d2:cb:6e:e8:0c:1e: ac:4b:68:e0:04:52:60:71:e6:a8:80:ac:74:6e:cf:1e:cb:d4: 3b:f9:61:48:a7:3b:fd:45:1d:3e:da:0f:54:43:f3:62:6f:eb: 32:ec:3c:2a:64:1f:24:f7:e4:80:d7:ee:b9:83:9f:d5:33:46: 09:11:11:de:b4:19:d1:f1:d1:02:17:89:51:8a:a8:9e:ab:94: e8:c9:5e:75:be:51:48:6d:a9:64:84:56:cd:83:ea:9d:42:85: 10:02:c8:37:85:c6:4b:69:09:d0:1a:a6:f8:ed:39:3b:b0:25: 98:4d:28:4a:16:a4:d1:11:d9:65:c7:ce:a0:c4:3f:be:41:97: 6e:94:ac:6c:ff:18:e4:ee:aa:57:b8:fc:1f:c6:bd:37:7f:44: d6:c3:98:93 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkIxOUQxMTAvBgNVBAUTKDVDNDE0MjJDNEVDRjFERkE2ODlBNzBERTNDMDM5MUIx RDQ3RTU1RUMwHhcNMjQwOTE5MDIxNjEzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViODk2ZC1mMzhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAruA+lSE5xMnSNdJUoeEHukfmOts8x4jQo2MlKXVFjmyd7iBZBmCb171+DRm4 irkZ1i1hh/xaMddR3m1tiovfK9ZWlkVoLRj/xmM1CQMF3Tfi8/lDUzveX/oKIeHZ 7brkhRwrquLSQQmB6QcoM1hn7CuzFB4wUIuePpa9C4YfH+Hd0+HlcZvU8SxckrsS qAZegNIBQQMSZBC0cCICsb4LzbKD0di62AT8iuw8cw9CIoDjcLoW78iFgE+yboNB ISqbaEKkJmP6BG7spLd2QUV/lUsDSnhJsH9bIJe0Dk2vcF0T8fFvwZCh0GC6fIkf eiFm9w8bQm9yItOhZOXsVBJbkQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG4Y4pTe RLkGvGGgdw9uK/vjfxhuMB8GA1UdIwQYMBaAFFxBQixOzx36aJpw3jwDkbHUflXs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjE5RC9EMjY5NURERTEx MUUxMUVEOUI1OEZEMTRDNEY5QUUwMi9YRUZDTEU3UEhmcG9tbkRlUEFPUnNkUi1W ZXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hFRkNMRTdQSGZwb21uRGVQQU9Sc2RSLVZldy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkIxOUQvRDI2OTVEREUxMTFFMTFFRDlCNThGRDE0QzRGOUFFMDIvRDExQjkwNDQx MTIwMTFFREFDMUQzQjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnDtgDBAPLvtAwDQYJKoZIhvcNAQELBQADggEBAKo5PJ4d KLE2nwHCSz862gS7zMkeomR6ykkt3yAdHbY3ree6G5eWKbvgziG5ZwtlYHPaBO1f v+JrxYvRMyrkKEw9MQyvEoX1Qm2AMkjvHdSfnVqW3x8uzYy4IAbac7yktXSIx39p UtLLbugMHqxLaOAEUmBx5qiArHRuzx7L1Dv5YUinO/1FHT7aD1RD82Jv6zLsPCpk HyT35IDX7rmDn9UzRgkREd60GdHx0QIXiVGKqJ6rlOjJXnW+UUhtqWSEVs2D6p1C hRACyDeFxktpCdAapvjtOTuwJZhNKEoWpNER2WXHzqDEP75Bl26UrGz/GOTuqle4 /B/GvTd/RNbDmJM= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:40 2024 by rpki-client on console-ams.rpki-client.org