$ rpki-client -vvf rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/A1CB8D62C13411ECA5838429C4F9AE02.roa File: A1CB8D62C13411ECA5838429C4F9AE02.roa (raw, json) Hash identifier: wILHqpy9Ti/8MJSzUe1aVFwRV4mS5BPVF4SBXg86ZeI= Subject key identifier: 1A:23:46:79:0E:11:DA:FE:99:53:13:DA:AB:92:30:D2:B2:69:A0:33 Certificate issuer: /CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Certificate serial: 0280 Authority key identifier: D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/A1CB8D62C13411ECA5838429C4F9AE02.roa Signing time: Wed 29 May 2024 04:09:40 +0000 ROA not before: Wed 29 May 2024 04:09:40 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135163 IP address blocks: 103.186.156.0/24 maxlen: 24 2001:df0:ab40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 640 (0x280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917039B/serialNumber=D21022C00F0DBBE58A99A1E673D3AE1C5DFDCB89 Validity Not Before: May 29 04:09:40 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6656aa84-ec91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5d:01:38:5d:aa:af:83:5d:07:a7:55:38:77: de:6b:13:db:c5:8d:3a:d6:0a:da:1e:62:90:5a:14: d6:c4:4d:1a:9d:c6:54:c5:2e:ba:35:f5:0f:e5:87: 21:08:d7:9e:db:84:c7:79:64:18:a4:fc:04:2d:9f: 5c:14:55:9a:a4:3d:f0:37:28:c6:3e:b9:d2:88:0b: 7f:64:88:71:85:e1:74:6d:7e:4c:03:37:82:7d:51: e9:44:92:ba:1e:ba:03:3a:32:20:b1:27:63:ef:0d: 53:25:cf:d2:74:0b:9e:be:ac:55:68:ec:6b:fc:e9: 53:33:f8:de:20:8e:f2:8f:a7:be:4d:55:af:ef:9c: 92:f7:d9:ab:c9:63:ce:42:9b:39:ab:4d:a8:cd:41: bd:da:8f:82:c5:76:d2:09:7c:20:b3:15:a3:0a:df: ea:24:a0:f1:d0:30:25:3a:bc:23:de:e2:0b:15:95: 79:28:8e:87:88:be:d8:a4:96:93:fe:bf:47:bf:48: 21:35:7f:8c:ad:22:7f:f2:1d:0d:48:36:3b:65:26: f1:76:14:d6:b3:21:32:72:c5:9b:9a:26:f6:ce:f8: 3e:37:42:5e:29:b2:be:bf:87:e6:03:29:47:4f:10: ed:27:e1:94:27:bb:a3:f1:4b:c6:8f:01:80:0a:00: b1:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:23:46:79:0E:11:DA:FE:99:53:13:DA:AB:92:30:D2:B2:69:A0:33 X509v3 Authority Key Identifier: keyid:D2:10:22:C0:0F:0D:BB:E5:8A:99:A1:E6:73:D3:AE:1C:5D:FD:CB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/0hAiwA8Nu-WKmaHmc9OuHF39y4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0hAiwA8Nu-WKmaHmc9OuHF39y4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917039B/99F54478C13111EC96B5E025C4F9AE02/A1CB8D62C13411ECA5838429C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.156.0/24 IPv6: 2001:df0:ab40::/48 Signature Algorithm: sha256WithRSAEncryption 33:6a:26:64:c1:2c:92:88:25:7e:7d:2f:86:58:2d:65:f1:18: 52:75:a6:5b:71:2c:91:16:e5:90:54:1c:af:ed:9a:58:1e:e4: 5b:dc:30:69:94:f5:71:1b:34:13:5c:c3:68:20:01:02:56:f5: ee:f8:d5:d9:57:c2:c5:d4:da:f2:a7:e3:1b:30:e0:51:01:85: 89:42:f7:d2:19:1e:53:a9:09:ad:4b:f8:b7:f8:41:55:98:b9: f1:43:b3:f4:7a:87:11:e5:fc:3b:62:55:46:f2:12:6a:ea:ac: 20:54:bb:59:f3:f2:07:fb:da:85:37:90:f1:d6:9e:6c:93:60: 7d:95:6d:80:1d:7b:2a:5b:fa:20:93:31:4d:25:61:fd:51:76: 17:32:c7:13:25:11:2e:43:b2:b7:67:5b:52:b3:90:0a:4d:65: 6c:92:e5:9e:ff:e4:13:e9:31:f4:98:7a:c1:ee:c7:09:62:b2: c6:6c:fb:c3:23:ce:90:bc:b3:58:40:a7:36:51:7f:d6:d4:b8: bf:35:b1:33:d6:20:0e:08:c5:03:4c:18:0c:d8:b5:4c:9a:52: 96:53:4e:91:ee:35:44:8b:f6:26:ef:ef:b2:27:b0:e6:96:f7: 4a:a7:4f:bb:23:cf:0a:d5:5c:25:0b:73:c1:a0:b1:43:b0:7e: d1:d9:86:eb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzAzOUIxMTAvBgNVBAUTKEQyMTAyMkMwMEYwREJCRTU4QTk5QTFFNjczRDNBRTFD NURGRENCODkwHhcNMjQwNTI5MDQwOTQwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2YWE4NC1lYzkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsV0BOF2qr4NdB6dVOHfeaxPbxY061graHmKQWhTWxE0ancZUxS66NfUP5Ych CNee24THeWQYpPwELZ9cFFWapD3wNyjGPrnSiAt/ZIhxheF0bX5MAzeCfVHpRJK6 HroDOjIgsSdj7w1TJc/SdAuevqxVaOxr/OlTM/jeII7yj6e+TVWv75yS99mryWPO Qps5q02ozUG92o+CxXbSCXwgsxWjCt/qJKDx0DAlOrwj3uILFZV5KI6HiL7YpJaT /r9Hv0ghNX+MrSJ/8h0NSDY7ZSbxdhTWsyEycsWbmib2zvg+N0JeKbK+v4fmAylH TxDtJ+GUJ7uj8UvGjwGACgCxUwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBojRnkO Edr+mVMT2quSMNKyaaAzMB8GA1UdIwQYMBaAFNIQIsAPDbvlipmh5nPTrhxd/cuJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDM5Qi85OUY1NDQ3OEMx MzExMUVDOTZCNUUwMjVDNEY5QUUwMi8waEFpd0E4TnUtV0ttYUhtYzlPdUhGMzl5 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBoQWl3QThOdS1XS21hSG1jOU91SEYzOXk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzAzOUIvOTlGNTQ0NzhDMTMxMTFFQzk2QjVFMDI1QzRGOUFFMDIvQTFDQjhENjJD MTM0MTFFQ0E1ODM4NDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnupwwDwQCAAIwCQMHACABDfCrQDANBgkqhkiG9w0BAQsF AAOCAQEAM2omZMEskoglfn0vhlgtZfEYUnWmW3EskRblkFQcr+2aWB7kW9wwaZT1 cRs0E1zDaCABAlb17vjV2VfCxdTa8qfjGzDgUQGFiUL30hkeU6kJrUv4t/hBVZi5 8UOz9HqHEeX8O2JVRvISauqsIFS7WfPyB/vahTeQ8daebJNgfZVtgB17Klv6IJMx TSVh/VF2FzLHEyURLkOyt2dbUrOQCk1lbJLlnv/kE+kx9Jh6we7HCWKyxmz7wyPO kLyzWECnNlF/1tS4vzWxM9YgDgjFA0wYDNi1TJpSllNOke41RIv2Ju/vsiew5pb3 SqdPuyPPCtVcJQtzwaCxQ7B+0dmG6w== -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:43 2024 by rpki-client on console-fra.rpki-client.org