$ rpki-client -vvf rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa File: 65E02670C83E11ED9FAAFA22C4F9AE02.roa (raw, json) Hash identifier: mECk45lJRrGYCsUl0s33tZDlg+g3kdID1LTdBe9R6+M= Subject key identifier: AD:25:CF:45:B8:0B:F0:40:F0:FC:43:E5:D8:A0:2C:41:FF:FD:E3:E8 Certificate issuer: /CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Certificate serial: DD Authority key identifier: 47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa Signing time: Fri 03 May 2024 06:19:55 +0000 ROA not before: Fri 03 May 2024 06:19:55 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136463 IP address blocks: 103.89.18.0/24 maxlen: 24 103.89.19.0/24 maxlen: 24 103.105.140.0/24 maxlen: 24 103.105.141.0/24 maxlen: 24 2400:e940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 06:44:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 221 (0xdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A442/serialNumber=476C2B96A518F357F6D97682A871C3E48BB9E123 Validity Not Before: May 3 06:19:55 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6634820a-e579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ef:d2:80:52:a4:17:dd:70:54:c1:d3:e6:16: 9b:df:70:26:f1:05:0d:cb:cf:67:f0:3e:db:8c:d5: 74:f2:15:9e:a0:b3:c7:1b:d7:76:55:46:1d:7a:f3: dd:d3:25:7f:c9:72:b4:39:b9:3f:08:a0:9e:8c:0d: 64:1c:fb:22:6f:6b:9f:3f:b8:ef:bc:f5:95:ce:2e: c6:d2:69:1e:53:c2:7e:50:37:cf:ee:86:d6:73:f1: c1:27:a6:1f:02:3c:2c:68:be:97:72:7f:1c:c0:c6: b5:60:47:58:79:f0:8d:ba:08:76:af:a0:7c:65:b3: 85:ef:42:8c:13:2d:1e:df:51:79:b4:bb:d1:ea:3e: 92:52:85:06:bf:54:94:ef:a3:0c:82:40:21:97:7d: 38:a6:8c:b0:ce:24:21:f2:cc:b9:ec:78:2a:fb:c5: 73:cc:0f:ed:44:a3:1d:c7:27:65:b4:83:03:00:22: 0a:11:b9:e9:fe:27:d2:09:7a:f2:42:4b:bf:7b:dc: e9:1a:3e:34:c8:60:0b:98:79:e9:ed:ea:27:b2:09: 29:05:69:27:e3:1b:ae:c2:da:3e:7e:0a:1d:52:dd: 66:47:d0:05:97:7e:5b:14:40:76:03:12:ec:20:76: a1:1c:4f:e1:ce:92:85:3a:bc:6b:bc:42:4b:fc:3a: 87:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:25:CF:45:B8:0B:F0:40:F0:FC:43:E5:D8:A0:2C:41:FF:FD:E3:E8 X509v3 Authority Key Identifier: keyid:47:6C:2B:96:A5:18:F3:57:F6:D9:76:82:A8:71:C3:E4:8B:B9:E1:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/R2wrlqUY81f22XaCqHHD5Iu54SM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2wrlqUY81f22XaCqHHD5Iu54SM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A442/E0E7DB56C83911EDAC72B11CC4F9AE02/65E02670C83E11ED9FAAFA22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.18.0/23 103.105.140.0/23 IPv6: 2400:e940::/32 Signature Algorithm: sha256WithRSAEncryption 32:fd:9f:84:c1:f4:b2:03:1c:df:64:4c:fa:9d:38:cc:7f:f6: 9d:ee:ad:f0:86:2a:e9:aa:48:d6:62:3c:8b:d2:62:49:a9:4e: db:98:29:f8:e6:c7:62:f2:54:18:3d:20:f5:de:a4:f9:55:18: 41:1b:da:89:49:c0:53:8c:be:09:f1:50:53:75:dc:1a:f2:8a: a2:db:91:c3:bc:0d:82:8c:f5:40:97:50:84:68:35:4a:a0:d3: 65:79:82:b6:e2:bd:d2:61:85:88:11:6b:11:fd:fc:01:05:0e: ad:35:e4:1c:56:6e:07:1f:b0:5f:92:e4:0e:d7:a9:e6:74:29: c6:22:09:78:83:48:18:d7:e4:69:38:c7:0c:3d:cd:e0:f6:cb: 97:5c:bd:43:32:59:84:16:14:cf:74:c0:aa:cd:e5:b6:81:4e: 9d:f6:18:19:b8:d2:71:42:0c:0c:2c:55:d0:67:89:26:b6:36: e0:d0:6c:89:71:9b:7b:cb:43:b5:ae:9a:99:0b:33:26:35:c7: ac:fc:fa:90:40:f9:69:8b:bf:e2:03:ce:5a:71:4c:4e:f8:c8: d8:84:44:1f:22:dc:48:06:7e:85:35:f8:76:98:38:53:25:63: 99:cc:24:97:1f:a6:cd:f5:76:45:26:2c:73:cd:be:43:8a:fc: 58:1e:e1:bd -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAN0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0NDIxMTAvBgNVBAUTKDQ3NkMyQjk2QTUxOEYzNTdGNkQ5NzY4MkE4NzFDM0U0 OEJCOUUxMjMwHhcNMjQwNTAzMDYxOTU1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0ODIwYS1lNTc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxe/SgFKkF91wVMHT5hab33Am8QUNy89n8D7bjNV08hWeoLPHG9d2VUYdevPd 0yV/yXK0Obk/CKCejA1kHPsib2ufP7jvvPWVzi7G0mkeU8J+UDfP7obWc/HBJ6Yf AjwsaL6Xcn8cwMa1YEdYefCNugh2r6B8ZbOF70KMEy0e31F5tLvR6j6SUoUGv1SU 76MMgkAhl304poywziQh8sy57Hgq+8VzzA/tRKMdxydltIMDACIKEbnp/ifSCXry Qku/e9zpGj40yGALmHnp7eonsgkpBWkn4xuuwto+fgodUt1mR9AFl35bFEB2AxLs IHahHE/hzpKFOrxrvEJL/DqH5QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFK0lz0W4 C/BA8PxD5digLEH//ePoMB8GA1UdIwQYMBaAFEdsK5alGPNX9tl2gqhxw+SLueEj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ0Mi9FMEU3REI1NkM4 MzkxMUVEQUM3MkIxMUNDNEY5QUUwMi9SMndybHFVWTgxZjIyWGFDcUhIRDVJdTU0 U00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Iyd3JscVVZODFmMjJYYUNxSEhENUl1NTRTTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E0NDIvRTBFN0RCNTZDODM5MTFFREFDNzJCMTFDQzRGOUFFMDIvNjVFMDI2NzBD ODNFMTFFRDlGQUFGQTIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnWRIDBAFnaYwwDQQCAAIwBwMFACQA6UAwDQYJKoZIhvcN AQELBQADggEBADL9n4TB9LIDHN9kTPqdOMx/9p3urfCGKumqSNZiPIvSYkmpTtuY Kfjmx2LyVBg9IPXepPlVGEEb2olJwFOMvgnxUFN13BryiqLbkcO8DYKM9UCXUIRo NUqg02V5grbivdJhhYgRaxH9/AEFDq015BxWbgcfsF+S5A7XqeZ0KcYiCXiDSBjX 5Gk4xww9zeD2y5dcvUMyWYQWFM90wKrN5baBTp32GBm40nFCDAwsVdBniSa2NuDQ bIlxm3vLQ7WumpkLMyY1x6z8+pBA+WmLv+IDzlpxTE74yNiERB8i3EgGfoU1+HaY OFMlY5nMJJcfps31dkUmLHPNvkOK/Fge4b0= -----END CERTIFICATE-----Generated at Fri Jun 7 09:40:20 2024 by rpki-client on console-ams.rpki-client.org