$ rpki-client -vvf rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/D11C8B12DB7111E981104A54C4F9AE02.roa File: D11C8B12DB7111E981104A54C4F9AE02.roa (raw, json) Hash identifier: he3bY6Is5h9acipgiTdJz3mt+8HdFzcITDRaeiCVzu8= Subject key identifier: 3C:43:91:98:B0:75:DD:4E:6C:F5:EB:33:35:33:EE:2D:FA:61:BA:4D Certificate issuer: /CN=A917C0F5/serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Certificate serial: 0C55 Authority key identifier: 83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/D11C8B12DB7111E981104A54C4F9AE02.roa Signing time: Wed 08 May 2024 19:08:06 +0000 ROA not before: Wed 08 May 2024 19:08:06 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139011 IP address blocks: 103.138.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 19:02:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C0F5/serialNumber=8362D2386AC1307EEF8BBFD874F738E6DAA35572 Validity Not Before: May 8 19:08:06 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663bcd96-228e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:71:77:1a:5c:d7:36:dc:97:22:8c:cf:b9:75: b9:7c:02:e5:2c:97:6e:c0:f6:89:4c:dc:55:bc:53: 6b:5e:0b:04:4d:7b:de:cf:6e:21:59:a6:6d:7d:42: 42:b5:e0:15:49:9a:05:c6:c6:0b:2d:cc:18:fe:c2: 2f:56:01:f5:46:24:26:5e:56:31:76:d8:eb:73:fc: a4:bf:33:db:16:0b:48:ca:5a:16:70:a8:8b:77:ac: 54:06:7a:f0:98:44:6d:11:e3:b3:ee:02:d3:5a:09: f7:aa:88:c2:8f:95:49:1c:3f:53:0d:30:59:19:94: bb:da:d2:b6:aa:7e:7f:1a:b5:c5:8d:1e:ab:ee:15: 83:c9:fe:25:98:8f:48:f8:0a:68:a5:45:47:d4:58: 14:2b:72:4f:af:5c:9a:9e:f2:1f:e5:1e:d4:b3:4b: b8:3f:10:76:ba:f9:8d:08:60:d5:70:68:0b:2d:4d: 06:98:b9:20:d1:e2:94:59:4f:a5:51:2b:e9:d9:b9: 80:57:bd:19:00:2a:c7:2e:2d:f7:9d:ba:d1:65:3b: 7b:f8:ac:06:17:5f:06:47:ee:de:8a:5f:90:cf:9a: f9:e3:09:cb:13:b6:4a:33:cb:20:7e:c8:08:b4:4b: ac:3c:ac:e3:34:fb:f3:ae:df:fc:ab:ed:9b:af:45: a6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:43:91:98:B0:75:DD:4E:6C:F5:EB:33:35:33:EE:2D:FA:61:BA:4D X509v3 Authority Key Identifier: keyid:83:62:D2:38:6A:C1:30:7E:EF:8B:BF:D8:74:F7:38:E6:DA:A3:55:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/g2LSOGrBMH7vi7_YdPc45tqjVXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g2LSOGrBMH7vi7_YdPc45tqjVXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C0F5/1EC4E09ADB7111E9B6105353C4F9AE02/D11C8B12DB7111E981104A54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.142.0/24 Signature Algorithm: sha256WithRSAEncryption 73:a3:ac:54:be:da:66:3b:13:c7:92:61:3b:b1:01:45:9a:e7: 99:b7:b6:95:7f:59:de:d1:9d:54:91:94:72:27:c2:1e:6f:ee: 88:dc:86:da:5d:36:dd:51:7f:ec:00:27:ac:1d:de:30:58:a9: 80:a0:80:52:27:b4:11:ca:fe:0b:b3:a1:fd:9b:ed:d4:22:d0: ee:47:5a:2e:9d:e8:02:33:d6:ad:7d:de:41:da:71:95:9c:a0: c5:20:4c:a2:25:53:ce:46:f4:e7:55:fe:0b:6e:99:90:d3:c9: 43:06:42:96:d0:c9:b4:b1:48:48:17:10:a6:07:db:07:68:2c: d2:43:f7:f9:14:59:ca:ec:38:8a:2c:ca:72:4f:ec:e0:b5:14: 4d:c4:78:65:2e:bb:9b:24:10:2a:e1:c7:6d:9c:b5:2f:dd:55: 39:56:b8:e3:52:c3:de:0a:f3:43:77:6a:5d:0b:94:d0:c4:f4: f8:37:68:e7:54:83:74:f0:18:63:44:f6:3a:b2:da:4a:47:95: df:75:bc:07:4e:48:7a:a9:26:f7:f1:f8:29:94:fc:6a:2b:95: 34:d3:4e:d0:15:ef:b3:41:a0:7b:25:35:dd:ad:57:c0:c2:14: fb:79:34:ec:75:4b:49:70:a9:3b:60:a2:fa:0a:92:30:a5:86: c7:a7:62:9f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MwRjUxMTAvBgNVBAUTKDgzNjJEMjM4NkFDMTMwN0VFRjhCQkZEODc0RjczOEU2 REFBMzU1NzIwHhcNMjQwNTA4MTkwODA2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNiY2Q5Ni0yMjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03F3GlzXNtyXIozPuXW5fALlLJduwPaJTNxVvFNrXgsETXvez24hWaZtfUJC teAVSZoFxsYLLcwY/sIvVgH1RiQmXlYxdtjrc/ykvzPbFgtIyloWcKiLd6xUBnrw mERtEeOz7gLTWgn3qojCj5VJHD9TDTBZGZS72tK2qn5/GrXFjR6r7hWDyf4lmI9I +ApopUVH1FgUK3JPr1yanvIf5R7Us0u4PxB2uvmNCGDVcGgLLU0GmLkg0eKUWU+l USvp2bmAV70ZACrHLi33nbrRZTt7+KwGF18GR+7eil+Qz5r54wnLE7ZKM8sgfsgI tEusPKzjNPvzrt/8q+2br0WmwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDxDkZiw dd1ObPXrMzUz7i36YbpNMB8GA1UdIwQYMBaAFINi0jhqwTB+74u/2HT3OObao1Vy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzBGNS8xRUM0RTA5QURC NzExMUU5QjYxMDUzNTNDNEY5QUUwMi9nMkxTT0dyQk1IN3ZpN19ZZFBjNDV0cWpW WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2cyTFNPR3JCTUg3dmk3X1lkUGM0NXRxalZYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MwRjUvMUVDNEUwOUFEQjcxMTFFOUI2MTA1MzUzQzRGOUFFMDIvRDExQzhCMTJE QjcxMTFFOTgxMTA0QTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnio4wDQYJKoZIhvcNAQELBQADggEBAHOjrFS+2mY7E8eS YTuxAUWa55m3tpV/Wd7RnVSRlHInwh5v7ojchtpdNt1Rf+wAJ6wd3jBYqYCggFIn tBHK/guzof2b7dQi0O5HWi6d6AIz1q193kHacZWcoMUgTKIlU85G9OdV/gtumZDT yUMGQpbQybSxSEgXEKYH2wdoLNJD9/kUWcrsOIosynJP7OC1FE3EeGUuu5skECrh x22ctS/dVTlWuONSw94K80N3al0LlNDE9Pg3aOdUg3TwGGNE9jqy2kpHld91vAdO SHqpJvfx+CmU/GorlTTTTtAV77NBoHslNd2tV8DCFPt5NOx1S0lwqTtgovoKkjCl hsenYp8= -----END CERTIFICATE-----Generated at Wed Jun 12 19:45:45 2024 by rpki-client on console-fra.rpki-client.org