$ rpki-client -vvf rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/D75EF2ACFB6D11EC8F56D760C4F9AE02.roa File: D75EF2ACFB6D11EC8F56D760C4F9AE02.roa (raw, json) Hash identifier: 203IeSam+A3P6Bi5+cJ20OglUjwVGKJKyhPlUGchbIA= Subject key identifier: 7F:52:24:D9:D1:02:2B:F2:7E:59:B9:11:4B:67:08:FE:CA:0C:A6:96 Certificate issuer: /CN=A917C23C/serialNumber=AC32E99CB092E62E3ACA187463DA99E73D5AAF3E Certificate serial: 0618 Authority key identifier: AC:32:E9:9C:B0:92:E6:2E:3A:CA:18:74:63:DA:99:E7:3D:5A:AF:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rDLpnLCS5i46yhh0Y9qZ5z1arz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/D75EF2ACFB6D11EC8F56D760C4F9AE02.roa Signing time: Thu 16 Nov 2023 23:20:54 +0000 ROA not before: Thu 16 Nov 2023 23:20:54 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 59315 IP address blocks: 103.243.76.0/22 maxlen: 22 103.243.76.0/24 maxlen: 24 103.243.77.0/24 maxlen: 24 103.243.78.0/24 maxlen: 24 103.243.79.0/24 maxlen: 24 116.206.46.0/23 maxlen: 23 116.206.46.0/24 maxlen: 24 116.206.47.0/24 maxlen: 24 2400:4c40::/32 maxlen: 32 2400:4c40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/rDLpnLCS5i46yhh0Y9qZ5z1arz4.crl rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/rDLpnLCS5i46yhh0Y9qZ5z1arz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rDLpnLCS5i46yhh0Y9qZ5z1arz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:25:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1560 (0x618) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C23C/serialNumber=AC32E99CB092E62E3ACA187463DA99E73D5AAF3E Validity Not Before: Nov 16 23:20:54 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6556a3d6-b6d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:8e:e8:34:74:69:2c:6c:6b:b3:2b:d5:7a:4a: bb:34:19:0a:ad:31:ec:1b:d6:b6:09:26:4b:69:94: 2f:1d:54:6f:46:d2:19:fb:32:b9:0a:bf:89:77:f1: 16:31:1e:6f:47:4e:0d:8d:23:3c:ca:79:0c:51:0a: 80:ac:52:f7:14:20:17:7d:92:22:c8:ea:fc:5c:6e: 79:5f:e7:5b:cd:2c:48:b6:5f:d3:41:80:97:25:ec: d6:ca:a6:e8:1b:ec:71:15:94:15:d7:07:2b:7f:ea: 2f:b5:a5:41:24:b3:58:ef:4b:ee:e9:81:94:75:d0: fa:f8:6f:83:ec:d2:9b:81:cf:41:e5:3d:d1:2e:a5: 01:d4:fe:5d:bc:44:7b:21:ee:1f:35:3a:c9:d5:50: 9b:37:f9:0b:66:37:12:ff:64:c0:e1:29:2c:2c:1b: 09:26:6c:ef:e5:2b:00:f9:e8:a0:94:7c:87:65:d7: 42:96:2d:cc:19:7d:c7:59:56:7f:9d:f6:6a:a9:66: 7e:f2:70:aa:be:82:09:52:33:3e:f8:87:2e:00:1a: 92:f8:10:13:e9:23:e1:d8:ae:32:7e:f3:94:96:24: 66:d0:7c:18:d6:11:74:7d:e4:c2:a9:42:a3:51:52: c1:40:df:60:71:e9:7e:60:af:5c:d1:1b:46:fa:4b: 6b:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:52:24:D9:D1:02:2B:F2:7E:59:B9:11:4B:67:08:FE:CA:0C:A6:96 X509v3 Authority Key Identifier: keyid:AC:32:E9:9C:B0:92:E6:2E:3A:CA:18:74:63:DA:99:E7:3D:5A:AF:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/rDLpnLCS5i46yhh0Y9qZ5z1arz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rDLpnLCS5i46yhh0Y9qZ5z1arz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C23C/090744C23A3F11EBB63B7551C4F9AE02/D75EF2ACFB6D11EC8F56D760C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.76.0/22 116.206.46.0/23 IPv6: 2400:4c40::/32 Signature Algorithm: sha256WithRSAEncryption b6:5a:26:64:e8:53:24:19:6a:05:ae:3c:80:24:06:96:b2:3f: a9:64:29:ae:20:56:5c:20:51:2a:46:ef:9f:15:04:09:bc:46: d9:80:9c:e2:6e:20:f6:ad:9b:ae:99:7e:46:60:15:ea:a6:ba: 17:a9:c3:98:52:88:17:a2:69:84:55:0b:44:1c:3a:a6:4f:68: f8:77:e0:40:a1:33:da:55:26:2d:d3:ea:66:57:a3:12:b4:c3: 69:73:4d:d6:18:07:08:06:e7:e6:77:a3:5e:2e:cf:2f:7b:18: d0:7f:a8:a4:9f:15:bf:e5:52:2d:26:49:5e:ee:b5:33:88:ea: 42:83:e1:39:ac:13:76:ab:a7:80:4d:41:34:64:6c:e6:50:cf: 99:78:03:45:f2:e7:43:c0:09:0b:3e:85:de:62:a8:88:c6:d3: d5:ab:8d:dd:17:80:cd:cc:92:27:68:fd:b3:e8:01:87:ba:1e: a7:d2:97:47:3d:85:0b:e2:a0:75:44:26:66:c5:04:21:fc:10: 92:55:51:6f:ef:a8:a9:4d:4a:1b:e4:e4:11:93:e3:42:0e:37: c2:2b:36:5f:84:89:cc:a6:aa:dc:4b:54:78:6e:36:e8:24:81: 8f:1c:d6:0e:98:34:a1:ee:f1:ab:c9:f3:58:df:52:2b:c2:db: 3f:7f:b8:46 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MyM0MxMTAvBgNVBAUTKEFDMzJFOTlDQjA5MkU2MkUzQUNBMTg3NDYzREE5OUU3 M0Q1QUFGM0UwHhcNMjMxMTE2MjMyMDU0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2YTNkNi1iNmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1o7oNHRpLGxrsyvVekq7NBkKrTHsG9a2CSZLaZQvHVRvRtIZ+zK5Cr+Jd/EW MR5vR04NjSM8ynkMUQqArFL3FCAXfZIiyOr8XG55X+dbzSxItl/TQYCXJezWyqbo G+xxFZQV1wcrf+ovtaVBJLNY70vu6YGUddD6+G+D7NKbgc9B5T3RLqUB1P5dvER7 Ie4fNTrJ1VCbN/kLZjcS/2TA4SksLBsJJmzv5SsA+eiglHyHZddCli3MGX3HWVZ/ nfZqqWZ+8nCqvoIJUjM++IcuABqS+BAT6SPh2K4yfvOUliRm0HwY1hF0feTCqUKj UVLBQN9gcel+YK9c0RtG+ktrXQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFH9SJNnR Aivyflm5EUtnCP7KDKaWMB8GA1UdIwQYMBaAFKwy6ZywkuYuOsoYdGPamec9Wq8+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzIzQy8wOTA3NDRDMjNB M0YxMUVCQjYzQjc1NTFDNEY5QUUwMi9yRExwbkxDUzVpNDZ5aGgwWTlxWjV6MWFy ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JETHBuTENTNWk0NnloaDBZOXFaNXoxYXJ6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MyM0MvMDkwNzQ0QzIzQTNGMTFFQkI2M0I3NTUxQzRGOUFFMDIvRDc1RUYyQUNG QjZEMTFFQzhGNTZENzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn80wDBAF0zi4wDQQCAAIwBwMFACQATEAwDQYJKoZIhvcN AQELBQADggEBALZaJmToUyQZagWuPIAkBpayP6lkKa4gVlwgUSpG758VBAm8RtmA nOJuIPatm66ZfkZgFeqmuhepw5hSiBeiaYRVC0QcOqZPaPh34EChM9pVJi3T6mZX oxK0w2lzTdYYBwgG5+Z3o14uzy97GNB/qKSfFb/lUi0mSV7utTOI6kKD4TmsE3ar p4BNQTRkbOZQz5l4A0Xy50PACQs+hd5iqIjG09Wrjd0XgM3Mkido/bPoAYe6HqfS l0c9hQvioHVEJmbFBCH8EJJVUW/vqKlNShvk5BGT40ION8IrNl+EicymqtxLVHhu NugkgY8c1g6YNKHu8avJ81jfUivC2z9/uEY= -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:44 2024 by rpki-client on console-fra.rpki-client.org