$ rpki-client -vvf rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/ED6DF5CC014611EEBE219313C4F9AE02.roa File: ED6DF5CC014611EEBE219313C4F9AE02.roa (raw, json) Hash identifier: Y3/gOL8kX8EHqyXVXkwyE6TktTINUyoqLT6AC0OUCvE= Subject key identifier: 32:44:C8:07:3B:B6:5B:19:D4:F9:02:5A:E2:11:92:3D:E7:F9:34:38 Certificate issuer: /CN=A917C29E/serialNumber=B293489E3ACF28F0D1571437CDF0BCC2CA54545A Certificate serial: 6F Authority key identifier: B2:93:48:9E:3A:CF:28:F0:D1:57:14:37:CD:F0:BC:C2:CA:54:54:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spNInjrPKPDRVxQ3zfC8wspUVFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/ED6DF5CC014611EEBE219313C4F9AE02.roa Signing time: Thu 21 Dec 2023 05:58:22 +0000 ROA not before: Thu 21 Dec 2023 05:58:22 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136180 IP address blocks: 103.203.56.0/22 maxlen: 24 116.213.44.0/22 maxlen: 24 2400:87c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/spNInjrPKPDRVxQ3zfC8wspUVFo.crl rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/spNInjrPKPDRVxQ3zfC8wspUVFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spNInjrPKPDRVxQ3zfC8wspUVFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C29E/serialNumber=B293489E3ACF28F0D1571437CDF0BCC2CA54545A Validity Not Before: Dec 21 05:58:22 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6583d3fd-0cfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6a:6f:90:df:bb:8a:d7:13:ab:54:b9:da:77: 06:0e:cf:e2:57:98:8d:14:40:9d:df:cd:1b:9e:12: 95:0f:6c:57:9d:f6:f4:7c:a3:4e:0c:c6:31:1f:74: d0:1c:04:36:8f:7f:08:2f:55:90:fa:e2:69:a2:ad: 0a:2e:14:89:bc:25:a4:a7:b0:25:b2:64:5e:a8:4d: 5c:35:f6:64:55:cd:97:27:53:30:d1:c1:bb:b2:17: 84:8f:e9:42:7d:f9:6e:7c:cb:76:90:6e:5d:f1:40: 6c:5c:ac:27:20:c4:3a:8a:3e:e7:55:ed:3a:09:59: 9d:a5:9a:a6:f6:5a:ee:8a:d9:92:d5:4a:03:47:f5: f8:16:64:05:8f:75:cc:66:7b:3f:dc:d6:e5:9f:48: 4e:44:83:2c:ea:94:8c:ec:f2:47:d4:1a:36:5d:97: bb:4b:f1:ad:2f:9e:04:fd:97:3f:6f:96:42:b6:ef: 96:4f:80:31:9f:60:b7:64:cb:56:14:5b:6e:3f:42: ca:a4:60:63:68:e6:c7:39:61:96:47:90:05:70:6e: 18:98:bf:45:d4:5a:6f:58:a5:4e:b5:56:ca:7a:04: 2a:89:fe:03:23:65:de:a4:a1:7b:48:58:00:e8:c9: 3d:7f:51:d1:02:84:b6:dc:e3:ba:80:b4:bd:23:d3: 81:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:44:C8:07:3B:B6:5B:19:D4:F9:02:5A:E2:11:92:3D:E7:F9:34:38 X509v3 Authority Key Identifier: keyid:B2:93:48:9E:3A:CF:28:F0:D1:57:14:37:CD:F0:BC:C2:CA:54:54:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/spNInjrPKPDRVxQ3zfC8wspUVFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spNInjrPKPDRVxQ3zfC8wspUVFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C29E/045122A8011C11EEB2684F4BC4F9AE02/ED6DF5CC014611EEBE219313C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.56.0/22 116.213.44.0/22 IPv6: 2400:87c0::/32 Signature Algorithm: sha256WithRSAEncryption 9b:29:92:7d:e8:14:20:67:0b:6a:85:ae:77:f4:8e:b0:45:67: 8b:96:5a:73:9f:7e:09:0c:3c:04:73:5b:00:17:b5:23:70:1b: 52:71:d7:d6:6a:8b:8b:38:99:e5:51:07:1a:d2:0c:a3:c8:61: 41:e7:7b:85:b3:90:86:52:83:99:07:36:bf:7d:e7:06:29:9b: c3:dc:84:f1:61:fc:fe:dc:1d:1d:4c:10:6b:d6:7f:fd:b0:6b: 04:28:1b:84:a6:34:66:7b:27:19:59:5e:68:e7:f9:45:86:ee: b8:5e:60:ee:82:30:c8:5a:0b:63:0d:ec:5b:a5:a8:28:96:1f: 3b:fa:11:fb:0a:c3:82:b5:e5:3b:cb:21:22:96:9d:0e:df:cc: fd:cf:78:f6:70:a9:81:a5:75:44:69:88:32:bd:33:34:21:18: 4f:25:44:82:c8:76:8d:eb:07:e6:5a:a4:91:15:d2:f4:07:fd: 42:9a:ce:41:a0:b3:e5:6c:48:79:25:1c:ea:47:38:cb:da:a4: 62:34:31:db:15:b0:1a:76:a6:25:fc:97:5b:fb:e8:1c:c4:fe: 2f:56:2c:bf:19:b5:88:78:98:be:a2:80:cc:22:71:53:fe:14: 67:f6:43:b4:de:ef:60:2c:b8:ea:37:6e:7b:eb:11:08:2a:34: d5:c6:64:75 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBbzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QzI5RTExMC8GA1UEBRMoQjI5MzQ4OUUzQUNGMjhGMEQxNTcxNDM3Q0RGMEJDQzJD QTU0NTQ1QTAeFw0yMzEyMjEwNTU4MjJaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ODNkM2ZkLTBjZmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3am+Q37uK1xOrVLnadwYOz+JXmI0UQJ3fzRueEpUPbFed9vR8o04MxjEfdNAc BDaPfwgvVZD64mmirQouFIm8JaSnsCWyZF6oTVw19mRVzZcnUzDRwbuyF4SP6UJ9 +W58y3aQbl3xQGxcrCcgxDqKPudV7ToJWZ2lmqb2Wu6K2ZLVSgNH9fgWZAWPdcxm ez/c1uWfSE5EgyzqlIzs8kfUGjZdl7tL8a0vngT9lz9vlkK275ZPgDGfYLdky1YU W24/QsqkYGNo5sc5YZZHkAVwbhiYv0XUWm9YpU61Vsp6BCqJ/gMjZd6koXtIWADo yT1/UdEChLbc47qAtL0j04HbAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUMkTIBzu2 WxnU+QJa4hGSPef5NDgwHwYDVR0jBBgwFoAUspNInjrPKPDRVxQ3zfC8wspUVFow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdDMjlFLzA0NTEyMkE4MDEx QzExRUVCMjY4NEY0QkM0RjlBRTAyL3NwTkluanJQS1BEUlZ4UTN6ZkM4d3NwVVZG by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc3BOSW5qclBLUERSVnhRM3pmQzh3c3BVVkZvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QzI5RS8wNDUxMjJBODAxMUMxMUVFQjI2ODRGNEJDNEY5QUUwMi9FRDZERjVDQzAx NDYxMUVFQkUyMTkzMTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAmfLOAMEAnTVLDANBAIAAjAHAwUAJACHwDANBgkqhkiG9w0B AQsFAAOCAQEAmymSfegUIGcLaoWud/SOsEVni5Zac59+CQw8BHNbABe1I3AbUnHX 1mqLiziZ5VEHGtIMo8hhQed7hbOQhlKDmQc2v33nBimbw9yE8WH8/twdHUwQa9Z/ /bBrBCgbhKY0ZnsnGVleaOf5RYbuuF5g7oIwyFoLYw3sW6WoKJYfO/oR+wrDgrXl O8shIpadDt/M/c949nCpgaV1RGmIMr0zNCEYTyVEgsh2jesH5lqkkRXS9Af9QprO QaCz5WxIeSUc6kc4y9qkYjQx2xWwGnamJfyXW/voHMT+L1Ysvxm1iHiYvqKAzCJx U/4UZ/ZDtN7vYCy46jdue+sRCCo01cZkdQ== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:33 2024 by rpki-client on console-fra.rpki-client.org