$ rpki-client -vvf rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/011F48EE2FF411E78B4D5566C4F9AE02.roa File: 011F48EE2FF411E78B4D5566C4F9AE02.roa (raw, json) Hash identifier: ojiXpAwhjmBrHELnp3C5uCPk+9bNvFUvs+eBzDg/0Do= Subject key identifier: 05:34:8A:91:A0:30:AE:06:DE:2A:52:38:57:5C:B2:E8:E7:4E:D5:16 Certificate issuer: /CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Certificate serial: 334C Authority key identifier: F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/011F48EE2FF411E78B4D5566C4F9AE02.roa Signing time: Tue 30 Jan 2024 16:12:31 +0000 ROA not before: Tue 30 Jan 2024 16:12:31 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 133812 IP address blocks: 103.52.2.0/23 maxlen: 23 103.52.2.0/24 maxlen: 24 103.52.3.0/24 maxlen: 24 103.87.70.0/23 maxlen: 23 103.87.70.0/24 maxlen: 24 103.87.71.0/24 maxlen: 24 2001:df2:cc00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13132 (0x334c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186214/serialNumber=F3DB9F162008BD666CBF8C99607814CFAB24D7E7 Validity Not Before: Jan 30 16:12:31 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65b91fef-fba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:19:05:31:de:75:ed:08:12:e3:ee:be:72:0b: 6f:78:e0:fb:a6:db:f1:02:79:46:06:88:bc:ab:89: 10:df:58:86:cc:f2:7f:fb:1a:b8:f1:8c:65:16:ba: e0:44:f7:7c:08:dd:98:78:5a:e9:c1:da:db:9d:32: 04:d2:07:94:56:49:6e:38:96:0a:47:d1:aa:e6:11: c4:67:69:e0:0d:ac:e2:b4:96:8e:3a:34:43:13:9d: c5:ab:ff:c1:d7:87:a0:16:b6:be:9b:a0:b6:6c:cb: 2e:03:99:7a:ea:75:f1:fb:2d:78:b0:47:9f:52:cb: 73:7b:cd:c4:e5:8e:1a:28:27:70:d1:a4:9e:8c:08: 5d:8d:3c:9b:85:f0:5a:46:f0:6d:ed:0c:d2:8f:eb: 70:7e:c0:fd:28:c1:a9:e4:33:f2:af:d9:2a:9e:9d: c5:90:4e:ab:70:e5:97:91:39:15:80:f1:75:16:90: f7:8d:bf:56:c6:46:f3:d4:3d:6a:58:48:1e:2b:98: 2e:7c:60:f2:b4:0a:63:d2:bd:08:ef:10:bf:8a:c9: 12:66:c9:d3:cf:25:aa:4a:0f:86:1c:fe:6a:9e:36: e4:42:64:d9:be:dd:db:58:0f:7c:12:48:94:59:08: a0:f5:55:0d:63:cf:49:8a:c4:f0:1c:bd:0a:40:de: 76:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:34:8A:91:A0:30:AE:06:DE:2A:52:38:57:5C:B2:E8:E7:4E:D5:16 X509v3 Authority Key Identifier: keyid:F3:DB:9F:16:20:08:BD:66:6C:BF:8C:99:60:78:14:CF:AB:24:D7:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/89ufFiAIvWZsv4yZYHgUz6sk1-c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/89ufFiAIvWZsv4yZYHgUz6sk1-c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186214/C65D5364331A11E4AF2AB37CC4F9AE02/011F48EE2FF411E78B4D5566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.52.2.0/23 103.87.70.0/23 IPv6: 2001:df2:cc00::/48 Signature Algorithm: sha256WithRSAEncryption b7:4e:78:28:16:04:c0:48:aa:16:c6:f1:f7:79:db:c6:db:51: d6:b2:51:2b:cc:da:1c:bc:ae:0d:4a:c5:83:97:f8:c9:f3:38: 2e:92:1c:fd:aa:ad:a6:7e:6f:a0:b4:17:9f:dc:d4:52:c0:f5: 0f:71:b0:a8:58:c4:b4:15:c2:d8:8f:f5:14:ee:a6:7e:11:80: 1a:e6:b4:24:57:16:84:0f:ea:f1:07:b2:74:16:72:b1:a8:3d: 58:ee:93:ec:e9:c2:9c:0b:2f:ee:c1:7b:df:ba:9e:ce:cd:16: 19:d6:1f:39:39:63:10:96:a5:1e:c1:d0:80:39:6e:bb:13:82: cb:9b:f6:b5:79:75:d7:68:64:a4:85:a5:1b:1d:3d:c4:d2:33: 5d:02:83:2b:17:92:b1:2c:27:7e:60:ff:b6:2b:27:ea:0a:74: 5f:bc:b8:ab:91:7b:62:9f:dd:0c:6e:0c:ef:58:92:29:f8:e7: 19:3c:3f:85:6a:02:92:63:95:7b:1e:5f:78:eb:41:c9:6a:6b: 36:44:56:d5:57:0e:d2:20:b8:1a:4b:cb:fe:80:c5:9f:a9:eb: f3:36:ff:83:ff:74:5f:be:25:82:0c:d1:58:ef:11:6b:43:ef: e3:0c:12:1c:46:61:11:e5:ca:85:b6:b2:ef:b7:c0:31:1e:2c: ee:4f:07:5d -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICM0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODYyMTQxMTAvBgNVBAUTKEYzREI5RjE2MjAwOEJENjY2Q0JGOEM5OTYwNzgxNENG QUIyNEQ3RTcwHhcNMjQwMTMwMTYxMjMxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MWZlZi1mYmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwBkFMd517QgS4+6+cgtveOD7ptvxAnlGBoi8q4kQ31iGzPJ/+xq48YxlFrrg RPd8CN2YeFrpwdrbnTIE0geUVkluOJYKR9Gq5hHEZ2ngDazitJaOOjRDE53Fq//B 14egFra+m6C2bMsuA5l66nXx+y14sEefUstze83E5Y4aKCdw0aSejAhdjTybhfBa RvBt7QzSj+twfsD9KMGp5DPyr9kqnp3FkE6rcOWXkTkVgPF1FpD3jb9Wxkbz1D1q WEgeK5gufGDytApj0r0I7xC/iskSZsnTzyWqSg+GHP5qnjbkQmTZvt3bWA98EkiU WQig9VUNY89JisTwHL0KQN52rQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFAU0ipGg MK4G3ipSOFdcsujnTtUWMB8GA1UdIwQYMBaAFPPbnxYgCL1mbL+MmWB4FM+rJNfn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjIxNC9DNjVENTM2NDMz MUExMUU0QUYyQUIzN0NDNEY5QUUwMi84OXVmRmlBSXZXWnN2NHlaWUhnVXo2c2sx LWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzg5dWZGaUFJdldac3Y0eVpZSGdVejZzazEtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODYyMTQvQzY1RDUzNjQzMzFBMTFFNEFGMkFCMzdDQzRGOUFFMDIvMDExRjQ4RUUy RkY0MTFFNzhCNEQ1NTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnNAIDBAFnV0YwDwQCAAIwCQMHACABDfLMADANBgkqhkiG 9w0BAQsFAAOCAQEAt054KBYEwEiqFsbx93nbxttR1rJRK8zaHLyuDUrFg5f4yfM4 LpIc/aqtpn5voLQXn9zUUsD1D3GwqFjEtBXC2I/1FO6mfhGAGua0JFcWhA/q8Qey dBZysag9WO6T7OnCnAsv7sF737qezs0WGdYfOTljEJalHsHQgDluuxOCy5v2tXl1 12hkpIWlGx09xNIzXQKDKxeSsSwnfmD/tisn6gp0X7y4q5F7Yp/dDG4M71iSKfjn GTw/hWoCkmOVex5feOtByWprNkRW1VcO0iC4GkvL/oDFn6nr8zb/g/90X74lggzR WO8Ra0Pv4wwSHEZhEeXKhbay77fAMR4s7k8HXQ== -----END CERTIFICATE-----Generated at Fri May 10 17:10:27 2024 by rpki-client on console-fra.rpki-client.org