$ rpki-client -vvf rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa File: 63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa (raw, json) Hash identifier: y5d/MB7V3ZsodcPGCmEEvKKpo4wB2e5f62HRyhb73ZU= Subject key identifier: 98:B2:95:93:59:FE:18:6B:65:4E:E4:05:57:09:1D:80:65:D9:4A:04 Certificate issuer: /CN=A918E0B2/serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Certificate serial: 0441 Authority key identifier: 0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa Signing time: Fri 15 Dec 2023 01:13:27 +0000 ROA not before: Fri 15 Dec 2023 01:13:27 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 133154 IP address blocks: 103.252.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:34:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1089 (0x441) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E0B2/serialNumber=0B3EBA88F1ADA1A1B50891B26531A3E709BF659A Validity Not Before: Dec 15 01:13:27 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657ba837-7dbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:75:f3:e7:b1:bb:6a:64:73:b0:24:0b:dc:d2: dd:b6:dc:23:2d:39:86:cc:c1:c6:44:f0:c4:d0:37: aa:59:34:f5:a8:4e:8a:71:50:72:b5:ef:51:ba:1a: fe:ef:b8:3e:ec:51:4f:eb:d7:a5:75:b2:9f:24:46: d8:d8:86:90:7e:b0:cd:f3:00:6a:a0:04:17:77:b9: 45:18:df:9b:45:a6:91:68:a6:e5:54:e9:d7:16:cd: 71:66:1f:22:65:7b:fe:0f:cb:11:8f:0a:85:5b:e6: 25:fd:2c:b4:9e:d1:08:e0:a9:66:76:7f:43:c5:4d: 54:1a:5d:d7:58:73:91:6f:f4:70:02:84:cf:fc:34: 10:c8:16:f9:47:68:be:e0:71:0c:16:15:5d:c8:ec: 5a:07:67:13:62:38:e4:5f:55:70:a4:79:33:0d:91: f4:2f:5f:f5:6f:94:14:d2:65:a4:72:2d:b1:2b:5f: b4:13:32:d3:41:12:95:3c:47:c9:18:dc:94:95:a3: d1:0c:5a:ff:fa:d0:96:16:d3:51:d5:52:c1:0e:e8: dd:35:51:9a:dc:41:81:bb:47:ac:7f:59:32:47:a8: 4f:b7:43:83:54:57:d2:2c:80:30:e5:b6:d9:af:37: 81:39:16:69:88:c7:60:2c:b4:fa:82:b0:83:86:00: e1:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B2:95:93:59:FE:18:6B:65:4E:E4:05:57:09:1D:80:65:D9:4A:04 X509v3 Authority Key Identifier: keyid:0B:3E:BA:88:F1:AD:A1:A1:B5:08:91:B2:65:31:A3:E7:09:BF:65:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Cz66iPGtoaG1CJGyZTGj5wm_ZZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E0B2/67042C18EF6411EB833FC80DC4F9AE02/63E3EB3EEF6611EB9A7EFE0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.252.247.0/24 Signature Algorithm: sha256WithRSAEncryption 37:7f:8d:b5:d0:31:dd:f6:1b:72:10:47:40:8e:41:f7:28:da: 6e:3b:d5:bd:be:3a:c3:38:87:12:67:0c:2c:ad:c6:b0:38:eb: d6:88:ef:3a:c1:ef:8a:a8:a2:9c:ca:76:62:b2:47:42:92:42: 03:6e:7a:bf:02:ae:00:6a:21:94:74:5a:bd:f3:40:83:7d:8d: 82:ea:65:3e:f6:e7:ca:ff:40:13:ea:08:ad:e8:7c:0c:6e:f3: 54:31:bd:e8:0f:a7:1b:a3:00:92:46:ff:8a:4d:3b:9a:32:30: 3b:83:c5:22:0a:c6:db:b8:a3:ae:bc:ad:99:02:51:1c:67:95: fe:ec:9c:88:d2:81:c6:77:ca:d0:0f:8b:84:b7:ae:c4:22:e8: d0:77:ea:24:0a:a5:10:78:a7:fa:51:32:f3:46:30:e9:3e:8b: ee:cd:f3:dd:27:c4:d4:50:e7:1b:31:29:56:aa:8a:ef:b6:e5: 94:34:56:f0:46:e4:64:a2:7c:b1:eb:ab:fb:50:a4:e0:48:da: db:7b:18:1d:d1:38:8c:33:d4:a5:92:6a:04:2d:ab:f8:5d:ad: 99:92:d5:2f:22:d5:55:ec:25:0b:3b:08:38:fe:67:60:b6:0b: 96:51:93:c7:a6:e4:40:93:1f:8b:36:e2:88:3d:77:ae:7f:6b: 5d:62:ed:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUwQjIxMTAvBgNVBAUTKDBCM0VCQTg4RjFBREExQTFCNTA4OTFCMjY1MzFBM0U3 MDlCRjY1OUEwHhcNMjMxMjE1MDExMzI3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiYTgzNy03ZGJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyXXz57G7amRzsCQL3NLdttwjLTmGzMHGRPDE0DeqWTT1qE6KcVByte9Ruhr+ 77g+7FFP69eldbKfJEbY2IaQfrDN8wBqoAQXd7lFGN+bRaaRaKblVOnXFs1xZh8i ZXv+D8sRjwqFW+Yl/Sy0ntEI4Klmdn9DxU1UGl3XWHORb/RwAoTP/DQQyBb5R2i+ 4HEMFhVdyOxaB2cTYjjkX1VwpHkzDZH0L1/1b5QU0mWkci2xK1+0EzLTQRKVPEfJ GNyUlaPRDFr/+tCWFtNR1VLBDujdNVGa3EGBu0esf1kyR6hPt0ODVFfSLIAw5bbZ rzeBORZpiMdgLLT6grCDhgDh5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJiylZNZ /hhrZU7kBVcJHYBl2UoEMB8GA1UdIwQYMBaAFAs+uojxraGhtQiRsmUxo+cJv2Wa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTBCMi82NzA0MkMxOEVG NjQxMUVCODMzRkM4MERDNEY5QUUwMi9DejY2aVBHdG9hRzFDSkd5WlRHajV3bV9a Wm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N6NjZpUEd0b2FHMUNKR3laVEdqNXdtX1paby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUwQjIvNjcwNDJDMThFRjY0MTFFQjgzM0ZDODBEQzRGOUFFMDIvNjNFM0VCM0VF RjY2MTFFQjlBN0VGRTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn/PcwDQYJKoZIhvcNAQELBQADggEBADd/jbXQMd32G3IQ R0COQfco2m471b2+OsM4hxJnDCytxrA469aI7zrB74qoopzKdmKyR0KSQgNuer8C rgBqIZR0Wr3zQIN9jYLqZT7258r/QBPqCK3ofAxu81QxvegPpxujAJJG/4pNO5oy MDuDxSIKxtu4o668rZkCURxnlf7snIjSgcZ3ytAPi4S3rsQi6NB36iQKpRB4p/pR MvNGMOk+i+7N890nxNRQ5xsxKVaqiu+25ZQ0VvBG5GSifLHrq/tQpOBI2tt7GB3R OIwz1KWSagQtq/hdrZmS1S8i1VXsJQs7CDj+Z2C2C5ZRk8em5ECTH4s24og9d65/ a11i7d8= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:04 2024 by rpki-client on console-fra.rpki-client.org