$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/214131EE0F3711EF9336A344C4F9AE02.roa File: 214131EE0F3711EF9336A344C4F9AE02.roa (raw, json) Hash identifier: tTdKf7etQ7UP4Ui0FkVcVFVPmHpflgtK1sqqXzvDSBU= Subject key identifier: 1D:E6:ED:62:EB:EF:99:28:95:32:ED:54:E1:D0:8C:87:AB:42:BD:46 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 33E4 Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/214131EE0F3711EF9336A344C4F9AE02.roa Signing time: Sat 11 May 2024 01:38:13 +0000 ROA not before: Sat 11 May 2024 01:38:13 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136030 IP address blocks: 103.255.150.0/24 maxlen: 24 103.255.151.0/24 maxlen: 24 180.149.214.0/24 maxlen: 24 180.149.215.0/24 maxlen: 24 180.149.216.0/24 maxlen: 24 180.149.217.0/24 maxlen: 24 180.149.218.0/24 maxlen: 24 180.149.219.0/24 maxlen: 24 180.149.220.0/24 maxlen: 24 180.149.221.0/24 maxlen: 24 180.149.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13284 (0x33e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: May 11 01:38:13 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=663ecc04-8305 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0d:d6:f7:a0:fe:91:aa:36:aa:d5:46:24:ef: 9b:8f:9d:c3:20:c2:1a:e0:c4:9a:ee:0a:6d:80:27: f8:48:3d:12:e3:c6:47:20:27:06:e4:aa:e9:44:aa: 16:6b:cb:7d:0c:5f:b6:86:8d:d0:e2:8e:bb:a6:41: d1:a5:ce:29:29:83:ee:df:ac:3c:b7:ee:f9:c2:c1: 2a:1d:41:2b:b2:1e:b8:16:31:95:13:79:ba:f7:55: 6d:6f:69:56:3f:14:2c:4b:7a:10:22:e3:4a:33:d4: f7:c9:5f:b7:97:9b:96:87:53:82:f8:c4:26:84:cd: 4e:60:44:45:47:6f:91:8d:23:3d:8d:8f:d0:55:b6: 04:49:b4:61:74:5c:5f:fd:27:5b:7b:71:26:bd:78: 1e:d9:ad:7a:66:4b:35:b3:e9:b1:78:59:1a:e7:67: 5f:0b:17:ee:84:78:c7:52:5d:eb:20:b6:ec:f1:85: 68:e3:80:0c:1e:f8:69:cf:23:29:64:a3:13:88:d3: 7d:4c:83:fa:f1:ff:60:6e:e4:a6:85:9c:3b:c2:62: 39:76:d9:5c:b9:09:7d:e5:15:f9:c5:34:19:87:91: 79:7f:b5:eb:40:56:9c:43:75:b4:17:f9:fe:20:fa: 84:04:a8:e7:1e:34:30:03:86:7e:d8:fe:5d:bc:2e: d5:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E6:ED:62:EB:EF:99:28:95:32:ED:54:E1:D0:8C:87:AB:42:BD:46 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/214131EE0F3711EF9336A344C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.150.0/23 180.149.214.0-180.149.222.255 Signature Algorithm: sha256WithRSAEncryption 31:25:3b:8f:67:89:f4:3a:81:c9:7f:00:9c:3b:ed:58:01:5a: 7c:07:90:72:b1:98:6d:d7:9a:9f:a2:f6:31:b9:56:d1:f4:c5: 63:50:97:97:8f:eb:f1:97:bc:87:25:6f:0b:6b:03:3d:47:52: 96:49:6f:da:99:66:4b:3c:d7:0e:c1:52:14:67:5d:b3:f1:2e: fb:08:65:29:f9:74:6f:6a:a7:96:77:14:9a:31:93:f8:e7:d7: 50:fd:13:31:40:c9:00:38:04:d4:98:c7:ff:ca:b6:d5:49:1b: 11:7c:6c:70:90:7d:33:bf:56:d6:f4:29:26:48:3b:6b:67:7b: 46:9c:90:bc:89:2e:5c:c8:9c:b0:32:ed:a8:ce:d3:58:4a:ec: 8f:98:94:4d:07:e4:ac:4a:10:8f:ac:93:81:ac:05:55:17:74: 64:59:97:dd:e7:cc:17:ff:cd:53:7d:9d:d1:fd:39:e7:cf:d8: 2a:76:d8:72:70:ae:0c:27:8e:1e:f4:c1:90:dd:d8:f2:62:56: 5e:80:15:8d:a2:59:36:d9:35:98:18:fc:f6:79:a7:1e:0d:3d: 67:0e:e7:be:c1:bd:e9:9f:d6:64:cd:97:3c:2c:a7:0d:24:10: ff:2e:50:79:e4:a5:77:55:b6:00:c1:e7:81:71:21:02:29:7f: a7:87:dc:ce -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICM+QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjQwNTExMDEzODEzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlY2MwNC04MzA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQ3W96D+kao2qtVGJO+bj53DIMIa4MSa7gptgCf4SD0S48ZHICcG5KrpRKoW a8t9DF+2ho3Q4o67pkHRpc4pKYPu36w8t+75wsEqHUErsh64FjGVE3m691Vtb2lW PxQsS3oQIuNKM9T3yV+3l5uWh1OC+MQmhM1OYERFR2+RjSM9jY/QVbYESbRhdFxf /Sdbe3EmvXge2a16Zks1s+mxeFka52dfCxfuhHjHUl3rILbs8YVo44AMHvhpzyMp ZKMTiNN9TIP68f9gbuSmhZw7wmI5dtlcuQl95RX5xTQZh5F5f7XrQFacQ3W0F/n+ IPqEBKjnHjQwA4Z+2P5dvC7VnQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFB3m7WLr 75kolTLtVOHQjIerQr1GMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQ2NEQvRDkzMzNGRTQxRDZFMTFFMkE4NTA4MEIwMDhCMDJDRDIvMjE0MTMxRUUw RjM3MTFFRjkzMzZBMzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAFn/5YwDAMEAbSV1gMEALSV3jANBgkqhkiG9w0BAQsFAAOC AQEAMSU7j2eJ9DqByX8AnDvtWAFafAeQcrGYbdean6L2MblW0fTFY1CXl4/r8Ze8 hyVvC2sDPUdSlklv2plmSzzXDsFSFGdds/Eu+whlKfl0b2qnlncUmjGT+OfXUP0T MUDJADgE1JjH/8q21UkbEXxscJB9M79W1vQpJkg7a2d7RpyQvIkuXMicsDLtqM7T WErsj5iUTQfkrEoQj6yTgawFVRd0ZFmX3efMF//NU32d0f0558/YKnbYcnCuDCeO HvTBkN3Y8mJWXoAVjaJZNtk1mBj89nmnHg09Zw7nvsG96Z/WZM2XPCynDSQQ/y5Q eeSld1W2AMHngXEhAil/p4fczg== -----END CERTIFICATE-----Generated at Thu Jun 6 14:59:53 2024 by rpki-client on console-fra.rpki-client.org