$ rpki-client -vvf rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/65EE26547A8711ECBA5D244DC4F9AE02.roa File: 65EE26547A8711ECBA5D244DC4F9AE02.roa (raw, json) Hash identifier: Rf0IxEkwLDNapXsuJXAuul060sZSSoGxkC1k36Bzzhw= Subject key identifier: 99:F2:1D:12:46:ED:93:F9:03:A4:3E:03:EC:FE:DE:EB:D6:29:8D:A8 Certificate issuer: /CN=A911AAB5/serialNumber=553711F2EFE94844C43F776D451018C064972C9A Certificate serial: 0B53 Authority key identifier: 55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/65EE26547A8711ECBA5D244DC4F9AE02.roa Signing time: Tue 14 May 2024 19:58:38 +0000 ROA not before: Tue 14 May 2024 19:58:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137584 IP address blocks: 103.104.216.0/22 maxlen: 24 103.114.36.0/23 maxlen: 23 103.114.36.0/24 maxlen: 24 103.114.37.0/24 maxlen: 24 103.136.246.0/23 maxlen: 23 103.136.246.0/24 maxlen: 24 103.136.247.0/24 maxlen: 24 2404:6940::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 19:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2899 (0xb53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AAB5/serialNumber=553711F2EFE94844C43F776D451018C064972C9A Validity Not Before: May 14 19:58:38 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6643c26e-f034 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6a:f6:12:a4:77:0b:9c:c9:42:89:1a:97:8f: 60:7d:1a:4f:48:ab:d6:08:9a:f5:57:dd:a4:27:e8: 0d:1f:59:8a:3d:85:aa:c2:9c:93:73:e8:4b:74:71: ff:93:3f:54:ad:d6:0a:20:17:ec:81:9b:e0:d4:d1: c2:11:a7:c5:2a:1a:63:a4:99:ba:80:c6:c7:d6:dc: 77:7c:38:f8:bf:f2:a4:df:05:37:9c:2e:c4:52:7a: 1a:12:83:79:93:6e:c5:39:c5:1c:5c:f0:e4:03:99: 20:39:b3:92:d8:2a:cb:2c:4a:ca:76:eb:c9:38:a2: 07:e1:a0:80:d0:40:a8:8b:ac:49:25:7c:b1:ba:62: cd:86:b4:52:8f:62:eb:77:dc:d9:7a:65:b0:44:d3: 14:85:80:a6:d4:79:b5:ba:b4:d7:67:01:69:e4:c7: c2:5e:9a:82:f5:ea:09:54:43:96:13:f1:bf:a5:39: 18:56:4c:2c:e8:0a:9f:58:07:e4:62:db:4a:eb:8c: 48:5b:b3:86:c1:96:f2:94:c9:9f:59:71:1d:9a:12: 53:eb:c4:a9:4a:f3:46:33:d2:e1:d5:df:0f:54:4c: 9d:68:e8:b2:17:bd:13:2d:a5:d9:37:0f:3f:de:29: 77:a8:67:c8:11:3e:f5:24:eb:a7:19:4e:48:a8:d6: 2c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F2:1D:12:46:ED:93:F9:03:A4:3E:03:EC:FE:DE:EB:D6:29:8D:A8 X509v3 Authority Key Identifier: keyid:55:37:11:F2:EF:E9:48:44:C4:3F:77:6D:45:10:18:C0:64:97:2C:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/VTcR8u_pSETEP3dtRRAYwGSXLJo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTcR8u_pSETEP3dtRRAYwGSXLJo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AAB5/A3BDE7A010F611EA9103B61BC4F9AE02/65EE26547A8711ECBA5D244DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.216.0/22 103.114.36.0/23 103.136.246.0/23 IPv6: 2404:6940::/32 Signature Algorithm: sha256WithRSAEncryption 4e:90:f9:91:b5:5e:8a:11:31:83:10:8e:fb:97:1d:97:e9:fa: b0:f9:04:57:00:40:2c:ea:5e:ff:bd:a6:50:93:92:89:ff:da: 29:b1:ce:db:64:c5:d0:f3:e2:5d:9c:dd:06:d5:a3:6b:97:a4: 7f:32:5d:62:ed:e6:95:08:53:57:fa:71:4d:e8:ed:80:c8:72: 96:93:59:b6:e3:44:2f:2e:7d:f2:85:88:5b:e3:c3:b6:62:13: bf:cc:11:4a:c6:5b:9f:cf:e1:48:32:ac:1c:bc:b2:08:f4:f2: f3:b4:92:e8:6b:39:a4:0b:79:88:05:58:9b:21:b2:01:df:bf: f3:c1:5f:cc:2a:51:62:03:2b:ac:57:47:49:8f:09:99:d9:ac: 25:95:c3:7f:ae:d6:ba:a3:f9:df:ae:e7:a8:b7:1a:cf:1f:38: 6b:c3:fe:77:bd:a1:9c:b5:32:ce:dc:c4:0e:f4:16:a6:dd:54: 5a:39:5a:9d:5e:fa:c7:f8:7f:c3:fc:24:03:fd:a7:e7:0c:ae: 0a:85:a6:e1:4f:bd:b6:26:0f:bd:68:e2:8c:bd:1c:92:3b:bb: 04:84:fb:e8:cc:1a:d7:9d:40:53:78:80:ca:db:c4:d0:cd:f6: 10:0f:0f:ec:ce:52:40:9c:8c:8c:7d:06:16:47:c6:f2:a5:2a: f4:70:4e:e9 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICC1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFBQjUxMTAvBgNVBAUTKDU1MzcxMUYyRUZFOTQ4NDRDNDNGNzc2RDQ1MTAxOEMw NjQ5NzJDOUEwHhcNMjQwNTE0MTk1ODM4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzYzI2ZS1mMDM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Wr2EqR3C5zJQokal49gfRpPSKvWCJr1V92kJ+gNH1mKPYWqwpyTc+hLdHH/ kz9UrdYKIBfsgZvg1NHCEafFKhpjpJm6gMbH1tx3fDj4v/Kk3wU3nC7EUnoaEoN5 k27FOcUcXPDkA5kgObOS2CrLLErKduvJOKIH4aCA0ECoi6xJJXyxumLNhrRSj2Lr d9zZemWwRNMUhYCm1Hm1urTXZwFp5MfCXpqC9eoJVEOWE/G/pTkYVkws6AqfWAfk YttK64xIW7OGwZbylMmfWXEdmhJT68SpSvNGM9Lh1d8PVEydaOiyF70TLaXZNw8/ 3il3qGfIET71JOunGU5IqNYsawIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFJnyHRJG 7ZP5A6Q+A+z+3uvWKY2oMB8GA1UdIwQYMBaAFFU3EfLv6UhExD93bUUQGMBklyya MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUFCNS9BM0JERTdBMDEw RjYxMUVBOTEwM0I2MUJDNEY5QUUwMi9WVGNSOHVfcFNFVEVQM2R0UlJBWXdHU1hM Sm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUY1I4dV9wU0VURVAzZHRSUkFZd0dTWExKby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFBQjUvQTNCREU3QTAxMEY2MTFFQTkxMDNCNjFCQzRGOUFFMDIvNjVFRTI2NTQ3 QTg3MTFFQ0JBNUQyNDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnaNgDBAFnciQDBAFniPYwDQQCAAIwBwMFACQEaUAwDQYJ KoZIhvcNAQELBQADggEBAE6Q+ZG1XooRMYMQjvuXHZfp+rD5BFcAQCzqXv+9plCT kon/2imxzttkxdDz4l2c3QbVo2uXpH8yXWLt5pUIU1f6cU3o7YDIcpaTWbbjRC8u ffKFiFvjw7ZiE7/MEUrGW5/P4UgyrBy8sgj08vO0kuhrOaQLeYgFWJshsgHfv/PB X8wqUWIDK6xXR0mPCZnZrCWVw3+u1rqj+d+u56i3Gs8fOGvD/ne9oZy1Ms7cxA70 FqbdVFo5Wp1e+sf4f8P8JAP9p+cMrgqFpuFPvbYmD71o4oy9HJI7uwSE++jMGted QFN4gMrbxNDN9hAPD+zOUkCcjIx9BhZHxvKlKvRwTuk= -----END CERTIFICATE-----Generated at Fri May 24 20:48:01 2024 by rpki-client on console-fra.rpki-client.org