$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/677F3316E02711E9AB669750C4F9AE02.roa File: 677F3316E02711E9AB669750C4F9AE02.roa (raw, json) Hash identifier: /lCYyr/ggNz4m2hSHph8iFrUwvAmVOifZgcsV4MIeXY= Subject key identifier: B3:DC:55:82:94:AF:B5:2F:3D:EF:27:C1:0B:4B:89:C0:A1:A5:9A:75 Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0C4F Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/677F3316E02711E9AB669750C4F9AE02.roa Signing time: Thu 02 May 2024 19:07:52 +0000 ROA not before: Thu 02 May 2024 19:07:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134823 IP address blocks: 103.214.16.0/22 maxlen: 24 144.48.32.0/22 maxlen: 24 2001:df5:7e80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3151 (0xc4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: May 2 19:07:52 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6633e488-e961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4a:98:01:5e:e6:06:5d:be:0d:54:dc:92:32: 77:7a:92:ea:24:76:09:1b:f7:74:04:b7:15:97:90: 02:57:86:8b:20:e4:bf:08:55:dd:f1:80:dd:b6:07: 66:9b:1e:a6:11:2e:81:ed:8b:bc:db:52:6f:40:74: 52:15:8f:4a:a9:b8:cb:18:62:ca:a1:79:a2:97:07: 30:05:38:c0:63:ca:47:e5:d9:9c:2b:90:d8:a7:1b: e6:46:19:30:da:24:55:78:70:d8:eb:66:b1:f3:c2: 13:10:e6:b2:95:8e:f5:a0:de:7f:a3:c1:2f:c3:e9: fe:61:0c:a6:46:db:91:ed:b6:99:94:80:3d:0d:e6: 6e:21:1f:7c:07:8f:f5:b1:86:48:09:3e:29:09:fc: 0a:a2:22:6d:50:b0:49:7d:97:c6:96:7a:8d:03:db: fd:7b:81:eb:13:4d:87:39:49:f6:08:7b:d8:3e:a1: 2a:bd:65:1e:8f:da:ae:5c:43:14:e6:67:a0:8e:91: 6e:7e:4b:8c:ca:f8:03:a7:91:33:05:97:84:c7:6c: 42:81:f6:6b:bf:15:8e:07:fc:54:76:51:1d:5a:ca: 0f:6d:a4:b3:bb:e0:d3:1e:ee:5d:99:34:2a:8e:0d: fe:48:9d:be:c7:34:2d:15:eb:e6:8e:e4:0d:e1:ce: ec:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:DC:55:82:94:AF:B5:2F:3D:EF:27:C1:0B:4B:89:C0:A1:A5:9A:75 X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/677F3316E02711E9AB669750C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.16.0/22 144.48.32.0/22 IPv6: 2001:df5:7e80::/48 Signature Algorithm: sha256WithRSAEncryption 94:15:97:c5:6a:b5:8c:67:93:e8:6d:07:b2:96:e7:cb:79:75: 0a:6a:b0:4a:2d:25:42:ff:54:c9:32:c1:3b:58:e7:23:68:13: 71:9e:31:8a:e7:2b:32:38:ad:66:73:86:65:02:e7:36:db:bc: 83:e7:f1:18:a3:70:fd:24:02:34:03:c6:c8:01:06:93:e3:a6: b1:ab:ff:ef:67:d4:e6:0e:40:ac:82:4b:86:96:26:88:61:93: d5:ef:de:b7:c9:01:84:54:cb:0c:72:bc:51:b7:52:10:7b:82: 33:a0:e0:65:89:fa:8d:e3:e5:5c:d4:a4:87:81:68:a0:f4:06: 1e:39:b8:2b:a1:a2:f9:9d:62:2d:70:89:8c:aa:9e:d5:7b:d3: 7a:88:d9:43:a8:e5:f6:6a:d2:f6:a2:1e:91:27:a7:eb:00:5b: 6f:a4:e3:d7:67:69:2c:65:a1:28:80:af:af:7a:4b:de:d4:39: 9d:0d:77:b5:d6:e4:b4:28:12:0c:6e:43:52:86:6a:9d:42:fd: 7d:2f:68:be:1f:f3:42:a6:c1:b3:35:00:42:ba:ae:3e:b5:13: 9d:a5:89:18:bd:8c:a1:e1:12:07:e3:0a:7c:63:3e:a1:91:66: 9d:a6:a4:d9:2e:24:14:dd:2a:b0:e0:a0:ce:ca:fb:a5:4e:74: f6:89:b0:2f -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjQwNTAyMTkwNzUyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzZTQ4OC1lOTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvUqYAV7mBl2+DVTckjJ3epLqJHYJG/d0BLcVl5ACV4aLIOS/CFXd8YDdtgdm mx6mES6B7Yu821JvQHRSFY9KqbjLGGLKoXmilwcwBTjAY8pH5dmcK5DYpxvmRhkw 2iRVeHDY62ax88ITEOaylY71oN5/o8Evw+n+YQymRtuR7baZlIA9DeZuIR98B4/1 sYZICT4pCfwKoiJtULBJfZfGlnqNA9v9e4HrE02HOUn2CHvYPqEqvWUej9quXEMU 5megjpFufkuMyvgDp5EzBZeEx2xCgfZrvxWOB/xUdlEdWsoPbaSzu+DTHu5dmTQq jg3+SJ2+xzQtFevmjuQN4c7skwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLPcVYKU r7UvPe8nwQtLicChpZp1MB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFOEIvRUMyNTdDQzZFMDI1MTFFOTkxQTk3NzREQzRGOUFFMDIvNjc3RjMzMTZF MDI3MTFFOUFCNjY5NzUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJn1hADBAKQMCAwDwQCAAIwCQMHACABDfV+gDANBgkqhkiG 9w0BAQsFAAOCAQEAlBWXxWq1jGeT6G0Hspbny3l1CmqwSi0lQv9UyTLBO1jnI2gT cZ4xiucrMjitZnOGZQLnNtu8g+fxGKNw/SQCNAPGyAEGk+Omsav/72fU5g5ArIJL hpYmiGGT1e/et8kBhFTLDHK8UbdSEHuCM6DgZYn6jePlXNSkh4FooPQGHjm4K6Gi +Z1iLXCJjKqe1XvTeojZQ6jl9mrS9qIekSen6wBbb6Tj12dpLGWhKICvr3pL3tQ5 nQ13tdbktCgSDG5DUoZqnUL9fS9ovh/zQqbBszUAQrquPrUTnaWJGL2MoeESB+MK fGM+oZFmnaak2S4kFN0qsOCgzsr7pU509omwLw== -----END CERTIFICATE-----Generated at Fri May 10 20:05:20 2024 by rpki-client on console-fra.rpki-client.org