$ rpki-client -vvf rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/2048ADEADD5011EDA3ACE13CC4F9AE02.roa File: 2048ADEADD5011EDA3ACE13CC4F9AE02.roa (raw, json) Hash identifier: 6j7w9+hGUOPNXXB5FjLRh9dRH3zCAl46bVFBtFbG7eg= Subject key identifier: D2:0B:68:41:E1:57:BA:5A:A2:47:F2:2A:44:46:76:89:48:ED:44:7F Certificate issuer: /CN=A911B12B/serialNumber=A9985CDD37932E1D364C4C6D75DBA503BF72677C Certificate serial: C4 Authority key identifier: A9:98:5C:DD:37:93:2E:1D:36:4C:4C:6D:75:DB:A5:03:BF:72:67:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZhc3TeTLh02TExtddulA79yZ3w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/2048ADEADD5011EDA3ACE13CC4F9AE02.roa Signing time: Fri 15 Mar 2024 06:08:32 +0000 ROA not before: Fri 15 Mar 2024 06:08:32 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139820 IP address blocks: 103.12.40.0/24 maxlen: 24 103.12.41.0/24 maxlen: 24 103.12.42.0/24 maxlen: 24 103.12.43.0/24 maxlen: 24 103.86.88.0/24 maxlen: 24 103.86.89.0/24 maxlen: 24 2001:df1:fa40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/qZhc3TeTLh02TExtddulA79yZ3w.crl rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/qZhc3TeTLh02TExtddulA79yZ3w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZhc3TeTLh02TExtddulA79yZ3w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B12B/serialNumber=A9985CDD37932E1D364C4C6D75DBA503BF72677C Validity Not Before: Mar 15 06:08:32 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f3e5e0-0608 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a3:d7:0b:8e:b1:3c:81:f1:9b:2c:b0:e1:cf: b1:1a:b0:9d:73:f7:64:67:42:f3:8c:a3:9f:cb:1c: 4e:71:3e:c1:a6:e6:67:5a:3a:97:15:21:3d:9d:2b: 3f:6f:0b:af:0e:cb:64:03:48:4f:c0:66:c2:56:94: 8a:39:8c:b7:bd:9d:eb:ae:a5:79:b0:b1:d7:7f:bf: d8:c3:fa:31:81:3b:12:0e:12:5a:1c:a9:ac:7d:7d: 34:55:58:d9:01:9b:05:c3:ae:11:21:b0:20:ff:d6: d6:87:e1:a9:66:43:c4:8c:d9:8e:30:cb:13:c8:43: e1:36:a4:32:15:94:a5:7b:23:49:e8:7f:28:ac:90: b0:b4:01:01:fe:91:fc:82:f4:1d:8a:95:bd:9e:d8: 41:a9:97:0d:07:c0:bc:4c:30:78:a3:c1:ec:d8:6e: 37:a8:c1:8c:8d:8a:3e:c5:30:17:d3:f5:d4:88:e6: 01:30:6c:c8:b8:b4:e2:7a:ac:82:b2:ad:ec:f5:28: 08:35:13:ce:fa:bd:13:68:e0:44:f1:93:73:93:86: 4c:f1:7e:67:45:fa:90:ef:86:17:02:ea:f6:70:74: bf:05:cc:c3:ad:47:b0:72:30:32:4a:6a:0a:24:87: 9f:97:70:e4:45:a1:d2:a2:a2:de:eb:ce:3c:73:fe: 15:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:0B:68:41:E1:57:BA:5A:A2:47:F2:2A:44:46:76:89:48:ED:44:7F X509v3 Authority Key Identifier: keyid:A9:98:5C:DD:37:93:2E:1D:36:4C:4C:6D:75:DB:A5:03:BF:72:67:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/qZhc3TeTLh02TExtddulA79yZ3w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZhc3TeTLh02TExtddulA79yZ3w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B12B/08C27532DB6811ED96C49C3DC4F9AE02/2048ADEADD5011EDA3ACE13CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.40.0/22 103.86.88.0/23 IPv6: 2001:df1:fa40::/48 Signature Algorithm: sha256WithRSAEncryption 2d:4a:5f:50:05:fd:88:96:30:b4:ca:db:1c:f7:f0:36:d9:c7: 13:31:50:e0:3e:bf:7d:77:28:d2:35:99:76:b8:cf:dd:06:fa: ee:9d:d3:9b:89:48:1a:36:9f:45:bf:31:0a:ac:60:82:e7:2f: ce:9f:3c:d3:b3:aa:0c:d9:39:33:49:40:a0:48:2c:12:68:1d: dc:e8:bf:bc:c5:00:89:3b:be:74:0e:43:e7:f1:40:96:86:0d: 57:7d:38:af:ca:20:b6:ad:81:ac:1e:31:83:8c:67:8e:82:17: 7d:68:45:8f:54:7e:b9:7d:c5:8b:b1:42:e5:a7:81:49:b8:93: cf:34:14:c0:db:30:85:6b:2a:39:0c:e0:c1:62:87:e5:08:f3: 1c:7f:a6:e5:36:8f:f8:d9:0a:ff:72:7d:0a:33:85:00:37:a9: 9a:51:e5:6e:1c:9f:a7:07:4a:cf:4d:ef:82:c6:f0:cc:16:aa: cf:36:b0:31:59:6f:25:3d:7c:34:99:e8:80:70:7f:ac:e0:c5: f0:05:a6:83:e6:91:91:3e:47:d8:16:e2:74:b0:b4:b8:18:3d: 91:f7:f1:c2:f1:4e:e9:0f:44:81:19:cc:47:71:81:56:0d:b3: f1:bd:aa:c6:52:6d:a2:cd:bf:b3:8f:49:f0:77:ef:0f:3f:19: 9b:e1:b5:4f -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUIxMkIxMTAvBgNVBAUTKEE5OTg1Q0REMzc5MzJFMUQzNjRDNEM2RDc1REJBNTAz QkY3MjY3N0MwHhcNMjQwMzE1MDYwODMyWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzZTVlMC0wNjA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0aPXC46xPIHxmyyw4c+xGrCdc/dkZ0LzjKOfyxxOcT7BpuZnWjqXFSE9nSs/ bwuvDstkA0hPwGbCVpSKOYy3vZ3rrqV5sLHXf7/Yw/oxgTsSDhJaHKmsfX00VVjZ AZsFw64RIbAg/9bWh+GpZkPEjNmOMMsTyEPhNqQyFZSleyNJ6H8orJCwtAEB/pH8 gvQdipW9nthBqZcNB8C8TDB4o8Hs2G43qMGMjYo+xTAX0/XUiOYBMGzIuLTieqyC sq3s9SgINRPO+r0TaOBE8ZNzk4ZM8X5nRfqQ74YXAur2cHS/BczDrUewcjAySmoK JIefl3DkRaHSoqLe6848c/4VFQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNILaEHh V7paokfyKkRGdolI7UR/MB8GA1UdIwQYMBaAFKmYXN03ky4dNkxMbXXbpQO/cmd8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjEyQi8wOEMyNzUzMkRC NjgxMUVEOTZDNDlDM0RDNEY5QUUwMi9xWmhjM1RlVExoMDJURXh0ZGR1bEE3OXla M3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaaGMzVGVUTGgwMlRFeHRkZHVsQTc5eVozdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUIxMkIvMDhDMjc1MzJEQjY4MTFFRDk2QzQ5QzNEQzRGOUFFMDIvMjA0OEFERUFE RDUwMTFFREEzQUNFMTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJnDCgDBAFnVlgwDwQCAAIwCQMHACABDfH6QDANBgkqhkiG 9w0BAQsFAAOCAQEALUpfUAX9iJYwtMrbHPfwNtnHEzFQ4D6/fXco0jWZdrjP3Qb6 7p3Tm4lIGjafRb8xCqxggucvzp8807OqDNk5M0lAoEgsEmgd3Oi/vMUAiTu+dA5D 5/FAloYNV304r8ogtq2BrB4xg4xnjoIXfWhFj1R+uX3Fi7FC5aeBSbiTzzQUwNsw hWsqOQzgwWKH5QjzHH+m5TaP+NkK/3J9CjOFADepmlHlbhyfpwdKz03vgsbwzBaq zzawMVlvJT18NJnogHB/rODF8AWmg+aRkT5H2BbidLC0uBg9kffxwvFO6Q9EgRnM R3GBVg2z8b2qxlJtos2/s49J8HfvDz8Zm+G1Tw== -----END CERTIFICATE-----Generated at Wed May 15 06:54:27 2024 by rpki-client on console-ams.rpki-client.org