$ rpki-client -vvf rpki.apnic.net/member_repository/A911C257/10397984E0CD11EAA5012521C4F9AE02/D583D3427FEB11ECBEBB344CC4F9AE02.roa File: D583D3427FEB11ECBEBB344CC4F9AE02.roa (raw, json) Hash identifier: CsOkmCm/NgGoSDsLngAWCRQiA1pie3KU4f0DehT/8Hk= Subject key identifier: 61:6F:51:F9:40:2C:5C:20:E3:61:A7:24:EC:E0:1C:5B:12:D8:C6:52 Certificate issuer: /CN=A911C257/serialNumber=121CA8AE8245E7AD6BB285AFA8E5D4D7E17C35AA Certificate serial: 06FF Authority key identifier: 12:1C:A8:AE:82:45:E7:AD:6B:B2:85:AF:A8:E5:D4:D7:E1:7C:35:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhyoroJF561rsoWvqOXU1-F8Nao.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C257/10397984E0CD11EAA5012521C4F9AE02/D583D3427FEB11ECBEBB344CC4F9AE02.roa Signing time: Mon 20 Nov 2023 22:09:13 +0000 ROA not before: Mon 20 Nov 2023 22:09:13 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132831 IP address blocks: 103.124.187.0/24 maxlen: 24 103.134.118.0/24 maxlen: 24 103.134.119.0/24 maxlen: 24 103.242.126.0/24 maxlen: 24 103.242.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C257/10397984E0CD11EAA5012521C4F9AE02/EhyoroJF561rsoWvqOXU1-F8Nao.crl rsync://rpki.apnic.net/member_repository/A911C257/10397984E0CD11EAA5012521C4F9AE02/EhyoroJF561rsoWvqOXU1-F8Nao.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhyoroJF561rsoWvqOXU1-F8Nao.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:12:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1791 (0x6ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C257/serialNumber=121CA8AE8245E7AD6BB285AFA8E5D4D7E17C35AA Validity Not Before: Nov 20 22:09:13 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=655bd909-372f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:69:be:7c:91:a1:35:77:21:9d:89:b2:23:d2: da:f0:8d:d2:2f:62:ad:22:d8:85:f2:34:32:78:74: c5:48:ff:5f:30:26:e1:bb:c1:43:6c:cf:b8:b0:0c: ed:8d:13:f7:a1:bc:30:05:81:41:a4:28:22:16:21: a8:91:75:df:d2:3e:70:ea:33:2c:38:b6:82:3c:dc: 14:82:b9:75:4d:fe:20:02:69:f8:2a:c0:14:43:53: 52:f6:98:50:2a:8d:d2:d7:2d:5a:68:dc:92:f2:1d: f4:56:a3:e0:c8:29:57:b0:7f:9e:a9:de:ce:98:9b: 14:3c:51:9e:51:43:41:23:66:76:50:db:e8:e0:51: a9:32:cc:68:f2:a6:19:0e:d2:4d:89:26:b1:00:ac: ee:bc:a1:87:0e:63:41:d6:4c:45:84:30:bb:91:27: 88:24:62:a1:f9:89:f2:f6:5d:d0:bb:33:53:7d:2b: 16:57:2d:9f:69:3c:b2:3f:6a:fa:78:8e:4d:08:e4: b4:c8:6b:97:3d:bd:ca:33:7a:15:f1:90:51:68:00: 26:01:25:96:b7:d2:0e:02:5e:e0:8d:00:11:6d:85: 95:a5:79:12:0f:e0:3c:03:65:ac:2d:3a:34:45:fc: 4a:fe:1e:c5:3b:7d:73:b8:75:87:91:c6:c3:99:a7: 89:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:6F:51:F9:40:2C:5C:20:E3:61:A7:24:EC:E0:1C:5B:12:D8:C6:52 X509v3 Authority Key Identifier: keyid:12:1C:A8:AE:82:45:E7:AD:6B:B2:85:AF:A8:E5:D4:D7:E1:7C:35:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C257/10397984E0CD11EAA5012521C4F9AE02/EhyoroJF561rsoWvqOXU1-F8Nao.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EhyoroJF561rsoWvqOXU1-F8Nao.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C257/10397984E0CD11EAA5012521C4F9AE02/D583D3427FEB11ECBEBB344CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.187.0/24 103.134.118.0/23 103.242.126.0/23 Signature Algorithm: sha256WithRSAEncryption a1:7d:53:e2:9d:09:c0:80:54:0b:04:a5:55:95:5e:15:98:cb: f6:ad:19:92:0b:cd:7c:cb:da:b7:28:10:33:f0:df:d9:07:c5: 36:c2:8d:ac:41:af:3e:46:f0:50:b2:3f:78:6e:a5:7a:c4:da: 2d:dd:fb:18:fc:8a:53:38:e5:87:e2:98:f2:fa:bb:32:f0:f1: 6f:0e:4b:c6:cd:02:97:a9:0a:2a:4e:cb:11:0c:ce:e7:74:ca: 86:7d:54:03:4b:dc:e3:e1:26:7e:2f:8f:49:88:11:c9:35:ad: b5:a1:c7:3c:ce:22:79:03:30:01:63:31:a9:c0:f9:4c:f5:71: fd:fd:14:a1:e8:77:7f:ae:9b:e5:69:1b:53:25:ae:ed:96:fa: d7:e3:f8:f8:4e:b1:5e:d5:d1:46:14:fc:52:3a:c0:d9:fc:c1: 9c:35:31:b8:fb:e3:e9:02:ab:7f:51:0c:0e:01:8d:03:40:41: 37:75:df:a9:6f:f4:b0:59:ce:c8:ce:32:9f:b5:28:8c:ed:eb: ba:f6:1a:8e:9a:1e:b1:38:db:aa:ec:20:18:48:e7:4c:0c:f4: 59:6f:5c:39:6d:71:49:0d:bf:fa:8c:10:cf:b6:08:14:0a:f8: ec:23:2e:fa:b9:16:9b:c4:01:ab:08:16:03:a4:f4:68:31:6f: b2:88:bc:23 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBv8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyNTcxMTAvBgNVBAUTKDEyMUNBOEFFODI0NUU3QUQ2QkIyODVBRkE4RTVENEQ3 RTE3QzM1QUEwHhcNMjMxMTIwMjIwOTEzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTViZDkwOS0zNzJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9mm+fJGhNXchnYmyI9La8I3SL2KtItiF8jQyeHTFSP9fMCbhu8FDbM+4sAzt jRP3obwwBYFBpCgiFiGokXXf0j5w6jMsOLaCPNwUgrl1Tf4gAmn4KsAUQ1NS9phQ Ko3S1y1aaNyS8h30VqPgyClXsH+eqd7OmJsUPFGeUUNBI2Z2UNvo4FGpMsxo8qYZ DtJNiSaxAKzuvKGHDmNB1kxFhDC7kSeIJGKh+Yny9l3QuzNTfSsWVy2faTyyP2r6 eI5NCOS0yGuXPb3KM3oV8ZBRaAAmASWWt9IOAl7gjQARbYWVpXkSD+A8A2WsLTo0 RfxK/h7FO31zuHWHkcbDmaeJcwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGFvUflA LFwg42GnJOzgHFsS2MZSMB8GA1UdIwQYMBaAFBIcqK6CReeta7KFr6jl1NfhfDWq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI1Ny8xMDM5Nzk4NEUw Q0QxMUVBQTUwMTI1MjFDNEY5QUUwMi9FaHlvcm9KRjU2MXJzb1d2cU9YVTEtRjhO YW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VoeW9yb0pGNTYxcnNvV3ZxT1hVMS1GOE5hby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyNTcvMTAzOTc5ODRFMENEMTFFQUE1MDEyNTIxQzRGOUFFMDIvRDU4M0QzNDI3 RkVCMTFFQ0JFQkIzNDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnfLsDBAFnhnYDBAFn8n4wDQYJKoZIhvcNAQELBQADggEB AKF9U+KdCcCAVAsEpVWVXhWYy/atGZILzXzL2rcoEDPw39kHxTbCjaxBrz5G8FCy P3hupXrE2i3d+xj8ilM45YfimPL6uzLw8W8OS8bNApepCipOyxEMzud0yoZ9VANL 3OPhJn4vj0mIEck1rbWhxzzOInkDMAFjManA+Uz1cf39FKHod3+um+VpG1Mlru2W +tfj+PhOsV7V0UYU/FI6wNn8wZw1Mbj74+kCq39RDA4BjQNAQTd136lv9LBZzsjO Mp+1KIzt67r2Go6aHrE426rsIBhI50wM9FlvXDltcUkNv/qMEM+2CBQK+OwjLvq5 FpvEAasIFgOk9Ggxb7KIvCM= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:09 2024 by rpki-client on console-ams.rpki-client.org