$ rpki-client -vvf rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/214E0454B58A11ECAF32FE29C4F9AE02.roa File: 214E0454B58A11ECAF32FE29C4F9AE02.roa (raw, json) Hash identifier: pBbwlRGBpC2tDZKkxngbZ3HbOh4/vWaEBE463DX52ac= Subject key identifier: 80:B5:D1:18:31:D7:6C:50:B1:58:86:92:72:18:83:58:E6:E9:E6:88 Certificate issuer: /CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Certificate serial: 024D Authority key identifier: 84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/214E0454B58A11ECAF32FE29C4F9AE02.roa Signing time: Fri 15 Dec 2023 03:15:07 +0000 ROA not before: Fri 15 Dec 2023 03:15:07 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149294 IP address blocks: 103.178.18.0/23 maxlen: 24 2400:3ee0::/32 maxlen: 32 2400:3ee0::/48 maxlen: 48 2400:3ee0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 589 (0x24d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C61C/serialNumber=84422A85FA4E4CD4D6EE994631A3D0F0E6E82D3A Validity Not Before: Dec 15 03:15:07 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=657bc4bb-9337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d5:90:b3:1b:02:fe:42:6b:b2:8d:49:81:8d: 15:bb:ce:ec:5c:77:13:9a:a4:84:4d:41:ee:be:5e: 50:ed:cc:f7:50:51:ec:7f:5b:d5:e0:74:f4:a5:f0: df:2d:2d:af:23:50:67:c2:2f:8c:e5:8d:8b:fc:51: 41:00:b8:0b:b2:dd:15:b7:00:14:24:c0:3c:f9:19: ed:6e:d4:f9:55:4d:db:dc:fa:cf:19:8e:51:71:2a: 1b:16:85:3e:cb:b4:58:ca:7f:c4:9b:58:50:29:ad: 16:e2:d3:7a:ca:ac:f9:b8:4e:1d:9c:6b:18:df:42: 46:e8:ed:36:0e:03:fc:4a:38:b5:92:b1:93:2d:6b: 49:4f:60:a9:5d:19:ac:67:0a:b3:64:f9:39:0c:af: 76:3e:b3:02:96:04:62:d2:5f:93:9d:3a:a5:5f:bb: 13:d9:83:85:8e:2f:f1:2f:20:b7:38:68:c0:d8:ac: a4:f4:90:43:5c:77:24:30:13:62:49:60:17:c3:75: e4:e2:84:4d:22:6d:d8:71:e2:4e:3a:06:d8:23:31: 3e:dd:fb:43:c9:50:5e:71:5a:6b:50:d6:1e:ad:9a: 24:0c:8c:ae:56:c7:d8:5d:c4:1e:c7:cf:3d:1d:d5: 34:2a:45:7d:c0:f2:7a:eb:a0:a1:df:a3:45:6e:a6: 16:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:B5:D1:18:31:D7:6C:50:B1:58:86:92:72:18:83:58:E6:E9:E6:88 X509v3 Authority Key Identifier: keyid:84:42:2A:85:FA:4E:4C:D4:D6:EE:99:46:31:A3:D0:F0:E6:E8:2D:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/hEIqhfpOTNTW7plGMaPQ8OboLTo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hEIqhfpOTNTW7plGMaPQ8OboLTo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C61C/2A7090FAB58611ECAE81ED22C4F9AE02/214E0454B58A11ECAF32FE29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.18.0/23 IPv6: 2400:3ee0::/32 Signature Algorithm: sha256WithRSAEncryption 6c:18:76:30:38:16:90:0e:2a:e9:31:8e:7d:d8:eb:af:e4:4e: f0:97:fc:ae:64:b5:97:b9:10:36:5a:40:96:a1:f3:7a:71:58: 03:04:1f:5a:e7:b6:99:cb:56:8c:1b:cb:34:6b:25:24:8a:f4: da:64:3b:51:c6:03:4e:ea:8b:71:07:ea:85:1b:b7:18:3f:39: da:56:dc:60:49:2b:ff:14:94:1a:00:e4:fd:d1:5b:fc:89:e5: 0f:43:c5:d6:96:18:1e:7a:ea:5e:a8:98:95:d1:24:9e:30:06: 65:7b:03:82:d5:12:44:26:07:2a:3d:30:85:10:9e:d2:14:1e: 70:69:b5:90:42:66:dc:eb:cb:50:18:88:58:6d:1c:f3:e0:20: 8e:c9:04:c6:b4:94:df:eb:eb:75:ea:fc:88:fb:f1:a9:ed:fc: 6c:e9:71:bc:0e:63:e5:e1:80:ca:b4:e8:dd:29:6c:0c:71:bd: 53:a1:4c:59:79:e4:ff:79:ea:ab:ed:36:cf:8a:d8:31:32:7a: c0:02:e8:70:10:7c:af:d7:08:3e:d2:01:bd:ff:3f:56:c2:ea: e2:41:b9:c5:b1:59:55:b4:5c:56:25:81:96:6b:ee:03:72:bd: c6:1e:f0:e2:5b:7a:fb:df:4b:0f:b5:68:bb:ad:be:bf:4c:34: f2:fd:52:2e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAk0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MUMxMTAvBgNVBAUTKDg0NDIyQTg1RkE0RTRDRDRENkVFOTk0NjMxQTNEMEYw RTZFODJEM0EwHhcNMjMxMjE1MDMxNTA3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiYzRiYi05MzM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2dWQsxsC/kJrso1JgY0Vu87sXHcTmqSETUHuvl5Q7cz3UFHsf1vV4HT0pfDf LS2vI1Bnwi+M5Y2L/FFBALgLst0VtwAUJMA8+RntbtT5VU3b3PrPGY5RcSobFoU+ y7RYyn/Em1hQKa0W4tN6yqz5uE4dnGsY30JG6O02DgP8Sji1krGTLWtJT2CpXRms ZwqzZPk5DK92PrMClgRi0l+TnTqlX7sT2YOFji/xLyC3OGjA2Kyk9JBDXHckMBNi SWAXw3Xk4oRNIm3YceJOOgbYIzE+3ftDyVBecVprUNYerZokDIyuVsfYXcQex889 HdU0KkV9wPJ666Ch36NFbqYWiQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIC10Rgx 12xQsViGknIYg1jm6eaIMB8GA1UdIwQYMBaAFIRCKoX6TkzU1u6ZRjGj0PDm6C06 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYxQy8yQTcwOTBGQUI1 ODYxMUVDQUU4MUVEMjJDNEY5QUUwMi9oRUlxaGZwT1ROVFc3cGxHTWFQUThPYm9M VG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hFSXFoZnBPVE5UVzdwbEdNYVBROE9ib0xUby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MUMvMkE3MDkwRkFCNTg2MTFFQ0FFODFFRDIyQzRGOUFFMDIvMjE0RTA0NTRC NThBMTFFQ0FGMzJGRTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnshIwDQQCAAIwBwMFACQAPuAwDQYJKoZIhvcNAQELBQAD ggEBAGwYdjA4FpAOKukxjn3Y66/kTvCX/K5ktZe5EDZaQJah83pxWAMEH1rntpnL VowbyzRrJSSK9NpkO1HGA07qi3EH6oUbtxg/OdpW3GBJK/8UlBoA5P3RW/yJ5Q9D xdaWGB566l6omJXRJJ4wBmV7A4LVEkQmByo9MIUQntIUHnBptZBCZtzry1AYiFht HPPgII7JBMa0lN/r63Xq/Ij78ant/GzpcbwOY+XhgMq06N0pbAxxvVOhTFl55P95 6qvtNs+K2DEyesAC6HAQfK/XCD7SAb3/P1bC6uJBucWxWVW0XFYlgZZr7gNyvcYe 8OJbevvfSw+1aLutvr9MNPL9Ui4= -----END CERTIFICATE-----Generated at Fri May 17 04:26:38 2024 by rpki-client on console-fra.rpki-client.org