$ rpki-client -vvf rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/1D956B9E858811ED9CDCC91BC4F9AE02.roa File: 1D956B9E858811ED9CDCC91BC4F9AE02.roa (raw, json) Hash identifier: 4nca+zjw/oceArKoao4vA7g0YEPiT0qMny/vAkel68o= Subject key identifier: CE:A2:DB:CA:EE:9C:1D:EB:5A:4B:3F:04:D8:62:F2:92:E7:CF:0D:C2 Certificate issuer: /CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Certificate serial: 011D Authority key identifier: 87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/1D956B9E858811ED9CDCC91BC4F9AE02.roa Signing time: Wed 27 Mar 2024 05:38:05 +0000 ROA not before: Wed 27 Mar 2024 05:38:05 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.86.122.0/24 maxlen: 24 103.86.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 05:28:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 285 (0x11d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Validity Not Before: Mar 27 05:38:05 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6603b0bd-4205 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a8:47:19:96:73:0b:04:65:03:1f:7e:85:3f: 61:c2:37:54:97:df:5c:0b:75:e3:b9:ac:b9:d5:c5: df:f1:f9:0e:b3:0b:c2:88:a1:fa:99:b6:ab:4b:79: b4:7b:fb:71:89:17:ee:da:25:dc:5f:48:51:4e:36: 7c:22:a3:cd:9b:0d:77:0b:1d:b8:c5:0a:98:f7:e1: 15:ec:c8:f4:e9:61:c6:79:5a:71:36:64:cd:ae:4e: 82:4e:12:80:28:1b:bb:c4:58:60:35:eb:80:72:d8: ac:07:8b:9d:c9:22:11:d2:94:b8:9f:41:77:cc:cf: a8:63:11:35:aa:59:7d:6b:16:50:a8:54:e6:cf:df: 4c:c8:13:b0:5c:b8:f9:1b:db:99:e5:76:5b:4c:53: a6:e4:53:6d:99:13:56:c2:1e:70:ae:66:4e:18:25: b5:ee:f8:76:6f:20:3e:5a:3b:d2:ff:c6:c8:6f:f6: 2e:80:98:34:72:6e:1b:21:1f:72:dd:14:a8:12:18: 7b:e9:02:19:57:14:eb:ad:27:6b:a1:ab:18:00:87: a1:c7:6b:35:4a:46:66:a2:ec:de:3f:fc:fa:9e:cc: e3:0d:fb:8c:c2:e6:36:90:4a:ae:ff:c1:ec:4c:f6: 7a:59:7c:02:ec:14:31:cf:57:5e:75:ad:8e:87:9c: 9c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:A2:DB:CA:EE:9C:1D:EB:5A:4B:3F:04:D8:62:F2:92:E7:CF:0D:C2 X509v3 Authority Key Identifier: keyid:87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/1D956B9E858811ED9CDCC91BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.122.0/23 Signature Algorithm: sha256WithRSAEncryption 32:96:b6:99:b4:23:57:be:ed:35:7f:53:41:0b:54:9b:39:24: 16:d3:e9:1d:30:53:df:2f:dc:4b:ee:69:9f:f3:c1:c1:c1:83: 2a:84:0f:f1:f6:8c:ac:05:a2:06:1f:fb:67:a7:de:42:dd:bf: 91:54:6f:c1:f9:37:6e:bb:b3:c8:16:eb:74:ff:a2:2a:9f:0e: 90:90:40:c8:16:25:32:c1:d3:80:73:4b:4e:d9:93:66:47:ef: 3d:cb:cf:6b:f3:50:1d:1b:08:05:06:9b:15:54:a0:3b:3b:f7: c7:3c:f6:21:34:55:b8:8a:ce:1d:a6:ed:b1:84:89:bd:d0:50: 03:e0:10:34:51:d8:6d:62:1d:d7:d7:56:eb:72:2c:68:f3:39: 1c:34:59:1d:11:ab:15:9b:ac:cc:3e:42:8b:93:a0:f5:cc:16: 1e:22:3b:93:5d:b8:0d:c0:e3:2b:c2:84:db:f4:2d:0b:4c:a6: 69:41:48:5e:5d:29:fa:fa:ee:fe:5d:94:da:70:ab:1a:6e:3f: 12:a4:b7:69:92:b8:b0:1d:c5:b2:86:15:f4:14:93:01:d7:1d: 38:f9:a5:98:87:31:88:12:c2:9f:9e:14:24:3b:d5:e0:58:94: 12:4e:b3:f3:96:73:f2:99:04:cf:06:67:b2:dd:14:10:de:7b: 95:0e:22:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MjExMTAvBgNVBAUTKDg3QTQ3RjI3RTc1RTdDMjgzOUMxMzMzNTFEQTI1MTE0 ODJDNkY5QjQwHhcNMjQwMzI3MDUzODA1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzYjBiZC00MjA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36hHGZZzCwRlAx9+hT9hwjdUl99cC3Xjuay51cXf8fkOswvCiKH6mbarS3m0 e/txiRfu2iXcX0hRTjZ8IqPNmw13Cx24xQqY9+EV7Mj06WHGeVpxNmTNrk6CThKA KBu7xFhgNeuActisB4udySIR0pS4n0F3zM+oYxE1qll9axZQqFTmz99MyBOwXLj5 G9uZ5XZbTFOm5FNtmRNWwh5wrmZOGCW17vh2byA+WjvS/8bIb/YugJg0cm4bIR9y 3RSoEhh76QIZVxTrrSdroasYAIehx2s1SkZmouzeP/z6nszjDfuMwuY2kEqu/8Hs TPZ6WXwC7BQxz1deda2Oh5ycLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM6i28ru nB3rWks/BNhi8pLnzw3CMB8GA1UdIwQYMBaAFIekfyfnXnwoOcEzNR2iURSCxvm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYyMS9GN0QwMEJFRTc0 MzkxMUVEOTg2RDczODVDNEY5QUUwMi9oNlJfSi1kZWZDZzV3VE0xSGFKUkZJTEct YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2Ul9KLWRlZkNnNXdUTTFIYUpSRklMRy1iUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MjEvRjdEMDBCRUU3NDM5MTFFRDk4NkQ3Mzg1QzRGOUFFMDIvMUQ5NTZCOUU4 NTg4MTFFRDlDRENDOTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnVnowDQYJKoZIhvcNAQELBQADggEBADKWtpm0I1e+7TV/ U0ELVJs5JBbT6R0wU98v3EvuaZ/zwcHBgyqED/H2jKwFogYf+2en3kLdv5FUb8H5 N267s8gW63T/oiqfDpCQQMgWJTLB04BzS07Zk2ZH7z3Lz2vzUB0bCAUGmxVUoDs7 98c89iE0VbiKzh2m7bGEib3QUAPgEDRR2G1iHdfXVutyLGjzORw0WR0RqxWbrMw+ QouToPXMFh4iO5NduA3A4yvChNv0LQtMpmlBSF5dKfr67v5dlNpwqxpuPxKkt2mS uLAdxbKGFfQUkwHXHTj5pZiHMYgSwp+eFCQ71eBYlBJOs/OWc/KZBM8GZ7LdFBDe e5UOIrQ= -----END CERTIFICATE-----Generated at Tue Apr 23 18:32:22 2024 by rpki-client on console-fra.rpki-client.org