$ rpki-client -vvf rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/E4DFE77CD77E11ED8E33F181C4F9AE02.roa File: E4DFE77CD77E11ED8E33F181C4F9AE02.roa (raw, json) Hash identifier: ua1AQMU7bCCk0fcUdLe1mRz8NyiPnpe550PawenVzJc= Subject key identifier: BB:44:2F:D4:5F:3F:41:4E:6A:7F:46:B7:DA:F5:8F:90:75:CC:F0:B2 Certificate issuer: /CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Certificate serial: 011C Authority key identifier: 87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/E4DFE77CD77E11ED8E33F181C4F9AE02.roa Signing time: Wed 27 Mar 2024 05:38:04 +0000 ROA not before: Wed 27 Mar 2024 05:38:04 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 212238 IP address blocks: 103.86.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 284 (0x11c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C621/serialNumber=87A47F27E75E7C2839C133351DA2511482C6F9B4 Validity Not Before: Mar 27 05:38:04 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6603b0bc-c9f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:31:bc:ae:e5:06:6a:f2:2a:0e:7c:67:72:bf: 71:e3:a7:b7:c3:52:76:97:95:d4:0c:50:08:f0:06: c0:22:24:1b:8f:04:e3:b8:a5:e3:a6:9b:c9:57:58: 1f:e4:e6:ce:ec:5c:93:c9:97:4d:e3:e3:11:16:9b: 93:32:42:fc:68:15:be:8e:d6:e6:0d:dc:42:d4:48: f4:20:1b:df:1b:47:02:0a:25:be:a9:98:82:47:90: 11:f3:62:a0:c5:74:74:8a:b7:36:c0:02:48:22:72: 6d:1b:dc:61:a6:4d:7b:8a:2a:2b:35:a7:5c:19:8e: c4:19:77:63:32:98:2a:b9:d9:fa:17:d4:93:6f:d0: 74:f9:2e:ee:42:e5:b2:d1:d6:4f:49:2f:23:ee:55: 2d:d9:15:5d:32:1b:cf:2f:c4:08:cd:3c:55:f3:dc: 1b:7c:55:00:ef:ae:b2:2c:9f:fa:9f:ab:7c:f9:3f: 6f:b9:c2:75:1f:45:90:51:d0:81:25:2e:e6:97:04: 59:87:65:6b:7d:40:d2:7c:78:17:9a:c5:98:3f:13: a0:dd:46:5b:c6:aa:27:9a:85:19:b7:0d:f1:05:6e: 2f:12:51:92:77:54:78:8f:0e:92:7b:37:1a:7e:dc: af:69:a3:19:c8:35:bd:21:6b:86:31:d4:39:89:c2: 05:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:44:2F:D4:5F:3F:41:4E:6A:7F:46:B7:DA:F5:8F:90:75:CC:F0:B2 X509v3 Authority Key Identifier: keyid:87:A4:7F:27:E7:5E:7C:28:39:C1:33:35:1D:A2:51:14:82:C6:F9:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/h6R_J-defCg5wTM1HaJRFILG-bQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h6R_J-defCg5wTM1HaJRFILG-bQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C621/F7D00BEE743911ED986D7385C4F9AE02/E4DFE77CD77E11ED8E33F181C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.123.0/24 Signature Algorithm: sha256WithRSAEncryption 98:04:e1:23:03:b4:31:01:49:08:94:54:ae:ae:bf:66:0d:48: 18:25:aa:cb:9e:3f:ba:7c:fa:c4:ad:74:48:19:dd:8e:bc:e3: b7:4c:58:e5:ae:0b:ed:c6:ca:21:72:7c:6e:dc:b6:ad:f9:0e: a4:c6:fc:cd:15:b1:8c:22:f7:ea:65:c8:a8:60:86:eb:0e:b7: 14:7e:3b:96:56:13:d4:6f:ce:91:a9:07:48:9d:a8:ad:66:d2: 97:fb:90:89:f4:73:ff:9f:fc:72:42:19:5f:7b:3d:38:e8:96: 36:4d:14:04:ae:1d:b1:b0:73:44:94:3c:e2:ba:a5:bb:7d:c1: a0:0a:6e:9f:50:9f:19:19:34:47:78:a1:c5:0b:2d:6d:cd:59: 29:32:be:43:e3:db:12:15:08:96:82:06:a4:36:ba:22:fa:f5: e9:80:7d:6a:ec:37:ce:07:76:47:01:c0:48:71:e1:26:8b:9f: 53:6d:de:1e:52:29:b4:99:45:95:ff:2d:40:65:c5:fd:b0:5a: 77:0e:34:1e:1a:3b:f6:61:60:4f:7d:62:4a:16:18:d2:02:17: 52:dc:6f:3a:36:84:2f:8d:e5:61:eb:df:6e:20:5b:cd:9e:b3: bc:26:6d:ec:1c:67:28:96:1c:be:0e:00:75:f4:7a:0d:3e:d9: b5:e1:96:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2MjExMTAvBgNVBAUTKDg3QTQ3RjI3RTc1RTdDMjgzOUMxMzMzNTFEQTI1MTE0 ODJDNkY5QjQwHhcNMjQwMzI3MDUzODA0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzYjBiYy1jOWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzzG8ruUGavIqDnxncr9x46e3w1J2l5XUDFAI8AbAIiQbjwTjuKXjppvJV1gf 5ObO7FyTyZdN4+MRFpuTMkL8aBW+jtbmDdxC1Ej0IBvfG0cCCiW+qZiCR5AR82Kg xXR0irc2wAJIInJtG9xhpk17iiorNadcGY7EGXdjMpgqudn6F9STb9B0+S7uQuWy 0dZPSS8j7lUt2RVdMhvPL8QIzTxV89wbfFUA766yLJ/6n6t8+T9vucJ1H0WQUdCB JS7mlwRZh2VrfUDSfHgXmsWYPxOg3UZbxqonmoUZtw3xBW4vElGSd1R4jw6Sezca ftyvaaMZyDW9IWuGMdQ5icIF5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLtEL9Rf P0FOan9Gt9r1j5B1zPCyMB8GA1UdIwQYMBaAFIekfyfnXnwoOcEzNR2iURSCxvm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzYyMS9GN0QwMEJFRTc0 MzkxMUVEOTg2RDczODVDNEY5QUUwMi9oNlJfSi1kZWZDZzV3VE0xSGFKUkZJTEct YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g2Ul9KLWRlZkNnNXdUTTFIYUpSRklMRy1iUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2MjEvRjdEMDBCRUU3NDM5MTFFRDk4NkQ3Mzg1QzRGOUFFMDIvRTRERkU3N0NE NzdFMTFFRDhFMzNGMTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnVnswDQYJKoZIhvcNAQELBQADggEBAJgE4SMDtDEBSQiU VK6uv2YNSBglqsueP7p8+sStdEgZ3Y6847dMWOWuC+3GyiFyfG7ctq35DqTG/M0V sYwi9+plyKhghusOtxR+O5ZWE9RvzpGpB0idqK1m0pf7kIn0c/+f/HJCGV97PTjo ljZNFASuHbGwc0SUPOK6pbt9waAKbp9QnxkZNEd4ocULLW3NWSkyvkPj2xIVCJaC BqQ2uiL69emAfWrsN84HdkcBwEhx4SaLn1Nt3h5SKbSZRZX/LUBlxf2wWncONB4a O/ZhYE99YkoWGNICF1Lcbzo2hC+N5WHr324gW82es7wmbewcZyiWHL4OAHX0eg0+ 2bXhlhE= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:50 2024 by rpki-client on console-fra.rpki-client.org