$ rpki-client -vvf rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0A3DB3DCD0C511EABB9E0868C4F9AE02.roa File: 0A3DB3DCD0C511EABB9E0868C4F9AE02.roa (raw, json) Hash identifier: MZpYMM5PdgtRobc7R6HBOp1eIjkKqyVaBTyVHYLZE2s= Subject key identifier: 80:E4:35:99:46:30:D2:D8:D4:E8:81:9E:B0:48:03:37:3C:75:E2:65 Certificate issuer: /CN=A911E64C/serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Certificate serial: 074C Authority key identifier: 93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0A3DB3DCD0C511EABB9E0868C4F9AE02.roa Signing time: Sat 24 Feb 2024 22:10:36 +0000 ROA not before: Sat 24 Feb 2024 22:10:36 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 198381 IP address blocks: 103.255.128.0/24 maxlen: 24 103.255.129.0/24 maxlen: 24 103.255.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1868 (0x74c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E64C/serialNumber=93D16AC5C8B304760E77483F93EEAFABC3A30B12 Validity Not Before: Feb 24 22:10:36 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65da695c-7fda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:24:54:11:61:ea:66:cc:13:49:b5:90:6d:58: 9f:ab:dc:72:b8:e4:a0:8d:07:f1:b4:22:bd:14:22: c0:16:2a:fa:7c:73:8a:9d:64:29:16:c4:36:41:43: 7d:f1:c6:f5:79:6c:55:51:4b:c8:0d:e4:52:38:a4: 8b:9e:d2:94:62:9b:ef:94:4e:fc:42:c1:cc:25:ee: 6a:46:43:2e:8c:b1:60:b6:3d:10:3e:2f:f5:93:b4: d0:f3:18:e8:9a:c2:01:26:1c:6e:84:86:f8:90:33: 53:ab:7e:76:21:04:63:8c:46:3a:1d:9f:e7:3e:8a: dc:e7:9b:0b:cc:11:30:6d:0a:cf:94:4f:02:c0:cf: a8:29:f0:7b:b0:bf:88:9b:b7:87:b8:7a:20:2b:6c: d6:18:2a:0e:d5:8c:c1:68:85:93:d4:88:9f:ff:93: 3d:d7:0c:80:6f:38:a3:4f:f0:d7:7e:53:5c:10:ee: 87:5b:f3:5a:8f:a7:e2:5b:dc:b5:e0:d8:77:97:83: e3:67:c0:b2:4a:a2:ea:4b:a2:4b:a1:e1:d4:97:dc: c8:99:25:7d:3e:a7:70:a2:56:9c:d6:62:a6:e0:31: 34:7e:be:2e:1d:ac:6f:24:7b:77:b6:9a:73:c4:01: 47:c3:d0:cd:8a:96:36:2c:1a:ed:40:84:91:c0:d0: c6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E4:35:99:46:30:D2:D8:D4:E8:81:9E:B0:48:03:37:3C:75:E2:65 X509v3 Authority Key Identifier: keyid:93:D1:6A:C5:C8:B3:04:76:0E:77:48:3F:93:EE:AF:AB:C3:A3:0B:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/k9FqxcizBHYOd0g_k-6vq8OjCxI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k9FqxcizBHYOd0g_k-6vq8OjCxI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E64C/63D5AC40D0C211EA9B33BF60C4F9AE02/0A3DB3DCD0C511EABB9E0868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.128.0-103.255.130.255 Signature Algorithm: sha256WithRSAEncryption 79:a3:7e:a3:57:81:c3:19:de:18:ad:94:c2:db:14:1b:d3:3f: 77:16:b2:0e:1d:7c:f5:da:4d:d4:70:dd:e0:39:d9:d7:96:cb: 54:46:cc:55:a2:fb:11:e1:14:3a:50:ef:26:70:87:6d:c1:81: 21:bc:9c:c5:7a:8c:15:74:f6:a5:ac:2c:09:05:0b:fe:1c:a7: 01:3a:33:ca:62:e5:a5:b5:c2:65:db:9d:b6:c8:b8:9a:50:2a: a7:d8:af:f6:eb:c0:83:26:3e:04:2c:20:6f:06:52:8d:28:28: b3:4f:bf:bc:b4:a3:95:14:b8:8b:73:2e:c7:2b:ac:28:1d:0a: ae:38:41:ee:a3:75:ce:90:1b:e0:7c:79:b3:14:2b:56:c9:07: eb:53:5b:16:c7:c6:bf:3c:d0:89:08:c7:7e:75:e9:13:f6:22: 05:d9:01:d7:c8:8e:1c:5f:0e:1f:e6:7e:5f:0d:6e:b5:56:98: f8:88:fd:52:d4:df:60:31:69:e6:ee:a3:99:15:53:dd:33:e7: bd:e9:39:20:b6:d9:66:45:bd:c2:71:81:69:70:0a:79:16:27: e5:42:40:09:17:59:16:73:ff:1a:b2:5f:6c:a5:bd:60:57:42: e8:f7:48:05:b7:b2:79:ba:58:5a:23:7f:f4:ca:7b:42:82:26: 86:cd:69:86 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICB0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2NEMxMTAvBgNVBAUTKDkzRDE2QUM1QzhCMzA0NzYwRTc3NDgzRjkzRUVBRkFC QzNBMzBCMTIwHhcNMjQwMjI0MjIxMDM2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRhNjk1Yy03ZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqSRUEWHqZswTSbWQbVifq9xyuOSgjQfxtCK9FCLAFir6fHOKnWQpFsQ2QUN9 8cb1eWxVUUvIDeRSOKSLntKUYpvvlE78QsHMJe5qRkMujLFgtj0QPi/1k7TQ8xjo msIBJhxuhIb4kDNTq352IQRjjEY6HZ/nPorc55sLzBEwbQrPlE8CwM+oKfB7sL+I m7eHuHogK2zWGCoO1YzBaIWT1Iif/5M91wyAbzijT/DXflNcEO6HW/Naj6fiW9y1 4Nh3l4PjZ8CySqLqS6JLoeHUl9zImSV9Pqdwolac1mKm4DE0fr4uHaxvJHt3tppz xAFHw9DNipY2LBrtQISRwNDGdQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFIDkNZlG MNLY1OiBnrBIAzc8deJlMB8GA1UdIwQYMBaAFJPRasXIswR2DndIP5Pur6vDowsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTY0Qy82M0Q1QUM0MEQw QzIxMUVBOUIzM0JGNjBDNEY5QUUwMi9rOUZxeGNpekJIWU9kMGdfay02dnE4T2pD eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2s5RnF4Y2l6QkhZT2QwZ19rLTZ2cThPakN4SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU2NEMvNjNENUFDNDBEMEMyMTFFQTlCMzNCRjYwQzRGOUFFMDIvMEEzREIzRENE MEM1MTFFQUJCOUUwODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEB2f/gAMEAGf/gjANBgkqhkiG9w0BAQsFAAOCAQEAeaN+ o1eBwxneGK2UwtsUG9M/dxayDh189dpN1HDd4DnZ15bLVEbMVaL7EeEUOlDvJnCH bcGBIbycxXqMFXT2pawsCQUL/hynATozymLlpbXCZdudtsi4mlAqp9iv9uvAgyY+ BCwgbwZSjSgos0+/vLSjlRS4i3MuxyusKB0KrjhB7qN1zpAb4Hx5sxQrVskH61Nb FsfGvzzQiQjHfnXpE/YiBdkB18iOHF8OH+Z+Xw1utVaY+Ij9UtTfYDFp5u6jmRVT 3TPnvek5ILbZZkW9wnGBaXAKeRYn5UJACRdZFnP/GrJfbKW9YFdC6PdIBbeyebpY WiN/9Mp7QoImhs1phg== -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:36 2024 by rpki-client on console-fra.rpki-client.org