$ rpki-client -vvf rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/90203ACEDEE811EBA82BEF41C4F9AE02.roa File: 90203ACEDEE811EBA82BEF41C4F9AE02.roa (raw, json) Hash identifier: 3b53oGZrk5tXtSU6CyAt3h+hYXdnaoLTFM3Jnq/kzQE= Subject key identifier: 86:0A:11:7D:F8:26:3E:84:0B:9B:E0:89:82:F6:16:A9:C0:9F:C3:EB Certificate issuer: /CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Certificate serial: 0698 Authority key identifier: A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/90203ACEDEE811EBA82BEF41C4F9AE02.roa Signing time: Tue 06 Feb 2024 23:11:21 +0000 ROA not before: Tue 06 Feb 2024 23:11:21 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 133762 IP address blocks: 103.108.180.0/24 maxlen: 24 103.108.181.0/24 maxlen: 24 103.108.182.0/24 maxlen: 24 103.108.183.0/24 maxlen: 24 2402:6e40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 23:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1688 (0x698) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F177/serialNumber=A222B6D6D0528214221D4ACEA47E1AC611EF427A Validity Not Before: Feb 6 23:11:21 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c2bc99-3b2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a1:ad:eb:77:4d:31:14:2b:ac:3c:97:9c:02: 57:8c:78:4b:af:16:e5:2d:5f:c6:2b:d5:9b:61:3a: 91:96:f0:c2:eb:62:12:dc:3a:bc:43:e9:78:a7:c5: 70:2f:e2:0a:52:30:c2:61:16:fd:85:cf:ea:ca:ee: d1:d0:ed:f4:3a:b9:8e:f7:51:a8:08:bb:48:17:52: 75:ee:e8:21:25:af:11:6e:83:a6:c0:2a:fa:07:84: 61:1d:46:8b:ab:92:0e:f9:33:c3:21:e3:e4:78:89: cf:65:2b:5d:eb:76:4b:5d:b6:22:5f:81:64:53:37: aa:7f:8b:44:78:42:90:b7:63:33:3f:73:80:df:f0: b2:7b:f5:87:5a:48:69:77:84:ac:1d:e9:07:e8:64: 7a:86:33:6e:f0:2b:95:2e:6e:b9:ae:3c:ab:66:59: 1d:38:f4:30:42:0d:ee:fa:fb:cf:96:eb:45:52:7e: 32:ae:9e:74:cf:f0:07:5b:1b:4b:ee:cd:6d:e4:64: 5a:10:f4:7e:7d:a6:f8:e1:61:14:37:1a:39:ec:83: 81:3c:90:b9:00:a1:0a:8d:ea:d3:bb:f1:a0:88:5c: ac:8d:ff:42:8e:48:e7:f5:64:1e:3f:bc:05:7e:9d: 91:10:27:ba:a5:7c:31:2d:7f:60:32:0a:de:bf:5d: 96:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:0A:11:7D:F8:26:3E:84:0B:9B:E0:89:82:F6:16:A9:C0:9F:C3:EB X509v3 Authority Key Identifier: keyid:A2:22:B6:D6:D0:52:82:14:22:1D:4A:CE:A4:7E:1A:C6:11:EF:42:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/oiK21tBSghQiHUrOpH4axhHvQno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oiK21tBSghQiHUrOpH4axhHvQno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F177/82EE58260E0611EB86876E53C4F9AE02/90203ACEDEE811EBA82BEF41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.180.0/22 IPv6: 2402:6e40::/32 Signature Algorithm: sha256WithRSAEncryption 68:11:6e:96:cb:94:a4:28:7f:20:5a:f3:d7:17:9c:78:74:26: 39:80:0b:1a:fd:a5:6b:75:01:9c:54:38:ac:5a:4c:b4:7b:be: 9a:6b:31:b1:bf:86:24:06:ca:36:01:08:f7:5f:a0:bf:79:9a: 3d:77:df:0a:7d:dd:f8:98:04:a1:e2:4f:01:c6:e1:1f:32:1d: 7e:bd:a1:e2:b5:4e:28:3a:af:31:e9:b6:70:43:10:35:c5:ed: 5a:d4:07:77:84:a6:b3:89:cb:40:7e:16:fb:22:80:1f:5d:8b: 61:32:53:8b:5d:45:bb:73:ff:63:b8:17:91:e4:9a:c2:04:05: 36:43:c6:26:93:52:e2:2d:c5:30:28:38:04:f4:89:04:f3:0d: 08:26:fd:bb:92:90:33:69:0a:b1:12:25:04:b3:fd:49:93:ae: ee:16:fa:c6:ea:df:68:1d:5f:1d:e3:65:eb:31:69:5e:eb:75: 45:70:75:18:9d:e7:52:96:ae:9b:9d:34:5a:51:8c:69:1c:18: ae:f5:ea:c4:7d:89:4d:6e:d9:53:fa:06:f6:40:a6:19:5c:f6: 23:fc:35:b0:7c:c0:a1:6e:a1:7e:8f:e9:a6:a8:c3:9b:62:52: 90:25:d6:8c:2b:29:7a:06:78:1d:60:62:9d:4b:54:3b:0b:1e: 8f:7c:d7:8b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUYxNzcxMTAvBgNVBAUTKEEyMjJCNkQ2RDA1MjgyMTQyMjFENEFDRUE0N0UxQUM2 MTFFRjQyN0EwHhcNMjQwMjA2MjMxMTIxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyYmM5OS0zYjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqGt63dNMRQrrDyXnAJXjHhLrxblLV/GK9WbYTqRlvDC62IS3Dq8Q+l4p8Vw L+IKUjDCYRb9hc/qyu7R0O30OrmO91GoCLtIF1J17ughJa8RboOmwCr6B4RhHUaL q5IO+TPDIePkeInPZStd63ZLXbYiX4FkUzeqf4tEeEKQt2MzP3OA3/Cye/WHWkhp d4SsHekH6GR6hjNu8CuVLm65rjyrZlkdOPQwQg3u+vvPlutFUn4yrp50z/AHWxtL 7s1t5GRaEPR+fab44WEUNxo57IOBPJC5AKEKjerTu/GgiFysjf9Cjkjn9WQeP7wF fp2RECe6pXwxLX9gMgrev12WxwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIYKEX34 Jj6EC5vgiYL2FqnAn8PrMB8GA1UdIwQYMBaAFKIittbQUoIUIh1KzqR+GsYR70J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjE3Ny84MkVFNTgyNjBF MDYxMUVCODY4NzZFNTNDNEY5QUUwMi9vaUsyMXRCU2doUWlIVXJPcEg0YXhoSHZR bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29pSzIxdEJTZ2hRaUhVck9wSDRheGhIdlFuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUYxNzcvODJFRTU4MjYwRTA2MTFFQjg2ODc2RTUzQzRGOUFFMDIvOTAyMDNBQ0VE RUU4MTFFQkE4MkJFRjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnbLQwDQQCAAIwBwMFACQCbkAwDQYJKoZIhvcNAQELBQAD ggEBAGgRbpbLlKQofyBa89cXnHh0JjmACxr9pWt1AZxUOKxaTLR7vpprMbG/hiQG yjYBCPdfoL95mj133wp93fiYBKHiTwHG4R8yHX69oeK1Tig6rzHptnBDEDXF7VrU B3eEprOJy0B+FvsigB9di2EyU4tdRbtz/2O4F5HkmsIEBTZDxiaTUuItxTAoOAT0 iQTzDQgm/buSkDNpCrESJQSz/UmTru4W+sbq32gdXx3jZesxaV7rdUVwdRid51KW rpudNFpRjGkcGK716sR9iU1u2VP6BvZAphlc9iP8NbB8wKFuoX6P6aaow5tiUpAl 1owrKXoGeB1gYp1LVDsLHo9814s= -----END CERTIFICATE-----Generated at Mon May 27 00:39:30 2024 by rpki-client on console-ams.rpki-client.org