$ rpki-client -vvf rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/1E9D1268B3E011ED98356A75C4F9AE02.roa File: 1E9D1268B3E011ED98356A75C4F9AE02.roa (raw, json) Hash identifier: yUSigwsVPRzDDn5hFkq9Dru0nc+c3W0bjSA6zw9k9mM= Subject key identifier: A5:7B:22:DB:7D:CC:DA:1E:E2:D4:75:36:48:D1:20:B6:C0:D6:59:28 Certificate issuer: /CN=A912542C/serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Certificate serial: 0596 Authority key identifier: DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/1E9D1268B3E011ED98356A75C4F9AE02.roa Signing time: Sun 07 Apr 2024 01:03:10 +0000 ROA not before: Sun 07 Apr 2024 01:03:10 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 7492 IP address blocks: 103.157.244.0/23 maxlen: 23 103.157.244.0/24 maxlen: 24 103.157.245.0/24 maxlen: 24 2001:df2:3340::/48 maxlen: 48 2001:df2:33c0::/48 maxlen: 48 2001:df5:3680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1430 (0x596) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912542C/serialNumber=DB7CE523E840B77FC9E196F58F14976ACE4154BE Validity Not Before: Apr 7 01:03:10 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6611f0ce-0756 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:8e:e3:f7:27:39:55:19:84:18:ff:f9:7c:ac: 95:e6:ff:1c:d4:c1:7f:3f:63:c3:37:04:ef:cd:3f: 8b:66:ba:e0:43:34:13:14:5f:db:10:41:e2:69:b5: 7a:d7:e8:8a:62:0a:f4:7d:34:e2:0c:3c:59:2d:d6: 8e:c4:24:b6:18:ad:ab:9d:8e:ff:c6:9f:aa:2e:b6: 7c:bd:bc:5a:7f:d6:a0:e4:94:a0:29:f0:3d:0e:a4: b9:c5:9b:fe:a1:44:05:dd:53:06:3b:e8:14:66:6f: 05:e3:d2:3c:e8:c9:fd:af:18:ca:c6:db:0f:5b:1b: eb:70:60:1c:02:ea:9a:2a:08:9d:03:60:3f:84:ce: f8:3a:3d:ba:1e:6f:8e:34:f0:01:8a:e8:39:52:0e: 86:45:5b:c3:8f:3b:f9:03:31:95:b5:4f:5b:b0:f0: 9d:37:11:23:02:44:53:b0:57:9e:5a:11:39:b8:d3: 1f:f2:22:5a:b6:04:a9:18:94:52:52:af:73:90:10: 94:52:66:91:94:e6:a7:a0:a9:00:f9:d7:02:ac:81: 57:a2:0f:fc:ed:3b:e0:71:0d:f8:91:dd:26:3e:80: 9a:5f:e6:6e:23:25:4f:93:c5:cb:80:80:bb:20:73: 67:e9:89:7f:97:7f:7f:b0:71:5b:da:30:90:b8:00: eb:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7B:22:DB:7D:CC:DA:1E:E2:D4:75:36:48:D1:20:B6:C0:D6:59:28 X509v3 Authority Key Identifier: keyid:DB:7C:E5:23:E8:40:B7:7F:C9:E1:96:F5:8F:14:97:6A:CE:41:54:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/23zlI-hAt3_J4Zb1jxSXas5BVL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/23zlI-hAt3_J4Zb1jxSXas5BVL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912542C/1B63466E8CA811EBA2BD0A6BC4F9AE02/1E9D1268B3E011ED98356A75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.244.0/23 IPv6: 2001:df2:3340::/48 2001:df2:33c0::/48 2001:df5:3680::/48 Signature Algorithm: sha256WithRSAEncryption 47:bd:69:e9:8a:ba:51:8d:3a:52:9b:7d:64:c2:f0:3a:c7:87: c1:a3:81:96:be:86:7d:a7:1f:49:91:fc:b8:a3:2c:29:87:1f: 3c:db:6a:81:b4:e3:f5:94:ab:c5:a6:b1:9b:ef:2e:02:25:a4: 46:a1:a5:44:c8:02:0a:57:9b:a1:08:22:7f:a4:c6:f6:02:cd: 69:44:48:51:c3:02:37:92:09:97:b4:21:0e:a5:22:96:40:53: 6b:b1:3b:10:bd:20:40:c0:72:3a:4e:0e:e6:7d:5c:e4:45:7b: 23:66:46:cf:8f:41:ba:e0:3e:d8:47:5d:1b:d4:7a:49:ea:8b: a7:19:87:d0:58:73:0d:86:7f:9a:ac:7d:73:97:37:10:67:1f: e2:b2:24:ed:82:17:d4:fe:43:ef:9a:50:69:0f:d0:0a:14:29: e9:33:09:23:7c:3c:00:4f:b7:0a:58:25:90:a1:c4:d8:11:31: 0f:19:9a:88:3f:d3:fd:0c:76:16:da:6a:bd:eb:13:33:ad:ce: 1f:9a:6d:e0:00:d7:66:ba:00:77:ec:62:28:47:a6:5e:45:6e: ba:e0:74:9f:62:78:a0:84:98:5b:85:16:31:b6:5f:8d:4f:e9: 4e:b1:fb:4f:f3:5b:d5:47:b5:b0:85:cc:65:86:5f:62:34:b3: a0:a6:f6:91 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICBZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0MkMxMTAvBgNVBAUTKERCN0NFNTIzRTg0MEI3N0ZDOUUxOTZGNThGMTQ5NzZB Q0U0MTU0QkUwHhcNMjQwNDA3MDEwMzEwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjExZjBjZS0wNzU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyI7j9yc5VRmEGP/5fKyV5v8c1MF/P2PDNwTvzT+LZrrgQzQTFF/bEEHiabV6 1+iKYgr0fTTiDDxZLdaOxCS2GK2rnY7/xp+qLrZ8vbxaf9ag5JSgKfA9DqS5xZv+ oUQF3VMGO+gUZm8F49I86Mn9rxjKxtsPWxvrcGAcAuqaKgidA2A/hM74Oj26Hm+O NPABiug5Ug6GRVvDjzv5AzGVtU9bsPCdNxEjAkRTsFeeWhE5uNMf8iJatgSpGJRS Uq9zkBCUUmaRlOanoKkA+dcCrIFXog/87TvgcQ34kd0mPoCaX+ZuIyVPk8XLgIC7 IHNn6Yl/l39/sHFb2jCQuADrNQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFKV7Itt9 zNoe4tR1NkjRILbA1lkoMB8GA1UdIwQYMBaAFNt85SPoQLd/yeGW9Y8Ul2rOQVS+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQyQy8xQjYzNDY2RThD QTgxMUVCQTJCRDBBNkJDNEY5QUUwMi8yM3psSS1oQXQzX0o0WmIxanhTWGFzNUJW TDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzIzemxJLWhBdDNfSjRaYjFqeFNYYXM1QlZMNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0MkMvMUI2MzQ2NkU4Q0E4MTFFQkEyQkQwQTZCQzRGOUFFMDIvMUU5RDEyNjhC M0UwMTFFRDk4MzU2QTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMAwEAgABMAYDBAFnnfQwIQQCAAIwGwMHACABDfIzQAMHACABDfIzwAMHACAB DfU2gDANBgkqhkiG9w0BAQsFAAOCAQEAR71p6Yq6UY06Upt9ZMLwOseHwaOBlr6G facfSZH8uKMsKYcfPNtqgbTj9ZSrxaaxm+8uAiWkRqGlRMgCCleboQgif6TG9gLN aURIUcMCN5IJl7QhDqUilkBTa7E7EL0gQMByOk4O5n1c5EV7I2ZGz49BuuA+2Edd G9R6SeqLpxmH0FhzDYZ/mqx9c5c3EGcf4rIk7YIX1P5D75pQaQ/QChQp6TMJI3w8 AE+3ClglkKHE2BExDxmaiD/T/Qx2FtpqvesTM63OH5pt4ADXZroAd+xiKEemXkVu uuB0n2J4oISYW4UWMbZfjU/pTrH7T/Nb1Ue1sIXMZYZfYjSzoKb2kQ== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:23 2024 by rpki-client on console-fra.rpki-client.org