$ rpki-client -vvf rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/117300B62CDB11EDB2E1DD0DC4F9AE02.roa File: 117300B62CDB11EDB2E1DD0DC4F9AE02.roa (raw, json) Hash identifier: G2dWBNxI+TwAzB7Q925KO0EBuCO5Q3vn2232Y9oRj5g= Subject key identifier: D0:14:E1:37:14:89:95:DD:3B:6A:5D:80:2C:B0:28:87:4F:AB:BD:EC Certificate issuer: /CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Certificate serial: FE Authority key identifier: 2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/117300B62CDB11EDB2E1DD0DC4F9AE02.roa Signing time: Tue 17 Oct 2023 03:55:07 +0000 ROA not before: Tue 17 Oct 2023 03:55:07 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 150299 IP address blocks: 103.214.178.0/23 maxlen: 23 103.214.178.0/24 maxlen: 24 103.214.179.0/24 maxlen: 24 2001:df1:3b40::/48 maxlen: 48 2001:df1:3b40::/51 maxlen: 51 2001:df1:3b40:2000::/51 maxlen: 51 2001:df1:3b40:4000::/51 maxlen: 51 2001:df1:3b40:6000::/51 maxlen: 51 2001:df1:3b40:8000::/51 maxlen: 51 2001:df1:3b40:a000::/51 maxlen: 51 2001:df1:3b40:c000::/51 maxlen: 51 2001:df1:3b40:e000::/51 maxlen: 51 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:56:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125758/serialNumber=2F8BEF483A418AE1C0312308186EF4CD7B2466E5 Validity Not Before: Oct 17 03:55:07 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652e059b-40f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:23:36:6c:7c:b1:e4:70:0a:49:15:81:64:81: 09:80:55:98:e6:82:ee:d9:73:f4:26:ba:4e:eb:a2: 6f:2a:54:c6:05:43:cd:04:5f:d0:1e:c6:91:38:f9: f7:e5:40:b4:11:e7:1c:92:09:09:49:53:5d:80:14: 1c:1d:a0:16:db:ba:a1:78:36:78:98:c6:bb:21:a1: c8:05:64:d2:47:d8:3f:36:fb:de:d7:55:83:f5:8a: 46:6f:bb:81:92:08:a0:ea:e1:d0:8e:00:63:9a:d2: 0c:12:aa:21:02:1a:d2:c5:7a:32:ff:87:f6:66:95: 2e:f3:19:92:c4:e7:8b:a2:89:d6:01:dd:11:54:9a: 2a:86:17:11:2c:bd:52:88:02:80:0f:5a:13:43:43: 04:fc:4f:5c:0a:da:50:ea:90:e9:48:b9:a9:00:01: 1b:79:af:43:7f:89:24:b0:db:43:2a:95:a5:00:7f: 06:c1:ed:48:02:79:d0:57:00:14:1a:59:f9:6a:1d: f6:d5:1e:d5:d5:5c:69:7f:f2:fc:a5:6c:90:9a:d9: 84:2b:d1:24:54:4d:c2:cc:6c:2a:e4:e3:5c:d6:34: c1:b6:43:38:f7:5e:c0:26:44:b5:07:ca:ed:d5:77: b0:81:f2:47:95:dc:26:c2:8b:2b:e0:52:c6:57:36: 40:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:14:E1:37:14:89:95:DD:3B:6A:5D:80:2C:B0:28:87:4F:AB:BD:EC X509v3 Authority Key Identifier: keyid:2F:8B:EF:48:3A:41:8A:E1:C0:31:23:08:18:6E:F4:CD:7B:24:66:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/L4vvSDpBiuHAMSMIGG70zXskZuU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L4vvSDpBiuHAMSMIGG70zXskZuU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125758/71EBE7C22CD711EDB02B1D19C4F9AE02/117300B62CDB11EDB2E1DD0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.178.0/23 IPv6: 2001:df1:3b40::/48 Signature Algorithm: sha256WithRSAEncryption 52:a6:a6:56:66:59:5c:75:09:40:00:21:17:7f:b0:6d:29:1a: 8b:12:26:73:d3:a4:21:fa:44:5e:80:97:99:0d:cf:9b:86:15: 29:99:d4:4f:1a:10:d6:56:ec:23:85:09:70:99:43:5f:18:3a: 60:5a:f7:79:82:d2:18:6e:76:ef:5e:d4:25:6f:90:8e:e5:39: 89:42:20:fa:eb:97:ff:7b:55:d7:09:6d:6c:f7:48:84:52:c6: 78:80:f1:1a:ab:c2:6b:7f:98:c4:f6:af:54:d7:7a:d7:b1:2d: 72:8c:21:1a:f3:24:f4:41:c8:65:1c:8b:95:e3:e3:3e:ab:c8: a4:b1:5d:45:78:90:62:3f:c7:8b:ba:14:70:2c:1a:a9:4e:b1: 21:a2:b0:31:8f:fe:ce:7d:19:f9:71:12:1d:b7:55:bb:b3:e0: 53:dc:bd:ed:d0:86:15:26:30:37:0b:f0:2c:0f:3d:6f:b5:02: 0b:f3:be:fc:45:75:df:fb:a9:a1:ca:ce:5e:d1:66:72:93:24: f3:82:a5:af:c5:d3:7c:12:73:aa:cc:2e:fb:5d:35:c0:e3:ee: e2:e4:82:f9:aa:6c:91:ce:cb:d9:31:93:90:18:e6:96:54:9b: d2:00:80:91:13:eb:a4:87:60:93:ba:aa:f4:83:eb:1f:3e:75: f4:bc:8a:96 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU3NTgxMTAvBgNVBAUTKDJGOEJFRjQ4M0E0MThBRTFDMDMxMjMwODE4NkVGNENE N0IyNDY2RTUwHhcNMjMxMDE3MDM1NTA3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJlMDU5Yi00MGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwyM2bHyx5HAKSRWBZIEJgFWY5oLu2XP0JrpO66JvKlTGBUPNBF/QHsaROPn3 5UC0EecckgkJSVNdgBQcHaAW27qheDZ4mMa7IaHIBWTSR9g/Nvve11WD9YpGb7uB kgig6uHQjgBjmtIMEqohAhrSxXoy/4f2ZpUu8xmSxOeLoonWAd0RVJoqhhcRLL1S iAKAD1oTQ0ME/E9cCtpQ6pDpSLmpAAEbea9Df4kksNtDKpWlAH8Gwe1IAnnQVwAU Gln5ah321R7V1Vxpf/L8pWyQmtmEK9EkVE3CzGwq5ONc1jTBtkM4917AJkS1B8rt 1XewgfJHldwmwosr4FLGVzZAtwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNAU4TcU iZXdO2pdgCywKIdPq73sMB8GA1UdIwQYMBaAFC+L70g6QYrhwDEjCBhu9M17JGbl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTc1OC83MUVCRTdDMjJD RDcxMUVEQjAyQjFEMTlDNEY5QUUwMi9MNHZ2U0RwQml1SEFNU01JR0c3MHpYc2ta dVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w0dnZTRHBCaXVIQU1TTUlHRzcwelhza1p1VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU3NTgvNzFFQkU3QzIyQ0Q3MTFFREIwMkIxRDE5QzRGOUFFMDIvMTE3MzAwQjYy Q0RCMTFFREIyRTFERDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn1rIwDwQCAAIwCQMHACABDfE7QDANBgkqhkiG9w0BAQsF AAOCAQEAUqamVmZZXHUJQAAhF3+wbSkaixImc9OkIfpEXoCXmQ3Pm4YVKZnUTxoQ 1lbsI4UJcJlDXxg6YFr3eYLSGG52717UJW+QjuU5iUIg+uuX/3tV1wltbPdIhFLG eIDxGqvCa3+YxPavVNd617EtcowhGvMk9EHIZRyLlePjPqvIpLFdRXiQYj/Hi7oU cCwaqU6xIaKwMY/+zn0Z+XESHbdVu7PgU9y97dCGFSYwNwvwLA89b7UCC/O+/EV1 3/upocrOXtFmcpMk84Klr8XTfBJzqswu+101wOPu4uSC+apskc7L2TGTkBjmllSb 0gCAkRPrpIdgk7qq9IPrHz519LyKlg== -----END CERTIFICATE-----Generated at Fri May 17 06:46:20 2024 by rpki-client on console-ams.rpki-client.org