$ rpki-client -vvf rpki.apnic.net/member_repository/A912654A/FFB443789F0C11EC9A1AF70EC4F9AE02/D83A3404EF0311EDA8B8C81EC4F9AE02.roa File: D83A3404EF0311EDA8B8C81EC4F9AE02.roa (raw, json) Hash identifier: RNcRlm2wXA2LTmrbU4YLnCSJL/XH7jtpKjrey/Lilq4= Subject key identifier: 49:F6:66:C5:A4:54:A2:31:3D:39:18:9E:5D:57:94:F8:D1:05:6A:F5 Certificate issuer: /CN=A912654A/serialNumber=98145177CAC2F5BEE5D276745CED98984053EDA7 Certificate serial: 02D7 Authority key identifier: 98:14:51:77:CA:C2:F5:BE:E5:D2:76:74:5C:ED:98:98:40:53:ED:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mBRRd8rC9b7l0nZ0XO2YmEBT7ac.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912654A/FFB443789F0C11EC9A1AF70EC4F9AE02/D83A3404EF0311EDA8B8C81EC4F9AE02.roa Signing time: Mon 27 May 2024 03:38:08 +0000 ROA not before: Mon 27 May 2024 03:38:08 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136173 IP address blocks: 103.149.110.0/23 maxlen: 23 103.149.110.0/24 maxlen: 24 103.149.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912654A/FFB443789F0C11EC9A1AF70EC4F9AE02/mBRRd8rC9b7l0nZ0XO2YmEBT7ac.crl rsync://rpki.apnic.net/member_repository/A912654A/FFB443789F0C11EC9A1AF70EC4F9AE02/mBRRd8rC9b7l0nZ0XO2YmEBT7ac.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mBRRd8rC9b7l0nZ0XO2YmEBT7ac.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 727 (0x2d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912654A/serialNumber=98145177CAC2F5BEE5D276745CED98984053EDA7 Validity Not Before: May 27 03:38:08 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66540020-6037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5d:56:06:25:33:6a:38:d8:3f:59:42:57:78: 87:89:30:d1:cb:61:5a:3f:7b:3f:ef:8f:8d:53:e0: c5:b2:ef:87:d0:ce:fa:d9:17:cb:be:86:a7:ba:8e: 90:6a:c3:0f:2c:26:58:ef:1b:bd:a4:35:91:54:0b: b2:5e:e2:22:e4:21:c9:7f:c3:79:cf:6a:12:16:51: d4:8b:6c:5e:53:03:92:d9:4c:54:71:fc:a3:64:c6: f0:e2:4d:68:97:d0:16:a9:d0:a8:76:c5:36:b1:32: 81:5e:39:6c:db:f3:72:e2:27:20:c6:10:da:8b:78: 5a:1b:05:8e:38:02:62:4b:12:f1:06:4e:5c:35:80: b6:59:23:43:af:75:ad:1d:1e:a7:e0:24:30:1d:11: ce:e2:07:75:fb:00:8f:91:a8:c6:6c:67:0f:5e:f0: 08:0f:ed:fc:4b:09:05:11:a3:fe:04:69:79:25:93: 2b:b3:c9:a7:db:10:1f:70:03:c6:e1:2b:73:83:80: f6:7b:ff:27:3f:a0:da:e9:25:59:b6:41:ba:fa:7f: 93:12:99:36:fe:74:07:8c:61:5c:37:f1:22:1c:e2: 6e:60:f1:98:07:61:26:4d:72:f7:ba:06:77:6f:ba: e4:04:bf:53:98:ec:d3:c0:2d:59:b2:f4:af:1f:39: c9:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:F6:66:C5:A4:54:A2:31:3D:39:18:9E:5D:57:94:F8:D1:05:6A:F5 X509v3 Authority Key Identifier: keyid:98:14:51:77:CA:C2:F5:BE:E5:D2:76:74:5C:ED:98:98:40:53:ED:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912654A/FFB443789F0C11EC9A1AF70EC4F9AE02/mBRRd8rC9b7l0nZ0XO2YmEBT7ac.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mBRRd8rC9b7l0nZ0XO2YmEBT7ac.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912654A/FFB443789F0C11EC9A1AF70EC4F9AE02/D83A3404EF0311EDA8B8C81EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.110.0/23 Signature Algorithm: sha256WithRSAEncryption a8:95:cc:c7:f1:2c:09:2e:3b:41:00:ad:06:0d:99:ee:a6:ce: 11:4b:7a:ac:f2:02:76:c8:cc:db:d2:93:b8:c0:74:e4:aa:65: 46:48:2e:60:9d:91:78:4c:ef:a3:30:ea:4a:59:99:62:36:11: 8f:a1:16:1e:1a:cb:3c:06:d7:28:d2:37:ce:27:e6:3b:05:a2: 63:85:e7:2a:0d:67:c8:a6:2b:87:d7:8f:6b:02:3a:68:6f:1a: eb:24:1e:ab:01:d1:55:23:df:1f:cc:db:bf:7e:c7:c7:c5:31: 15:15:53:af:6f:c0:fd:4e:35:66:09:9c:71:93:9b:7d:a6:17: 81:eb:bf:bf:f0:3c:93:3e:3f:48:0f:f3:f4:62:97:34:0c:ad: 4f:0c:29:6e:d5:c3:be:93:9a:6a:00:1c:6b:ab:a3:85:db:f3: cf:dc:a1:51:b1:4c:23:b7:9e:e3:16:d4:44:66:31:7b:12:d2: a7:0c:ee:e1:9d:75:1c:42:62:e9:5a:bd:72:f8:57:af:77:00: 2c:15:99:01:61:5e:eb:f9:66:2f:ac:e2:a8:03:bf:a0:04:7d: f7:0d:5e:13:e7:bf:61:a1:22:72:20:44:0a:8a:3e:71:96:a6: 8a:69:2c:e4:22:cd:2c:5c:d1:36:20:c6:17:28:ac:a5:cb:09: 54:df:f5:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY1NEExMTAvBgNVBAUTKDk4MTQ1MTc3Q0FDMkY1QkVFNUQyNzY3NDVDRUQ5ODk4 NDA1M0VEQTcwHhcNMjQwNTI3MDMzODA4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU0MDAyMC02MDM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4F1WBiUzajjYP1lCV3iHiTDRy2FaP3s/74+NU+DFsu+H0M762RfLvoanuo6Q asMPLCZY7xu9pDWRVAuyXuIi5CHJf8N5z2oSFlHUi2xeUwOS2UxUcfyjZMbw4k1o l9AWqdCodsU2sTKBXjls2/Ny4icgxhDai3haGwWOOAJiSxLxBk5cNYC2WSNDr3Wt HR6n4CQwHRHO4gd1+wCPkajGbGcPXvAID+38SwkFEaP+BGl5JZMrs8mn2xAfcAPG 4Stzg4D2e/8nP6Da6SVZtkG6+n+TEpk2/nQHjGFcN/EiHOJuYPGYB2EmTXL3ugZ3 b7rkBL9TmOzTwC1ZsvSvHznJ2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEn2ZsWk VKIxPTkYnl1XlPjRBWr1MB8GA1UdIwQYMBaAFJgUUXfKwvW+5dJ2dFztmJhAU+2n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjU0QS9GRkI0NDM3ODlG MEMxMUVDOUExQUY3MEVDNEY5QUUwMi9tQlJSZDhyQzliN2wwblowWE8yWW1FQlQ3 YWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21CUlJkOHJDOWI3bDBuWjBYTzJZbUVCVDdhYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjY1NEEvRkZCNDQzNzg5RjBDMTFFQzlBMUFGNzBFQzRGOUFFMDIvRDgzQTM0MDRF RjAzMTFFREE4QjhDODFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlW4wDQYJKoZIhvcNAQELBQADggEBAKiVzMfxLAkuO0EA rQYNme6mzhFLeqzyAnbIzNvSk7jAdOSqZUZILmCdkXhM76Mw6kpZmWI2EY+hFh4a yzwG1yjSN84n5jsFomOF5yoNZ8imK4fXj2sCOmhvGuskHqsB0VUj3x/M279+x8fF MRUVU69vwP1ONWYJnHGTm32mF4Hrv7/wPJM+P0gP8/RilzQMrU8MKW7Vw76TmmoA HGuro4Xb88/coVGxTCO3nuMW1ERmMXsS0qcM7uGddRxCYulavXL4V693ACwVmQFh Xuv5Zi+s4qgDv6AEffcNXhPnv2GhInIgRAqKPnGWpoppLOQizSxc0TYgxhcorKXL CVTf9ag= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:56 2024 by rpki-client on console-ams.rpki-client.org