$ rpki-client -vvf rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/101150200BF211ECB242D930C4F9AE02.roa File: 101150200BF211ECB242D930C4F9AE02.roa (raw, json) Hash identifier: ce46HscI+9w3Pjwx1sxXAavOYbbAn9FavLZ9Lr3IFKY= Subject key identifier: 2F:43:11:0B:B4:65:E2:11:81:6F:E4:81:63:8C:4C:91:86:13:49:6A Certificate issuer: /CN=A912C72C/serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Certificate serial: 04BE Authority key identifier: 58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/101150200BF211ECB242D930C4F9AE02.roa Signing time: Wed 29 Nov 2023 01:13:23 +0000 ROA not before: Wed 29 Nov 2023 01:13:23 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 59210 IP address blocks: 103.243.172.0/22 maxlen: 22 103.243.173.0/24 maxlen: 24 103.243.174.0/24 maxlen: 24 103.243.175.0/24 maxlen: 24 2401:bc40:6100::/40 maxlen: 40 2401:bc40:a100::/40 maxlen: 40 2401:bc40:e301::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Jun 2024 01:42:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1214 (0x4be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912C72C/serialNumber=58B4DF8E4757CAFDE5462F4A1AF870FE2144DC5B Validity Not Before: Nov 29 01:13:23 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65669033-b177 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:47:31:7d:36:b5:34:e1:eb:a9:3c:f3:bb:f3: 49:f5:5b:4e:1b:d9:38:8e:bd:9d:0a:d1:fc:1f:24: 4e:8c:9a:8a:9b:41:2c:11:8e:0a:10:fc:c6:40:f0: d6:f7:e1:c1:a4:67:6b:74:36:92:f4:28:e1:83:08: 30:2e:e1:03:96:01:b7:67:95:24:5d:4c:8e:80:ff: f3:27:35:e3:e4:69:57:25:55:bf:db:5f:05:62:67: ee:c4:4d:3a:6c:fa:ce:a4:da:fe:e7:0e:f1:a6:91: 72:3e:76:9e:93:1d:8c:86:56:ae:07:ef:2c:0a:ee: d8:1f:54:8d:3a:7a:e7:91:fe:78:30:3e:41:64:21: d1:1e:9a:c2:c1:12:22:12:f0:e8:20:68:99:43:cb: f6:0d:b1:d9:e4:bf:61:d2:27:a0:82:66:cd:bb:c9: 9f:c5:04:17:f0:6b:71:5a:1e:b5:70:0e:8a:2f:35: 97:49:9c:98:a7:7a:f9:96:be:01:3c:df:23:73:89: 72:f0:16:c0:26:a6:22:c7:2a:08:b9:c4:4a:34:c4: 8c:05:6b:ee:e4:b6:cc:3c:3e:34:40:6a:35:1d:cd: be:98:01:5c:e2:f2:31:95:01:cc:bd:5d:48:aa:81: d3:28:ad:f0:07:d5:f4:1c:57:03:e0:43:e6:7e:29: bf:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:43:11:0B:B4:65:E2:11:81:6F:E4:81:63:8C:4C:91:86:13:49:6A X509v3 Authority Key Identifier: keyid:58:B4:DF:8E:47:57:CA:FD:E5:46:2F:4A:1A:F8:70:FE:21:44:DC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WLTfjkdXyv3lRi9KGvhw_iFE3Fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912C72C/8EC6140EC3AA11EB870EA91CC4F9AE02/101150200BF211ECB242D930C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.243.172.0/22 IPv6: 2401:bc40:6100::/40 2401:bc40:a100::/40 2401:bc40:e301::/48 Signature Algorithm: sha256WithRSAEncryption 38:fa:0e:da:26:ab:6c:d4:2b:fc:54:e3:0f:ca:ab:29:72:4a: 74:4e:90:3b:e7:4d:e6:8d:ee:2a:31:08:98:0f:7e:35:38:8f: 27:1c:ce:4a:02:f9:67:b4:d6:bf:f6:1c:2f:c8:1b:2d:d8:bb: e1:36:d1:c0:f4:7d:fa:7b:7d:8c:a2:2c:ff:b1:ff:40:72:17: eb:cb:a1:3d:54:05:67:e2:ca:84:93:07:fb:cf:76:93:0a:84: 0b:ec:e0:b0:ff:dc:67:0c:49:52:e1:86:33:d6:f0:12:db:39: 07:fb:97:c0:2f:b0:49:81:36:bb:8d:41:b5:94:f7:4f:0e:dd: 55:7e:92:56:88:2d:ac:3f:09:3c:f4:80:3f:c5:dc:24:96:d4: 2d:0a:ed:1f:9e:3a:f8:e9:34:71:8a:2d:bb:a2:4b:1d:2c:26: d4:28:3f:5a:f5:dc:c0:e0:f3:18:80:64:06:82:b7:cb:ae:e8: db:89:da:b8:a8:d1:e5:cd:d0:5d:03:fb:16:2a:e8:28:b4:9d: f1:c6:20:e1:2e:c9:c7:17:bd:6f:14:cc:ce:d6:03:50:49:99: a9:70:2b:00:40:a9:bb:6b:73:17:b3:2f:b7:e4:5f:53:06:8c: 4f:d8:90:ea:45:f8:c3:5f:a0:cc:17:13:73:39:dd:7d:d5:8a: 59:be:98:a7 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICBL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkM3MkMxMTAvBgNVBAUTKDU4QjRERjhFNDc1N0NBRkRFNTQ2MkY0QTFBRjg3MEZF MjE0NERDNUIwHhcNMjMxMTI5MDExMzIzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2OTAzMy1iMTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUcxfTa1NOHrqTzzu/NJ9VtOG9k4jr2dCtH8HyROjJqKm0EsEY4KEPzGQPDW 9+HBpGdrdDaS9CjhgwgwLuEDlgG3Z5UkXUyOgP/zJzXj5GlXJVW/218FYmfuxE06 bPrOpNr+5w7xppFyPnaekx2MhlauB+8sCu7YH1SNOnrnkf54MD5BZCHRHprCwRIi EvDoIGiZQ8v2DbHZ5L9h0ieggmbNu8mfxQQX8GtxWh61cA6KLzWXSZyYp3r5lr4B PN8jc4ly8BbAJqYixyoIucRKNMSMBWvu5LbMPD40QGo1Hc2+mAFc4vIxlQHMvV1I qoHTKK3wB9X0HFcD4EPmfim/VQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFC9DEQu0 ZeIRgW/kgWOMTJGGE0lqMB8GA1UdIwQYMBaAFFi0345HV8r95UYvShr4cP4hRNxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQzcyQy84RUM2MTQwRUMz QUExMUVCODcwRUE5MUNDNEY5QUUwMi9XTFRmamtkWHl2M2xSaTlLR3Zod19pRkUz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dMVGZqa2RYeXYzbFJpOUtHdmh3X2lGRTNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkM3MkMvOEVDNjE0MEVDM0FBMTFFQjg3MEVBOTFDQzRGOUFFMDIvMTAxMTUwMjAw QkYyMTFFQ0IyNDJEOTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMAwEAgABMAYDBAJn86wwHwQCAAIwGQMGACQBvEBhAwYAJAG8QKEDBwAkAbxA 4wEwDQYJKoZIhvcNAQELBQADggEBADj6Dtomq2zUK/xU4w/KqylySnROkDvnTeaN 7ioxCJgPfjU4jycczkoC+We01r/2HC/IGy3Yu+E20cD0ffp7fYyiLP+x/0ByF+vL oT1UBWfiyoSTB/vPdpMKhAvs4LD/3GcMSVLhhjPW8BLbOQf7l8AvsEmBNruNQbWU 908O3VV+klaILaw/CTz0gD/F3CSW1C0K7R+eOvjpNHGKLbuiSx0sJtQoP1r13MDg 8xiAZAaCt8uu6NuJ2rio0eXN0F0D+xYq6Ci0nfHGIOEuyccXvW8UzM7WA1BJmalw KwBAqbtrcxezL7fkX1MGjE/YkOpF+MNfoMwXE3M53X3Vilm+mKc= -----END CERTIFICATE-----Generated at Mon Jun 3 04:15:05 2024 by rpki-client on console-ams.rpki-client.org