$ rpki-client -vvf rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/18CA7386E35511EDA63D5182C4F9AE02.roa File: 18CA7386E35511EDA63D5182C4F9AE02.roa (raw, json) Hash identifier: jUh9HWgqHcHUh3GM/0jd6GB19NzGhJzgRvV+zQaL17o= Subject key identifier: ED:8A:91:32:19:11:C4:58:42:E2:FB:2E:3F:A4:71:0C:AE:35:4A:DB Certificate issuer: /CN=A912EDB7/serialNumber=93159C9B6133F4806FBB28C6225E943963A6B001 Certificate serial: 0B58 Authority key identifier: 93:15:9C:9B:61:33:F4:80:6F:BB:28:C6:22:5E:94:39:63:A6:B0:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/18CA7386E35511EDA63D5182C4F9AE02.roa Signing time: Tue 12 Dec 2023 19:07:12 +0000 ROA not before: Tue 12 Dec 2023 19:07:12 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134437 IP address blocks: 103.77.60.0/22 maxlen: 22 103.77.60.0/24 maxlen: 24 103.77.61.0/24 maxlen: 24 103.77.62.0/24 maxlen: 24 103.77.63.0/24 maxlen: 24 2407:8a80::/32 maxlen: 32 2407:8a80::/48 maxlen: 48 2407:8a80:1::/48 maxlen: 48 2407:8a80:2::/48 maxlen: 48 2407:8a80:3::/48 maxlen: 48 2407:8a80:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2904 (0xb58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912EDB7/serialNumber=93159C9B6133F4806FBB28C6225E943963A6B001 Validity Not Before: Dec 12 19:07:12 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6578af60-dd68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9b:ee:30:e1:a2:c9:8b:68:28:e0:7e:19:12: f3:fa:f1:28:0b:d6:5f:df:96:a3:08:92:4d:d9:1d: 51:6a:a3:7c:65:9b:a9:8e:e7:e9:08:03:08:31:6d: fd:47:22:95:1e:e3:03:b5:ab:b5:77:55:7c:6b:c6: 27:47:a9:bb:ea:11:db:b7:c3:37:4f:2f:db:54:b1: 89:b4:45:96:49:e9:cc:bb:38:fc:60:e2:86:70:76: ec:2f:2c:f3:6a:c8:da:13:f5:9d:77:0e:bc:97:1d: cd:b4:86:24:ac:35:bd:bf:d0:3a:90:31:15:a7:33: 7b:11:b2:d2:c2:6e:e6:da:1b:fa:14:24:86:fd:79: f5:1f:09:82:01:22:fe:68:f2:6b:b4:01:7a:da:da: 8e:ff:42:0b:06:b4:4f:6b:df:69:6f:8a:fc:6a:ab: bd:a9:e4:a5:94:f7:77:0d:1d:a3:41:53:87:fb:a2: 15:29:b8:b3:c6:76:7f:ab:60:45:bb:3c:83:4f:14: af:d7:be:4c:27:76:e0:80:61:de:da:7b:eb:b8:d3: b8:53:44:73:6d:e5:42:f4:bd:f7:93:82:0e:24:3d: 3a:c0:36:60:25:f4:4e:06:5e:51:8a:7a:1a:86:9f: 93:58:b7:8a:82:ec:f9:2c:48:aa:5c:4a:21:d8:d6: 06:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:8A:91:32:19:11:C4:58:42:E2:FB:2E:3F:A4:71:0C:AE:35:4A:DB X509v3 Authority Key Identifier: keyid:93:15:9C:9B:61:33:F4:80:6F:BB:28:C6:22:5E:94:39:63:A6:B0:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kxWcm2Ez9IBvuyjGIl6UOWOmsAE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912EDB7/46162ADAFED211E987FFC217C4F9AE02/18CA7386E35511EDA63D5182C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.60.0/22 IPv6: 2407:8a80::/32 Signature Algorithm: sha256WithRSAEncryption 20:54:69:83:37:a3:fe:75:7a:12:e5:13:6f:30:fa:bf:ca:3d: 2c:ca:08:80:7f:1b:cf:dc:5d:51:ed:fd:3e:a2:49:21:2e:22: 09:27:7e:84:63:c5:6c:ff:1d:33:da:b0:40:4c:d8:41:5b:b3: dd:c4:fc:9a:d1:0c:31:c1:4a:ab:15:95:a1:3a:7d:e3:df:23: ef:f4:60:24:df:fd:5b:9f:4f:2e:31:47:45:1f:48:aa:a3:61: 85:4e:a6:cc:1f:52:c1:8e:79:53:d4:8a:82:4f:40:d1:6c:b7: 8c:0a:e2:64:3c:46:67:66:81:45:d2:70:be:60:ec:2c:82:66: 11:9b:64:6f:ba:b7:89:a1:71:00:b2:2c:0f:ea:89:92:14:1f: 30:75:c7:7f:26:ea:0a:dc:72:8c:81:b6:97:43:06:d9:eb:c2: 41:a8:75:45:93:f0:c2:07:3c:23:de:62:f1:51:08:cd:b6:c7: bd:7c:b4:1c:41:d6:68:18:d6:31:e9:5a:2c:7b:ff:21:14:88: 0c:f4:dd:93:51:b5:d5:7c:f5:4d:a6:65:d7:fc:95:c9:55:29: 29:95:3e:a0:e8:89:54:30:15:f1:4d:32:82:08:36:ea:64:07: 1e:3c:1d:d1:68:f9:2d:03:e3:dd:f5:4c:f0:31:d6:1b:85:e9: df:ab:ad:2f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkVEQjcxMTAvBgNVBAUTKDkzMTU5QzlCNjEzM0Y0ODA2RkJCMjhDNjIyNUU5NDM5 NjNBNkIwMDEwHhcNMjMxMjEyMTkwNzEyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc4YWY2MC1kZDY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZvuMOGiyYtoKOB+GRLz+vEoC9Zf35ajCJJN2R1RaqN8ZZupjufpCAMIMW39 RyKVHuMDtau1d1V8a8YnR6m76hHbt8M3Ty/bVLGJtEWWSenMuzj8YOKGcHbsLyzz asjaE/Wddw68lx3NtIYkrDW9v9A6kDEVpzN7EbLSwm7m2hv6FCSG/Xn1HwmCASL+ aPJrtAF62tqO/0ILBrRPa99pb4r8aqu9qeSllPd3DR2jQVOH+6IVKbizxnZ/q2BF uzyDTxSv175MJ3bggGHe2nvruNO4U0RzbeVC9L33k4IOJD06wDZgJfROBl5Rinoa hp+TWLeKguz5LEiqXEoh2NYGqQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFO2KkTIZ EcRYQuL7Lj+kcQyuNUrbMB8GA1UdIwQYMBaAFJMVnJthM/SAb7soxiJelDljprAB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRURCNy80NjE2MkFEQUZF RDIxMUU5ODdGRkMyMTdDNEY5QUUwMi9reFdjbTJFejlJQnZ1eWpHSWw2VU9XT21z QUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2t4V2NtMkV6OUlCdnV5akdJbDZVT1dPbXNBRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkVEQjcvNDYxNjJBREFGRUQyMTFFOTg3RkZDMjE3QzRGOUFFMDIvMThDQTczODZF MzU1MTFFREE2M0Q1MTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnTTwwDQQCAAIwBwMFACQHioAwDQYJKoZIhvcNAQELBQAD ggEBACBUaYM3o/51ehLlE28w+r/KPSzKCIB/G8/cXVHt/T6iSSEuIgknfoRjxWz/ HTPasEBM2EFbs93E/JrRDDHBSqsVlaE6fePfI+/0YCTf/VufTy4xR0UfSKqjYYVO pswfUsGOeVPUioJPQNFst4wK4mQ8RmdmgUXScL5g7CyCZhGbZG+6t4mhcQCyLA/q iZIUHzB1x38m6grccoyBtpdDBtnrwkGodUWT8MIHPCPeYvFRCM22x718tBxB1mgY 1jHpWix7/yEUiAz03ZNRtdV89U2mZdf8lclVKSmVPqDoiVQwFfFNMoIINupkBx48 HdFo+S0D4931TPAx1huF6d+rrS8= -----END CERTIFICATE-----Generated at Thu May 16 19:49:58 2024 by rpki-client on console-fra.rpki-client.org