$ rpki-client -vvf rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/D479653E5F2911EDB481A53EC4F9AE02.roa File: D479653E5F2911EDB481A53EC4F9AE02.roa (raw, json) Hash identifier: 0vJe1gSTz/9AM6rZDUcFgOuxx2MDx3AZXLchT0AzEH0= Subject key identifier: 9F:A0:17:64:92:A7:1C:27:74:94:C1:E4:E8:2E:78:52:9F:EB:A5:91 Certificate issuer: /CN=A913814E/serialNumber=CA3803699AD5B0906C00797A3A1E9CD95B6591B1 Certificate serial: 0132 Authority key identifier: CA:38:03:69:9A:D5:B0:90:6C:00:79:7A:3A:1E:9C:D9:5B:65:91:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/D479653E5F2911EDB481A53EC4F9AE02.roa Signing time: Fri 21 Jun 2024 04:25:50 +0000 ROA not before: Fri 21 Jun 2024 04:25:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135405 IP address blocks: 103.217.156.0/24 maxlen: 24 103.217.157.0/24 maxlen: 24 103.217.158.0/24 maxlen: 24 103.217.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.crl rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 306 (0x132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913814E/serialNumber=CA3803699AD5B0906C00797A3A1E9CD95B6591B1 Validity Not Before: Jun 21 04:25:50 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667500ce-1121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:65:dd:c0:2b:b2:96:0a:d9:58:06:9a:5e:fa: dc:a3:ce:95:e1:16:fa:1d:04:90:e7:b5:ef:34:5f: ce:03:88:f6:6a:b7:af:a7:a9:8d:22:5c:46:8f:9b: 4d:6b:d0:49:f6:56:1b:da:74:48:cd:16:4e:f3:66: eb:fe:9d:6c:fc:09:f4:dd:3b:2c:d9:42:17:3e:ca: 62:fe:32:03:9e:f8:f3:9c:78:c8:9c:2d:fd:cc:6c: e3:84:34:c2:8b:14:69:88:e4:4a:88:5b:a1:05:db: 38:9c:c0:35:dc:1a:4d:24:b4:d6:cd:dd:e8:17:cc: c0:24:dd:ad:ce:30:1c:42:81:2f:b2:fa:76:81:93: f5:4a:71:d4:46:d8:ed:82:cf:d2:4e:1f:9b:8a:9a: 62:29:94:ae:b2:5b:23:a8:10:b0:52:c3:cb:27:8a: ae:74:8a:fe:8a:ba:bf:0e:81:81:c5:d4:f6:65:e0: 0f:fd:77:1a:59:c4:9b:f5:01:94:4b:fa:f4:11:94: 74:bf:bc:12:59:55:fb:67:44:97:f5:8d:ac:d0:14: 16:23:34:02:71:aa:aa:74:db:71:0e:fe:3f:81:57: 21:7d:0e:9d:73:0f:10:8e:92:19:8c:3c:74:f9:42: 29:f2:ac:47:ff:34:2e:02:bd:5e:66:b3:60:72:8b: c1:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A0:17:64:92:A7:1C:27:74:94:C1:E4:E8:2E:78:52:9F:EB:A5:91 X509v3 Authority Key Identifier: keyid:CA:38:03:69:9A:D5:B0:90:6C:00:79:7A:3A:1E:9C:D9:5B:65:91:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjgDaZrVsJBsAHl6Oh6c2VtlkbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913814E/80C95AAE5F2711EDB1D5FA3DC4F9AE02/D479653E5F2911EDB481A53EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.217.156.0/22 Signature Algorithm: sha256WithRSAEncryption 94:82:7e:ae:6a:07:29:15:ca:bb:7f:ba:c8:90:31:b5:5b:1b: cf:ed:97:20:e5:61:70:e6:ee:a1:64:3e:a0:56:23:1e:8f:62: c1:e4:20:38:06:56:1c:7b:06:e3:69:1b:97:67:83:d6:ac:13: b6:e6:aa:87:e4:58:ab:87:1e:c7:c9:a0:05:b8:19:a6:b6:e5: e1:39:af:c0:73:11:e8:64:b3:27:3d:ba:c0:d1:09:31:65:8f: 0a:c8:c1:fc:48:06:07:bb:13:58:53:1a:41:3e:7b:9e:f0:ed: bd:db:86:41:4c:d9:f4:47:2d:d4:75:9d:18:b9:b6:69:20:08: 7d:af:2d:2f:40:55:d8:8e:d4:53:ff:6c:4d:bd:be:fa:92:0a: 0c:e8:e4:4c:cd:5d:da:40:a0:e0:b8:4e:24:66:d9:c6:b7:29: ff:82:5c:77:62:a3:de:69:4f:ae:b9:eb:d9:89:74:37:33:2f: 00:17:75:ef:43:c7:14:77:03:c9:5f:ab:76:1a:7c:14:91:cf: 50:fb:ee:dd:93:0d:7f:a8:94:c6:90:f8:e3:2d:66:da:d0:7f: 9d:06:b1:d2:f2:03:26:2b:c7:4b:c9:ed:0f:49:c2:30:f6:c6: 12:69:d2:b0:76:c1:69:94:5e:92:27:ac:d5:e0:0b:65:5f:f7: ef:4e:8a:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgxNEUxMTAvBgNVBAUTKENBMzgwMzY5OUFENUIwOTA2QzAwNzk3QTNBMUU5Q0Q5 NUI2NTkxQjEwHhcNMjQwNjIxMDQyNTUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc1MDBjZS0xMTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv2XdwCuylgrZWAaaXvrco86V4Rb6HQSQ57XvNF/OA4j2arevp6mNIlxGj5tN a9BJ9lYb2nRIzRZO82br/p1s/An03Tss2UIXPspi/jIDnvjznHjInC39zGzjhDTC ixRpiORKiFuhBds4nMA13BpNJLTWzd3oF8zAJN2tzjAcQoEvsvp2gZP1SnHURtjt gs/STh+bippiKZSuslsjqBCwUsPLJ4qudIr+irq/DoGBxdT2ZeAP/XcaWcSb9QGU S/r0EZR0v7wSWVX7Z0SX9Y2s0BQWIzQCcaqqdNtxDv4/gVchfQ6dcw8QjpIZjDx0 +UIp8qxH/zQuAr1eZrNgcovBNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ+gF2SS pxwndJTB5OgueFKf66WRMB8GA1UdIwQYMBaAFMo4A2ma1bCQbAB5ejoenNlbZZGx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODE0RS84MEM5NUFBRTVG MjcxMUVEQjFENUZBM0RDNEY5QUUwMi95amdEYVpyVnNKQnNBSGw2T2g2YzJWdGxr YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lqZ0RhWnJWc0pCc0FIbDZPaDZjMlZ0bGtiRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgxNEUvODBDOTVBQUU1RjI3MTFFREIxRDVGQTNEQzRGOUFFMDIvRDQ3OTY1M0U1 RjI5MTFFREI0ODFBNTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn2ZwwDQYJKoZIhvcNAQELBQADggEBAJSCfq5qBykVyrt/ usiQMbVbG8/tlyDlYXDm7qFkPqBWIx6PYsHkIDgGVhx7BuNpG5dng9asE7bmqofk WKuHHsfJoAW4Gaa25eE5r8BzEehksyc9usDRCTFljwrIwfxIBge7E1hTGkE+e57w 7b3bhkFM2fRHLdR1nRi5tmkgCH2vLS9AVdiO1FP/bE29vvqSCgzo5EzNXdpAoOC4 TiRm2ca3Kf+CXHdio95pT66569mJdDczLwAXde9DxxR3A8lfq3YafBSRz1D77t2T DX+olMaQ+OMtZtrQf50GsdLyAyYrx0vJ7Q9JwjD2xhJp0rB2wWmUXpInrNXgC2Vf 9+9Oihc= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:53 2024 by rpki-client on console-fra.rpki-client.org