$ rpki-client -vvf rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/5DB3B5AA145C11EFAE012A55C4F9AE02.roa File: 5DB3B5AA145C11EFAE012A55C4F9AE02.roa (raw, json) Hash identifier: XVpTX+9SjXHhDtMpPyvxEeJ7NxK4ba3tAPiaJxOtkLM= Subject key identifier: AC:54:F8:8E:85:06:18:FC:B7:05:59:00:55:63:01:06:A3:83:F2:3C Certificate issuer: /CN=A913AD90/serialNumber=880918A8756F04931A32F4CEA341C4F23FAD50EF Certificate serial: 1B Authority key identifier: 88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/5DB3B5AA145C11EFAE012A55C4F9AE02.roa Signing time: Thu 06 Jun 2024 20:11:23 +0000 ROA not before: Thu 06 Jun 2024 20:11:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137922 IP address blocks: 103.111.180.0/23 maxlen: 23 103.111.182.0/24 maxlen: 24 103.111.183.0/24 maxlen: 24 2402:a0c0::/48 maxlen: 48 2402:a0c0:1::/48 maxlen: 48 2402:a0c0:2::/48 maxlen: 48 2402:a0c0:3::/48 maxlen: 48 2402:a0c0:4::/48 maxlen: 48 2402:a0c0:5::/48 maxlen: 48 2402:a0c0:6::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AD90 Validity Not Before: Jun 6 20:11:23 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=666217eb-3d03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:91:7c:9b:a8:b5:4d:35:93:04:72:89:54:67: ed:95:24:09:9d:ac:8a:3b:29:8a:2a:35:68:36:ba: 6c:7b:58:30:eb:dd:51:ee:39:7b:df:d3:8c:2d:13: e6:e7:57:a6:be:8f:3a:11:9e:53:e7:7b:e8:7e:bd: 46:29:2e:96:6a:a3:33:04:db:a5:89:16:b9:19:fc: 91:e8:d9:68:90:cb:e8:86:88:08:f6:1c:27:99:b9: 4d:7f:a4:d8:d1:28:1d:b5:fc:b7:b3:75:ab:6f:3a: 98:8e:95:7f:b7:98:3f:8b:e3:ba:3e:b8:b2:a5:a2: a3:bb:a8:74:b0:e0:42:82:bc:84:55:fe:4b:9d:ce: e4:44:92:8f:aa:71:11:38:68:c0:3d:1c:5b:26:d4: 93:cc:ac:9a:ff:3c:01:71:fe:7d:cc:de:93:ff:cf: 77:6e:6b:03:98:fd:9d:83:32:29:11:d6:18:49:6c: 76:b8:4e:3d:84:4d:15:12:8e:6d:0b:a7:91:24:39: 71:7c:a1:3d:1e:cb:da:a6:51:4c:e4:15:36:a0:3c: 5c:7c:ab:24:e5:65:9d:89:e8:8b:14:01:da:d1:f6: f8:c0:49:30:ce:31:87:bf:3b:11:1f:e2:98:20:19: 5c:f9:04:19:7c:c6:67:16:5b:ec:4a:bf:c0:dd:b5: 1c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:54:F8:8E:85:06:18:FC:B7:05:59:00:55:63:01:06:A3:83:F2:3C X509v3 Authority Key Identifier: keyid:88:09:18:A8:75:6F:04:93:1A:32:F4:CE:A3:41:C4:F2:3F:AD:50:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/iAkYqHVvBJMaMvTOo0HE8j-tUO8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iAkYqHVvBJMaMvTOo0HE8j-tUO8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AD90/0300C5140F0A11EF90C8A132C4F9AE02/5DB3B5AA145C11EFAE012A55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.180.0/22 IPv6: 2402:a0c0::-2402:a0c0:6:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a7:aa:b0:a9:5e:ee:a5:06:79:e7:df:c9:9e:9b:b1:92:c9:74: 71:ee:9f:74:f8:24:ed:bd:8e:38:4e:f5:12:bb:a8:d0:3d:5b: 8b:44:d4:01:38:6d:cb:cd:f6:a7:2b:a3:84:91:c6:53:81:27: 6c:c1:32:55:2e:c1:f0:fe:67:be:2f:83:a9:38:a9:2f:26:17: 2d:7e:42:2c:ad:dd:7b:ef:1a:7f:63:01:8a:bc:a1:b0:e9:95: 89:c6:cd:8a:67:da:67:a4:06:3f:54:31:70:57:76:62:fc:1c: 3d:41:d8:68:70:72:b1:30:0c:13:3e:cd:92:42:7f:b7:1d:5f: a6:d8:0f:31:15:9f:40:b7:48:22:22:a9:f5:d5:76:df:36:da: 38:3e:c2:ff:de:7e:a0:ea:ca:10:e6:9e:f3:52:2f:e7:ae:55: 9f:51:97:94:f3:01:cf:c2:13:7d:5b:06:00:43:02:43:61:c9: 0b:5a:63:ae:3f:c1:30:39:2c:00:b0:e8:30:b0:97:f5:9d:01: 00:3d:88:6a:39:1d:b6:e5:ec:8e:8e:1a:f9:89:05:b9:7f:ef: 24:f0:b5:85:00:3f:dc:54:30:d8:a7:dd:1e:b8:ff:06:7c:bc: 6f:07:ef:01:ab:d7:02:fb:22:13:ae:21:31:d1:29:76:53:80: cd:24:82:7c -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz QUQ5MDExMC8GA1UEBRMoODgwOTE4QTg3NTZGMDQ5MzFBMzJGNENFQTM0MUM0RjIz RkFENTBFRjAeFw0yNDA2MDYyMDExMjNaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjIxN2ViLTNkMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGkXybqLVNNZMEcolUZ+2VJAmdrIo7KYoqNWg2umx7WDDr3VHuOXvf04wtE+bn V6a+jzoRnlPne+h+vUYpLpZqozME26WJFrkZ/JHo2WiQy+iGiAj2HCeZuU1/pNjR KB21/LezdatvOpiOlX+3mD+L47o+uLKloqO7qHSw4EKCvIRV/kudzuREko+qcRE4 aMA9HFsm1JPMrJr/PAFx/n3M3pP/z3duawOY/Z2DMikR1hhJbHa4Tj2ETRUSjm0L p5EkOXF8oT0ey9qmUUzkFTagPFx8qyTlZZ2J6IsUAdrR9vjASTDOMYe/OxEf4pgg GVz5BBl8xmcWW+xKv8DdtRxvAgMBAAGjggKvMIICqzAdBgNVHQ4EFgQUrFT4joUG GPy3BVkAVWMBBqOD8jwwHwYDVR0jBBgwFoAUiAkYqHVvBJMaMvTOo0HE8j+tUO8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTNBRDkwLzAzMDBDNTE0MEYw QTExRUY5MEM4QTEzMkM0RjlBRTAyL2lBa1lxSFZ2QkpNYU12VE9vMEhFOGotdFVP OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaUFrWXFIVnZCSk1hTXZUT28wSEU4ai10VU84LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz QUQ5MC8wMzAwQzUxNDBGMEExMUVGOTBDOEExMzJDNEY5QUUwMi81REIzQjVBQTE0 NUMxMUVGQUUwMTJBNTVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA5BggrBgEFBQcBBwEB/wQq MCgwDAQCAAEwBgMEAmdvtDAYBAIAAjASMBADBQYkAqDAAwcAJAKgwAAGMA0GCSqG SIb3DQEBCwUAA4IBAQCnqrCpXu6lBnnn38mem7GSyXRx7p90+CTtvY44TvUSu6jQ PVuLRNQBOG3LzfanK6OEkcZTgSdswTJVLsHw/me+L4OpOKkvJhctfkIsrd177xp/ YwGKvKGw6ZWJxs2KZ9pnpAY/VDFwV3Zi/Bw9QdhocHKxMAwTPs2SQn+3HV+m2A8x FZ9At0giIqn11XbfNto4PsL/3n6g6soQ5p7zUi/nrlWfUZeU8wHPwhN9WwYAQwJD YckLWmOuP8EwOSwAsOgwsJf1nQEAPYhqOR225eyOjhr5iQW5f+8k8LWFAD/cVDDY p90euP8GfLxvB+8Bq9cC+yITriEx0Sl2U4DNJIJ8 -----END CERTIFICATE-----Generated at Sun Feb 16 22:17:24 2025 by rpki-client