$ rpki-client -vvf rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/D4378BBA268311EE9BB21413C4F9AE02.roa File: D4378BBA268311EE9BB21413C4F9AE02.roa (raw, json) Hash identifier: guRHulQ79eKGppCfvXYdXlfGmXx+Z/+UibJ9rm18aDA= Subject key identifier: D3:71:6C:C5:79:57:A6:17:EC:1B:40:57:96:C7:9E:A8:B8:06:A3:07 Certificate issuer: /CN=A913DE7A/serialNumber=BFD41FCFD2561B53AC4CD2F83D11B0470A66A055 Certificate serial: 08FD Authority key identifier: BF:D4:1F:CF:D2:56:1B:53:AC:4C:D2:F8:3D:11:B0:47:0A:66:A0:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v9Qfz9JWG1OsTNL4PRGwRwpmoFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/D4378BBA268311EE9BB21413C4F9AE02.roa Signing time: Wed 20 Mar 2024 21:30:11 +0000 ROA not before: Wed 20 Mar 2024 21:30:11 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 141342 IP address blocks: 103.82.252.0/24 maxlen: 24 103.82.253.0/24 maxlen: 24 103.82.254.0/24 maxlen: 24 103.82.255.0/24 maxlen: 24 125.62.88.0/24 maxlen: 24 125.62.89.0/24 maxlen: 24 125.62.90.0/24 maxlen: 24 125.62.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/v9Qfz9JWG1OsTNL4PRGwRwpmoFU.crl rsync://rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/v9Qfz9JWG1OsTNL4PRGwRwpmoFU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v9Qfz9JWG1OsTNL4PRGwRwpmoFU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2301 (0x8fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913DE7A/serialNumber=BFD41FCFD2561B53AC4CD2F83D11B0470A66A055 Validity Not Before: Mar 20 21:30:11 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65fb5563-edda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0c:69:98:a5:c7:fb:65:7e:7b:a6:06:a8:46: dd:0b:8d:cd:ab:01:43:80:f6:f2:67:b7:be:aa:eb: e4:61:03:33:5f:e6:b9:8e:b9:e4:de:73:fc:f7:6a: 45:70:0a:2f:5b:f9:a8:fc:3f:7c:03:37:c5:f2:b3: 17:8a:a7:98:74:ce:e1:bd:61:66:3d:8f:c3:42:13: b4:f1:9c:e1:f9:c0:89:27:3e:dc:91:67:d7:d8:44: 92:e3:a9:5b:9d:71:95:22:5f:f2:19:51:d7:09:2c: 48:fb:44:87:d0:8b:59:c7:48:a2:0a:3f:ea:41:6d: bb:c5:8f:bc:15:39:cd:b7:36:36:fe:9a:37:2f:da: 80:60:27:e0:a2:0f:77:d0:c7:f0:f5:e8:58:81:2f: fe:35:72:b8:06:92:d3:79:ef:99:b4:18:ec:4d:84: da:7e:90:f4:f8:2b:c8:7d:cf:eb:a9:cd:3c:c1:7d: 2e:36:e3:a1:32:b7:21:c4:99:93:eb:7e:69:3e:a2: fa:19:c4:83:7e:4a:0d:f8:c4:c3:08:62:5f:18:f1: 3c:a0:5c:cb:1d:25:af:ca:b1:c0:2f:7b:20:c5:7d: 3c:3c:9d:a8:95:99:dd:5b:39:cd:f5:56:c7:d3:7c: df:dc:97:6c:06:f1:4f:f0:54:1b:61:51:5a:8a:84: fa:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:71:6C:C5:79:57:A6:17:EC:1B:40:57:96:C7:9E:A8:B8:06:A3:07 X509v3 Authority Key Identifier: keyid:BF:D4:1F:CF:D2:56:1B:53:AC:4C:D2:F8:3D:11:B0:47:0A:66:A0:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/v9Qfz9JWG1OsTNL4PRGwRwpmoFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v9Qfz9JWG1OsTNL4PRGwRwpmoFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913DE7A/BC71ECC68D4511EA87FAF858C4F9AE02/D4378BBA268311EE9BB21413C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.252.0/22 125.62.88.0/22 Signature Algorithm: sha256WithRSAEncryption 46:40:c3:3a:14:4d:cb:47:f5:3f:d7:9e:e6:85:ac:fb:a3:64: 46:87:1b:d5:d4:3d:b1:d9:b6:1e:cd:5d:cd:3c:52:43:f6:5c: 0a:68:fa:d7:b3:e3:25:45:ef:a8:70:be:31:31:a5:00:6c:e8: 71:ec:c4:a5:a0:bd:be:39:50:53:a5:07:83:f4:fc:da:a1:fe: 9f:01:31:59:5b:c1:7b:41:06:03:d2:ec:a5:41:b8:fa:f1:9f: 12:69:e4:dd:25:58:fe:63:ca:53:4e:4e:8f:e8:4a:8f:60:fa: c3:6f:3d:9e:a7:b9:ad:90:cc:85:b8:2a:04:6b:8a:f6:cd:ad: 1a:57:72:a5:77:6d:a8:09:5e:3a:c7:76:4c:2a:09:06:01:a5: c9:84:8c:f2:30:a6:7f:5c:92:31:db:a6:d5:07:b8:51:2a:a3: c0:42:9e:cb:51:ad:f1:e4:3b:b9:22:1f:f8:46:a2:c2:58:6b: ad:13:95:85:b8:b1:5d:66:55:cc:a2:eb:6b:8a:09:41:90:2a: b0:b1:4d:91:b2:76:0e:11:a3:11:b8:69:bc:44:e9:73:f2:fa: b8:ef:c7:36:f8:52:4e:d6:55:8f:3c:76:d6:0f:fe:76:95:6c: 3b:5b:f6:83:02:7f:9e:6c:5d:66:dd:00:d1:a4:04:f8:53:8b: 85:9f:d9:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0RFN0ExMTAvBgNVBAUTKEJGRDQxRkNGRDI1NjFCNTNBQzRDRDJGODNEMTFCMDQ3 MEE2NkEwNTUwHhcNMjQwMzIwMjEzMDExWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiNTU2My1lZGRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwQxpmKXH+2V+e6YGqEbdC43NqwFDgPbyZ7e+quvkYQMzX+a5jrnk3nP892pF cAovW/mo/D98AzfF8rMXiqeYdM7hvWFmPY/DQhO08Zzh+cCJJz7ckWfX2ESS46lb nXGVIl/yGVHXCSxI+0SH0ItZx0iiCj/qQW27xY+8FTnNtzY2/po3L9qAYCfgog93 0Mfw9ehYgS/+NXK4BpLTee+ZtBjsTYTafpD0+CvIfc/rqc08wX0uNuOhMrchxJmT 635pPqL6GcSDfkoN+MTDCGJfGPE8oFzLHSWvyrHAL3sgxX08PJ2olZndWznN9VbH 03zf3JdsBvFP8FQbYVFaioT6ZQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNNxbMV5 V6YX7BtAV5bHnqi4BqMHMB8GA1UdIwQYMBaAFL/UH8/SVhtTrEzS+D0RsEcKZqBV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzREU3QS9CQzcxRUNDNjhE NDUxMUVBODdGQUY4NThDNEY5QUUwMi92OVFmejlKV0cxT3NUTkw0UFJHd1J3cG1v RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Y5UWZ6OUpXRzFPc1ROTDRQUkd3UndwbW9GVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0RFN0EvQkM3MUVDQzY4RDQ1MTFFQTg3RkFGODU4QzRGOUFFMDIvRDQzNzhCQkEy NjgzMTFFRTlCQjIxNDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUvwDBAJ9PlgwDQYJKoZIhvcNAQELBQADggEBAEZAwzoU TctH9T/XnuaFrPujZEaHG9XUPbHZth7NXc08UkP2XApo+tez4yVF76hwvjExpQBs 6HHsxKWgvb45UFOlB4P0/Nqh/p8BMVlbwXtBBgPS7KVBuPrxnxJp5N0lWP5jylNO To/oSo9g+sNvPZ6nua2QzIW4KgRrivbNrRpXcqV3bagJXjrHdkwqCQYBpcmEjPIw pn9ckjHbptUHuFEqo8BCnstRrfHkO7kiH/hGosJYa60TlYW4sV1mVcyi62uKCUGQ KrCxTZGydg4RoxG4abxE6XPy+rjvxzb4Uk7WVY88dtYP/naVbDtb9oMCf55sXWbd ANGkBPhTi4Wf2Rg= -----END CERTIFICATE-----Generated at Thu May 16 22:23:36 2024 by rpki-client on console-fra.rpki-client.org