$ rpki-client -vvf rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/CE7287309A9811EBAC99AD22C4F9AE02.roa File: CE7287309A9811EBAC99AD22C4F9AE02.roa (raw, json) Hash identifier: XM2YRdbpMN+vT3G5iQaKqor0OKcknqEQagxV66SaQiQ= Subject key identifier: FB:09:2A:D9:B3:20:F2:A4:12:67:08:C5:04:04:DE:A8:7D:E9:BA:F9 Certificate issuer: /CN=A913E7CA/serialNumber=FFB503F202320CD86973AFE61A16FBB5C6F28D64 Certificate serial: 055C Authority key identifier: FF:B5:03:F2:02:32:0C:D8:69:73:AF:E6:1A:16:FB:B5:C6:F2:8D:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/CE7287309A9811EBAC99AD22C4F9AE02.roa Signing time: Fri 05 Apr 2024 01:04:14 +0000 ROA not before: Fri 05 Apr 2024 01:04:14 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141773 IP address blocks: 103.163.210.0/23 maxlen: 23 103.163.210.0/24 maxlen: 24 103.163.211.0/24 maxlen: 24 2001:df6:2780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.crl rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1372 (0x55c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E7CA/serialNumber=FFB503F202320CD86973AFE61A16FBB5C6F28D64 Validity Not Before: Apr 5 01:04:14 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f4e0e-fa02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fe:85:31:e2:83:97:3b:51:ad:f2:e9:79:b4: 2a:c6:30:73:d0:81:96:6d:f9:3b:09:c8:ce:33:37: fe:77:d3:f7:fe:04:d9:e8:95:eb:cd:ad:c7:49:82: 8e:98:1f:aa:4b:1c:58:c0:03:38:f5:ef:45:64:63: 27:e0:65:f5:b5:46:f6:c1:a6:46:aa:01:04:74:27: d6:92:f2:71:d7:a3:92:ad:25:e4:53:41:ec:ad:2a: 38:2b:d1:fa:f1:c3:34:c8:df:fe:71:5c:89:f6:36: f2:50:88:e6:e1:b6:89:4d:a9:5e:1f:09:f8:be:e3: 53:60:25:f5:8a:a3:48:a8:3b:4e:2e:74:3c:30:4b: c3:59:53:8a:b9:29:69:7a:50:d9:f2:04:da:0b:9d: 10:37:78:4f:16:1f:e6:3a:82:f1:14:1f:7f:3f:2e: a2:be:aa:25:21:ae:58:04:a9:76:35:04:4d:23:ce: 05:74:2e:d0:f1:21:53:b1:d5:e3:71:6b:48:ca:1c: 5b:06:63:ba:8d:58:4c:3a:ad:97:28:b4:d5:97:b2: 19:8b:5d:be:95:74:76:8c:24:2d:df:98:57:6b:56: d3:ff:6e:55:38:dc:7b:8c:c5:86:d1:ee:1a:e5:9a: 46:4a:e1:89:c7:80:68:a7:43:ab:41:c0:08:14:c3: d4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:09:2A:D9:B3:20:F2:A4:12:67:08:C5:04:04:DE:A8:7D:E9:BA:F9 X509v3 Authority Key Identifier: keyid:FF:B5:03:F2:02:32:0C:D8:69:73:AF:E6:1A:16:FB:B5:C6:F2:8D:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_7UD8gIyDNhpc6_mGhb7tcbyjWQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E7CA/003DE0609A9011EB89797049C4F9AE02/CE7287309A9811EBAC99AD22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.210.0/23 IPv6: 2001:df6:2780::/48 Signature Algorithm: sha256WithRSAEncryption 93:df:bd:97:0f:fe:d8:2f:45:e6:09:6c:bc:18:73:10:63:fc: 5e:70:da:25:f5:bf:25:4b:bb:37:d9:e6:41:49:ed:d2:86:f9: a5:76:01:a7:38:66:4e:30:7a:51:5a:5f:17:7d:43:82:9c:12: e7:93:09:90:eb:95:9f:4e:31:07:00:3c:94:8d:f3:d3:55:85: 42:6b:bf:82:ac:f7:14:5b:de:86:32:ee:fb:51:64:af:aa:96: 6e:42:19:a3:c4:20:5f:8a:08:a4:d8:95:65:9c:b8:8f:7f:e2: 97:60:cd:e0:e3:f2:f2:47:a0:d4:c9:68:56:27:b8:fa:67:a5: c5:65:30:ac:d4:a9:88:51:fd:f6:f8:41:35:44:1e:17:11:89: cf:d4:d9:37:39:bd:df:fa:64:fc:27:ec:d5:a9:62:37:43:fe: 0a:1e:b9:23:ee:39:7e:91:d2:67:ce:bd:37:41:79:a7:4c:e1: ba:d4:73:d1:ec:cd:37:3e:ba:f5:b2:65:12:26:30:a3:b2:b2: d7:4f:30:3a:39:21:b3:e6:7f:cf:2d:42:d8:08:91:76:1c:d9: 34:4e:57:f8:a0:48:ec:fe:76:7a:57:37:09:88:e9:82:f9:36: 9b:24:e6:4a:7d:b0:04:db:47:26:55:34:23:6f:72:e8:26:fa: cb:ca:50:cd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U3Q0ExMTAvBgNVBAUTKEZGQjUwM0YyMDIzMjBDRDg2OTczQUZFNjFBMTZGQkI1 QzZGMjhENjQwHhcNMjQwNDA1MDEwNDE0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmNGUwZS1mYTAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl/6FMeKDlztRrfLpebQqxjBz0IGWbfk7CcjOMzf+d9P3/gTZ6JXrza3HSYKO mB+qSxxYwAM49e9FZGMn4GX1tUb2waZGqgEEdCfWkvJx16OSrSXkU0HsrSo4K9H6 8cM0yN/+cVyJ9jbyUIjm4baJTaleHwn4vuNTYCX1iqNIqDtOLnQ8MEvDWVOKuSlp elDZ8gTaC50QN3hPFh/mOoLxFB9/Py6ivqolIa5YBKl2NQRNI84FdC7Q8SFTsdXj cWtIyhxbBmO6jVhMOq2XKLTVl7IZi12+lXR2jCQt35hXa1bT/25VONx7jMWG0e4a 5ZpGSuGJx4Bop0OrQcAIFMPUyQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPsJKtmz IPKkEmcIxQQE3qh96br5MB8GA1UdIwQYMBaAFP+1A/ICMgzYaXOv5hoW+7XG8o1k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTdDQS8wMDNERTA2MDlB OTAxMUVCODk3OTcwNDlDNEY5QUUwMi9fN1VEOGdJeUROaHBjNl9tR2hiN3RjYnlq V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL183VUQ4Z0l5RE5ocGM2X21HaGI3dGNieWpXUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U3Q0EvMDAzREUwNjA5QTkwMTFFQjg5Nzk3MDQ5QzRGOUFFMDIvQ0U3Mjg3MzA5 QTk4MTFFQkFDOTlBRDIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFno9IwDwQCAAIwCQMHACABDfYngDANBgkqhkiG9w0BAQsF AAOCAQEAk9+9lw/+2C9F5glsvBhzEGP8XnDaJfW/JUu7N9nmQUnt0ob5pXYBpzhm TjB6UVpfF31DgpwS55MJkOuVn04xBwA8lI3z01WFQmu/gqz3FFvehjLu+1Fkr6qW bkIZo8QgX4oIpNiVZZy4j3/il2DN4OPy8keg1MloVie4+melxWUwrNSpiFH99vhB NUQeFxGJz9TZNzm93/pk/Cfs1aliN0P+Ch65I+45fpHSZ869N0F5p0zhutRz0ezN Nz669bJlEiYwo7Ky108wOjkhs+Z/zy1C2AiRdhzZNE5X+KBI7P52elc3CYjpgvk2 myTmSn2wBNtHJlU0I29y6Cb6y8pQzQ== -----END CERTIFICATE-----Generated at Fri May 17 01:47:17 2024 by rpki-client on console-fra.rpki-client.org