$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/67827BDC0B8511EA97C80D52C4F9AE02.roa File: 67827BDC0B8511EA97C80D52C4F9AE02.roa (raw, json) Hash identifier: kiKJ+nah+NBAeLG9hlQHszkTVk53ALCt/csxQaC27/w= Subject key identifier: A1:D8:82:25:1B:4C:13:40:49:36:26:02:E4:91:D2:15:72:3D:11:64 Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0B76 Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/67827BDC0B8511EA97C80D52C4F9AE02.roa Signing time: Tue 28 May 2024 19:59:01 +0000 ROA not before: Tue 28 May 2024 19:59:01 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137526 IP address blocks: 103.111.224.0/22 maxlen: 22 103.111.224.0/24 maxlen: 24 103.111.225.0/24 maxlen: 24 103.111.226.0/24 maxlen: 24 103.111.227.0/24 maxlen: 24 2402:a1c0::/32 maxlen: 32 2402:a1c0::/36 maxlen: 36 2402:a1c0:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:36:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2934 (0xb76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: May 28 19:59:01 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66563785-a116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:53:6f:ad:77:e5:13:0a:b9:bf:a1:b2:1c:92: 21:21:b4:2e:21:96:4e:fb:50:b5:30:30:c0:aa:3b: b9:60:80:97:3c:85:e0:ae:1c:b8:7f:1e:8d:92:bb: 26:23:c1:19:00:be:5f:21:5f:27:de:15:8a:5b:07: 18:f2:39:02:d0:22:45:e2:c1:ec:f2:1a:40:84:a6: 16:21:95:ea:3d:1c:14:c6:85:a9:dc:31:f3:17:bc: 4e:a9:36:2c:bf:ac:97:b1:bd:a3:14:1c:2f:44:1f: 2a:be:1f:a5:5f:0f:6e:b5:08:68:a4:bc:a1:1a:0f: 17:7c:fa:c4:21:3d:99:0a:20:01:f9:50:8f:af:c8: 91:3a:2c:99:05:14:1e:1b:52:85:cb:a4:4b:38:df: 3d:96:81:ed:5a:f2:1a:99:c4:85:7f:f0:8c:4e:21: cc:22:7d:1c:a8:ff:00:57:74:30:fc:2c:11:4d:1e: 82:78:fb:02:aa:eb:f4:cb:29:5f:ed:90:fc:9d:bc: 9c:35:16:0a:47:c7:05:92:63:dc:93:ea:d1:c9:c3: 5b:fb:2c:29:b8:ef:ec:fd:86:cc:6e:2a:0a:eb:af: 88:a1:36:37:6b:05:7f:c5:6b:71:05:71:9e:42:be: 7a:f0:bf:49:4c:a8:e6:07:a8:7a:02:21:38:95:d8: 52:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:D8:82:25:1B:4C:13:40:49:36:26:02:E4:91:D2:15:72:3D:11:64 X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/67827BDC0B8511EA97C80D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.224.0/22 IPv6: 2402:a1c0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:5c:77:6d:53:52:d4:9d:14:29:a0:98:ae:a6:b9:65:c9:e5: 89:0c:59:05:dc:9c:64:f9:01:b6:2f:6c:41:a0:c1:13:88:08: 46:72:39:c4:ce:20:3e:9e:ab:07:1c:b4:b0:1b:fb:12:6f:42: 66:3f:fd:aa:9c:db:36:75:b1:54:51:e0:d4:91:6c:a3:20:52: 48:3f:5d:22:cc:5e:80:81:33:32:8d:99:45:b5:6e:e2:57:02: 3e:23:34:e3:17:ca:76:66:44:40:66:0c:a8:c0:e5:cd:9f:e5: 3a:07:fa:97:96:3d:27:c1:bd:58:aa:e4:3b:be:c0:21:ee:b7: 7c:65:43:83:b7:cc:ac:9d:45:9b:d3:d2:0d:36:4f:9a:38:8d: 0e:18:a1:59:16:c5:38:c1:15:8a:45:c8:19:19:2c:22:83:f3: 30:d3:1a:4a:db:22:7b:05:9e:32:45:5c:17:c3:98:c5:ee:a2: f9:28:c7:14:e7:44:6d:06:3b:29:e0:25:21:1e:f3:51:71:47: ef:f0:e0:a9:b2:35:17:7e:f7:b6:e5:cd:98:88:88:6b:09:2c: 91:20:b4:6d:d7:c1:e6:a6:8e:bd:0c:26:1e:f2:ad:7d:8b:d5: 9d:60:a5:db:f8:a3:6f:c8:9d:c0:51:d7:91:00:90:e6:46:5a: 8c:65:a2:68 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjQwNTI4MTk1OTAxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2Mzc4NS1hMTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnVNvrXflEwq5v6GyHJIhIbQuIZZO+1C1MDDAqju5YICXPIXgrhy4fx6Nkrsm I8EZAL5fIV8n3hWKWwcY8jkC0CJF4sHs8hpAhKYWIZXqPRwUxoWp3DHzF7xOqTYs v6yXsb2jFBwvRB8qvh+lXw9utQhopLyhGg8XfPrEIT2ZCiAB+VCPr8iROiyZBRQe G1KFy6RLON89loHtWvIamcSFf/CMTiHMIn0cqP8AV3Qw/CwRTR6CePsCquv0yylf 7ZD8nbycNRYKR8cFkmPck+rRycNb+ywpuO/s/YbMbioK66+IoTY3awV/xWtxBXGe Qr568L9JTKjmB6h6AiE4ldhSwwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKHYgiUb TBNASTYmAuSR0hVyPRFkMB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGMzMvNDYwNjYxREMwQjgzMTFFQTk3MUE4NjREQzRGOUFFMDIvNjc4MjdCREMw Qjg1MTFFQTk3QzgwRDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnb+AwDQQCAAIwBwMFACQCocAwDQYJKoZIhvcNAQELBQAD ggEBAG5cd21TUtSdFCmgmK6muWXJ5YkMWQXcnGT5AbYvbEGgwROICEZyOcTOID6e qwcctLAb+xJvQmY//aqc2zZ1sVRR4NSRbKMgUkg/XSLMXoCBMzKNmUW1buJXAj4j NOMXynZmREBmDKjA5c2f5ToH+peWPSfBvViq5Du+wCHut3xlQ4O3zKydRZvT0g02 T5o4jQ4YoVkWxTjBFYpFyBkZLCKD8zDTGkrbInsFnjJFXBfDmMXuovkoxxTnRG0G OyngJSEe81FxR+/w4KmyNRd+97blzZiIiGsJLJEgtG3Xweamjr0MJh7yrX2L1Z1g pdv4o2/IncBR15EAkOZGWoxlomg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org