$ rpki-client -vvf rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/67827BDC0B8511EA97C80D52C4F9AE02.roa File: 67827BDC0B8511EA97C80D52C4F9AE02.roa (raw, json) Hash identifier: O79DdWLL4vbYqu4CnmcHxTiWymbf3qPHUk3/IKc56Rk= Subject key identifier: CA:D5:58:8E:12:CD:BC:B6:D8:8E:2E:A5:9C:00:19:16:04:67:85:91 Certificate issuer: /CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Certificate serial: 0B65 Authority key identifier: 1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/67827BDC0B8511EA97C80D52C4F9AE02.roa Signing time: Wed 01 May 2024 13:30:48 +0000 ROA not before: Wed 01 May 2024 13:30:48 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 137526 IP address blocks: 103.111.224.0/22 maxlen: 22 103.111.224.0/24 maxlen: 24 103.111.225.0/24 maxlen: 24 103.111.226.0/24 maxlen: 24 103.111.227.0/24 maxlen: 24 2402:a1c0::/32 maxlen: 32 2402:a1c0::/36 maxlen: 36 2402:a1c0:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2917 (0xb65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BF33/serialNumber=1F9A20289CE9316E65B3DB724E8C73606C8F864B Validity Not Before: May 1 13:30:48 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=66324407-ecd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1f:45:ac:53:f1:5b:cb:13:13:49:66:8c:96: 75:12:37:36:f4:01:d0:31:62:4f:82:f0:43:06:42: 7f:a7:81:61:44:47:00:8a:6c:25:f7:41:70:6d:fa: 37:3f:f0:df:cc:95:1f:f1:fd:80:1d:79:6b:86:49: 7d:4b:26:46:56:63:ed:eb:cf:52:f8:36:9b:5a:85: 7e:67:b9:67:16:90:7e:1f:fd:84:f6:de:40:5a:22: 94:7c:38:b4:a8:98:8c:bf:d6:1c:85:bf:87:1b:0e: 86:9e:de:7e:18:71:13:1d:0c:69:f2:eb:8c:03:e8: 29:d8:e6:83:b6:e3:0d:22:9d:13:6c:76:2d:24:d0: d1:ab:38:2e:c0:e6:c9:80:1b:0d:82:2c:59:21:2d: b3:f2:3f:ed:08:0f:df:be:0e:31:7d:26:00:9c:3a: fe:33:72:0e:48:37:db:69:c6:2f:00:c7:45:fb:f1: 1f:4e:e5:0a:64:fc:bb:ee:99:86:4d:41:b7:75:dd: 55:6d:13:a4:46:92:a1:58:ba:b1:77:e7:34:54:fa: fe:ac:4d:71:ca:60:17:42:65:db:2c:45:b0:7e:08: 0f:4d:4e:80:58:ab:ef:1e:b1:9a:ef:98:79:81:d9: 4e:08:dc:35:1c:d9:a5:ff:14:e3:21:57:c3:f9:a9: 63:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D5:58:8E:12:CD:BC:B6:D8:8E:2E:A5:9C:00:19:16:04:67:85:91 X509v3 Authority Key Identifier: keyid:1F:9A:20:28:9C:E9:31:6E:65:B3:DB:72:4E:8C:73:60:6C:8F:86:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/H5ogKJzpMW5ls9tyToxzYGyPhks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H5ogKJzpMW5ls9tyToxzYGyPhks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BF33/460661DC0B8311EA971A864DC4F9AE02/67827BDC0B8511EA97C80D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.224.0/22 IPv6: 2402:a1c0::/32 Signature Algorithm: sha256WithRSAEncryption cc:d7:e6:9a:94:8b:01:25:79:2b:33:d5:67:23:14:61:ba:dc: 76:f4:3d:ea:78:f6:64:6e:b0:c3:54:59:54:3a:57:d0:b0:c8: 78:37:28:58:64:c7:13:d5:12:06:8f:61:93:3f:ec:ad:f6:2f: 21:be:61:94:6d:4c:06:af:77:9a:01:66:8e:2b:50:15:28:b6: 63:a0:22:6c:1f:6e:ca:f2:47:72:c1:12:08:86:6f:41:50:3d: b9:32:0e:7e:04:7b:86:6c:8f:60:c7:75:0f:e5:f4:3f:b0:e4: 49:73:16:ce:d0:36:08:33:0b:86:1c:e4:fc:be:66:2b:80:d4: 43:4d:7f:c5:b6:ce:cf:42:87:d0:f8:06:5f:d6:ff:b3:3c:cc: 5d:e0:b0:49:fb:07:82:c6:93:21:da:e3:61:2c:ab:2b:85:18: 80:ea:ec:5f:77:2f:c2:d5:2e:c1:aa:83:05:07:7a:26:44:98: 74:72:d3:12:ec:cb:9c:88:88:bd:e2:49:d1:f8:a5:61:ca:27: 3d:27:93:f9:64:40:34:f4:c7:92:bd:e3:ac:c1:c5:a8:f2:e4: bf:3b:bc:af:99:9e:ac:ab:0e:16:0f:e3:88:16:6e:ce:21:a6: db:d2:85:86:7e:94:42:fb:23:f3:8f:d6:ca:23:4f:35:5c:0e: 17:4b:0f:84 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGMzMxMTAvBgNVBAUTKDFGOUEyMDI4OUNFOTMxNkU2NUIzREI3MjRFOEM3MzYw NkM4Rjg2NEIwHhcNMjQwNTAxMTMzMDQ4WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMyNDQwNy1lY2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnR9FrFPxW8sTE0lmjJZ1Ejc29AHQMWJPgvBDBkJ/p4FhREcAimwl90Fwbfo3 P/DfzJUf8f2AHXlrhkl9SyZGVmPt689S+DabWoV+Z7lnFpB+H/2E9t5AWiKUfDi0 qJiMv9Ychb+HGw6Gnt5+GHETHQxp8uuMA+gp2OaDtuMNIp0TbHYtJNDRqzguwObJ gBsNgixZIS2z8j/tCA/fvg4xfSYAnDr+M3IOSDfbacYvAMdF+/EfTuUKZPy77pmG TUG3dd1VbROkRpKhWLqxd+c0VPr+rE1xymAXQmXbLEWwfggPTU6AWKvvHrGa75h5 gdlOCNw1HNml/xTjIVfD+aljywIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMrVWI4S zby22I4upZwAGRYEZ4WRMB8GA1UdIwQYMBaAFB+aICic6TFuZbPbck6Mc2Bsj4ZL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkYzMy80NjA2NjFEQzBC ODMxMUVBOTcxQTg2NERDNEY5QUUwMi9INW9nS0p6cE1XNWxzOXR5VG94ellHeVBo a3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0g1b2dLSnpwTVc1bHM5dHlUb3h6WUd5UGhrcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGMzMvNDYwNjYxREMwQjgzMTFFQTk3MUE4NjREQzRGOUFFMDIvNjc4MjdCREMw Qjg1MTFFQTk3QzgwRDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnb+AwDQQCAAIwBwMFACQCocAwDQYJKoZIhvcNAQELBQAD ggEBAMzX5pqUiwEleSsz1WcjFGG63Hb0Pep49mRusMNUWVQ6V9CwyHg3KFhkxxPV EgaPYZM/7K32LyG+YZRtTAavd5oBZo4rUBUotmOgImwfbsryR3LBEgiGb0FQPbky Dn4Ee4Zsj2DHdQ/l9D+w5ElzFs7QNggzC4Yc5Py+ZiuA1ENNf8W2zs9Ch9D4Bl/W /7M8zF3gsEn7B4LGkyHa42EsqyuFGIDq7F93L8LVLsGqgwUHeiZEmHRy0xLsy5yI iL3iSdH4pWHKJz0nk/lkQDT0x5K946zBxajy5L87vK+ZnqyrDhYP44gWbs4hptvS hYZ+lEL7I/OP1sojTzVcDhdLD4Q= -----END CERTIFICATE-----Generated at Sat May 18 20:48:18 2024 by rpki-client on console-fra.rpki-client.org