$ rpki-client -vvf rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa File: 1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa (raw, json) Hash identifier: 5BdvtyqqCFdaLTfK1ujZ27yguBshaWXCsOYoIJ+LAOo= Subject key identifier: 45:F1:E5:32:F9:DB:7B:80:D8:37:AE:A8:3D:8A:CF:B1:17:88:10:57 Certificate issuer: /CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Certificate serial: 0266 Authority key identifier: E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa Signing time: Wed 07 Feb 2024 03:15:44 +0000 ROA not before: Wed 07 Feb 2024 03:15:44 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149524 IP address blocks: 103.182.148.0/23 maxlen: 24 2001:df0:7cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 614 (0x266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C1AE/serialNumber=E768FCC8B967D6F1C881E0D49A0C4208DF07FB37 Validity Not Before: Feb 7 03:15:44 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65c2f5e0-b31a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:34:aa:d5:f3:ff:81:9b:e3:d6:7d:38:2f:de: f8:88:1d:6c:50:82:22:d0:fc:f2:c9:d0:c3:ea:6f: 76:7d:6c:56:95:35:15:84:f1:59:a9:32:4b:c8:e9: a8:03:00:62:e5:40:14:5b:6c:3d:3f:ea:d3:ab:c7: b0:8a:6a:29:76:3d:7d:f3:39:58:71:f4:8c:36:5e: c9:b8:3d:95:77:0a:e7:d0:da:6b:56:5c:c6:f1:a8: 8a:8d:c9:06:04:4f:fb:f2:f4:89:3f:d6:62:7e:28: d2:2b:2c:8d:8d:3c:df:10:65:17:9d:0d:da:69:a7: ff:03:f4:d8:1b:c3:c6:58:43:a7:a9:f7:6e:a1:25: 33:d7:c6:1a:cd:25:ab:2e:94:11:ed:3d:63:53:af: ce:65:95:6f:07:d2:00:d7:ef:a4:6b:84:a8:8d:ce: 63:28:75:ca:43:81:fe:70:c4:dc:40:e1:73:84:ba: 2b:b1:aa:f9:b1:0c:da:3b:e6:31:a1:a8:d3:70:2a: c6:62:04:97:fd:3a:36:77:f2:5e:72:33:9e:df:fe: ca:d3:c9:1f:c3:25:28:60:37:b6:58:73:4e:34:3a: f8:63:4b:74:7e:1b:b7:e7:71:9f:8e:67:10:50:c3: 72:7f:d1:79:93:e5:b8:82:1c:48:b8:d5:26:32:c7: d2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F1:E5:32:F9:DB:7B:80:D8:37:AE:A8:3D:8A:CF:B1:17:88:10:57 X509v3 Authority Key Identifier: keyid:E7:68:FC:C8:B9:67:D6:F1:C8:81:E0:D4:9A:0C:42:08:DF:07:FB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/52j8yLln1vHIgeDUmgxCCN8H-zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/52j8yLln1vHIgeDUmgxCCN8H-zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C1AE/58D992DEB67611EC8F537847C4F9AE02/1D3CD16AB67A11ECB02F1D5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.148.0/23 IPv6: 2001:df0:7cc0::/48 Signature Algorithm: sha256WithRSAEncryption 01:bc:66:9e:a4:f5:2f:ac:a3:21:fb:67:a9:32:6e:ea:5c:62: 05:db:f0:3c:1b:99:a3:c2:7f:d1:e5:3d:ca:b9:d9:9e:60:0a: 68:89:e3:54:4a:68:f9:62:fa:4c:7b:de:42:01:8e:51:27:06: 66:e1:3a:c0:4d:e6:ae:a2:4f:1f:c2:89:a8:71:5a:d6:62:b2: 7a:54:36:9d:a8:f5:31:fd:68:3f:a9:8a:f9:e5:b3:d7:cb:88: 5f:35:15:ea:06:b0:28:4b:04:88:82:60:42:77:3a:f9:43:1b: 02:c3:6a:d3:54:12:7b:c4:09:3f:e8:8a:5d:aa:65:b1:37:a1: df:2b:ac:eb:03:2c:ae:eb:e8:2d:fa:4e:2c:6a:b6:9d:d9:f1: 84:71:4d:cb:f1:97:39:f6:40:fb:f9:7d:ae:47:d6:ad:c7:ee: 28:72:90:42:c4:4b:56:48:24:21:af:fb:23:de:76:c0:02:c0: 80:cc:31:4d:3d:e3:a4:5b:13:36:23:89:b4:ad:21:b5:1b:f9: 17:57:29:b2:f5:e4:a0:20:c7:a5:f8:9e:fa:82:44:48:98:2a: 1a:1c:a3:96:ca:4e:70:7d:a2:ec:5a:01:48:af:5a:f5:cb:8d: 83:48:95:da:54:88:43:dd:7b:d9:5d:6b:ce:64:65:b9:09:95: da:2f:2f:66 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAmYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxQUUxMTAvBgNVBAUTKEU3NjhGQ0M4Qjk2N0Q2RjFDODgxRTBENDlBMEM0MjA4 REYwN0ZCMzcwHhcNMjQwMjA3MDMxNTQ0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyZjVlMC1iMzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjSq1fP/gZvj1n04L974iB1sUIIi0PzyydDD6m92fWxWlTUVhPFZqTJLyOmo AwBi5UAUW2w9P+rTq8ewimopdj198zlYcfSMNl7JuD2Vdwrn0NprVlzG8aiKjckG BE/78vSJP9ZifijSKyyNjTzfEGUXnQ3aaaf/A/TYG8PGWEOnqfduoSUz18YazSWr LpQR7T1jU6/OZZVvB9IA1++ka4Sojc5jKHXKQ4H+cMTcQOFzhLorsar5sQzaO+Yx oajTcCrGYgSX/To2d/JecjOe3/7K08kfwyUoYDe2WHNONDr4Y0t0fhu353GfjmcQ UMNyf9F5k+W4ghxIuNUmMsfS9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEXx5TL5 23uA2DeuqD2Kz7EXiBBXMB8GA1UdIwQYMBaAFOdo/Mi5Z9bxyIHg1JoMQgjfB/s3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzFBRS81OEQ5OTJERUI2 NzYxMUVDOEY1Mzc4NDdDNEY5QUUwMi81Mmo4eUxsbjF2SElnZURVbWd4Q0NOOEgt emMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyajh5TGxuMXZISWdlRFVtZ3hDQ044SC16Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMxQUUvNThEOTkyREVCNjc2MTFFQzhGNTM3ODQ3QzRGOUFFMDIvMUQzQ0QxNkFC NjdBMTFFQ0IwMkYxRDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntpQwDwQCAAIwCQMHACABDfB8wDANBgkqhkiG9w0BAQsF AAOCAQEAAbxmnqT1L6yjIftnqTJu6lxiBdvwPBuZo8J/0eU9yrnZnmAKaInjVEpo +WL6THveQgGOUScGZuE6wE3mrqJPH8KJqHFa1mKyelQ2naj1Mf1oP6mK+eWz18uI XzUV6gawKEsEiIJgQnc6+UMbAsNq01QSe8QJP+iKXaplsTeh3yus6wMsruvoLfpO LGq2ndnxhHFNy/GXOfZA+/l9rkfWrcfuKHKQQsRLVkgkIa/7I952wALAgMwxTT3j pFsTNiOJtK0htRv5F1cpsvXkoCDHpfie+oJESJgqGhyjlspOcH2i7FoBSK9a9cuN g0iV2lSIQ9172V1rzmRluQmV2i8vZg== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:35 2024 by rpki-client on console-fra.rpki-client.org