$ rpki-client -vvf rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/01283BC2532011EBAE6D1F37C4F9AE02.roa File: 01283BC2532011EBAE6D1F37C4F9AE02.roa (raw, json) Hash identifier: +Gukm6enyIbdbaf1JuwEUsgqXGQfDTqeuMKRTtycATA= Subject key identifier: 3C:0C:AD:9A:2D:92:3A:1F:DC:18:5D:CC:81:BD:76:EA:1D:19:CE:3F Certificate issuer: /CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Certificate serial: 0694 Authority key identifier: 22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/01283BC2532011EBAE6D1F37C4F9AE02.roa Signing time: Sat 16 Nov 2024 18:37:16 +0000 ROA not before: Sat 16 Nov 2024 18:37:16 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136759 IP address blocks: 103.197.204.0/24 maxlen: 24 103.197.205.0/24 maxlen: 24 103.197.206.0/24 maxlen: 24 103.197.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C475/serialNumber=228507EFF81AA28E491E326FBD1DC3B3C90872B8 Validity Not Before: Nov 16 18:37:16 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6738e65b-031d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:fa:79:36:a1:55:00:f0:78:94:52:92:a9:4a: 40:1d:5a:80:bf:6a:f7:39:8d:d5:58:28:ef:4e:a8: 32:60:2b:4f:81:a0:56:a3:2e:58:e1:74:55:1f:83: 86:85:03:a6:1a:b5:b9:05:43:cc:cb:90:c7:69:46: 46:ac:2d:2a:57:23:f6:39:26:f1:57:19:7c:37:42: bc:f8:99:68:ac:42:f6:dc:18:b6:75:d4:ca:a7:bd: 92:c7:a0:8a:6d:9d:29:51:4e:8c:c6:e5:fe:2f:44: 20:c7:03:30:86:5b:16:20:24:98:f7:7d:62:99:33: 92:e1:3d:07:cd:de:7d:2b:24:68:6f:23:7a:76:75: cf:49:a8:5c:a9:48:d9:80:88:72:10:08:7a:96:ed: 44:3e:30:59:05:21:49:c2:c7:4a:5a:b8:fc:4f:48: 74:58:00:8b:e0:53:9f:94:4f:1d:ff:79:ac:e2:66: 6e:5a:eb:33:92:5b:5f:68:07:c0:dd:f1:3a:aa:0b: 8e:4b:eb:cd:21:3a:9a:a9:58:e2:26:5b:f3:7e:20: 3c:a4:80:c5:17:7a:5d:6e:74:b8:bb:77:c2:7d:b1: 93:f8:1e:34:22:2d:f7:c2:9b:b4:85:d4:c1:8f:36: db:d8:6b:39:15:67:36:08:8e:a3:8b:cd:ad:0a:cd: ea:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:0C:AD:9A:2D:92:3A:1F:DC:18:5D:CC:81:BD:76:EA:1D:19:CE:3F X509v3 Authority Key Identifier: keyid:22:85:07:EF:F8:1A:A2:8E:49:1E:32:6F:BD:1D:C3:B3:C9:08:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IoUH7_gaoo5JHjJvvR3Ds8kIcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C475/E022A0580E9111EAB0E87441C4F9AE02/01283BC2532011EBAE6D1F37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.204.0/22 Signature Algorithm: sha256WithRSAEncryption a2:96:8b:83:79:2b:e6:f2:ca:50:d6:95:46:83:ec:38:bb:b1: e4:12:b2:68:31:dd:80:bc:49:85:f4:8c:4b:0a:a7:71:af:d2: 3d:e5:cf:03:ae:72:cb:56:47:73:1c:7d:22:8d:d1:3c:14:fb: 49:93:c0:eb:14:57:cf:34:cc:1a:a0:ba:1e:1c:fe:36:23:5e: 78:9e:b1:40:79:e1:2f:e4:f0:0f:51:be:ac:bf:70:76:01:ec: 76:37:62:4c:53:46:66:b2:46:5f:77:e9:cc:1b:a1:22:58:95: 66:5c:0a:c3:5e:84:ca:16:f1:b1:ad:59:27:2e:93:a7:d3:ce: 4d:e4:e7:94:13:9f:05:2b:5f:dc:0c:b6:41:94:b4:fe:7a:d6: 43:ff:b9:b2:3a:69:42:3e:9a:fb:05:e2:73:c6:87:be:2d:90: 93:69:e0:6c:40:18:b7:0e:5a:9b:bf:47:53:54:52:3f:47:5d: 81:92:e0:2c:7f:1b:9b:d4:d7:40:37:ef:44:20:70:7f:6e:4b: 7d:48:f3:12:60:e2:75:3e:4e:65:d2:5d:22:d9:22:70:1e:3f: e3:83:86:18:64:67:6d:12:22:f1:d5:d0:29:6a:8c:a5:13:45: f2:25:c3:92:65:2e:51:d8:95:29:05:9c:30:ec:4a:4e:c6:17: 66:f4:2b:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEM0NzUxMTAvBgNVBAUTKDIyODUwN0VGRjgxQUEyOEU0OTFFMzI2RkJEMURDM0Iz QzkwODcyQjgwHhcNMjQxMTE2MTgzNzE2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM4ZTY1Yi0wMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnfp5NqFVAPB4lFKSqUpAHVqAv2r3OY3VWCjvTqgyYCtPgaBWoy5Y4XRVH4OG hQOmGrW5BUPMy5DHaUZGrC0qVyP2OSbxVxl8N0K8+JlorEL23Bi2ddTKp72Sx6CK bZ0pUU6MxuX+L0QgxwMwhlsWICSY931imTOS4T0Hzd59KyRobyN6dnXPSahcqUjZ gIhyEAh6lu1EPjBZBSFJwsdKWrj8T0h0WACL4FOflE8d/3ms4mZuWuszkltfaAfA 3fE6qguOS+vNITqaqVjiJlvzfiA8pIDFF3pdbnS4u3fCfbGT+B40Ii33wpu0hdTB jzbb2Gs5FWc2CI6ji82tCs3qgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDwMrZot kjof3BhdzIG9duodGc4/MB8GA1UdIwQYMBaAFCKFB+/4GqKOSR4yb70dw7PJCHK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzQ3NS9FMDIyQTA1ODBF OTExMUVBQjBFODc0NDFDNEY5QUUwMi9Jb1VIN19nYW9vNUpIakp2dlIzRHM4a0lj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lvVUg3X2dhb281SkhqSnZ2UjNEczhrSWNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEM0NzUvRTAyMkEwNTgwRTkxMTFFQUIwRTg3NDQxQzRGOUFFMDIvMDEyODNCQzI1 MzIwMTFFQkFFNkQxRjM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnxcwwDQYJKoZIhvcNAQELBQADggEBAKKWi4N5K+byylDW lUaD7Di7seQSsmgx3YC8SYX0jEsKp3Gv0j3lzwOucstWR3McfSKN0TwU+0mTwOsU V880zBqguh4c/jYjXniesUB54S/k8A9Rvqy/cHYB7HY3YkxTRmayRl936cwboSJY lWZcCsNehMoW8bGtWScuk6fTzk3k55QTnwUrX9wMtkGUtP561kP/ubI6aUI+mvsF 4nPGh74tkJNp4GxAGLcOWpu/R1NUUj9HXYGS4Cx/G5vU10A370QgcH9uS31I8xJg 4nU+TmXSXSLZInAeP+ODhhhkZ20SIvHV0ClqjKUTRfIlw5JlLlHYlSkFnDDsSk7G F2b0KxE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org