$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa File: 4EE9B36406C711EA84978821C4F9AE02.roa (raw, json) Hash identifier: fao/hFsNql3tmc5i90I+VfUoLICi/LhhbgNAajPLVkY= Subject key identifier: 31:95:64:99:EA:8E:CE:17:91:40:86:1A:15:B3:AF:D1:B4:6E:4F:DF Certificate issuer: /CN=A914CB9F/serialNumber=5D62DF1921DE1B598BAFB857D49D236D2E15F2B6 Certificate serial: 0B30 Authority key identifier: 5D:62:DF:19:21:DE:1B:59:8B:AF:B8:57:D4:9D:23:6D:2E:15:F2:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa Signing time: Wed 20 Dec 2023 19:27:10 +0000 ROA not before: Wed 20 Dec 2023 19:27:10 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139757 IP address blocks: 103.144.198.0/23 maxlen: 23 103.144.198.0/24 maxlen: 24 103.144.199.0/24 maxlen: 24 2001:df1:d980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.crl rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2864 (0xb30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB9F/serialNumber=5D62DF1921DE1B598BAFB857D49D236D2E15F2B6 Validity Not Before: Dec 20 19:27:10 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6583400e-7d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:25:0f:74:04:c7:24:c5:46:b4:a5:58:28: 22:5a:bd:6a:ec:ce:c7:c5:81:03:56:cd:ab:42:ee: 8e:88:c4:34:24:ea:0f:4e:3a:01:1e:aa:3f:91:83: 42:8f:e9:a3:66:f7:1a:4d:35:14:f4:68:02:09:b9: e3:4d:04:3d:ac:df:6f:9f:ad:5b:a1:72:d9:bf:56: a1:37:e2:0c:ca:11:2e:3b:8e:10:31:db:a3:81:fc: c8:39:cf:12:a3:dd:6c:7f:2c:4c:3b:9b:41:c8:b9: 1e:a0:21:fd:64:9b:0a:25:79:5e:72:2f:82:7f:a7: 8c:92:b7:cd:d5:32:ee:61:54:61:40:37:3d:d1:e5: c4:77:95:33:07:51:8e:9a:09:3b:5d:32:25:9e:80: 67:5b:73:ed:13:db:0e:09:2f:d0:00:23:0f:bc:0e: 46:e8:a7:85:b0:9d:bc:d9:fd:d4:ec:69:73:0a:d5: f7:f8:c3:74:b3:e8:11:ce:ce:94:10:f7:d3:65:26: 2d:24:34:6e:2d:a5:2f:7c:6b:50:40:69:d0:36:57: 8b:74:b7:aa:d3:92:b2:74:d5:02:74:0d:29:5e:6e: 7d:fe:00:cf:1a:30:b2:49:cc:9e:fd:db:70:ef:83: f9:95:d5:e4:1c:f9:01:80:96:7a:e8:9c:f2:7c:7d: 07:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:95:64:99:EA:8E:CE:17:91:40:86:1A:15:B3:AF:D1:B4:6E:4F:DF X509v3 Authority Key Identifier: keyid:5D:62:DF:19:21:DE:1B:59:8B:AF:B8:57:D4:9D:23:6D:2E:15:F2:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/XWLfGSHeG1mLr7hX1J0jbS4V8rY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XWLfGSHeG1mLr7hX1J0jbS4V8rY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB9F/115739FA06C611EAAD2D601CC4F9AE02/4EE9B36406C711EA84978821C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.198.0/23 IPv6: 2001:df1:d980::/48 Signature Algorithm: sha256WithRSAEncryption 1e:c1:ba:c8:6e:30:9d:a9:23:a5:ea:c1:c6:9d:6d:72:79:9f: 98:69:ce:e6:b8:2d:9e:1c:4c:dd:69:93:4d:d8:bf:10:80:47: 3c:c1:f4:34:93:48:f9:d0:11:fe:dc:8b:27:5c:fd:4c:3e:0d: 4b:a8:fc:c2:21:34:ea:fa:76:78:ed:19:51:ef:21:65:35:dc: 71:b2:40:6e:c3:31:70:6f:50:95:b2:14:55:ac:05:32:63:9c: 0b:4f:5d:de:95:d4:5e:1e:0b:8f:de:90:12:b1:a9:87:23:f0: 66:ed:31:7b:12:44:c7:0c:7c:a0:eb:2c:3b:47:cc:01:e5:6a: f7:b9:35:e5:ed:f5:56:9d:5e:8d:1a:d6:9d:3a:54:cc:d0:09: 90:b8:b3:95:24:fc:f6:75:b5:05:e9:f6:7a:1f:bc:35:01:68: ab:ea:59:ce:57:16:9d:48:86:fb:df:20:af:74:11:26:14:3f: 08:9e:de:49:b6:bf:8f:90:6d:3a:87:de:2d:5e:fa:9a:4a:94: 79:19:69:93:4e:14:2c:9f:ea:aa:4a:0a:74:c7:e9:f3:a1:cd: 7f:73:22:14:8b:77:c4:c7:e5:5b:c9:b1:97:6f:69:56:f8:83: 56:38:81:b3:d5:79:bc:b7:69:65:f8:61:09:c0:76:b7:3c:eb: 58:f7:50:ad -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCzAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENCOUYxMTAvBgNVBAUTKDVENjJERjE5MjFERTFCNTk4QkFGQjg1N0Q0OUQyMzZE MkUxNUYyQjYwHhcNMjMxMjIwMTkyNzEwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgzNDAwZS03ZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvoslD3QExyTFRrSlWCgiWr1q7M7HxYEDVs2rQu6OiMQ0JOoPTjoBHqo/kYNC j+mjZvcaTTUU9GgCCbnjTQQ9rN9vn61boXLZv1ahN+IMyhEuO44QMdujgfzIOc8S o91sfyxMO5tByLkeoCH9ZJsKJXleci+Cf6eMkrfN1TLuYVRhQDc90eXEd5UzB1GO mgk7XTIlnoBnW3PtE9sOCS/QACMPvA5G6KeFsJ282f3U7GlzCtX3+MN0s+gRzs6U EPfTZSYtJDRuLaUvfGtQQGnQNleLdLeq05KydNUCdA0pXm59/gDPGjCyScye/dtw 74P5ldXkHPkBgJZ66JzyfH0H9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDGVZJnq js4XkUCGGhWzr9G0bk/fMB8GA1UdIwQYMBaAFF1i3xkh3htZi6+4V9SdI20uFfK2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0I5Ri8xMTU3MzlGQTA2 QzYxMUVBQUQyRDYwMUNDNEY5QUUwMi9YV0xmR1NIZUcxbUxyN2hYMUowamJTNFY4 clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hXTGZHU0hlRzFtTHI3aFgxSjBqYlM0VjhyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENCOUYvMTE1NzM5RkEwNkM2MTFFQUFEMkQ2MDFDQzRGOUFFMDIvNEVFOUIzNjQw NkM3MTFFQTg0OTc4ODIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkMYwDwQCAAIwCQMHACABDfHZgDANBgkqhkiG9w0BAQsF AAOCAQEAHsG6yG4wnakjperBxp1tcnmfmGnO5rgtnhxM3WmTTdi/EIBHPMH0NJNI +dAR/tyLJ1z9TD4NS6j8wiE06vp2eO0ZUe8hZTXccbJAbsMxcG9QlbIUVawFMmOc C09d3pXUXh4Lj96QErGphyPwZu0xexJExwx8oOssO0fMAeVq97k15e31Vp1ejRrW nTpUzNAJkLizlST89nW1Ben2eh+8NQFoq+pZzlcWnUiG+98gr3QRJhQ/CJ7eSba/ j5BtOofeLV76mkqUeRlpk04ULJ/qqkoKdMfp86HNf3MiFIt3xMflW8mxl29pVviD VjiBs9V5vLdpZfhhCcB2tzzrWPdQrQ== -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org