$ rpki-client -vvf rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/0299ED8A581211EE9C15B578C4F9AE02.roa File: 0299ED8A581211EE9C15B578C4F9AE02.roa (raw, json) Hash identifier: WTs+JsBLhwsVk7dpOedQtVkL/wK5SOS/nZaMAMoT8nY= Subject key identifier: E4:D2:2E:78:09:7A:C0:3B:D2:49:4E:7D:F7:02:89:8A:80:1C:24:A5 Certificate issuer: /CN=A914E6AA/serialNumber=7A78555E084445757FBCD00DDD1D74C369CBA0B0 Certificate serial: 5B Authority key identifier: 7A:78:55:5E:08:44:45:75:7F:BC:D0:0D:DD:1D:74:C3:69:CB:A0:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/0299ED8A581211EE9C15B578C4F9AE02.roa Signing time: Fri 01 Mar 2024 01:03:07 +0000 ROA not before: Fri 01 Mar 2024 01:03:07 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141459 IP address blocks: 103.160.22.0/23 maxlen: 23 103.160.22.0/24 maxlen: 24 103.160.23.0/24 maxlen: 24 2406:e1c0::/32 maxlen: 32 2406:e1c0:5::/48 maxlen: 48 2406:e1c0:200::/48 maxlen: 48 2406:e1c0:300::/48 maxlen: 48 2406:e1c0:400::/48 maxlen: 48 2406:e1c0:500::/48 maxlen: 48 2406:e1c0:600::/48 maxlen: 48 2406:e1c0:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.crl rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 28 Jun 2024 05:28:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E6AA/serialNumber=7A78555E084445757FBCD00DDD1D74C369CBA0B0 Validity Not Before: Mar 1 01:03:07 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65e1294b-bcfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3a:0f:ca:d6:e0:83:8d:ac:8a:87:13:ed:04: 2b:3a:2f:34:d5:90:ef:cd:1c:77:54:d3:f7:50:15: ae:76:9e:fa:f8:8a:b5:38:74:35:c3:d2:24:04:1a: 6b:0c:39:6c:2a:d9:b9:6f:48:56:88:71:43:07:99: bf:0e:ea:fb:9b:99:90:ee:be:70:df:79:1e:ff:0c: a3:70:10:50:44:82:2c:93:47:d5:b9:a3:4b:e6:32: 40:18:e4:a3:10:ac:fb:d0:c7:be:c4:ef:77:37:32: 19:32:1f:89:0b:47:5b:26:49:0a:1e:0c:6b:cb:d0: 92:91:2c:00:dc:7f:de:e3:4f:70:b2:f4:93:1d:3e: 58:f6:c7:c1:a1:9f:0c:7d:77:f3:30:21:93:6f:77: a3:e6:f6:b0:45:ec:5d:54:b4:4f:2a:0c:bd:0d:f4: cb:e7:46:6f:ce:fa:84:4f:ff:b0:e0:42:95:8c:f7: b8:29:36:01:82:d7:87:63:a0:a1:d6:1d:76:de:58: 5a:9a:31:40:50:50:e4:3b:62:2b:63:ad:07:2b:f4: cf:86:70:55:d7:35:45:aa:9d:fd:e2:d8:c8:4a:0a: bb:90:5c:1b:92:a4:15:d9:d0:49:7c:a1:90:01:1c: 29:f0:c6:f0:37:c6:33:f9:a9:84:fc:3c:66:8c:a2: b7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D2:2E:78:09:7A:C0:3B:D2:49:4E:7D:F7:02:89:8A:80:1C:24:A5 X509v3 Authority Key Identifier: keyid:7A:78:55:5E:08:44:45:75:7F:BC:D0:0D:DD:1D:74:C3:69:CB:A0:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/enhVXghERXV_vNAN3R10w2nLoLA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/enhVXghERXV_vNAN3R10w2nLoLA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E6AA/8EDB107EADA811EBA7C9F567C4F9AE02/0299ED8A581211EE9C15B578C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.22.0/23 IPv6: 2406:e1c0::/32 Signature Algorithm: sha256WithRSAEncryption 62:1d:19:1d:ca:82:85:2e:d7:dc:61:cf:5b:47:83:ce:6c:e0: c1:1d:f7:5c:88:f7:36:33:28:2a:83:11:86:86:1c:30:9c:63: ac:b6:b1:25:bb:a5:c1:ea:8f:be:ae:56:c7:f8:b4:94:7d:c2: f0:f1:80:4f:7b:6a:8b:0e:47:63:5d:6c:a5:b2:12:e0:be:ed: b1:29:2d:99:db:f4:46:bd:e0:ed:d7:7f:08:fa:4e:b3:fb:0d: 69:19:08:78:38:fc:ae:2d:39:fb:19:9c:d8:11:a4:a9:5f:91: fc:8a:44:9f:e4:bd:31:b0:b9:33:3b:c9:04:03:e6:92:91:4b: 94:b6:d7:75:45:54:c3:68:70:2b:ab:0c:73:b7:0e:cf:88:0c: fc:65:06:29:0a:4d:2f:26:ad:cd:7d:08:0e:05:fa:b4:b8:0f: 9b:ae:bf:b9:97:d5:bc:64:24:89:5c:16:70:19:8d:31:28:b4: 43:f5:ce:1d:16:d9:f6:60:c1:42:b8:c0:fa:38:de:f2:7e:30: 41:1d:72:1e:64:97:bb:bb:fa:86:55:b2:fc:f1:21:77:57:91: df:8f:43:0c:4a:8b:cd:6b:40:e2:06:cf:46:49:af:91:96:fe: de:f6:a3:ac:9d:0a:50:b0:7b:b2:db:bf:3d:1b:ef:ef:ca:ba: dd:5f:35:d1 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RTZBQTExMC8GA1UEBRMoN0E3ODU1NUUwODQ0NDU3NTdGQkNEMDBEREQxRDc0QzM2 OUNCQTBCMDAeFw0yNDAzMDEwMTAzMDdaFw0yNDA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZTEyOTRiLWJjZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKOg/K1uCDjayKhxPtBCs6LzTVkO/NHHdU0/dQFa52nvr4irU4dDXD0iQEGmsM OWwq2blvSFaIcUMHmb8O6vubmZDuvnDfeR7/DKNwEFBEgiyTR9W5o0vmMkAY5KMQ rPvQx77E73c3MhkyH4kLR1smSQoeDGvL0JKRLADcf97jT3Cy9JMdPlj2x8Ghnwx9 d/MwIZNvd6Pm9rBF7F1UtE8qDL0N9MvnRm/O+oRP/7DgQpWM97gpNgGC14djoKHW HXbeWFqaMUBQUOQ7YitjrQcr9M+GcFXXNUWqnf3i2MhKCruQXBuSpBXZ0El8oZAB HCnwxvA3xjP5qYT8PGaMore/AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU5NIueAl6 wDvSSU599wKJioAcJKUwHwYDVR0jBBgwFoAUenhVXghERXV/vNAN3R10w2nLoLAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRFNkFBLzhFREIxMDdFQURB ODExRUJBN0M5RjU2N0M0RjlBRTAyL2VuaFZYZ2hFUlhWX3ZOQU4zUjEwdzJuTG9M QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZW5oVlhnaEVSWFZfdk5BTjNSMTB3Mm5Mb0xBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RTZBQS84RURCMTA3RUFEQTgxMUVCQTdDOUY1NjdDNEY5QUUwMi8wMjk5RUQ4QTU4 MTIxMUVFOUMxNUI1NzhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWegFjANBAIAAjAHAwUAJAbhwDANBgkqhkiG9w0BAQsFAAOC AQEAYh0ZHcqChS7X3GHPW0eDzmzgwR33XIj3NjMoKoMRhoYcMJxjrLaxJbulweqP vq5Wx/i0lH3C8PGAT3tqiw5HY11spbIS4L7tsSktmdv0Rr3g7dd/CPpOs/sNaRkI eDj8ri05+xmc2BGkqV+R/IpEn+S9MbC5MzvJBAPmkpFLlLbXdUVUw2hwK6sMc7cO z4gM/GUGKQpNLyatzX0IDgX6tLgPm66/uZfVvGQkiVwWcBmNMSi0Q/XOHRbZ9mDB QrjA+jje8n4wQR1yHmSXu7v6hlWy/PEhd1eR349DDEqLzWtA4gbPRkmvkZb+3vaj rJ0KULB7stu/PRvv78q63V810Q== -----END CERTIFICATE-----Generated at Fri Jun 21 11:19:25 2024 by rpki-client on console-ams.rpki-client.org