$ rpki-client -vvf rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/4D94E0D6545211E6A367BC68C4F9AE02.roa File: 4D94E0D6545211E6A367BC68C4F9AE02.roa (raw, json) Hash identifier: JPz0ZzHWwFSSfWmaNplpCU4QznJ0G9YXZ66T9hNIZ3c= Subject key identifier: E5:1B:09:2E:56:09:AD:ED:30:B8:2D:20:17:E0:B2:7E:A5:39:A5:C6 Certificate issuer: /CN=A915DB9F/serialNumber=7E0AA8CD2BE861701A5CA7CFB9D450D3D91827E8 Certificate serial: 1E64 Authority key identifier: 7E:0A:A8:CD:2B:E8:61:70:1A:5C:A7:CF:B9:D4:50:D3:D9:18:27:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fgqozSvoYXAaXKfPudRQ09kYJ-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/4D94E0D6545211E6A367BC68C4F9AE02.roa Signing time: Wed 22 May 2024 16:53:57 +0000 ROA not before: Wed 22 May 2024 16:53:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135290 IP address blocks: 103.212.180.0/22 maxlen: 22 103.212.180.0/24 maxlen: 24 103.212.181.0/24 maxlen: 24 103.212.182.0/24 maxlen: 24 103.212.183.0/24 maxlen: 24 2404:b680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/fgqozSvoYXAaXKfPudRQ09kYJ-g.crl rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/fgqozSvoYXAaXKfPudRQ09kYJ-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fgqozSvoYXAaXKfPudRQ09kYJ-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:02:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7780 (0x1e64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DB9F/serialNumber=7E0AA8CD2BE861701A5CA7CFB9D450D3D91827E8 Validity Not Before: May 22 16:53:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664e2325-e1aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:77:19:ce:b0:90:03:78:7d:79:b2:76:ec:7b: be:0f:ec:9b:47:09:bd:7f:92:e8:df:1b:67:26:12: b0:dc:04:55:d0:aa:1e:bc:e6:66:11:e3:8c:a6:9a: 2f:30:6b:7c:92:c2:ea:c2:9e:e9:41:88:08:29:ff: cc:10:34:36:a7:0b:b2:b3:86:72:c8:1f:c8:f4:a7: ef:b3:89:39:20:10:1d:d9:44:ec:40:7f:47:ed:21: 38:50:ad:c9:3e:83:26:a6:15:b2:60:29:01:f0:49: 13:63:65:80:7d:66:bc:4e:0a:53:09:61:75:88:64: de:49:ba:53:3f:8b:5f:f6:43:86:7f:5e:b9:79:59: 7b:7a:da:d3:7d:4c:57:17:f6:7a:66:5c:86:45:2b: ce:e9:f5:bd:66:1f:f4:9e:d3:39:40:dc:0f:2f:30: c9:1b:ae:07:09:c1:cb:f3:18:e2:74:fc:56:82:de: 96:ba:34:c2:8c:36:04:20:54:e0:23:e9:58:17:2e: a7:c8:4e:6b:89:9e:0d:6c:2e:df:a3:a0:d9:03:35: de:16:8d:63:1f:5a:19:20:66:13:c3:59:ff:ff:ab: f6:ba:8e:43:ac:43:4d:2c:96:fc:2d:eb:45:c0:9f: e0:de:e5:08:3b:ca:71:ba:fd:e9:d6:d2:a4:1e:0f: f1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:1B:09:2E:56:09:AD:ED:30:B8:2D:20:17:E0:B2:7E:A5:39:A5:C6 X509v3 Authority Key Identifier: keyid:7E:0A:A8:CD:2B:E8:61:70:1A:5C:A7:CF:B9:D4:50:D3:D9:18:27:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/fgqozSvoYXAaXKfPudRQ09kYJ-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fgqozSvoYXAaXKfPudRQ09kYJ-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DB9F/B88F4252545011E6A3A6D466C4F9AE02/4D94E0D6545211E6A367BC68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.180.0/22 IPv6: 2404:b680::/32 Signature Algorithm: sha256WithRSAEncryption 57:ec:b9:e7:cb:fb:41:2e:4b:3f:0d:fb:96:a5:96:e5:a6:61: 18:c6:1b:80:b7:87:65:1f:95:75:57:6d:bf:04:20:28:24:35: 3a:89:fa:20:dc:26:e6:00:15:4c:03:42:13:66:68:f8:95:93: 17:36:ab:0f:8d:0c:4a:7a:aa:67:cb:f0:df:cb:fb:d3:14:23: 24:8b:d7:03:53:93:4c:51:ee:72:57:33:c2:6d:13:6c:55:b2: a7:8a:c1:56:11:c6:3a:c9:48:0c:44:b8:ec:5d:6d:1e:ef:2e: 18:13:04:41:13:09:26:4c:31:ef:ef:e5:7b:bc:95:f4:d8:6c: ab:5f:f2:47:89:e6:e9:10:ce:7a:32:dc:b1:da:f7:52:7c:26: e3:0c:ec:9e:f0:0e:12:80:60:23:12:cf:3a:2a:d7:99:4a:93: 2f:ef:3e:af:c1:b3:64:57:2d:f6:73:61:e5:94:37:cf:22:65: 09:cc:cc:13:a1:13:27:68:d8:9a:a4:6a:6a:5e:a1:da:3d:f4: 4e:32:53:db:e6:49:ad:2e:bd:86:1f:00:e4:f8:fc:ae:e4:e9: 62:d6:e8:3f:ef:5f:16:31:45:eb:23:d7:92:e1:17:1f:6c:e6: 54:3a:f1:7c:c6:60:5f:b4:5c:cc:17:1d:d9:01:20:68:0e:7c: c0:01:b0:11 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICHmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURCOUYxMTAvBgNVBAUTKDdFMEFBOENEMkJFODYxNzAxQTVDQTdDRkI5RDQ1MEQz RDkxODI3RTgwHhcNMjQwNTIyMTY1MzU3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlMjMyNS1lMWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHcZzrCQA3h9ebJ27Hu+D+ybRwm9f5Lo3xtnJhKw3ARV0KoevOZmEeOMppov MGt8ksLqwp7pQYgIKf/MEDQ2pwuys4ZyyB/I9Kfvs4k5IBAd2UTsQH9H7SE4UK3J PoMmphWyYCkB8EkTY2WAfWa8TgpTCWF1iGTeSbpTP4tf9kOGf165eVl7etrTfUxX F/Z6ZlyGRSvO6fW9Zh/0ntM5QNwPLzDJG64HCcHL8xjidPxWgt6WujTCjDYEIFTg I+lYFy6nyE5riZ4NbC7fo6DZAzXeFo1jH1oZIGYTw1n//6v2uo5DrENNLJb8LetF wJ/g3uUIO8pxuv3p1tKkHg/xcQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOUbCS5W Ca3tMLgtIBfgsn6lOaXGMB8GA1UdIwQYMBaAFH4KqM0r6GFwGlynz7nUUNPZGCfo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REI5Ri9CODhGNDI1MjU0 NTAxMUU2QTNBNkQ0NjZDNEY5QUUwMi9mZ3FvelN2b1lYQWFYS2ZQdWRSUTA5a1lK LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZncW96U3ZvWVhBYVhLZlB1ZFJRMDlrWUotZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURCOUYvQjg4RjQyNTI1NDUwMTFFNkEzQTZENDY2QzRGOUFFMDIvNEQ5NEUwRDY1 NDUyMTFFNkEzNjdCQzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn1LQwDQQCAAIwBwMFACQEtoAwDQYJKoZIhvcNAQELBQAD ggEBAFfsuefL+0EuSz8N+5alluWmYRjGG4C3h2UflXVXbb8EICgkNTqJ+iDcJuYA FUwDQhNmaPiVkxc2qw+NDEp6qmfL8N/L+9MUIySL1wNTk0xR7nJXM8JtE2xVsqeK wVYRxjrJSAxEuOxdbR7vLhgTBEETCSZMMe/v5Xu8lfTYbKtf8keJ5ukQznoy3LHa 91J8JuMM7J7wDhKAYCMSzzoq15lKky/vPq/Bs2RXLfZzYeWUN88iZQnMzBOhEydo 2Jqkampeodo99E4yU9vmSa0uvYYfAOT4/K7k6WLW6D/vXxYxResj15LhFx9s5lQ6 8XzGYF+0XMwXHdkBIGgOfMABsBE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org