$ rpki-client -vvf rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/A11D7694261F11EAA88CE128C4F9AE02.roa File: A11D7694261F11EAA88CE128C4F9AE02.roa (raw, json) Hash identifier: da31GsEC+QXAR1NhCyrS8hR1/Qp4j1jpxG9YymRCGbo= Subject key identifier: 91:10:37:51:C7:AF:68:00:9F:FC:FB:35:B0:5D:9E:23:E7:2A:54:76 Certificate issuer: /CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Certificate serial: 0A1B Authority key identifier: 3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/A11D7694261F11EAA88CE128C4F9AE02.roa Signing time: Fri 12 May 2023 21:12:03 +0000 ROA not before: Fri 12 May 2023 21:12:02 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135307 IP address blocks: 103.113.84.0/22 maxlen: 22 103.113.84.0/24 maxlen: 24 103.113.85.0/24 maxlen: 24 103.113.86.0/24 maxlen: 24 103.113.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2587 (0xa1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166F0E/serialNumber=3D45C5A33BF9DD4D3A1EDA7ED2640658E1F831FF Validity Not Before: May 12 21:12:02 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=645eaba2-9fcc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:54:d0:b6:f4:89:e9:49:c3:6f:63:49:16:b2: 5e:de:08:da:bc:be:2b:d1:15:2d:04:1d:40:8d:2e: 08:ab:1b:eb:44:51:94:6f:3d:86:57:67:13:dd:2d: fb:64:e8:eb:f7:6f:65:77:30:a2:18:43:d1:2e:aa: 05:b0:d2:12:b6:bf:46:45:e0:bb:60:7b:5b:2b:a3: ed:35:aa:dd:b8:a3:56:40:fb:bd:3a:dd:b7:86:6b: 8e:dd:b6:9c:3c:aa:69:71:21:e5:db:f1:ba:e9:8d: 90:22:22:6d:58:cc:c4:38:b1:52:09:49:ed:db:98: 82:de:08:2d:82:c5:3e:39:77:fe:8e:ae:f0:6a:d6: 5c:8b:fd:73:1e:c4:c5:bd:7b:0e:9c:1c:85:04:8a: 35:f1:f0:57:7b:be:df:1f:79:a3:01:a9:1d:cb:48: ec:98:f2:c1:68:d3:11:67:45:7c:4a:00:e9:af:46: 5c:20:6a:9a:3b:0a:72:9a:3f:24:84:5e:0f:dc:c8: 30:b5:ea:c8:c1:65:ad:9c:73:66:e9:92:0a:32:5d: f2:da:e9:67:83:b0:9e:a8:6a:1a:76:0a:92:35:17: f5:bd:7f:a8:a2:09:84:e6:ff:e2:b0:80:90:ce:0b: a8:84:80:0c:5a:3b:ee:2a:eb:e4:7e:a9:b8:52:62: d2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:10:37:51:C7:AF:68:00:9F:FC:FB:35:B0:5D:9E:23:E7:2A:54:76 X509v3 Authority Key Identifier: keyid:3D:45:C5:A3:3B:F9:DD:4D:3A:1E:DA:7E:D2:64:06:58:E1:F8:31:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/PUXFozv53U06Htp-0mQGWOH4Mf8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUXFozv53U06Htp-0mQGWOH4Mf8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166F0E/1A758B0E261F11EAAE2E8F28C4F9AE02/A11D7694261F11EAA88CE128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.113.84.0/22 Signature Algorithm: sha256WithRSAEncryption 13:1a:aa:ab:16:99:8c:17:a0:29:b0:86:9a:66:3b:22:bb:c1: a1:d1:0b:bf:d3:0c:47:ab:7e:1b:57:68:3e:88:27:63:92:1a: b3:c1:a8:17:aa:43:d2:8f:2f:5d:4c:e5:78:75:9a:7b:39:4e: 14:43:5c:67:c7:fb:b5:3f:fc:ea:17:58:13:ce:8f:7f:c6:a1: f3:99:fa:7a:c5:f0:7b:84:c1:2e:44:8c:26:26:26:27:a7:80: f1:ef:28:d8:14:03:82:c5:e0:3c:27:c3:86:53:3b:c1:48:04: 3e:33:49:a2:9b:d4:33:7d:67:b0:b1:49:ff:5c:a7:da:dd:8d: b0:3b:dc:74:51:5f:1c:0f:2d:9c:21:10:ac:63:7c:f4:77:1a: e4:b6:56:54:4d:7d:74:cf:09:8e:84:47:16:e3:13:54:cf:18: 75:21:fa:a9:dd:72:c0:bb:ed:34:16:2f:a1:18:c7:08:2d:cf: 23:3c:b4:8d:3d:fd:33:6f:5f:3e:7a:42:e3:ec:27:d3:ae:3a: 53:eb:bf:22:5a:5d:10:d4:bb:6b:c2:44:86:3c:c9:e9:b9:69: 7d:b3:98:4a:e1:05:35:c4:a4:48:3a:b4:68:13:33:2b:4e:a1: 49:f8:33:04:ae:a1:99:c2:70:9a:8e:d2:43:7d:ad:69:aa:b6: 1e:b2:4b:a6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICChswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZGMEUxMTAvBgNVBAUTKDNENDVDNUEzM0JGOURENEQzQTFFREE3RUQyNjQwNjU4 RTFGODMxRkYwHhcNMjMwNTEyMjExMjAyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDVlYWJhMi05ZmNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylTQtvSJ6UnDb2NJFrJe3gjavL4r0RUtBB1AjS4IqxvrRFGUbz2GV2cT3S37 ZOjr929ldzCiGEPRLqoFsNIStr9GReC7YHtbK6PtNarduKNWQPu9Ot23hmuO3bac PKppcSHl2/G66Y2QIiJtWMzEOLFSCUnt25iC3ggtgsU+OXf+jq7watZci/1zHsTF vXsOnByFBIo18fBXe77fH3mjAakdy0jsmPLBaNMRZ0V8SgDpr0ZcIGqaOwpymj8k hF4P3MgwterIwWWtnHNm6ZIKMl3y2ulng7CeqGoadgqSNRf1vX+oogmE5v/isICQ zguohIAMWjvuKuvkfqm4UmLSEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJEQN1HH r2gAn/z7NbBdniPnKlR2MB8GA1UdIwQYMBaAFD1FxaM7+d1NOh7aftJkBljh+DH/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkYwRS8xQTc1OEIwRTI2 MUYxMUVBQUUyRThGMjhDNEY5QUUwMi9QVVhGb3p2NTNVMDZIdHAtMG1RR1dPSDRN ZjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVWEZvenY1M1UwNkh0cC0wbVFHV09INE1mOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjZGMEUvMUE3NThCMEUyNjFGMTFFQUFFMkU4RjI4QzRGOUFFMDIvQTExRDc2OTQy NjFGMTFFQUE4OENFMTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJncVQwDQYJKoZIhvcNAQELBQADggEBABMaqqsWmYwXoCmw hppmOyK7waHRC7/TDEerfhtXaD6IJ2OSGrPBqBeqQ9KPL11M5Xh1mns5ThRDXGfH +7U//OoXWBPOj3/GofOZ+nrF8HuEwS5EjCYmJiengPHvKNgUA4LF4Dwnw4ZTO8FI BD4zSaKb1DN9Z7CxSf9cp9rdjbA73HRRXxwPLZwhEKxjfPR3GuS2VlRNfXTPCY6E RxbjE1TPGHUh+qndcsC77TQWL6EYxwgtzyM8tI09/TNvXz56QuPsJ9OuOlPrvyJa XRDUu2vCRIY8yem5aX2zmErhBTXEpEg6tGgTMytOoUn4MwSuoZnCcJqO0kN9rWmq th6yS6Y= -----END CERTIFICATE-----Generated at Tue May 14 20:52:13 2024 by rpki-client on console-fra.rpki-client.org