$ rpki-client -vvf rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/1A8553B831F011EAA18AC76AC4F9AE02.roa File: 1A8553B831F011EAA18AC76AC4F9AE02.roa (raw, json) Hash identifier: r3hCeoo/8rZ4yVlQzn0i2w+wVbmmd0oZgL7ngll8YYQ= Subject key identifier: B4:63:A9:52:FA:4C:33:35:AE:5A:01:BD:5E:7E:E5:CD:18:31:8E:36 Certificate issuer: /CN=A916C7B6/serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Certificate serial: 0A7B Authority key identifier: 49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/1A8553B831F011EAA18AC76AC4F9AE02.roa Signing time: Mon 04 Mar 2024 20:18:48 +0000 ROA not before: Mon 04 Mar 2024 20:18:48 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137511 IP address blocks: 103.111.68.0/24 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:18:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2683 (0xa7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C7B6/serialNumber=493D3EAFE040572841E9FAB256D0C6044CB858C8 Validity Not Before: Mar 4 20:18:48 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e62ca7-0d22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:af:90:23:79:e4:69:6a:bc:22:58:b2:e0:ff: bb:b1:b0:5b:4b:1e:9b:00:6a:f7:05:7e:de:25:8c: 77:99:d9:9c:4d:1f:c3:8c:89:33:a7:fe:79:e5:a2: d3:54:76:7c:c3:c0:ee:d7:d3:6d:e4:90:f6:d4:bf: 81:96:3e:9f:06:a8:87:94:87:97:9d:e3:90:e5:94: c9:bd:29:12:44:6b:b1:a2:fe:76:f6:5f:0f:bc:25: 86:a5:33:93:b9:36:8f:28:57:8b:95:56:37:3b:49: 3b:24:0d:f3:b7:1b:6b:a6:ef:64:90:5c:9d:3a:7d: 46:9a:68:f0:4b:92:4f:a5:b4:23:c2:3a:24:24:7a: 97:46:81:6a:59:94:fb:83:2f:8e:ba:a8:5f:44:61: 5d:fa:71:b6:e4:9d:fa:44:b1:21:22:3d:7d:96:cd: cb:d7:14:62:a5:c6:be:f0:f2:db:9a:34:29:91:21: 10:29:91:f1:00:d9:36:85:78:b8:41:fe:81:b5:47: 11:11:7e:07:8f:9e:1b:e1:cf:f1:b4:ab:25:b3:d6: 7d:39:c1:9d:ee:e9:02:de:39:2c:4c:7c:fc:01:9b: cd:10:1c:f1:e7:5d:4b:35:6b:1e:36:69:14:d4:82: 77:f5:a3:22:98:d6:a1:d9:6d:99:56:8a:30:a7:6f: 39:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:63:A9:52:FA:4C:33:35:AE:5A:01:BD:5E:7E:E5:CD:18:31:8E:36 X509v3 Authority Key Identifier: keyid:49:3D:3E:AF:E0:40:57:28:41:E9:FA:B2:56:D0:C6:04:4C:B8:58:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/ST0-r-BAVyhB6fqyVtDGBEy4WMg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ST0-r-BAVyhB6fqyVtDGBEy4WMg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C7B6/43F6A57831EE11EAAB01E767C4F9AE02/1A8553B831F011EAA18AC76AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.68.0/24 Signature Algorithm: sha256WithRSAEncryption 87:f9:80:1e:7a:10:3f:19:23:91:ea:06:4f:44:75:2b:d3:2c: 74:2d:c5:df:f8:4e:03:1a:d6:29:be:2a:0d:8d:b8:d2:66:9c: 9b:df:06:fa:5e:97:58:40:67:2d:cf:30:88:0f:84:aa:6a:cb: f9:a5:91:d2:a8:35:d4:ad:c5:3c:32:99:a2:61:e0:76:63:d4: f4:2d:c5:7c:09:ba:6e:26:e9:e7:6f:d4:21:7b:c2:8f:eb:2a: 54:37:0e:35:2b:57:91:17:ca:33:0d:d5:96:1f:41:1a:f5:66: 9a:c7:0e:15:ad:80:11:e2:25:40:71:b3:89:9c:b6:d0:a3:be: e8:77:f0:61:82:72:83:d5:10:07:7d:ee:13:45:8b:f4:48:f9: ac:83:eb:dc:99:e3:53:ef:f3:2a:5f:4e:5f:2b:59:57:63:7d: c4:88:19:a1:5f:07:13:af:2f:16:6f:ad:57:66:cf:43:17:93: 78:fc:39:2f:13:67:30:10:b1:18:20:1a:9d:71:f7:98:34:40: 52:4a:2c:ca:85:90:df:0f:2a:f1:53:25:98:1a:66:c0:0b:c0: f9:0a:2d:e0:f1:01:aa:2b:c3:7e:38:49:f3:cb:0a:61:d4:f6: d9:8b:aa:b7:85:c1:97:65:20:32:55:54:ae:15:f8:e1:1d:8f: 24:88:de:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM3QjYxMTAvBgNVBAUTKDQ5M0QzRUFGRTA0MDU3Mjg0MUU5RkFCMjU2RDBDNjA0 NENCODU4QzgwHhcNMjQwMzA0MjAxODQ4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2MmNhNy0wZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3q+QI3nkaWq8Iliy4P+7sbBbSx6bAGr3BX7eJYx3mdmcTR/DjIkzp/555aLT VHZ8w8Du19Nt5JD21L+Blj6fBqiHlIeXneOQ5ZTJvSkSRGuxov529l8PvCWGpTOT uTaPKFeLlVY3O0k7JA3ztxtrpu9kkFydOn1GmmjwS5JPpbQjwjokJHqXRoFqWZT7 gy+OuqhfRGFd+nG25J36RLEhIj19ls3L1xRipca+8PLbmjQpkSEQKZHxANk2hXi4 Qf6BtUcREX4Hj54b4c/xtKsls9Z9OcGd7ukC3jksTHz8AZvNEBzx511LNWseNmkU 1IJ39aMimNah2W2ZVoowp2857QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLRjqVL6 TDM1rloBvV5+5c0YMY42MB8GA1UdIwQYMBaAFEk9Pq/gQFcoQen6slbQxgRMuFjI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzdCNi80M0Y2QTU3ODMx RUUxMUVBQUIwMUU3NjdDNEY5QUUwMi9TVDAtci1CQVZ5aEI2ZnF5VnRER0JFeTRX TWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NUMC1yLUJBVnloQjZmcXlWdERHQkV5NFdNZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM3QjYvNDNGNkE1NzgzMUVFMTFFQUFCMDFFNzY3QzRGOUFFMDIvMUE4NTUzQjgz MUYwMTFFQUExOEFDNzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnb0QwDQYJKoZIhvcNAQELBQADggEBAIf5gB56ED8ZI5Hq Bk9EdSvTLHQtxd/4TgMa1im+Kg2NuNJmnJvfBvpel1hAZy3PMIgPhKpqy/mlkdKo NdStxTwymaJh4HZj1PQtxXwJum4m6edv1CF7wo/rKlQ3DjUrV5EXyjMN1ZYfQRr1 ZprHDhWtgBHiJUBxs4mcttCjvuh38GGCcoPVEAd97hNFi/RI+ayD69yZ41Pv8ypf Tl8rWVdjfcSIGaFfBxOvLxZvrVdmz0MXk3j8OS8TZzAQsRggGp1x95g0QFJKLMqF kN8PKvFTJZgaZsALwPkKLeDxAaorw344SfPLCmHU9tmLqreFwZdlIDJVVK4V+OEd jySI3l8= -----END CERTIFICATE-----Generated at Mon May 6 23:05:41 2024 by rpki-client on console-fra.rpki-client.org