$ rpki-client -vvf rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/DA636620A1E611EDABFD7D7FC4F9AE02.roa File: DA636620A1E611EDABFD7D7FC4F9AE02.roa (raw, json) Hash identifier: ajFDJjB1fRrWoVVqfJn90ZyGwPx5dSuGvxMug1l7aqk= Subject key identifier: 3C:2A:26:12:9D:26:FF:E3:46:9D:1C:37:24:72:53:E1:97:FC:8F:A9 Certificate issuer: /CN=A916D4BE/serialNumber=CD48FEBF26FE249E054BFD44AE94FC58C0E8E0A7 Certificate serial: 0332 Authority key identifier: CD:48:FE:BF:26:FE:24:9E:05:4B:FD:44:AE:94:FC:58:C0:E8:E0:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/DA636620A1E611EDABFD7D7FC4F9AE02.roa Signing time: Mon 29 Jan 2024 02:24:46 +0000 ROA not before: Mon 29 Jan 2024 02:24:46 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149312 IP address blocks: 103.178.188.0/23 maxlen: 23 103.178.188.0/24 maxlen: 24 103.178.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.crl rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 818 (0x332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D4BE/serialNumber=CD48FEBF26FE249E054BFD44AE94FC58C0E8E0A7 Validity Not Before: Jan 29 02:24:46 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b70c6e-e2df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:19:e2:a3:21:7b:49:17:cf:d2:a4:18:28:a0: 9b:a4:57:ed:e9:28:03:0c:55:9e:eb:1f:54:74:c2: cd:0e:fc:3a:cc:26:01:86:9d:e3:5b:aa:7a:6f:19: 99:26:f2:39:a4:55:35:02:ec:b4:75:6c:ce:7f:93: 8d:8e:10:e2:e6:7e:9a:fd:7a:28:e5:7a:c3:e4:da: 1e:cc:29:ff:80:6e:17:9f:d8:78:ea:e1:9e:df:87: da:ff:be:d3:24:69:37:6c:2e:72:d0:0e:81:49:13: e2:ac:8f:37:58:1d:85:f7:63:e9:8f:7d:b6:5e:5a: 8f:51:f6:af:89:93:25:37:2d:cd:ee:f6:24:23:d7: 75:df:ce:76:f8:66:ab:e6:a6:1e:a5:25:3e:a5:01: 57:bc:d9:c6:f5:aa:55:12:c0:77:02:d4:c1:be:8d: 15:57:1e:c8:0e:6a:ac:63:7a:46:9a:79:06:9f:e4: 66:8d:56:b3:d7:d3:5e:ff:ca:a1:79:7f:2b:a1:47: f7:57:5f:fe:ec:f9:80:33:2d:c1:1c:78:96:07:1d: 13:e1:61:32:9f:97:f2:e7:70:13:cf:26:31:47:b4: 22:14:13:ef:ee:3c:2a:0d:07:94:70:4b:ee:1e:99: 0f:d0:0c:b3:56:ef:d4:92:ff:a1:6d:44:a0:71:2b: bb:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:2A:26:12:9D:26:FF:E3:46:9D:1C:37:24:72:53:E1:97:FC:8F:A9 X509v3 Authority Key Identifier: keyid:CD:48:FE:BF:26:FE:24:9E:05:4B:FD:44:AE:94:FC:58:C0:E8:E0:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zUj-vyb-JJ4FS_1ErpT8WMDo4Kc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D4BE/6A8F71366D4E11EC9CB8CE0AC4F9AE02/DA636620A1E611EDABFD7D7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.188.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:ac:79:f9:77:26:69:46:67:20:7f:f2:19:31:8c:7d:3e:6e: 83:93:65:d9:59:1d:c2:51:4e:86:51:b1:ee:cb:e8:c7:46:35: 77:96:99:9b:93:2a:2e:d3:39:8a:26:a7:9a:4b:2b:7b:69:ad: f0:88:e6:57:e8:f9:b3:4f:d9:25:c1:c8:fb:6a:9e:cc:e9:64: 76:38:46:4e:87:be:2c:3f:c9:5b:ac:32:5f:ad:7d:97:ea:1f: e6:86:bb:9c:c6:d7:ba:ab:52:10:40:1e:ab:5f:65:3c:27:e8: c4:86:da:4a:5b:dc:07:e6:7f:e0:23:71:7a:ec:44:cc:c5:f3: 8a:3c:ff:6c:aa:2f:82:38:d8:a6:93:e2:46:f2:ac:e6:62:6d: ff:ee:3e:48:77:8a:f5:3b:91:59:88:5d:49:0c:7a:44:e9:7b: ed:7c:c4:27:a6:35:bf:a2:28:74:b4:11:95:ab:fc:ec:1a:db: 2a:1c:e3:ed:99:f0:bf:19:0a:06:c1:00:40:6c:a0:a8:03:c8: ca:7e:32:d7:24:92:33:ae:a1:7a:11:df:07:6a:db:c2:bb:a5: 88:b6:c8:24:ce:38:5b:71:6e:b4:7a:51:23:76:fb:d8:a6:36: 3c:4e:ae:75:d4:7c:0a:3f:d1:49:c9:0e:1d:79:84:fc:25:d4: db:0d:66:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQ0QkUxMTAvBgNVBAUTKENENDhGRUJGMjZGRTI0OUUwNTRCRkQ0NEFFOTRGQzU4 QzBFOEUwQTcwHhcNMjQwMTI5MDIyNDQ2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI3MGM2ZS1lMmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhnioyF7SRfP0qQYKKCbpFft6SgDDFWe6x9UdMLNDvw6zCYBhp3jW6p6bxmZ JvI5pFU1Auy0dWzOf5ONjhDi5n6a/Xoo5XrD5NoezCn/gG4Xn9h46uGe34fa/77T JGk3bC5y0A6BSRPirI83WB2F92Ppj322XlqPUfaviZMlNy3N7vYkI9d13852+Gar 5qYepSU+pQFXvNnG9apVEsB3AtTBvo0VVx7IDmqsY3pGmnkGn+RmjVaz19Ne/8qh eX8roUf3V1/+7PmAMy3BHHiWBx0T4WEyn5fy53ATzyYxR7QiFBPv7jwqDQeUcEvu HpkP0AyzVu/Ukv+hbUSgcSu7QwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDwqJhKd Jv/jRp0cNyRyU+GX/I+pMB8GA1UdIwQYMBaAFM1I/r8m/iSeBUv9RK6U/FjA6OCn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDRCRS82QThGNzEzNjZE NEUxMUVDOUNCOENFMEFDNEY5QUUwMi96VWotdnliLUpKNEZTXzFFcnBUOFdNRG80 S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pVai12eWItSko0RlNfMUVycFQ4V01EbzRLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQ0QkUvNkE4RjcxMzY2RDRFMTFFQzlDQjhDRTBBQzRGOUFFMDIvREE2MzY2MjBB MUU2MTFFREFCRkQ3RDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsrwwDQYJKoZIhvcNAQELBQADggEBAF6sefl3JmlGZyB/ 8hkxjH0+boOTZdlZHcJRToZRse7L6MdGNXeWmZuTKi7TOYomp5pLK3tprfCI5lfo +bNP2SXByPtqnszpZHY4Rk6Hviw/yVusMl+tfZfqH+aGu5zG17qrUhBAHqtfZTwn 6MSG2kpb3Afmf+AjcXrsRMzF84o8/2yqL4I42KaT4kbyrOZibf/uPkh3ivU7kVmI XUkMekTpe+18xCemNb+iKHS0EZWr/Owa2yoc4+2Z8L8ZCgbBAEBsoKgDyMp+Mtck kjOuoXoR3wdq28K7pYi2yCTOOFtxbrR6USN2+9imNjxOrnXUfAo/0UnJDh15hPwl 1NsNZt8= -----END CERTIFICATE-----Generated at Sat May 11 03:57:08 2024 by rpki-client on console-fra.rpki-client.org