$ rpki-client -vvf rpki.apnic.net/member_repository/A917BEB0/18113D44615B11ECBD99D14CC4F9AE02/4AEAB70C615D11ECAC75D44DC4F9AE02.roa File: 4AEAB70C615D11ECAC75D44DC4F9AE02.roa (raw, json) Hash identifier: CiDZrwfW9mNZnFPHxUlV8BkPbgyzoUAYkRYnSbEa9sU= Subject key identifier: DD:5A:9D:37:36:D4:59:84:34:98:76:BC:75:99:1C:15:48:D8:47:CF Certificate issuer: /CN=A917BEB0/serialNumber=BBA94EA910A3F232DF9FDF2CD4E3A27A34996B70 Certificate serial: 0333 Authority key identifier: BB:A9:4E:A9:10:A3:F2:32:DF:9F:DF:2C:D4:E3:A2:7A:34:99:6B:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6lOqRCj8jLfn98s1OOiejSZa3A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BEB0/18113D44615B11ECBD99D14CC4F9AE02/4AEAB70C615D11ECAC75D44DC4F9AE02.roa Signing time: Thu 11 Jan 2024 02:24:47 +0000 ROA not before: Thu 11 Jan 2024 02:24:47 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149293 IP address blocks: 103.178.32.0/23 maxlen: 23 103.178.32.0/24 maxlen: 24 103.178.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BEB0/18113D44615B11ECBD99D14CC4F9AE02/u6lOqRCj8jLfn98s1OOiejSZa3A.crl rsync://rpki.apnic.net/member_repository/A917BEB0/18113D44615B11ECBD99D14CC4F9AE02/u6lOqRCj8jLfn98s1OOiejSZa3A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6lOqRCj8jLfn98s1OOiejSZa3A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:48:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BEB0/serialNumber=BBA94EA910A3F232DF9FDF2CD4E3A27A34996B70 Validity Not Before: Jan 11 02:24:47 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659f516f-846d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:68:0e:05:ab:ba:c0:dc:80:e0:7c:ca:76:fb: da:9c:f9:cc:09:08:59:77:c5:4a:a9:5f:54:e4:9a: 40:00:7b:79:8d:0a:21:fd:22:e7:f2:f5:7d:16:8a: 81:dc:7c:92:91:3e:b7:c9:c4:cd:0a:64:ac:92:3a: ce:b4:13:4d:ac:80:4f:f7:ee:5f:53:74:e3:12:be: 6d:34:b1:b1:09:1b:19:9d:0c:ce:70:ed:12:bf:f9: 0c:8b:7f:22:71:d7:c7:4c:47:84:6e:b3:24:b8:fd: a1:5d:2a:6b:52:a1:8e:6f:75:65:6a:56:f7:e5:d0: 80:27:ab:80:8a:71:54:4f:51:4e:db:93:1d:ef:e3: d0:ad:f9:c8:ab:16:8b:41:a7:b4:0f:e7:46:86:a6: 39:ba:78:16:8b:38:bd:66:ed:cd:66:7d:60:72:a5: 9e:78:d7:9a:dc:8c:6b:47:28:99:b0:11:d5:16:44: 27:a6:03:0b:10:d6:ca:5c:05:3e:fe:05:77:e4:97: 13:ff:9f:50:49:5f:35:c6:c1:ed:a5:b4:87:fd:28: c2:43:35:9c:ae:be:59:0a:1a:0a:0a:00:78:13:0c: 31:95:72:cb:b9:f8:f7:e7:e5:eb:cb:e6:3b:2c:04: df:4d:51:98:30:e9:9f:f6:c8:88:26:a6:cf:bf:bf: 55:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:5A:9D:37:36:D4:59:84:34:98:76:BC:75:99:1C:15:48:D8:47:CF X509v3 Authority Key Identifier: keyid:BB:A9:4E:A9:10:A3:F2:32:DF:9F:DF:2C:D4:E3:A2:7A:34:99:6B:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BEB0/18113D44615B11ECBD99D14CC4F9AE02/u6lOqRCj8jLfn98s1OOiejSZa3A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6lOqRCj8jLfn98s1OOiejSZa3A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BEB0/18113D44615B11ECBD99D14CC4F9AE02/4AEAB70C615D11ECAC75D44DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.178.32.0/23 Signature Algorithm: sha256WithRSAEncryption 98:68:fe:85:88:36:c0:cb:cb:71:19:19:26:84:86:a2:14:c2: e5:8b:ae:43:e6:8f:dc:50:dc:81:c0:ad:39:13:b2:e0:2b:12: 35:2a:35:9e:27:94:66:2b:22:66:5c:15:f0:58:5b:1c:3b:d2: 40:55:94:ea:77:39:62:fc:f4:30:c7:63:cb:8d:92:4d:01:d4: 42:66:1a:07:27:65:d3:39:e1:c6:c7:9a:b7:b4:8d:d1:82:e6: 69:88:31:54:a9:da:c8:68:37:7e:1f:2d:90:c8:a6:db:07:b7: b4:36:8f:ad:3e:e4:d6:11:cd:c2:50:27:1d:87:60:09:a8:47: 31:30:2e:21:58:71:25:5b:66:58:fe:39:fc:6c:63:12:2b:ee: fa:e7:18:5d:c7:84:f4:7d:98:cb:94:66:b1:2c:79:7e:6c:37: 09:63:2a:fe:76:f5:38:bc:af:eb:21:e6:e1:a9:92:e1:45:12: 44:4e:41:d2:ad:49:ac:90:d9:e7:ff:50:74:a9:2e:87:2e:12: d3:05:89:40:4e:15:47:aa:97:c0:c2:28:a6:0c:d5:a5:9a:25: 5b:46:22:cb:b8:c4:ac:2a:d4:03:9b:e6:1e:b1:12:b5:48:9b: 25:2f:53:3c:43:fa:b4:1d:c1:d5:27:2c:73:0b:ed:bd:37:0c: 93:a9:2d:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JFQjAxMTAvBgNVBAUTKEJCQTk0RUE5MTBBM0YyMzJERjlGREYyQ0Q0RTNBMjdB MzQ5OTZCNzAwHhcNMjQwMTExMDIyNDQ3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNTE2Zi04NDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqWgOBau6wNyA4HzKdvvanPnMCQhZd8VKqV9U5JpAAHt5jQoh/SLn8vV9FoqB 3HySkT63ycTNCmSskjrOtBNNrIBP9+5fU3TjEr5tNLGxCRsZnQzOcO0Sv/kMi38i cdfHTEeEbrMkuP2hXSprUqGOb3Vlalb35dCAJ6uAinFUT1FO25Md7+PQrfnIqxaL Qae0D+dGhqY5ungWizi9Zu3NZn1gcqWeeNea3IxrRyiZsBHVFkQnpgMLENbKXAU+ /gV35JcT/59QSV81xsHtpbSH/SjCQzWcrr5ZChoKCgB4EwwxlXLLufj35+Xry+Y7 LATfTVGYMOmf9siIJqbPv79VLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFN1anTc2 1FmENJh2vHWZHBVI2EfPMB8GA1UdIwQYMBaAFLupTqkQo/Iy35/fLNTjono0mWtw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkVCMC8xODExM0Q0NDYx NUIxMUVDQkQ5OUQxNENDNEY5QUUwMi91NmxPcVJDajhqTGZuOThzMU9PaWVqU1ph M0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U2bE9xUkNqOGpMZm45OHMxT09pZWpTWmEzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JFQjAvMTgxMTNENDQ2MTVCMTFFQ0JEOTlEMTRDQzRGOUFFMDIvNEFFQUI3MEM2 MTVEMTFFQ0FDNzVENDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsiAwDQYJKoZIhvcNAQELBQADggEBAJho/oWINsDLy3EZ GSaEhqIUwuWLrkPmj9xQ3IHArTkTsuArEjUqNZ4nlGYrImZcFfBYWxw70kBVlOp3 OWL89DDHY8uNkk0B1EJmGgcnZdM54cbHmre0jdGC5mmIMVSp2shoN34fLZDIptsH t7Q2j60+5NYRzcJQJx2HYAmoRzEwLiFYcSVbZlj+OfxsYxIr7vrnGF3HhPR9mMuU ZrEseX5sNwljKv529Ti8r+sh5uGpkuFFEkROQdKtSayQ2ef/UHSpLocuEtMFiUBO FUeql8DCKKYM1aWaJVtGIsu4xKwq1AOb5h6xErVImyUvUzxD+rQdwdUnLHML7b03 DJOpLQY= -----END CERTIFICATE-----Generated at Tue May 7 03:49:59 2024 by rpki-client on console-ams.rpki-client.org