$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/68C3BB46D68111EBA71D041EC4F9AE02.roa File: 68C3BB46D68111EBA71D041EC4F9AE02.roa (raw, json) Hash identifier: hym0ryVpiZqNaGZn3BG53SRcYyYZD/hKOOZZ8EyXb8s= Subject key identifier: 44:85:AD:E8:3B:DE:95:25:7F:41:A1:4C:86:97:B9:CF:85:9C:08:2D Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 069B Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/68C3BB46D68111EBA71D041EC4F9AE02.roa Signing time: Mon 22 Jan 2024 23:01:25 +0000 ROA not before: Mon 22 Jan 2024 23:01:25 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 135386 IP address blocks: 103.204.180.0/24 maxlen: 24 103.204.182.0/24 maxlen: 24 103.204.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 22:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1691 (0x69b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Jan 22 23:01:25 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65aef3c5-83ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:77:2a:d2:9c:46:6e:d0:3b:33:3d:84:53:ed: e7:36:23:6c:f8:f6:cd:fd:f3:0f:5f:72:bd:8c:cf: 9b:76:e4:bb:4b:9b:94:bf:cc:27:af:bb:a3:cb:54: 59:7a:e2:9a:38:da:38:d3:bd:75:b7:64:9d:19:a8: 3c:75:40:e0:b8:0c:7a:d7:41:21:f1:39:3c:79:2d: c1:8f:52:2e:c4:6a:08:d3:68:b6:38:75:5b:33:8b: 08:ed:c9:4f:6c:22:bc:1d:f2:a4:b4:13:a2:87:6c: 0e:04:b5:f8:de:67:df:4d:21:8c:34:83:50:1f:6f: fe:af:29:a2:15:15:84:41:c8:8d:7b:73:35:79:e5: bf:be:1f:2a:4a:68:2d:bb:a0:af:42:69:38:35:98: 82:e6:8e:69:3e:ff:9f:a9:4c:59:27:2d:6a:0d:1e: e7:c5:82:e0:5d:4f:a0:06:45:53:29:85:bd:df:a5: ac:a8:58:cd:99:92:ff:19:d5:7f:96:b1:b5:9f:d0: 19:dc:99:24:11:04:dc:67:7d:81:32:05:1e:6e:23: 6d:5b:ca:63:a4:01:44:88:25:a8:07:5d:c0:7a:5d: cd:a3:bd:b7:56:5d:a6:ea:f3:da:27:72:25:0f:9c: 76:70:69:47:df:9a:e2:bc:17:97:55:3d:3c:bf:51: e8:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:85:AD:E8:3B:DE:95:25:7F:41:A1:4C:86:97:B9:CF:85:9C:08:2D X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/68C3BB46D68111EBA71D041EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.180.0/24 103.204.182.0/23 Signature Algorithm: sha256WithRSAEncryption 07:21:9f:bb:cc:a3:6a:b6:8d:79:09:10:f2:68:c7:a4:6f:b8: 4a:bb:c0:87:5c:3c:e6:94:76:2b:c7:ac:51:b0:3c:02:d7:8c: 76:0f:b9:57:d0:af:b0:b1:85:31:bc:c3:93:3f:78:e3:aa:4a: f6:2b:1b:ce:b0:13:bd:44:2c:b2:f0:82:b2:2d:68:95:3a:d0: 67:db:7b:1f:3b:d6:0f:93:2e:b7:32:ec:b3:bd:24:30:5e:f8: 64:41:ad:9d:45:cc:2b:82:ff:fc:62:d6:f3:f1:61:f0:d0:e3: 65:a5:92:52:6b:69:33:50:db:e7:ef:25:66:c2:f5:ed:40:dd: 2c:e5:47:9e:cb:20:a3:50:e6:66:71:47:69:34:e6:79:f7:b1: 3a:4c:3b:06:cb:25:37:bc:36:ca:64:21:fc:c4:40:61:5a:db: 3f:d4:8e:6e:21:1a:5b:60:56:40:b5:f3:38:77:5d:5a:1e:98: 75:5a:16:c8:5c:8f:aa:26:84:df:8f:eb:de:c4:c8:0f:e4:a2: c1:90:c8:a7:07:79:23:f1:97:c0:fd:8f:b0:a6:f1:20:9b:90: bc:25:f9:68:bb:f7:1e:f5:fa:cf:fd:9b:20:f3:87:ba:21:e7: 6b:c8:03:a0:a6:e9:34:31:bd:97:15:75:69:8e:e5:8c:22:be: bc:53:f4:e3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjQwMTIyMjMwMTI1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFlZjNjNS04M2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyncq0pxGbtA7Mz2EU+3nNiNs+PbN/fMPX3K9jM+bduS7S5uUv8wnr7ujy1RZ euKaONo40711t2SdGag8dUDguAx610Eh8Tk8eS3Bj1IuxGoI02i2OHVbM4sI7clP bCK8HfKktBOih2wOBLX43mffTSGMNINQH2/+rymiFRWEQciNe3M1eeW/vh8qSmgt u6CvQmk4NZiC5o5pPv+fqUxZJy1qDR7nxYLgXU+gBkVTKYW936WsqFjNmZL/GdV/ lrG1n9AZ3JkkEQTcZ32BMgUebiNtW8pjpAFEiCWoB13Ael3No723Vl2m6vPaJ3Il D5x2cGlH35rivBeXVT08v1HoUwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFESFreg7 3pUlf0GhTIaXuc+FnAgtMB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NFMjIvMTJGQTgxMUExNzdCMTFFQjg0NjM0QzM2QzRGOUFFMDIvNjhDM0JCNDZE NjgxMTFFQkE3MUQwNDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnzLQDBAFnzLYwDQYJKoZIhvcNAQELBQADggEBAAchn7vM o2q2jXkJEPJox6RvuEq7wIdcPOaUdivHrFGwPALXjHYPuVfQr7CxhTG8w5M/eOOq SvYrG86wE71ELLLwgrItaJU60Gfbex871g+TLrcy7LO9JDBe+GRBrZ1FzCuC//xi 1vPxYfDQ42WlklJraTNQ2+fvJWbC9e1A3SzlR57LIKNQ5mZxR2k05nn3sTpMOwbL JTe8NspkIfzEQGFa2z/Ujm4hGltgVkC18zh3XVoemHVaFshcj6omhN+P697EyA/k osGQyKcHeSPxl8D9j7Cm8SCbkLwl+Wi79x71+s/9myDzh7oh52vIA6Cm6TQxvZcV dWmO5YwivrxT9OM= -----END CERTIFICATE-----Generated at Fri Apr 19 00:06:07 2024 by rpki-client on console-ams.rpki-client.org