$ rpki-client -vvf rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/68C3BB46D68111EBA71D041EC4F9AE02.roa File: 68C3BB46D68111EBA71D041EC4F9AE02.roa (raw, json) Hash identifier: NZ6P60/o0dlYxYXJ+rwg+V62+Bk1Id2rpkCe1s9UWSg= Subject key identifier: 2A:39:F3:F8:A9:99:9A:04:92:B3:EC:97:9C:6A:16:B9:1D:8E:EE:16 Certificate issuer: /CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Certificate serial: 05D2 Authority key identifier: 62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/68C3BB46D68111EBA71D041EC4F9AE02.roa Signing time: Tue 03 Jan 2023 00:00:17 +0000 ROA not before: Tue 03 Jan 2023 00:00:17 +0000 ROA not after: Sun 31 Mar 2024 00:00:00 +0000 asID: 135386 IP address blocks: 103.204.180.0/24 maxlen: 24 103.204.182.0/24 maxlen: 24 103.204.183.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Mar 2023 00:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CE22/serialNumber=62C4182C003EFCFA38DDAF4EF904FB04FE5B564A Validity Not Before: Jan 3 00:00:17 2023 GMT Not After : Mar 31 00:00:00 2024 GMT Subject: CN=63b37011-cbbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:52:2f:71:6c:cb:9b:2a:ab:68:c4:88:c7:2b: 16:29:44:18:12:2c:af:76:2c:0a:1b:73:26:fd:ea: 4f:96:0e:91:d6:9d:2d:3c:fc:fa:61:be:3c:3a:f2: fd:29:dc:e9:a5:fc:97:d6:71:b6:db:31:c4:f5:c5: 79:4b:f5:4a:07:d6:15:e5:be:d0:0e:98:55:38:18: 05:ab:a8:c7:71:98:d2:2c:97:a4:06:3d:62:70:e3: 1c:81:21:1f:6c:96:86:aa:5b:24:c0:56:f7:84:7e: e9:76:3d:ec:4a:93:7d:63:e7:11:53:55:e7:5c:6c: af:e4:62:c3:01:e2:45:5e:29:46:e8:7d:10:f2:98: 7c:5e:d3:81:77:f3:fe:3b:d4:34:70:fa:81:bc:13: 1d:62:cd:0c:01:db:19:8b:3f:d3:e6:b0:09:dd:0b: b3:59:bf:9e:98:a1:1f:1d:8b:2f:13:8d:58:36:ac: dc:df:99:6e:51:63:75:4d:a7:44:78:7a:c5:38:94: a4:10:34:83:d0:97:4e:ad:49:1d:8c:df:b1:7e:dc: 65:0c:d8:4f:01:1f:01:a5:97:ae:4d:14:b1:cf:2e: 9e:07:8e:e0:a5:ef:5d:5a:96:e2:20:db:e3:96:e1: 41:81:70:6a:c4:a0:4f:f6:7f:82:5a:44:db:b5:7b: 4c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:39:F3:F8:A9:99:9A:04:92:B3:EC:97:9C:6A:16:B9:1D:8E:EE:16 X509v3 Authority Key Identifier: keyid:62:C4:18:2C:00:3E:FC:FA:38:DD:AF:4E:F9:04:FB:04:FE:5B:56:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/YsQYLAA-_Po43a9O-QT7BP5bVko.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsQYLAA-_Po43a9O-QT7BP5bVko.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CE22/12FA811A177B11EB84634C36C4F9AE02/68C3BB46D68111EBA71D041EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.204.180.0/24 103.204.182.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:91:0d:2d:68:8a:3d:cf:80:a8:80:94:ab:29:68:b4:d5:a5: 9b:46:4b:ec:cf:d8:78:e0:2d:d1:aa:c0:5b:4c:31:2c:89:19: 3d:47:33:1d:c2:9b:69:d9:8f:01:f7:b3:eb:3f:d8:68:0a:88: c1:49:7a:98:92:a1:09:67:c3:be:ed:ad:e8:01:b7:c8:25:69: 9d:a0:59:d7:76:88:5e:cf:cd:bd:49:e5:d6:71:6e:f8:8e:fd: bd:85:1b:49:5d:ae:87:4c:33:71:51:05:81:03:3f:98:ce:15: c1:6b:87:13:b4:73:6d:87:65:db:6f:b8:86:d1:5e:61:e2:5f: c0:af:fe:86:b9:28:8f:d3:47:ae:ba:0b:a3:53:dc:95:e3:e9: d0:bb:ee:06:81:17:44:21:a3:aa:8f:3b:ac:c8:ac:8e:8a:f0: 33:96:43:2b:87:84:94:fd:43:a1:be:8f:82:cc:66:c5:74:1e: a3:b2:d7:7d:27:04:df:d4:55:af:6a:4a:e0:db:01:34:51:29: c5:d3:d3:03:9a:f9:1a:23:55:58:63:e6:da:11:51:eb:18:15: e6:44:52:c1:ff:73:37:77:28:95:3e:24:15:07:a5:ba:86:79: 60:ee:e8:55:fc:78:69:a1:e9:fe:91:d7:df:54:65:52:48:1d: e6:67:6a:fd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFMjIxMTAvBgNVBAUTKDYyQzQxODJDMDAzRUZDRkEzOEREQUY0RUY5MDRGQjA0 RkU1QjU2NEEwHhcNMjMwMTAzMDAwMDE3WhcNMjQwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02M2IzNzAxMS1jYmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4VIvcWzLmyqraMSIxysWKUQYEiyvdiwKG3Mm/epPlg6R1p0tPPz6Yb48OvL9 KdzppfyX1nG22zHE9cV5S/VKB9YV5b7QDphVOBgFq6jHcZjSLJekBj1icOMcgSEf bJaGqlskwFb3hH7pdj3sSpN9Y+cRU1XnXGyv5GLDAeJFXilG6H0Q8ph8XtOBd/P+ O9Q0cPqBvBMdYs0MAdsZiz/T5rAJ3QuzWb+emKEfHYsvE41YNqzc35luUWN1TadE eHrFOJSkEDSD0JdOrUkdjN+xftxlDNhPAR8BpZeuTRSxzy6eB47gpe9dWpbiINvj luFBgXBqxKBP9n+CWkTbtXtMkQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCo58/ip mZoEkrPsl5xqFrkdju4WMB8GA1UdIwQYMBaAFGLEGCwAPvz6ON2vTvkE+wT+W1ZK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0UyMi8xMkZBODExQTE3 N0IxMUVCODQ2MzRDMzZDNEY5QUUwMi9Zc1FZTEFBLV9QbzQzYTlPLVFUN0JQNWJW a28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzUVlMQUEtX1BvNDNhOU8tUVQ3QlA1YlZrby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NFMjIvMTJGQTgxMUExNzdCMTFFQjg0NjM0QzM2QzRGOUFFMDIvNjhDM0JCNDZE NjgxMTFFQkE3MUQwNDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnzLQDBAFnzLYwDQYJKoZIhvcNAQELBQADggEBAEqRDS1o ij3PgKiAlKspaLTVpZtGS+zP2HjgLdGqwFtMMSyJGT1HMx3Cm2nZjwH3s+s/2GgK iMFJepiSoQlnw77tregBt8glaZ2gWdd2iF7Pzb1J5dZxbviO/b2FG0ldrodMM3FR BYEDP5jOFcFrhxO0c22HZdtvuIbRXmHiX8Cv/oa5KI/TR666C6NT3JXj6dC77gaB F0Qho6qPO6zIrI6K8DOWQyuHhJT9Q6G+j4LMZsV0HqOy130nBN/UVa9qSuDbATRR KcXT0wOa+RojVVhj5toRUesYFeZEUsH/czd3KJU+JBUHpbqGeWDu6FX8eGmh6f6R 199UZVJIHeZnav0= -----END CERTIFICATE-----Generated at Wed Mar 15 11:53:38 2023 by rpki-client on console-fra.rpki-client.org