$ rpki-client -vvf rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/DAAB94840EC911EBA913852BC4F9AE02.roa File: DAAB94840EC911EBA913852BC4F9AE02.roa (raw, json) Hash identifier: 5YoPL7nE7xz232jtV+9whkhe2x++vTXRcep/e7rSL8o= Subject key identifier: 98:1A:79:3B:CC:EC:62:8D:65:9A:9F:0E:4E:DA:82:65:65:F5:79:C9 Certificate issuer: /CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Certificate serial: 0663 Authority key identifier: 72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/DAAB94840EC911EBA913852BC4F9AE02.roa Signing time: Thu 26 Oct 2023 22:29:54 +0000 ROA not before: Thu 26 Oct 2023 22:29:54 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 23729 IP address blocks: 103.100.92.0/22 maxlen: 22 103.100.92.0/24 maxlen: 24 103.100.93.0/24 maxlen: 24 103.100.94.0/24 maxlen: 24 103.100.95.0/24 maxlen: 24 118.179.0.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1635 (0x663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917D121/serialNumber=72A51F4EEAA218B7336EEFF7A7A58CB1AE544239 Validity Not Before: Oct 26 22:29:54 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653ae861-72cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e4:45:54:77:ca:31:fe:d4:4c:40:ec:c4:4b: bd:4b:f2:e2:03:21:41:72:b0:00:cc:f2:23:73:f9: e3:9b:ac:d4:91:ce:40:b5:9d:fc:40:54:d2:b1:50: 38:5a:6e:36:a4:b8:71:b0:65:d0:0d:ac:dc:bd:35: e1:e6:7b:5a:7c:4c:b9:9d:3a:e9:a9:95:fa:46:c1: 88:91:ad:f0:db:57:39:8f:2f:ad:09:91:68:36:ee: eb:9e:b4:11:18:ee:e8:bb:63:b2:56:f8:80:c0:21: d6:f1:27:84:4e:8b:bb:9e:4f:db:05:1e:44:72:94: e6:a2:da:3f:6d:f6:56:1d:65:f9:28:f4:b3:13:9e: 6c:30:2f:ab:19:9d:b8:9b:6a:4f:bd:15:e3:dd:4e: 92:ea:1f:f9:7b:7c:c2:98:d5:0a:4a:cb:d0:6d:1b: a4:cb:5c:86:ee:a1:b6:28:99:2c:9b:63:ae:88:5f: ef:32:95:dc:34:2d:c3:1a:3a:86:03:a8:59:01:73: f3:8b:08:15:2d:2e:ab:37:27:51:23:9b:83:d7:2e: 68:57:64:c9:65:8e:d9:f3:3c:9b:d3:19:0a:05:9e: 20:69:f0:b0:1f:2b:7a:58:ec:63:6e:ab:a1:7d:3b: 2b:5d:62:5c:b3:c4:00:64:38:60:18:87:ac:fa:d5: 1b:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:1A:79:3B:CC:EC:62:8D:65:9A:9F:0E:4E:DA:82:65:65:F5:79:C9 X509v3 Authority Key Identifier: keyid:72:A5:1F:4E:EA:A2:18:B7:33:6E:EF:F7:A7:A5:8C:B1:AE:54:42:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/cqUfTuqiGLczbu_3p6WMsa5UQjk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cqUfTuqiGLczbu_3p6WMsa5UQjk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917D121/8B0F8B0C0EC811EBA5042C2AC4F9AE02/DAAB94840EC911EBA913852BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.92.0/22 118.179.0.0/21 Signature Algorithm: sha256WithRSAEncryption 53:62:4c:03:12:69:cc:fb:c7:e9:09:e6:24:76:84:a0:86:dd: 67:b2:8a:fc:03:0a:11:67:d3:b0:ff:ea:97:49:ef:fc:68:0e: d9:9b:4b:1b:c9:a7:c4:a4:d6:06:24:9e:55:80:c5:0f:c6:5a: b6:31:38:21:69:29:af:4f:a6:22:39:99:37:3b:74:5a:b5:00: 73:7c:dc:36:12:fa:4e:4b:43:89:cb:f5:3a:38:88:11:d5:43: 9f:36:4e:e5:1a:e7:55:40:11:69:33:a2:32:60:35:17:a5:b3: 59:b4:fd:53:9f:fc:d2:f3:a1:57:77:6b:a7:c2:82:21:a4:cd: 82:5a:11:5e:a6:27:f8:67:c4:e2:20:29:3b:89:8b:62:e9:a0: d8:f8:2c:40:02:ec:32:48:35:6f:81:fe:c1:0e:16:d0:19:6c: 8b:20:d1:ad:98:c9:c6:c3:97:78:b3:00:8b:b6:db:2a:2d:61: 6a:c1:53:65:40:cc:cd:77:e7:e4:29:b4:46:ba:d8:9c:d4:3a: 0e:ee:b5:4b:8e:6e:68:d2:9c:fc:ac:76:93:5d:4e:c6:30:3c: 6d:0d:02:15:8c:c1:05:03:d8:19:f8:45:c9:e5:8f:5c:38:50: 28:29:f4:66:91:dc:f4:26:24:85:1e:94:21:c0:a4:88:c5:01: 5f:ca:a3:10 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0QxMjExMTAvBgNVBAUTKDcyQTUxRjRFRUFBMjE4QjczMzZFRUZGN0E3QTU4Q0Ix QUU1NDQyMzkwHhcNMjMxMDI2MjIyOTU0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNhZTg2MS03MmNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuORFVHfKMf7UTEDsxEu9S/LiAyFBcrAAzPIjc/njm6zUkc5AtZ38QFTSsVA4 Wm42pLhxsGXQDazcvTXh5ntafEy5nTrpqZX6RsGIka3w21c5jy+tCZFoNu7rnrQR GO7ou2OyVviAwCHW8SeETou7nk/bBR5EcpTmoto/bfZWHWX5KPSzE55sMC+rGZ24 m2pPvRXj3U6S6h/5e3zCmNUKSsvQbRuky1yG7qG2KJksm2OuiF/vMpXcNC3DGjqG A6hZAXPziwgVLS6rNydRI5uD1y5oV2TJZY7Z8zyb0xkKBZ4gafCwHyt6WOxjbquh fTsrXWJcs8QAZDhgGIes+tUbDQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJgaeTvM 7GKNZZqfDk7agmVl9XnJMB8GA1UdIwQYMBaAFHKlH07qohi3M27v96eljLGuVEI5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RDEyMS84QjBGOEIwQzBF QzgxMUVCQTUwNDJDMkFDNEY5QUUwMi9jcVVmVHVxaUdMY3pidV8zcDZXTXNhNVVR amsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NxVWZUdXFpR0xjemJ1XzNwNldNc2E1VVFqay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0QxMjEvOEIwRjhCMEMwRUM4MTFFQkE1MDQyQzJBQzRGOUFFMDIvREFBQjk0ODQw RUM5MTFFQkE5MTM4NTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnZFwDBAN2swAwDQYJKoZIhvcNAQELBQADggEBAFNiTAMS acz7x+kJ5iR2hKCG3WeyivwDChFn07D/6pdJ7/xoDtmbSxvJp8Sk1gYknlWAxQ/G WrYxOCFpKa9PpiI5mTc7dFq1AHN83DYS+k5LQ4nL9To4iBHVQ582TuUa51VAEWkz ojJgNRels1m0/VOf/NLzoVd3a6fCgiGkzYJaEV6mJ/hnxOIgKTuJi2LpoNj4LEAC 7DJINW+B/sEOFtAZbIsg0a2YycbDl3izAIu22yotYWrBU2VAzM135+QptEa62JzU Og7utUuObmjSnPysdpNdTsYwPG0NAhWMwQUD2Bn4Rcnlj1w4UCgp9GaR3PQmJIUe lCHApIjFAV/KoxA= -----END CERTIFICATE-----Generated at Thu May 16 23:48:41 2024 by rpki-client on console-fra.rpki-client.org