$ rpki-client -vvf rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/5B096332BFDF11EC89ECF37BC4F9AE02.roa File: 5B096332BFDF11EC89ECF37BC4F9AE02.roa (raw, json) Hash identifier: KwSrdUrsoFTrnFecXKL/1/hTJOcsdGlQTW0JfcT6/k4= Subject key identifier: 07:B8:4A:B3:B0:0D:BD:B0:B3:F7:51:93:2C:F6:C8:EE:6D:63:C2:DD Certificate issuer: /CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Certificate serial: 063A Authority key identifier: ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/5B096332BFDF11EC89ECF37BC4F9AE02.roa Signing time: Sat 22 Jun 2024 23:57:52 +0000 ROA not before: Sat 22 Jun 2024 23:57:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 133082 IP address blocks: 103.255.80.0/22 maxlen: 22 103.255.80.0/24 maxlen: 24 103.255.81.0/24 maxlen: 24 103.255.82.0/24 maxlen: 24 103.255.83.0/24 maxlen: 24 2400:8180::/32 maxlen: 32 2400:8180:1::/48 maxlen: 56 2400:8180:2::/48 maxlen: 56 2400:8180:3::/48 maxlen: 56 2400:8180:4::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1594 (0x63a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E1FE/serialNumber=EDEB96F04C8D3EDCCBEEBA40C4242922A8136B53 Validity Not Before: Jun 22 23:57:52 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66776500-9328 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3c:d5:44:d6:31:5d:05:91:1c:3a:b2:d3:49: ba:df:ea:bd:c7:f3:6e:96:8b:b0:08:89:56:bd:a1: 0c:7f:a4:03:26:3c:b3:32:3f:bc:dd:1d:e1:fd:b6: 8d:f8:c1:7f:4e:b0:f7:1e:14:c6:7b:b0:09:6c:43: ca:f8:c4:84:54:9c:46:c3:c9:63:4f:d1:da:e6:23: 79:46:7c:92:9b:2b:42:83:db:c7:17:d0:f9:90:63: 83:08:15:c8:e9:02:19:0c:bb:86:b2:52:9d:85:fe: 2a:f9:51:a8:eb:52:f8:cd:46:e6:f7:0c:90:fb:64: db:21:1d:79:c9:02:35:8b:4c:32:6a:8c:78:ee:ea: 1f:7a:6d:ec:61:61:6c:da:17:24:ae:d1:3e:a7:e3: c2:f3:88:11:64:ae:bb:8d:27:4f:60:a5:b0:8b:f7: a3:a3:9d:e2:59:8b:37:b5:c6:e4:df:39:2f:b5:9e: a2:f0:87:d2:eb:2e:f1:32:b0:d9:80:31:d5:80:2a: 3f:80:38:f0:20:d7:40:d5:1e:36:9f:da:1d:0f:6a: b5:65:94:5b:81:ea:39:5c:51:76:5e:8d:b7:36:72: 5d:22:c1:ab:2c:38:c5:2b:6f:e3:c6:f6:e9:1b:6d: 07:f5:f7:b3:e5:34:ef:ae:bd:22:dd:85:a1:1b:a1: 58:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:B8:4A:B3:B0:0D:BD:B0:B3:F7:51:93:2C:F6:C8:EE:6D:63:C2:DD X509v3 Authority Key Identifier: keyid:ED:EB:96:F0:4C:8D:3E:DC:CB:EE:BA:40:C4:24:29:22:A8:13:6B:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/7euW8EyNPtzL7rpAxCQpIqgTa1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7euW8EyNPtzL7rpAxCQpIqgTa1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E1FE/386235F06F8811EBA86BF64AC4F9AE02/5B096332BFDF11EC89ECF37BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.80.0/22 IPv6: 2400:8180::/32 Signature Algorithm: sha256WithRSAEncryption 32:c1:d2:ed:3f:2e:06:fc:68:f5:97:35:a6:4c:d9:41:eb:e7: 74:45:1f:e2:f6:ec:67:d3:eb:b5:68:4c:8d:f4:24:7b:68:75: 19:30:c6:14:51:a7:36:5c:02:b2:3a:98:5b:98:e5:ff:ab:93: ce:2f:b5:b0:44:1f:b6:86:8c:c1:9d:78:64:66:b4:85:d3:d9: 1a:c6:c3:b3:6a:82:c9:b4:aa:36:a7:4b:75:b1:ae:91:0a:58: 32:ba:25:0f:72:c1:a4:cf:26:82:cc:e1:e9:02:61:7b:cb:20: 8a:a4:a1:b5:ce:c4:39:92:fc:db:91:bc:cd:80:5a:4e:58:f1: 2a:c0:a9:e6:8c:46:91:46:37:c5:e9:2a:ad:a5:63:d3:e9:9e: 91:1d:55:e5:3a:4b:04:53:cc:6c:4f:25:d9:26:1f:a3:2f:74: 71:a5:ce:e5:ca:32:5d:67:cf:45:c8:1c:c3:34:26:69:da:d8: a0:45:be:30:9d:e3:a4:7d:cb:2c:de:04:37:54:2d:59:9e:ab: 69:43:10:98:9e:51:b8:6b:a1:fd:86:ee:0c:4c:92:18:ed:07: 77:10:b2:9c:e5:a0:c1:ad:bf:c3:93:4c:97:7a:8d:4a:19:c7: b1:60:a9:de:e4:35:73:04:08:52:8d:76:58:ff:10:9f:78:93: 77:fa:f2:47 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBjowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UxRkUxMTAvBgNVBAUTKEVERUI5NkYwNEM4RDNFRENDQkVFQkE0MEM0MjQyOTIy QTgxMzZCNTMwHhcNMjQwNjIyMjM1NzUyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3NjUwMC05MzI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3TzVRNYxXQWRHDqy00m63+q9x/NulouwCIlWvaEMf6QDJjyzMj+83R3h/baN +MF/TrD3HhTGe7AJbEPK+MSEVJxGw8ljT9Ha5iN5RnySmytCg9vHF9D5kGODCBXI 6QIZDLuGslKdhf4q+VGo61L4zUbm9wyQ+2TbIR15yQI1i0wyaox47uofem3sYWFs 2hckrtE+p+PC84gRZK67jSdPYKWwi/ejo53iWYs3tcbk3zkvtZ6i8IfS6y7xMrDZ gDHVgCo/gDjwINdA1R42n9odD2q1ZZRbgeo5XFF2Xo23NnJdIsGrLDjFK2/jxvbp G20H9fez5TTvrr0i3YWhG6FYpQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAe4SrOw Db2ws/dRkyz2yO5tY8LdMB8GA1UdIwQYMBaAFO3rlvBMjT7cy+66QMQkKSKoE2tT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTFGRS8zODYyMzVGMDZG ODgxMUVCQTg2QkY2NEFDNEY5QUUwMi83ZXVXOEV5TlB0ekw3cnBBeENRcElxZ1Rh MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdldVc4RXlOUHR6TDdycEF4Q1FwSXFnVGExTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UxRkUvMzg2MjM1RjA2Rjg4MTFFQkE4NkJGNjRBQzRGOUFFMDIvNUIwOTYzMzJC RkRGMTFFQzg5RUNGMzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn/1AwDQQCAAIwBwMFACQAgYAwDQYJKoZIhvcNAQELBQAD ggEBADLB0u0/Lgb8aPWXNaZM2UHr53RFH+L27GfT67VoTI30JHtodRkwxhRRpzZc ArI6mFuY5f+rk84vtbBEH7aGjMGdeGRmtIXT2RrGw7Nqgsm0qjanS3WxrpEKWDK6 JQ9ywaTPJoLM4ekCYXvLIIqkobXOxDmS/NuRvM2AWk5Y8SrAqeaMRpFGN8XpKq2l Y9PpnpEdVeU6SwRTzGxPJdkmH6MvdHGlzuXKMl1nz0XIHMM0Jmna2KBFvjCd46R9 yyzeBDdULVmeq2lDEJieUbhrof2G7gxMkhjtB3cQspzloMGtv8OTTJd6jUoZx7Fg qd7kNXMECFKNdlj/EJ94k3f68kc= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org