$ rpki-client -vvf rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa File: C12ACE6AC17E11EE95D6821CC4F9AE02.roa (raw, json) Hash identifier: p2OaGBXnB53QIaUdiYcGSS4yEhTNuLi2jw8pgHfs/zU= Subject key identifier: E7:37:67:3F:82:6D:FA:10:29:2E:DD:8A:0C:66:4F:8A:BC:A7:4E:14 Certificate issuer: /CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Certificate serial: 7E Authority key identifier: DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa Signing time: Wed 03 Apr 2024 07:39:12 +0000 ROA not before: Wed 03 Apr 2024 07:39:12 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 24459 IP address blocks: 103.248.176.0/24 maxlen: 24 103.248.177.0/24 maxlen: 24 103.248.178.0/24 maxlen: 24 202.37.129.0/24 maxlen: 24 2406:fd00:100::/40 maxlen: 40 2406:fd00:800::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E623/serialNumber=DA7369B49722BA139B7B60F39C88B49BDBB35F3D Validity Not Before: Apr 3 07:39:12 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660d07a0-9966 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:1b:c4:c4:b4:11:81:34:4e:59:9d:20:7a:60: ec:b0:6c:9f:70:f3:07:9c:d5:65:5f:90:8e:fe:64: e2:0e:7d:c3:69:f7:28:78:56:4f:2c:e5:74:96:cf: 4c:23:e0:f0:1e:f6:da:c5:89:bf:ab:32:5c:ae:25: cc:2e:ce:ba:5e:fa:cb:9d:e0:88:1d:2d:c5:68:09: 58:49:3c:1e:93:61:5c:85:8b:cd:58:5e:1f:31:9a: a6:db:8d:30:4f:21:05:89:4d:71:a9:12:63:80:b4: 1b:57:48:7d:78:ea:14:38:47:c9:55:38:34:4a:d0: 62:1f:c2:df:ee:5a:6c:17:55:04:3e:6e:95:c2:4d: 36:c9:f6:c8:41:8a:fe:06:9d:4f:2f:c5:65:1a:ab: e9:6e:34:b7:f9:2b:a4:a6:50:a5:9b:c6:ac:a4:55: ce:44:bd:3f:d3:fc:7c:9d:15:b9:80:1c:99:6a:2b: 57:d0:57:d2:de:55:87:64:b6:af:4d:c7:fb:cd:1f: f0:28:5a:5d:ab:6b:db:be:5d:1e:29:2e:67:4a:eb: 8a:18:2b:f7:2e:ba:9d:96:68:bc:b3:b4:09:81:53: 5c:81:28:d5:4e:f7:c9:40:b6:2c:d5:d3:25:22:6f: 91:d5:29:4c:d6:e9:1e:d4:79:0b:ed:bc:84:ba:8d: 73:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:37:67:3F:82:6D:FA:10:29:2E:DD:8A:0C:66:4F:8A:BC:A7:4E:14 X509v3 Authority Key Identifier: keyid:DA:73:69:B4:97:22:BA:13:9B:7B:60:F3:9C:88:B4:9B:DB:B3:5F:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/2nNptJciuhObe2DznIi0m9uzXz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nNptJciuhObe2DznIi0m9uzXz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E623/A25D489E504711EEB677365DC4F9AE02/C12ACE6AC17E11EE95D6821CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.176.0-103.248.178.255 202.37.129.0/24 IPv6: 2406:fd00:100::/40 2406:fd00:800::/40 Signature Algorithm: sha256WithRSAEncryption 8b:bf:a4:91:e7:0e:d4:cf:ef:51:f3:db:19:15:13:fe:c0:bc: db:8e:6c:10:eb:de:d0:60:ee:b9:ef:4e:68:29:91:9b:c2:08: f4:d7:e2:cd:d1:db:ff:fc:09:73:2a:5d:f8:3d:59:7f:3b:c7: 9d:39:41:38:17:25:35:45:4c:be:ce:c2:9f:30:c6:e9:64:57: 5e:de:08:4c:71:15:a0:69:c3:e1:55:e8:d8:1d:f5:34:42:ca: db:05:49:f3:da:a7:ba:06:9f:7f:38:a7:98:39:56:cb:53:d6: 0e:82:3a:3b:51:7c:cf:30:7c:ee:d0:96:60:fc:99:75:79:b5: e0:99:3d:ce:aa:a9:05:c3:99:fd:ca:53:ea:a1:41:e4:ca:b4: 37:23:a3:f2:b4:78:86:9b:e7:ff:ab:e2:3d:6c:5d:7c:ec:e4: fd:a5:e8:50:e4:73:4b:5b:97:7a:9d:8c:2b:ce:32:d8:22:fb: 0c:14:73:c9:a2:9e:f9:e6:d5:20:ff:94:5e:42:7d:62:1d:e5: f3:22:7d:25:9c:a5:09:74:4c:69:c6:36:f6:55:11:55:b2:c6: 74:ca:0d:ad:d3:3c:de:fe:41:9b:21:bf:b0:7e:fb:c4:72:99: 97:b4:ac:65:59:e1:f8:0b:ab:8f:5e:49:02:06:1d:45:3a:00: 0a:b6:3f:b3 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTYyMzExMC8GA1UEBRMoREE3MzY5QjQ5NzIyQkExMzlCN0I2MEYzOUM4OEI0OUJE QkIzNUYzRDAeFw0yNDA0MDMwNzM5MTJaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGQwN2EwLTk5NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsG8TEtBGBNE5ZnSB6YOywbJ9w8wec1WVfkI7+ZOIOfcNp9yh4Vk8s5XSWz0wj 4PAe9trFib+rMlyuJcwuzrpe+sud4IgdLcVoCVhJPB6TYVyFi81YXh8xmqbbjTBP IQWJTXGpEmOAtBtXSH146hQ4R8lVODRK0GIfwt/uWmwXVQQ+bpXCTTbJ9shBiv4G nU8vxWUaq+luNLf5K6SmUKWbxqykVc5EvT/T/HydFbmAHJlqK1fQV9LeVYdktq9N x/vNH/AoWl2ra9u+XR4pLmdK64oYK/cuup2WaLyztAmBU1yBKNVO98lAtizV0yUi b5HVKUzW6R7UeQvtvIS6jXMBAgMBAAGjggK7MIICtzAdBgNVHQ4EFgQU5zdnP4Jt +hApLt2KDGZPirynThQwHwYDVR0jBBgwFoAU2nNptJciuhObe2DznIi0m9uzXz0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFNjIzL0EyNUQ0ODlFNTA0 NzExRUVCNjc3MzY1REM0RjlBRTAyLzJuTnB0SmNpdWhPYmUyRHpuSWkwbTl1elh6 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMm5OcHRKY2l1aE9iZTJEem5JaTBtOXV6WHowLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTYyMy9BMjVENDg5RTUwNDcxMUVFQjY3NzM2NURDNEY5QUUwMi9DMTJBQ0U2QUMx N0UxMUVFOTVENjgyMUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBFBggrBgEFBQcBBwEB/wQ2 MDQwGgQCAAEwFDAMAwQEZ/iwAwQAZ/iyAwQAyiWBMBYEAgACMBADBgAkBv0AAQMG ACQG/QAIMA0GCSqGSIb3DQEBCwUAA4IBAQCLv6SR5w7Uz+9R89sZFRP+wLzbjmwQ 697QYO65705oKZGbwgj01+LN0dv//AlzKl34PVl/O8edOUE4FyU1RUy+zsKfMMbp ZFde3ghMcRWgacPhVejYHfU0QsrbBUnz2qe6Bp9/OKeYOVbLU9YOgjo7UXzPMHzu 0JZg/Jl1ebXgmT3OqqkFw5n9ylPqoUHkyrQ3I6PytHiGm+f/q+I9bF187OT9pehQ 5HNLW5d6nYwrzjLYIvsMFHPJop755tUg/5ReQn1iHeXzIn0lnKUJdExpxjb2VRFV ssZ0yg2t0zze/kGbIb+wfvvEcpmXtKxlWeH4C6uPXkkCBh1FOgAKtj+z -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:33 2024 by rpki-client on console-fra.rpki-client.org