$ rpki-client -vvf rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/D3378C20171D11EAAA15E818C4F9AE02.roa File: D3378C20171D11EAAA15E818C4F9AE02.roa (raw, json) Hash identifier: YHNqmFypXejYYf+P9MpoCxPuczYJ30DL11bIt5OGM0g= Subject key identifier: E1:99:9D:5A:A3:38:08:05:47:EF:05:54:F6:BA:57:F9:D5:A8:50:2D Certificate issuer: /CN=A91816BD/serialNumber=C24C51BDB02B7136C0F25AF195B37037997B17E8 Certificate serial: 0EC7 Authority key identifier: C2:4C:51:BD:B0:2B:71:36:C0:F2:5A:F1:95:B3:70:37:99:7B:17:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wkxRvbArcTbA8lrxlbNwN5l7F-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/D3378C20171D11EAAA15E818C4F9AE02.roa Signing time: Sun 28 Apr 2024 18:36:53 +0000 ROA not before: Sun 28 Apr 2024 18:36:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135300 IP address blocks: 103.116.12.0/24 maxlen: 24 103.133.242.0/23 maxlen: 23 103.133.242.0/24 maxlen: 24 103.133.243.0/24 maxlen: 24 103.213.30.0/24 maxlen: 24 117.55.248.0/22 maxlen: 22 117.55.248.0/23 maxlen: 23 117.55.248.0/24 maxlen: 24 117.55.249.0/24 maxlen: 24 117.55.250.0/23 maxlen: 23 117.55.250.0/24 maxlen: 24 117.55.251.0/24 maxlen: 24 117.55.252.0/23 maxlen: 23 117.55.252.0/24 maxlen: 24 117.55.253.0/24 maxlen: 24 2001:df1:7e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.crl rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wkxRvbArcTbA8lrxlbNwN5l7F-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3783 (0xec7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91816BD/serialNumber=C24C51BDB02B7136C0F25AF195B37037997B17E8 Validity Not Before: Apr 28 18:36:52 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=662e9744-0843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:51:1b:97:19:b5:bb:c9:50:b0:75:15:9e:21: 30:34:d8:59:a2:c1:59:02:0e:fe:20:29:5e:76:04: b5:9c:45:fa:b8:e6:51:2c:70:27:1e:44:09:fb:f3: a6:a3:9d:b8:42:77:7e:cd:23:0e:77:a1:b6:8a:a8: 5a:54:5f:82:38:9b:c8:b6:4a:42:3e:49:bc:50:03: 26:c1:54:f4:d3:73:4a:4e:ce:0f:01:46:11:35:36: 76:f8:e2:83:f3:a9:56:06:b1:59:24:db:64:7b:5a: 8a:5c:d8:30:68:7b:06:52:04:37:fc:de:06:b7:3e: 79:6e:05:cc:e5:db:6f:1a:20:e6:4c:d5:fa:37:c1: 76:aa:e7:95:6f:77:2f:69:c4:d3:38:97:b7:b9:53: a2:12:1c:4a:7d:82:a4:93:b7:be:08:7f:e9:cd:62: 64:3c:b2:e3:3c:66:b1:0d:c1:d7:23:e2:bf:3f:a6: 54:a2:be:fa:6e:ba:79:12:ca:ee:02:19:b2:72:01: 15:1c:e0:60:f9:cb:5a:ef:08:5c:d4:f7:cf:f3:2c: b1:d4:85:52:4f:c1:e3:71:87:10:82:a3:3a:cb:22: 01:da:9f:95:59:ba:26:12:92:3e:f8:91:56:1c:b9: 8f:98:0c:56:95:be:91:92:56:ff:a7:34:6f:59:90: 2b:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:99:9D:5A:A3:38:08:05:47:EF:05:54:F6:BA:57:F9:D5:A8:50:2D X509v3 Authority Key Identifier: keyid:C2:4C:51:BD:B0:2B:71:36:C0:F2:5A:F1:95:B3:70:37:99:7B:17:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/wkxRvbArcTbA8lrxlbNwN5l7F-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wkxRvbArcTbA8lrxlbNwN5l7F-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91816BD/98A5DF9C658111E9AA83335DC4F9AE02/D3378C20171D11EAAA15E818C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.12.0/24 103.133.242.0/23 103.213.30.0/24 117.55.248.0-117.55.253.255 IPv6: 2001:df1:7e00::/48 Signature Algorithm: sha256WithRSAEncryption 72:e5:88:af:c9:42:f2:1a:c0:3d:8e:09:d7:c5:f7:25:ce:9e: c8:0f:bf:09:32:d4:e9:fc:2c:3f:19:25:86:b9:83:41:fa:5e: f1:9e:61:07:3c:a1:4a:5e:1f:fb:50:cc:30:c1:b7:86:90:d7: a3:6c:aa:67:28:02:f8:d8:50:2c:52:ed:47:d5:f0:09:9a:7b: c0:61:82:3e:f1:7a:f6:e6:86:d9:aa:26:14:5f:e0:d9:9a:79: 2a:da:6d:77:6a:31:0b:dc:15:59:fb:ae:25:82:0c:69:13:6b: 9a:b5:a3:e9:94:4d:22:74:e3:c6:d3:33:08:5e:1c:d1:68:4b: 48:c3:d7:79:e3:43:7c:a8:e7:2b:1a:bf:d7:e3:d7:0f:b9:f3: a4:46:9a:e3:22:d2:9a:30:79:f4:54:8a:cc:f8:37:45:8f:58: 91:2f:bb:00:87:23:af:50:dd:f2:7a:65:99:77:e0:ce:15:48: 5a:36:e0:8f:aa:b1:23:c3:e2:b1:c4:18:ed:59:71:50:98:37: 6b:0b:08:05:7b:97:07:19:16:1c:d8:c6:79:9b:36:6e:ac:15: 9a:b9:e0:41:2f:2e:28:11:75:84:cf:00:bf:e9:04:f4:db:02: 70:bf:90:2b:59:70:11:06:78:6b:da:8c:a2:14:a3:f4:77:f2: 04:27:6a:be -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgICDscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE2QkQxMTAvBgNVBAUTKEMyNEM1MUJEQjAyQjcxMzZDMEYyNUFGMTk1QjM3MDM3 OTk3QjE3RTgwHhcNMjQwNDI4MTgzNjUyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJlOTc0NC0wODQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvlEblxm1u8lQsHUVniEwNNhZosFZAg7+ICledgS1nEX6uOZRLHAnHkQJ+/Om o524Qnd+zSMOd6G2iqhaVF+COJvItkpCPkm8UAMmwVT003NKTs4PAUYRNTZ2+OKD 86lWBrFZJNtke1qKXNgwaHsGUgQ3/N4Gtz55bgXM5dtvGiDmTNX6N8F2queVb3cv acTTOJe3uVOiEhxKfYKkk7e+CH/pzWJkPLLjPGaxDcHXI+K/P6ZUor76brp5Esru AhmycgEVHOBg+cta7whc1PfP8yyx1IVST8HjcYcQgqM6yyIB2p+VWbomEpI++JFW HLmPmAxWlb6Rklb/pzRvWZAruwIDAQABo4ICwDCCArwwHQYDVR0OBBYEFOGZnVqj OAgFR+8FVPa6V/nVqFAtMB8GA1UdIwQYMBaAFMJMUb2wK3E2wPJa8ZWzcDeZexfo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTZCRC85OEE1REY5QzY1 ODExMUU5QUE4MzMzNURDNEY5QUUwMi93a3hSdmJBcmNUYkE4bHJ4bGJOd041bDdG LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dreFJ2YkFyY1RiQThscnhsYk53TjVsN0YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE2QkQvOThBNURGOUM2NTgxMTFFOUFBODMzMzVEQzRGOUFFMDIvRDMzNzhDMjAx NzFEMTFFQUFBMTVFODE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSgYIKwYBBQUHAQcBAf8E OzA5MCYEAgABMCADBABndAwDBAFnhfIDBABn1R4wDAMEA3U3+AMEAXU3/DAPBAIA AjAJAwcAIAEN8X4AMA0GCSqGSIb3DQEBCwUAA4IBAQBy5YivyULyGsA9jgnXxfcl zp7ID78JMtTp/Cw/GSWGuYNB+l7xnmEHPKFKXh/7UMwwwbeGkNejbKpnKAL42FAs Uu1H1fAJmnvAYYI+8Xr25obZqiYUX+DZmnkq2m13ajEL3BVZ+64lggxpE2uataPp lE0idOPG0zMIXhzRaEtIw9d540N8qOcrGr/X49cPufOkRprjItKaMHn0VIrM+DdF j1iRL7sAhyOvUN3yemWZd+DOFUhaNuCPqrEjw+KxxBjtWXFQmDdrCwgFe5cHGRYc 2MZ5mzZurBWaueBBLy4oEXWEzwC/6QT02wJwv5ArWXARBnhr2oyiFKP0d/IEJ2q+ -----END CERTIFICATE-----Generated at Wed May 8 21:03:59 2024 by rpki-client on console-fra.rpki-client.org