$ rpki-client -vvf rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/B7BC4714BEF011ED9634C070C4F9AE02.roa File: B7BC4714BEF011ED9634C070C4F9AE02.roa (raw, json) Hash identifier: 8B48WN3Cucj/+GbP/762W2PIVeIjbfD83vLGsoOpxzE= Subject key identifier: 0C:11:C0:3C:6A:6A:8E:43:21:23:21:32:BA:3D:BE:69:7E:89:86:FB Certificate issuer: /CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Certificate serial: 0A0B Authority key identifier: 16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/B7BC4714BEF011ED9634C070C4F9AE02.roa Signing time: Sat 02 Dec 2023 20:28:05 +0000 ROA not before: Sat 02 Dec 2023 20:28:05 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9311 IP address blocks: 103.23.75.0/24 maxlen: 24 103.246.252.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 20:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2571 (0xa0b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FC40/serialNumber=1601D8650DD556B2AFB083B233FF65AE3DAD1571 Validity Not Before: Dec 2 20:28:05 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656b9355-23f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b5:d0:fc:a2:41:e5:b7:d5:2b:23:9e:c4:b2: 63:ca:a9:ac:d6:6e:3c:d7:aa:9a:0b:3e:e1:e9:f0: b4:33:fa:f7:b6:86:e4:bf:69:76:7b:14:9a:15:5e: 4f:d5:c7:9e:52:30:12:0d:5a:34:f7:3a:75:6e:2b: 3b:6a:1f:d7:8c:fc:1a:25:b5:13:a2:bd:a7:f0:b8: ff:fc:50:ff:2f:87:cb:7c:d1:d2:06:73:60:08:34: 4e:56:2d:b3:aa:33:30:82:d3:08:bf:4a:ff:50:8f: f2:a0:cd:4f:0f:24:11:c1:a3:b1:97:1e:78:77:3a: d7:4d:c0:bb:a9:3a:0e:6f:b6:6a:df:6c:6d:88:ba: 5a:76:9c:06:84:03:93:b5:f5:a9:77:c9:c5:db:c1: ee:9b:ed:62:2a:44:53:f5:12:89:91:94:a7:67:30: d6:2e:ed:71:43:a7:86:ea:35:b4:5e:3c:a5:b8:a5: 92:50:ee:ec:b7:2a:3b:b8:e5:a9:6f:b0:ed:01:aa: 4c:96:53:07:90:c2:77:b8:43:0e:aa:75:52:40:ba: 2f:4d:7f:c9:a3:2f:de:4e:2b:d8:36:e9:ec:e8:8b: 56:83:0f:0f:85:40:bf:3c:64:0d:3d:7d:e4:3d:97: bd:ab:e8:3d:29:ed:21:e6:7f:4b:6e:1e:2a:3a:7b: 39:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:11:C0:3C:6A:6A:8E:43:21:23:21:32:BA:3D:BE:69:7E:89:86:FB X509v3 Authority Key Identifier: keyid:16:01:D8:65:0D:D5:56:B2:AF:B0:83:B2:33:FF:65:AE:3D:AD:15:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FgHYZQ3VVrKvsIOyM_9lrj2tFXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FC40/617F353640E111EABC62DB26C4F9AE02/B7BC4714BEF011ED9634C070C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.75.0/24 103.246.252.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:cc:fa:f1:a6:55:e2:40:76:b5:3c:81:e8:e7:32:79:81:1a: a6:0a:9b:30:98:45:80:fb:a8:18:3f:1b:d9:a0:54:6b:20:34: b4:e5:4d:a8:cd:5a:39:06:1e:ac:3d:d1:7b:89:55:26:57:3d: 79:5c:5f:a2:cc:05:31:73:5a:ad:7f:80:6d:fc:8f:b1:5c:84: 51:06:dc:77:23:81:1c:4f:0f:aa:87:27:5f:2b:62:fb:59:58: b7:0e:c0:3c:2d:61:5d:b9:45:ee:40:d5:c2:88:4b:27:48:80: 85:33:43:bb:74:1f:6e:90:ac:cd:cc:9f:48:f8:3e:e6:db:d1: 6e:60:15:1e:ac:c4:c4:99:5f:74:37:e1:b2:6b:66:93:73:e0: 02:5b:47:d8:43:b6:18:01:ec:26:87:96:38:b8:97:5b:0b:29: a2:39:07:f7:20:df:3e:a2:12:69:07:74:18:05:99:50:df:d0: 63:04:34:99:e5:cf:1e:01:b4:08:8a:fe:05:ab:fe:01:40:bf: 8b:81:54:21:9e:83:3a:df:1d:70:43:8e:cf:c8:52:1f:9a:4b: 3b:11:b4:c7:7d:b1:42:ba:d1:69:72:fa:70:fe:8d:3b:50:b3: 0a:f1:6d:b3:d8:3c:48:c2:92:31:02:7a:80:be:6b:b4:dd:29: ad:7b:ef:d6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZDNDAxMTAvBgNVBAUTKDE2MDFEODY1MERENTU2QjJBRkIwODNCMjMzRkY2NUFF M0RBRDE1NzEwHhcNMjMxMjAyMjAyODA1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiOTM1NS0yM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7XQ/KJB5bfVKyOexLJjyqms1m4816qaCz7h6fC0M/r3tobkv2l2exSaFV5P 1ceeUjASDVo09zp1bis7ah/XjPwaJbUTor2n8Lj//FD/L4fLfNHSBnNgCDROVi2z qjMwgtMIv0r/UI/yoM1PDyQRwaOxlx54dzrXTcC7qToOb7Zq32xtiLpadpwGhAOT tfWpd8nF28Hum+1iKkRT9RKJkZSnZzDWLu1xQ6eG6jW0XjyluKWSUO7styo7uOWp b7DtAapMllMHkMJ3uEMOqnVSQLovTX/Joy/eTivYNuns6ItWgw8PhUC/PGQNPX3k PZe9q+g9Ke0h5n9Lbh4qOns5jQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAwRwDxq ao5DISMhMro9vml+iYb7MB8GA1UdIwQYMBaAFBYB2GUN1Vayr7CDsjP/Za49rRVx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkM0MC82MTdGMzUzNjQw RTExMUVBQkM2MkRCMjZDNEY5QUUwMi9GZ0hZWlEzVlZyS3ZzSU95TV85bHJqMnRG WEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZnSFlaUTNWVnJLdnNJT3lNXzlscmoydEZYRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZDNDAvNjE3RjM1MzY0MEUxMTFFQUJDNjJEQjI2QzRGOUFFMDIvQjdCQzQ3MTRC RUYwMTFFRDk2MzRDMDcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnF0sDBAFn9vwwDQYJKoZIhvcNAQELBQADggEBAF3M+vGm VeJAdrU8gejnMnmBGqYKmzCYRYD7qBg/G9mgVGsgNLTlTajNWjkGHqw90XuJVSZX PXlcX6LMBTFzWq1/gG38j7FchFEG3HcjgRxPD6qHJ18rYvtZWLcOwDwtYV25Re5A 1cKISydIgIUzQ7t0H26QrM3Mn0j4Pubb0W5gFR6sxMSZX3Q34bJrZpNz4AJbR9hD thgB7CaHlji4l1sLKaI5B/cg3z6iEmkHdBgFmVDf0GMENJnlzx4BtAiK/gWr/gFA v4uBVCGegzrfHXBDjs/IUh+aSzsRtMd9sUK60Wly+nD+jTtQswrxbbPYPEjCkjEC eoC+a7TdKa1779Y= -----END CERTIFICATE-----Generated at Fri May 24 21:26:09 2024 by rpki-client on console-fra.rpki-client.org