$ rpki-client -vvf rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa File: 1C64580A4F6111ED9365FC4AC4F9AE02.roa (raw, json) Hash identifier: Y8QTcLV5LPkrG9JQnlJADfWdBAy5AdfWQK2g3hi9/ws= Subject key identifier: 8E:CF:F0:70:1A:04:82:D7:9B:28:AD:0E:74:F0:CF:3B:69:96:AC:CB Certificate issuer: /CN=A919D209/serialNumber=EB62DFC734A25BC154D367A98CF27ED16F41EAD0 Certificate serial: 0660 Authority key identifier: EB:62:DF:C7:34:A2:5B:C1:54:D3:67:A9:8C:F2:7E:D1:6F:41:EA:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa Signing time: Sat 30 Mar 2024 23:32:39 +0000 ROA not before: Sat 30 Mar 2024 23:32:39 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 56082 IP address blocks: 43.230.188.0/24 maxlen: 24 103.50.9.0/24 maxlen: 24 103.50.10.0/24 maxlen: 24 103.50.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.crl rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1632 (0x660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D209/serialNumber=EB62DFC734A25BC154D367A98CF27ED16F41EAD0 Validity Not Before: Mar 30 23:32:39 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6608a116-2cd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:74:d5:d2:65:64:18:a8:bf:3c:b8:f2:ef:bc: d3:b3:49:02:21:83:13:a9:b2:4e:f5:ae:4c:ad:e3: 6f:67:71:06:91:ab:c5:4c:1d:d2:6c:1b:67:8b:fd: 12:ec:fd:14:d6:a5:b6:c1:97:ec:ac:38:43:9c:2c: 29:33:42:94:f9:f8:eb:21:bc:dc:9c:d9:2d:34:db: f4:6f:a4:4b:d4:fa:dd:13:18:45:b8:7d:94:d4:e4: 21:18:bd:70:64:9c:ed:b4:86:0c:ff:4c:b5:5b:3c: c9:a4:1e:ae:53:95:b5:85:8e:6f:0b:a9:6d:5e:5b: 7a:58:18:89:59:f5:d7:24:a1:b8:1b:a0:80:41:0f: 70:04:42:d4:66:6c:9b:a6:e6:0a:df:4f:0d:3c:f8: a3:17:af:3c:c6:27:fe:1d:64:73:51:5c:35:47:8b: d3:fb:19:47:5a:20:3c:f4:ae:14:c1:e3:ac:9b:0e: b8:22:87:ea:22:84:82:b8:8e:e4:80:38:28:47:9b: cf:4a:03:91:05:36:00:56:be:f2:09:2d:9c:71:ad: ba:4a:0e:c4:60:c2:35:56:a1:0a:a6:0a:c6:23:a9: 30:ed:94:02:34:08:bf:b8:26:2b:ce:17:db:5d:7d: 3c:a3:a8:21:e6:d0:b8:18:7f:b9:a9:88:33:ec:18: c6:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:CF:F0:70:1A:04:82:D7:9B:28:AD:0E:74:F0:CF:3B:69:96:AC:CB X509v3 Authority Key Identifier: keyid:EB:62:DF:C7:34:A2:5B:C1:54:D3:67:A9:8C:F2:7E:D1:6F:41:EA:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/62LfxzSiW8FU02epjPJ-0W9B6tA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/62LfxzSiW8FU02epjPJ-0W9B6tA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D209/B3397B4A353A11EBB7EB6B18C4F9AE02/1C64580A4F6111ED9365FC4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.188.0/24 103.50.9.0-103.50.11.255 Signature Algorithm: sha256WithRSAEncryption 35:49:ee:6a:49:e7:b3:98:dd:97:c2:00:07:00:be:38:ac:9d: b7:1c:04:98:c7:62:ae:e0:bd:93:6a:86:db:1f:d8:e2:ef:44: 6a:36:a5:26:be:77:7a:ef:9d:7e:96:08:28:da:b8:c7:72:37: 1a:5e:f3:e8:30:aa:8c:08:f9:d2:cb:38:4e:cf:6e:0a:f5:d2: fb:0f:74:aa:c8:da:9e:53:63:0d:43:7d:66:51:01:e7:95:a5: 28:be:46:ad:2d:c5:45:6e:03:bb:f2:94:ab:6a:de:b6:b1:ea: 74:fe:70:71:c0:63:58:81:cb:eb:15:c8:bf:99:3f:d3:21:e7: d7:5a:1c:9e:98:68:80:04:1d:c7:5e:4b:fa:a0:73:7f:e7:a5: 0a:39:bf:5c:b8:c8:af:1c:ec:80:85:08:0c:01:02:23:89:82: 73:91:e7:a1:88:0b:fb:4c:bd:32:a9:89:31:3b:03:4c:ad:19: f7:e7:5c:cb:31:63:6e:8d:e8:bd:38:63:5a:fb:1c:93:3b:9d: 52:1b:fd:97:80:ef:1e:15:87:f6:2f:a3:ad:ab:fc:3d:c7:62: 08:b9:5a:31:6c:24:a3:79:63:81:68:ce:33:7e:4b:e9:a0:18: b5:0f:72:b5:ac:2d:4f:6c:05:b9:b8:ed:ff:3b:80:f9:39:f9: e7:0c:59:cc -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyMDkxMTAvBgNVBAUTKEVCNjJERkM3MzRBMjVCQzE1NEQzNjdBOThDRjI3RUQx NkY0MUVBRDAwHhcNMjQwMzMwMjMzMjM5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4YTExNi0yY2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw3TV0mVkGKi/PLjy77zTs0kCIYMTqbJO9a5MreNvZ3EGkavFTB3SbBtni/0S 7P0U1qW2wZfsrDhDnCwpM0KU+fjrIbzcnNktNNv0b6RL1PrdExhFuH2U1OQhGL1w ZJzttIYM/0y1WzzJpB6uU5W1hY5vC6ltXlt6WBiJWfXXJKG4G6CAQQ9wBELUZmyb puYK308NPPijF688xif+HWRzUVw1R4vT+xlHWiA89K4UweOsmw64IofqIoSCuI7k gDgoR5vPSgORBTYAVr7yCS2cca26Sg7EYMI1VqEKpgrGI6kw7ZQCNAi/uCYrzhfb XX08o6gh5tC4GH+5qYgz7BjGZwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFI7P8HAa BILXmyitDnTwzztplqzLMB8GA1UdIwQYMBaAFOti38c0olvBVNNnqYzyftFvQerQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDIwOS9CMzM5N0I0QTM1 M0ExMUVCQjdFQjZCMThDNEY5QUUwMi82MkxmeHpTaVc4RlUwMmVwalBKLTBXOUI2 dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYyTGZ4elNpVzhGVTAyZXBqUEotMFc5QjZ0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQyMDkvQjMzOTdCNEEzNTNBMTFFQkI3RUI2QjE4QzRGOUFFMDIvMUM2NDU4MEE0 RjYxMTFFRDkzNjVGQzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAAr5rwwDAMEAGcyCQMEAmcyCDANBgkqhkiG9w0BAQsFAAOC AQEANUnuaknns5jdl8IABwC+OKydtxwEmMdiruC9k2qG2x/Y4u9EajalJr53eu+d fpYIKNq4x3I3Gl7z6DCqjAj50ss4Ts9uCvXS+w90qsjanlNjDUN9ZlEB55WlKL5G rS3FRW4Du/KUq2retrHqdP5wccBjWIHL6xXIv5k/0yHn11ocnphogAQdx15L+qBz f+elCjm/XLjIrxzsgIUIDAECI4mCc5HnoYgL+0y9MqmJMTsDTK0Z9+dcyzFjbo3o vThjWvsckzudUhv9l4DvHhWH9i+jrav8PcdiCLlaMWwko3ljgWjOM35L6aAYtQ9y tawtT2wFubjt/zuA+Tn55wxZzA== -----END CERTIFICATE-----Generated at Sun May 19 00:16:17 2024 by rpki-client on console-fra.rpki-client.org