$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/17D3C6A89B2611EC8880303EC4F9AE02.roa File: 17D3C6A89B2611EC8880303EC4F9AE02.roa (raw, json) Hash identifier: yNU/Mr3/TjvBPBhCoBid3sjZxAp8GNMAmJbEuw8jfTo= Subject key identifier: 8D:A3:A7:54:AF:15:B1:AB:AB:5D:D8:4D:7A:CF:08:B2:60:3F:CC:6C Certificate issuer: /CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Certificate serial: 02BD Authority key identifier: A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/17D3C6A89B2611EC8880303EC4F9AE02.roa Signing time: Wed 03 Jan 2024 03:04:33 +0000 ROA not before: Wed 03 Jan 2024 03:04:33 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 6453 IP address blocks: 103.82.176.0/24 maxlen: 24 103.82.177.0/24 maxlen: 24 103.82.178.0/24 maxlen: 24 103.82.179.0/24 maxlen: 24 2400:8740:1000::/48 maxlen: 48 2400:8740:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 701 (0x2bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5F2D/serialNumber=A013B1388A3933BE106BEAEDDFE9F3B8346D3748 Validity Not Before: Jan 3 03:04:33 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6594cec1-9062 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:56:d3:79:99:e8:b1:d3:c2:2c:b3:19:b2:ba: 11:aa:2d:80:75:40:da:56:c3:31:2b:fd:bd:89:4a: 19:ed:49:d1:cc:d0:e3:4d:04:1e:b2:19:fb:84:64: 50:7e:95:75:b9:69:dd:13:10:7d:4a:56:02:e4:f2: 7b:40:ef:3a:48:e5:19:51:c3:d8:9b:c1:e2:0f:6d: 9a:0f:af:5c:97:28:e6:6a:c1:ef:d8:38:59:cc:20: ad:e5:e0:78:34:1e:57:c0:f2:8f:74:72:7e:60:68: 7f:18:95:42:03:aa:b5:94:38:92:be:e3:36:5e:a3: e5:71:43:eb:4a:5e:04:ca:1c:da:62:cd:32:e7:8d: 3d:87:a8:4b:b9:fc:14:de:03:a3:ac:6a:36:10:cb: 32:6a:8a:2c:50:12:24:e7:83:3b:0b:55:44:c6:1a: b0:0f:f7:ec:28:75:26:1e:66:b9:92:8b:c0:4c:a8: 23:ff:f4:ab:d9:d8:e6:f8:04:f2:f1:f5:6d:d2:5c: 21:97:07:88:0d:54:c9:45:c7:cb:c3:00:ef:db:3c: 73:fc:7d:f9:ea:e4:e8:cf:a0:53:2e:c8:a0:65:6a: 60:d1:db:ad:a4:dc:ef:82:85:0e:65:e7:03:32:3f: dc:e6:a1:f8:fb:c8:33:8c:c1:5d:c5:4e:e8:29:04: f7:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A3:A7:54:AF:15:B1:AB:AB:5D:D8:4D:7A:CF:08:B2:60:3F:CC:6C X509v3 Authority Key Identifier: keyid:A0:13:B1:38:8A:39:33:BE:10:6B:EA:ED:DF:E9:F3:B8:34:6D:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/oBOxOIo5M74Qa-rt3-nzuDRtN0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oBOxOIo5M74Qa-rt3-nzuDRtN0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5F2D/CD6D6E56989211EC8F93573BC4F9AE02/17D3C6A89B2611EC8880303EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.176.0/22 IPv6: 2400:8740:1000::/48 2400:8740:2000::/48 Signature Algorithm: sha256WithRSAEncryption 97:a1:3f:94:2f:6c:62:32:cc:9e:3d:2e:b4:9f:42:4c:51:e8: bc:8d:89:9b:28:fb:91:31:78:f8:78:72:ae:98:47:59:d0:45: 17:b9:b0:9d:47:29:7f:3a:8f:84:66:3a:f7:42:29:8c:3c:e1: f5:89:51:e2:8d:c9:a7:27:32:49:21:cd:71:60:77:fc:f3:73: f4:c7:b5:16:5d:89:d9:9d:18:34:1c:45:c0:ed:55:5e:87:8b: 56:bd:5c:ad:5f:24:f4:6e:f9:04:bc:74:10:8d:ba:90:44:4c: f1:a8:e5:b2:2e:09:dc:b1:15:60:f8:75:ec:83:8d:51:a0:b0: 4c:75:62:47:41:a1:44:7e:67:d8:d9:de:c8:36:ca:b9:00:b1: 75:e6:a6:18:15:0c:67:60:d7:1e:e4:ba:83:3f:6a:e5:2b:6b: 8b:32:97:09:f3:77:7a:c8:75:57:8d:8e:c5:bc:0a:60:ef:73: af:3b:c0:25:69:bf:32:c5:41:7b:c8:65:8b:08:9e:47:59:4b: f5:57:98:44:8c:00:e7:4d:0a:7b:ff:86:90:61:b4:1f:6c:b0: fa:c8:63:6b:9a:7b:0c:f4:36:ef:cf:a9:98:01:26:1e:26:68: a5:df:11:4c:0d:ed:56:e8:dc:79:b4:ff:53:a4:f4:d6:55:78: 1f:cb:e7:1b -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVGMkQxMTAvBgNVBAUTKEEwMTNCMTM4OEEzOTMzQkUxMDZCRUFFRERGRTlGM0I4 MzQ2RDM3NDgwHhcNMjQwMTAzMDMwNDMzWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0Y2VjMS05MDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9FbTeZnosdPCLLMZsroRqi2AdUDaVsMxK/29iUoZ7UnRzNDjTQQeshn7hGRQ fpV1uWndExB9SlYC5PJ7QO86SOUZUcPYm8HiD22aD69clyjmasHv2DhZzCCt5eB4 NB5XwPKPdHJ+YGh/GJVCA6q1lDiSvuM2XqPlcUPrSl4EyhzaYs0y5409h6hLufwU 3gOjrGo2EMsyaoosUBIk54M7C1VExhqwD/fsKHUmHma5kovATKgj//Sr2djm+ATy 8fVt0lwhlweIDVTJRcfLwwDv2zxz/H356uToz6BTLsigZWpg0dutpNzvgoUOZecD Mj/c5qH4+8gzjMFdxU7oKQT3IwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFI2jp1Sv FbGrq13YTXrPCLJgP8xsMB8GA1UdIwQYMBaAFKATsTiKOTO+EGvq7d/p87g0bTdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUYyRC9DRDZENkU1Njk4 OTIxMUVDOEY5MzU3M0JDNEY5QUUwMi9vQk94T0lvNU03NFFhLXJ0My1uenVEUnRO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29CT3hPSW81TTc0UWEtcnQzLW56dURSdE4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVGMkQvQ0Q2RDZFNTY5ODkyMTFFQzhGOTM1NzNCQzRGOUFFMDIvMTdEM0M2QTg5 QjI2MTFFQzg4ODAzMDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAJnUrAwGAQCAAIwEgMHACQAh0AQAAMHACQAh0AgADANBgkq hkiG9w0BAQsFAAOCAQEAl6E/lC9sYjLMnj0utJ9CTFHovI2Jmyj7kTF4+HhyrphH WdBFF7mwnUcpfzqPhGY690IpjDzh9YlR4o3JpycySSHNcWB3/PNz9Me1Fl2J2Z0Y NBxFwO1VXoeLVr1crV8k9G75BLx0EI26kERM8ajlsi4J3LEVYPh17IONUaCwTHVi R0GhRH5n2NneyDbKuQCxdeamGBUMZ2DXHuS6gz9q5StrizKXCfN3esh1V42OxbwK YO9zrzvAJWm/MsVBe8hliwieR1lL9VeYRIwA500Ke/+GkGG0H2yw+shja5p7DPQ2 78+pmAEmHiZopd8RTA3tVujcebT/U6T01lV4H8vnGw== -----END CERTIFICATE-----Generated at Fri May 17 04:44:33 2024 by rpki-client on console-ams.rpki-client.org