$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/04C5DE76FF2711EAB7D5F235C4F9AE02.roa File: 04C5DE76FF2711EAB7D5F235C4F9AE02.roa (raw, json) Hash identifier: mC8alSlqRvNrS3mIxvzPOKUF8N3H1asLuijq6BtCmLc= Subject key identifier: 53:24:76:F2:1B:A8:C6:37:4F:86:EE:B2:2C:9E:81:E4:61:FC:44:65 Certificate issuer: /CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Certificate serial: 0F61 Authority key identifier: 5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/04C5DE76FF2711EAB7D5F235C4F9AE02.roa Signing time: Thu 08 Feb 2024 18:16:07 +0000 ROA not before: Thu 08 Feb 2024 18:16:07 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 41378 IP address blocks: 103.136.184.0/24 maxlen: 24 103.136.185.0/24 maxlen: 24 103.136.186.0/24 maxlen: 24 103.136.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3937 (0xf61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Validity Not Before: Feb 8 18:16:07 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c51a66-82f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e2:d5:90:dc:e6:37:88:db:3c:73:d5:41:0c: 4f:ec:4a:dc:d3:4a:a0:de:df:7b:f0:75:48:b3:31: ed:ae:16:26:d2:e6:d6:84:20:49:fe:fe:0f:86:0d: a6:1b:86:cb:2e:71:ba:88:81:f6:24:b2:6d:00:f8: 14:de:4a:bd:14:96:e5:d1:c9:17:3c:fb:4c:63:dd: 48:70:6d:2e:97:0c:b2:66:a6:60:04:cc:b8:61:ce: c8:b3:e2:ce:b1:e5:46:be:c3:11:a1:fb:17:a4:24: 95:44:c9:2f:a4:ec:89:3a:e3:71:d1:92:25:18:f1: 51:5e:7d:af:8a:21:5e:6c:eb:75:22:88:2c:5f:d2: dd:98:96:7a:83:a5:07:c7:08:bd:a7:42:4e:42:31: 6b:b1:27:b0:31:95:df:50:bb:9a:ff:d4:8d:c0:e2: 6b:2f:99:d2:06:06:cb:a8:3a:4e:27:5e:98:b4:e2: 24:de:12:7b:d7:f9:e7:02:74:fe:16:7b:6b:f0:ff: 90:9d:20:bc:65:9b:49:a9:5b:07:0f:bb:3b:8e:8b: 53:82:4f:2c:58:ee:53:f4:f2:93:fd:e4:cb:d2:ca: 06:3f:f8:f5:56:70:d3:1e:9c:33:cf:e9:67:58:d0: 1b:4e:11:94:4e:71:79:d4:3a:49:7a:0f:90:05:e2: 93:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:24:76:F2:1B:A8:C6:37:4F:86:EE:B2:2C:9E:81:E4:61:FC:44:65 X509v3 Authority Key Identifier: keyid:5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/04C5DE76FF2711EAB7D5F235C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.184.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:aa:6a:86:f2:41:de:50:fd:c3:fb:6e:e9:7d:1c:95:9c:d4: 3a:57:14:54:15:dc:6a:bd:3b:62:f3:98:1e:e8:bf:2f:24:73: 4d:ed:e1:05:72:0f:eb:e9:a6:82:52:48:2d:70:df:87:b6:91: dd:3e:15:56:2f:9b:9d:4a:6a:e4:59:6e:8a:70:d9:51:9c:7a: ed:00:17:35:1d:60:78:b8:e1:6e:01:94:37:10:74:99:f2:7a: 17:b3:51:2d:e5:f0:f2:c0:79:11:27:39:6b:8d:36:35:89:15: 10:33:a5:f8:41:60:d9:26:96:84:63:01:81:7f:7e:b8:00:71: 9d:ab:b8:75:81:9d:9e:70:ff:a0:54:7d:89:e8:40:62:7d:b9: 33:a5:fc:ee:7a:5f:5f:2d:c2:af:30:07:a4:f3:cd:d8:41:fb: c0:cc:88:8e:17:0d:ab:8d:1b:5c:a1:83:e5:3e:1e:60:fd:0c: 51:c5:86:07:bc:a6:c6:b9:51:cb:64:47:c3:ec:99:f8:99:74: 00:4e:fb:69:82:ca:00:c1:93:79:05:47:2f:d6:a2:34:0f:89: e7:58:9f:c4:53:0f:84:76:c4:36:74:72:b4:5a:cb:0f:d1:b7: 69:fe:56:67:ea:f3:62:5f:e8:de:93:7b:e9:13:ab:52:3c:f3: 09:49:aa:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD2EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEOUMxMTAvBgNVBAUTKDVCMkNGMEZCNjJGMTYwRjE4MzhBRUUzRTZDREUwNzU0 NERGRjhCRkYwHhcNMjQwMjA4MTgxNjA3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1MWE2Ni04MmY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOLVkNzmN4jbPHPVQQxP7Erc00qg3t978HVIszHtrhYm0ubWhCBJ/v4Phg2m G4bLLnG6iIH2JLJtAPgU3kq9FJbl0ckXPPtMY91IcG0ulwyyZqZgBMy4Yc7Is+LO seVGvsMRofsXpCSVRMkvpOyJOuNx0ZIlGPFRXn2viiFebOt1IogsX9LdmJZ6g6UH xwi9p0JOQjFrsSewMZXfULua/9SNwOJrL5nSBgbLqDpOJ16YtOIk3hJ71/nnAnT+ Fntr8P+QnSC8ZZtJqVsHD7s7jotTgk8sWO5T9PKT/eTL0soGP/j1VnDTHpwzz+ln WNAbThGUTnF51DpJeg+QBeKTSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFMkdvIb qMY3T4busiyegeRh/ERlMB8GA1UdIwQYMBaAFFss8Pti8WDxg4ruPmzeB1RN/4v/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Q5Qy80NTU5NDJENjUw QjIxMUU5QjVEQjZBNkJDNEY5QUUwMi9XeXp3LTJMeFlQR0RpdTQtYk40SFZFM19p XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d5enctMkx4WVBHRGl1NC1iTjRIVkUzX2lfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEOUMvNDU1OTQyRDY1MEIyMTFFOUI1REI2QTZCQzRGOUFFMDIvMDRDNURFNzZG RjI3MTFFQUI3RDVGMjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJniLgwDQYJKoZIhvcNAQELBQADggEBAHyqaobyQd5Q/cP7 bul9HJWc1DpXFFQV3Gq9O2LzmB7ovy8kc03t4QVyD+vppoJSSC1w34e2kd0+FVYv m51KauRZbopw2VGceu0AFzUdYHi44W4BlDcQdJnyehezUS3l8PLAeREnOWuNNjWJ FRAzpfhBYNkmloRjAYF/frgAcZ2ruHWBnZ5w/6BUfYnoQGJ9uTOl/O56X18twq8w B6TzzdhB+8DMiI4XDauNG1yhg+U+HmD9DFHFhge8psa5UctkR8PsmfiZdABO+2mC ygDBk3kFRy/WojQPiedYn8RTD4R2xDZ0crRayw/Rt2n+Vmfq82Jf6N6Te+kTq1I8 8wlJqmo= -----END CERTIFICATE-----Generated at Thu May 16 20:25:39 2024 by rpki-client on console-ams.rpki-client.org