$ rpki-client -vvf rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/D23C5270E02111E9B4A3923FC4F9AE02.roa File: D23C5270E02111E9B4A3923FC4F9AE02.roa (raw, json) Hash identifier: vQUUglkdMv/072cNIafcYwyV+Or+HuBH/Aor98sulsc= Subject key identifier: B0:01:BF:F1:7C:CB:27:CC:80:BE:9D:D4:E7:98:A8:59:EB:0F:B3:44 Certificate issuer: /CN=A9128E00/serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Certificate serial: 0C29 Authority key identifier: CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/D23C5270E02111E9B4A3923FC4F9AE02.roa Signing time: Fri 22 Mar 2024 18:57:41 +0000 ROA not before: Fri 22 Mar 2024 18:57:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136439 IP address blocks: 103.138.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 19:16:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3113 (0xc29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128E00/serialNumber=CFE3F31E4F337AD381201BF33A01A685FB016A5E Validity Not Before: Mar 22 18:57:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65fdd4a5-340d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0c:53:67:88:75:54:ec:b5:f3:76:05:ec:b3: cf:45:9f:0e:88:9d:a6:0f:d7:32:e4:97:c9:4c:c1: 20:1e:7f:cd:7f:12:da:13:8b:dd:c2:42:85:ee:88: 3d:54:0a:a0:19:39:fe:e1:87:97:48:9f:5b:46:dc: 72:79:f5:a5:a7:22:7f:9c:a4:59:2c:3c:ba:88:c8: 46:c1:f4:48:5c:25:f9:7f:b5:cb:5f:bd:f9:3a:2c: 40:7a:59:d7:ca:21:59:b7:f2:7c:ab:3b:18:12:c7: e3:2a:2c:1c:0f:f9:55:2e:52:91:81:9d:8c:c2:bc: a2:90:80:82:8c:93:18:85:c5:af:07:16:c2:e0:6f: f7:d5:3f:64:14:66:1c:64:01:9d:86:f5:b1:95:65: b5:56:3c:3c:94:6f:74:a7:dc:37:c9:6a:a9:9e:f6: 09:c2:ba:cf:30:97:e9:49:a4:64:ee:f9:a7:c4:0e: ea:b3:e1:50:24:81:09:f4:ac:f9:6f:a1:63:cf:f1: 90:8c:8b:bb:7d:dc:49:f2:ca:cc:ba:2c:bb:a3:76: 59:31:f0:1f:35:f8:be:4c:e3:cf:ac:4f:19:87:cc: ee:a0:e6:30:81:c0:72:1e:5c:44:38:c1:5c:23:08: c1:00:6f:f3:f2:ce:df:40:a3:a3:36:31:1e:6d:98: c0:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:01:BF:F1:7C:CB:27:CC:80:BE:9D:D4:E7:98:A8:59:EB:0F:B3:44 X509v3 Authority Key Identifier: keyid:CF:E3:F3:1E:4F:33:7A:D3:81:20:1B:F3:3A:01:A6:85:FB:01:6A:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/z-PzHk8zetOBIBvzOgGmhfsBal4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z-PzHk8zetOBIBvzOgGmhfsBal4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128E00/8991EB9EE02011E982B37A3AC4F9AE02/D23C5270E02111E9B4A3923FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.77.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:37:b0:d1:49:65:cc:08:5e:e2:65:8b:66:e8:50:18:ea:82: e4:7a:ba:16:c9:1c:4d:67:cf:8e:a8:06:10:53:e1:ff:28:42: 11:1c:15:02:cd:a9:c6:71:9d:44:1b:9b:43:87:73:3a:43:a8: f0:e6:aa:a9:6a:3c:55:8a:11:b2:bd:b7:ba:b1:35:9d:42:7c: 93:61:2a:e6:35:23:1b:d5:32:79:5a:83:32:01:c2:cf:5b:e9: c8:04:86:dd:8b:02:15:2e:07:f3:c7:46:c7:6e:8e:5b:dd:4e: 11:cf:fa:cc:e8:a8:c4:98:8c:29:18:32:fb:57:b9:9a:2a:93: d0:66:34:a2:d1:d5:cb:bf:96:ad:8f:d7:fe:18:0a:69:df:a1: 9b:e0:aa:08:10:59:4c:56:e4:0f:00:5f:55:51:04:5c:3d:aa: 42:54:8b:58:47:83:72:f0:4d:68:e0:1f:bc:41:12:26:b5:99: a0:4e:ce:2b:59:d6:e9:2e:9e:63:fd:ee:9f:6e:15:2d:e0:22: 3a:5b:54:30:95:81:6a:78:46:45:41:0e:33:9c:e5:7f:a2:2f: c8:23:c0:5b:2d:35:28:b1:9a:f6:20:cf:f6:af:3c:48:cc:71: 22:b2:5d:48:f5:25:c0:3e:14:38:43:1f:d9:c1:19:26:5c:a0: 85:b6:fa:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhFMDAxMTAvBgNVBAUTKENGRTNGMzFFNEYzMzdBRDM4MTIwMUJGMzNBMDFBNjg1 RkIwMTZBNUUwHhcNMjQwMzIyMTg1NzQxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZkZDRhNS0zNDBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAywxTZ4h1VOy183YF7LPPRZ8OiJ2mD9cy5JfJTMEgHn/NfxLaE4vdwkKF7og9 VAqgGTn+4YeXSJ9bRtxyefWlpyJ/nKRZLDy6iMhGwfRIXCX5f7XLX735OixAelnX yiFZt/J8qzsYEsfjKiwcD/lVLlKRgZ2MwryikICCjJMYhcWvBxbC4G/31T9kFGYc ZAGdhvWxlWW1Vjw8lG90p9w3yWqpnvYJwrrPMJfpSaRk7vmnxA7qs+FQJIEJ9Kz5 b6Fjz/GQjIu7fdxJ8srMuiy7o3ZZMfAfNfi+TOPPrE8Zh8zuoOYwgcByHlxEOMFc IwjBAG/z8s7fQKOjNjEebZjA8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLABv/F8 yyfMgL6d1OeYqFnrD7NEMB8GA1UdIwQYMBaAFM/j8x5PM3rTgSAb8zoBpoX7AWpe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEUwMC84OTkxRUI5RUUw MjAxMUU5ODJCMzdBM0FDNEY5QUUwMi96LVB6SGs4emV0T0JJQnZ6T2dHbWhmc0Jh bDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3otUHpIazh6ZXRPQklCdnpPZ0dtaGZzQmFsNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhFMDAvODk5MUVCOUVFMDIwMTFFOTgyQjM3QTNBQzRGOUFFMDIvRDIzQzUyNzBF MDIxMTFFOUI0QTM5MjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnik0wDQYJKoZIhvcNAQELBQADggEBAAw3sNFJZcwIXuJl i2boUBjqguR6uhbJHE1nz46oBhBT4f8oQhEcFQLNqcZxnUQbm0OHczpDqPDmqqlq PFWKEbK9t7qxNZ1CfJNhKuY1IxvVMnlagzIBws9b6cgEht2LAhUuB/PHRsdujlvd ThHP+szoqMSYjCkYMvtXuZoqk9BmNKLR1cu/lq2P1/4YCmnfoZvgqggQWUxW5A8A X1VRBFw9qkJUi1hHg3LwTWjgH7xBEia1maBOzitZ1ukunmP97p9uFS3gIjpbVDCV gWp4RkVBDjOc5X+iL8gjwFstNSixmvYgz/avPEjMcSKyXUj1JcA+FDhDH9nBGSZc oIW2+uI= -----END CERTIFICATE-----Generated at Thu Jun 6 21:06:49 2024 by rpki-client on console-fra.rpki-client.org