$ rpki-client -vvf rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/41D236B27D2D11EDAFFEDF7CC4F9AE02.roa File: 41D236B27D2D11EDAFFEDF7CC4F9AE02.roa (raw, json) Hash identifier: 9gGaws8FgVlbbs1c3Jna09SH8lkjBGf6jFRMXVIFpTo= Subject key identifier: CE:40:3E:8F:A1:59:96:84:62:75:5B:A2:F7:18:A4:B1:4D:DB:50:4E Certificate issuer: /CN=A913A8A4/serialNumber=4D176A0B457A6E5695D37A7ECB8DCB3A73CB4812 Certificate serial: 10F8 Authority key identifier: 4D:17:6A:0B:45:7A:6E:56:95:D3:7A:7E:CB:8D:CB:3A:73:CB:48:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRdqC0V6blaV03p-y43LOnPLSBI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/41D236B27D2D11EDAFFEDF7CC4F9AE02.roa Signing time: Thu 02 Nov 2023 18:05:13 +0000 ROA not before: Thu 02 Nov 2023 18:05:13 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 140096 IP address blocks: 103.102.4.0/22 maxlen: 23 103.102.4.0/24 maxlen: 24 103.102.5.0/24 maxlen: 24 103.102.6.0/24 maxlen: 24 103.102.7.0/24 maxlen: 24 182.255.32.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/TRdqC0V6blaV03p-y43LOnPLSBI.crl rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/TRdqC0V6blaV03p-y43LOnPLSBI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRdqC0V6blaV03p-y43LOnPLSBI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4344 (0x10f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A8A4/serialNumber=4D176A0B457A6E5695D37A7ECB8DCB3A73CB4812 Validity Not Before: Nov 2 18:05:13 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6543e4d8-161a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:ed:b7:ed:8c:11:a1:f9:24:4d:8d:5a:24:52: ac:98:03:2b:18:7d:fb:37:63:78:fe:8f:23:b2:6d: 94:be:7a:c6:0f:0b:17:7b:8f:c1:43:4a:9e:2b:51: 7c:c3:05:08:c6:86:e4:ed:46:f8:af:68:fd:fe:3b: 81:15:80:ad:7b:74:a0:7e:f7:f6:a3:f5:f2:d6:92: aa:d9:fb:e8:db:ff:a1:b5:e5:00:91:56:21:b6:f3: 90:7e:dd:72:ab:26:02:fd:af:b2:c9:18:69:86:90: e4:91:d7:94:60:92:ae:48:39:b7:e4:f9:71:10:80: cb:d3:5c:d7:35:6a:78:f3:58:21:3d:29:6a:97:65: 9c:db:fa:06:3e:56:c9:43:af:6b:70:ea:d2:02:76: 08:f7:52:00:81:29:cc:17:55:d1:77:8d:c7:b8:a2: 49:ec:81:96:2d:b5:6d:b9:15:a4:b3:b3:6b:37:43: a8:e2:e1:dc:3b:9d:a3:e9:20:9f:ea:02:6b:47:e0: 0f:e9:2e:d1:20:04:4c:c1:f7:7b:32:36:e0:7d:37: 0d:c8:4a:1e:87:01:cd:da:5f:98:37:e5:2c:be:8a: b6:f1:ed:75:a4:42:6b:26:46:34:55:25:80:f8:cd: d2:51:f8:93:e7:bd:3f:d8:7f:b8:5c:5f:b1:d6:0f: 3d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:40:3E:8F:A1:59:96:84:62:75:5B:A2:F7:18:A4:B1:4D:DB:50:4E X509v3 Authority Key Identifier: keyid:4D:17:6A:0B:45:7A:6E:56:95:D3:7A:7E:CB:8D:CB:3A:73:CB:48:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/TRdqC0V6blaV03p-y43LOnPLSBI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TRdqC0V6blaV03p-y43LOnPLSBI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A8A4/790E610CE9C311E8A9CED648C4F9AE02/41D236B27D2D11EDAFFEDF7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.4.0/22 182.255.32.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:fe:01:81:51:ea:29:1a:c4:7e:2c:66:37:eb:7b:58:9d:db: 69:d9:e3:83:00:cb:c3:52:e6:39:ae:61:0d:07:a7:56:bb:fc: 1f:46:db:db:f2:6f:97:ed:20:e2:04:ec:3d:bb:5c:cd:73:d4: bf:bf:23:b9:7d:e4:5d:67:87:2d:07:28:d2:5c:38:a2:70:b5: d2:63:bf:9e:96:85:82:85:61:b7:54:4d:7c:17:01:29:a0:c1: f0:81:e2:51:92:0c:8c:d5:a1:24:2c:0c:5e:12:28:42:51:f4: ba:03:48:2d:28:20:04:80:06:a1:c4:89:4b:81:ee:bd:91:98: 41:3f:af:b0:b9:ca:6b:55:56:d9:e0:38:f6:f5:8c:de:dd:78: b7:3c:40:49:5a:50:70:7d:cc:52:37:69:d5:79:c2:4f:a3:ba: da:8e:e3:32:10:7b:ce:7b:96:ef:1f:89:78:6a:16:f9:95:d3: 20:be:8c:65:da:22:3c:f6:c8:6b:42:4f:9c:56:60:b4:55:7b: 15:5a:fd:ae:78:fb:90:b6:18:18:25:bb:f9:4e:92:85:6a:7e: 58:7c:c7:f4:24:9e:15:d1:1c:b2:ee:de:f2:f3:37:c9:5f:6b: 22:40:71:d2:0d:7a:d3:91:85:38:a6:f6:cf:03:66:c1:69:ea: ff:83:5b:ce -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E4QTQxMTAvBgNVBAUTKDREMTc2QTBCNDU3QTZFNTY5NUQzN0E3RUNCOERDQjNB NzNDQjQ4MTIwHhcNMjMxMTAyMTgwNTEzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQzZTRkOC0xNjFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvO237YwRofkkTY1aJFKsmAMrGH37N2N4/o8jsm2UvnrGDwsXe4/BQ0qeK1F8 wwUIxobk7Ub4r2j9/juBFYCte3Sgfvf2o/Xy1pKq2fvo2/+hteUAkVYhtvOQft1y qyYC/a+yyRhphpDkkdeUYJKuSDm35PlxEIDL01zXNWp481ghPSlql2Wc2/oGPlbJ Q69rcOrSAnYI91IAgSnMF1XRd43HuKJJ7IGWLbVtuRWks7NrN0Oo4uHcO52j6SCf 6gJrR+AP6S7RIARMwfd7MjbgfTcNyEoehwHN2l+YN+Usvoq28e11pEJrJkY0VSWA +M3SUfiT570/2H+4XF+x1g89xwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM5APo+h WZaEYnVbovcYpLFN21BOMB8GA1UdIwQYMBaAFE0XagtFem5WldN6fsuNyzpzy0gS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQThBNC83OTBFNjEwQ0U5 QzMxMUU4QTlDRUQ2NDhDNEY5QUUwMi9UUmRxQzBWNmJsYVYwM3AteTQzTE9uUExT QkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RSZHFDMFY2YmxhVjAzcC15NDNMT25QTFNCSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0E4QTQvNzkwRTYxMENFOUMzMTFFOEE5Q0VENjQ4QzRGOUFFMDIvNDFEMjM2QjI3 RDJEMTFFREFGRkVERjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnZgQDBAK2/yAwDQYJKoZIhvcNAQELBQADggEBAFv+AYFR 6ikaxH4sZjfre1id22nZ44MAy8NS5jmuYQ0Hp1a7/B9G29vyb5ftIOIE7D27XM1z 1L+/I7l95F1nhy0HKNJcOKJwtdJjv56WhYKFYbdUTXwXASmgwfCB4lGSDIzVoSQs DF4SKEJR9LoDSC0oIASABqHEiUuB7r2RmEE/r7C5ymtVVtngOPb1jN7deLc8QEla UHB9zFI3adV5wk+jutqO4zIQe857lu8fiXhqFvmV0yC+jGXaIjz2yGtCT5xWYLRV exVa/a54+5C2GBglu/lOkoVqflh8x/QknhXRHLLu3vLzN8lfayJAcdINetORhTim 9s8DZsFp6v+DW84= -----END CERTIFICATE-----Generated at Fri May 31 19:47:47 2024 by rpki-client on console-fra.rpki-client.org