$ rpki-client -vvf rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/DFC662EC415B11EE9E83852AC4F9AE02.roa File: DFC662EC415B11EE9E83852AC4F9AE02.roa (raw, json) Hash identifier: QTEO5MAXQNjAJQZNIuOvPQ9n5+DrX/cptcb5jtiM5q8= Subject key identifier: 71:A5:17:8D:16:2A:D2:80:39:DC:CF:41:5A:11:E4:95:A5:44:7B:DA Certificate issuer: /CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Certificate serial: 94 Authority key identifier: FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/DFC662EC415B11EE9E83852AC4F9AE02.roa Signing time: Fri 01 Mar 2024 06:47:53 +0000 ROA not before: Fri 01 Mar 2024 06:47:53 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 56301 IP address blocks: 103.85.184.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146CB4/serialNumber=FB16B19DFBF7CA6AC40A6B6A353F78578917E0FD Validity Not Before: Mar 1 06:47:53 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e17a19-e9bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:37:30:73:8b:15:47:02:a0:c9:c7:3c:24:0d: 94:43:ba:a4:0d:d3:61:c5:f9:76:e5:e2:8a:fc:83: 5f:b0:fb:e5:1b:c4:0d:66:90:52:4b:ee:95:11:d0: d9:af:19:b1:88:3d:e7:76:a1:b4:64:dc:0a:e9:d1: 86:b1:40:64:7a:ce:63:26:06:54:39:95:08:59:e0: 38:8f:61:cd:c4:ee:e4:6b:86:fa:aa:4d:16:a8:e2: 57:a7:4b:bb:45:01:f3:e4:76:78:bc:da:78:b8:5b: da:01:a9:ae:35:d8:c4:eb:f8:a9:2b:fe:08:4f:00: dc:37:7a:f6:c0:2e:16:28:e3:7d:3e:bf:44:88:e1: 67:05:72:00:e5:43:f8:40:58:93:75:79:1b:34:76: 68:b9:3a:8b:29:79:97:9a:2a:7d:b6:2e:c9:50:d8: bc:ce:32:92:08:03:70:5e:a6:78:f8:42:af:7a:21: 3c:21:51:60:84:8e:b8:c2:1f:06:70:b7:c0:24:99: 44:ca:31:d4:f5:79:94:fe:31:45:be:26:d1:29:08: 77:ce:21:98:74:4d:b5:d5:25:36:42:7c:53:fc:b6: 6a:1d:7f:80:66:58:ca:d5:2f:df:c2:22:1f:8a:aa: 63:a6:10:1d:fa:39:6c:89:9f:aa:b9:92:50:5a:28: 17:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:A5:17:8D:16:2A:D2:80:39:DC:CF:41:5A:11:E4:95:A5:44:7B:DA X509v3 Authority Key Identifier: keyid:FB:16:B1:9D:FB:F7:CA:6A:C4:0A:6B:6A:35:3F:78:57:89:17:E0:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/-xaxnfv3ymrECmtqNT94V4kX4P0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-xaxnfv3ymrECmtqNT94V4kX4P0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146CB4/2A84D1D8FDC811ED972EDB1EC4F9AE02/DFC662EC415B11EE9E83852AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.184.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:aa:dd:13:2f:cc:b1:dc:9e:5d:a7:2d:4d:93:e9:0e:65:f2: 76:d4:6b:a1:38:51:02:4b:ea:b1:9f:ba:09:f8:13:dc:b6:14: d4:a1:cd:f1:ac:12:08:a0:c3:82:a3:c7:2e:45:19:62:8a:ed: d8:d5:1f:ae:68:00:d1:03:f3:05:b4:d3:4a:de:fb:e4:59:12: 0c:48:51:d9:1e:e8:7b:79:ad:93:9e:97:ac:2a:50:fa:a7:4f: 8f:9a:74:34:68:0b:5d:a7:a1:e3:bc:28:22:89:d5:c5:74:28: 6a:19:6a:5d:ca:b9:cd:45:e1:64:62:38:fb:2d:83:bf:2a:14: 81:06:3d:54:d7:60:08:97:22:81:e8:c4:b1:9b:16:23:0e:01: ed:11:4b:cb:76:76:4d:d1:4d:9b:d0:f5:21:d9:05:c6:8c:f8: 6a:03:34:bb:d7:13:ef:5a:53:70:15:ab:fb:57:50:bc:99:8a: 41:28:05:0f:49:1b:6c:c0:f1:4e:ed:28:4b:1d:e8:c9:f6:2d: 5b:1c:c6:e9:8a:64:4c:93:f8:45:95:10:b5:44:cc:72:72:17: b1:9e:5c:a1:cf:ac:9f:d5:ed:f6:b8:06:d5:33:4c:d8:2c:4e: e7:4c:28:28:66:3c:98:85:a1:e1:d8:a0:5a:00:d6:7d:ab:01: 79:a9:70:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZDQjQxMTAvBgNVBAUTKEZCMTZCMTlERkJGN0NBNkFDNDBBNkI2QTM1M0Y3ODU3 ODkxN0UwRkQwHhcNMjQwMzAxMDY0NzUzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxN2ExOS1lOWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzDcwc4sVRwKgycc8JA2UQ7qkDdNhxfl25eKK/INfsPvlG8QNZpBSS+6VEdDZ rxmxiD3ndqG0ZNwK6dGGsUBkes5jJgZUOZUIWeA4j2HNxO7ka4b6qk0WqOJXp0u7 RQHz5HZ4vNp4uFvaAamuNdjE6/ipK/4ITwDcN3r2wC4WKON9Pr9EiOFnBXIA5UP4 QFiTdXkbNHZouTqLKXmXmip9ti7JUNi8zjKSCANwXqZ4+EKveiE8IVFghI64wh8G cLfAJJlEyjHU9XmU/jFFvibRKQh3ziGYdE211SU2QnxT/LZqHX+AZljK1S/fwiIf iqpjphAd+jlsiZ+quZJQWigX7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHGlF40W KtKAOdzPQVoR5JWlRHvaMB8GA1UdIwQYMBaAFPsWsZ3798pqxAprajU/eFeJF+D9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkNCNC8yQTg0RDFEOEZE QzgxMUVEOTcyRURCMUVDNEY5QUUwMi8teGF4bmZ2M3ltckVDbXRxTlQ5NFY0a1g0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy14YXhuZnYzeW1yRUNtdHFOVDk0VjRrWDRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZDQjQvMkE4NEQxRDhGREM4MTFFRDk3MkVEQjFFQzRGOUFFMDIvREZDNjYyRUM0 MTVCMTFFRTlFODM4NTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnVbgwDQYJKoZIhvcNAQELBQADggEBAHyq3RMvzLHcnl2n LU2T6Q5l8nbUa6E4UQJL6rGfugn4E9y2FNShzfGsEgigw4Kjxy5FGWKK7djVH65o ANED8wW000re++RZEgxIUdke6Ht5rZOel6wqUPqnT4+adDRoC12noeO8KCKJ1cV0 KGoZal3Kuc1F4WRiOPstg78qFIEGPVTXYAiXIoHoxLGbFiMOAe0RS8t2dk3RTZvQ 9SHZBcaM+GoDNLvXE+9aU3AVq/tXULyZikEoBQ9JG2zA8U7tKEsd6Mn2LVscxumK ZEyT+EWVELVEzHJyF7GeXKHPrJ/V7fa4BtUzTNgsTudMKChmPJiFoeHYoFoA1n2r AXmpcAY= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:30 2024 by rpki-client on console-fra.rpki-client.org