$ rpki-client -vvf rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/B0C5F17CC8DA11EE9340650EC4F9AE02.roa File: B0C5F17CC8DA11EE9340650EC4F9AE02.roa (raw, json) Hash identifier: 4QEzEGNUcnBGEV6lQ2Xa3sXFk3QrL6kzzt9ztlcBjuQ= Subject key identifier: 2A:C6:43:38:6A:FF:70:B3:20:09:58:DF:E1:DE:7A:FF:AE:2E:9C:3E Certificate issuer: /CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Certificate serial: 02 Authority key identifier: 8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/B0C5F17CC8DA11EE9340650EC4F9AE02.roa Signing time: Sun 11 Feb 2024 12:40:09 +0000 ROA not before: Sun 11 Feb 2024 12:40:09 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150774 IP address blocks: 103.174.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156334/serialNumber=8E8DD5B2C101B983A799C938AA0E40A651FCBE07 Validity Not Before: Feb 11 12:40:09 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65c8c029-2a1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c6:a0:1c:64:c1:26:15:71:6d:a1:63:40:13: 05:e6:31:86:f7:d5:fb:a0:50:8d:e5:f3:d5:5d:b5: 62:1c:68:06:00:23:1b:ca:31:97:b8:50:19:a8:88: 02:f6:1b:15:7f:20:a5:00:46:9a:42:e7:e9:57:54: c1:36:8b:ef:df:d0:f0:8e:21:08:10:05:3e:30:ca: 1b:84:ab:b7:28:73:19:f0:ab:8d:a4:87:b5:87:72: 2f:3c:81:ec:30:78:2b:1c:f8:de:95:2c:a7:0c:9e: 8d:8b:49:e9:75:e7:08:bf:9f:a8:63:99:19:1d:3b: 95:dd:d6:75:e0:8c:38:b0:a4:4d:4a:cd:0f:53:e4: 30:50:22:e2:7c:74:fd:1e:0d:2a:c7:e7:ed:cd:e6: 15:79:6e:84:8b:fd:2d:57:b8:9f:79:04:1c:d9:1b: 0c:39:06:d1:d8:bc:fd:cd:8f:12:59:4e:64:5b:21: d6:64:86:29:92:4d:98:76:25:8f:a1:7f:82:31:28: b1:91:04:2e:11:29:b3:41:5b:c8:39:1d:ec:27:51: 9c:ab:2d:98:b2:7a:15:2b:60:c8:a4:2d:63:86:5b: 23:ef:83:c3:a9:42:24:99:5e:39:4d:0d:5d:3d:a6: 1f:f9:8b:76:ab:97:e7:21:1d:68:59:f4:e3:3e:ff: fe:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C6:43:38:6A:FF:70:B3:20:09:58:DF:E1:DE:7A:FF:AE:2E:9C:3E X509v3 Authority Key Identifier: keyid:8E:8D:D5:B2:C1:01:B9:83:A7:99:C9:38:AA:0E:40:A6:51:FC:BE:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/jo3VssEBuYOnmck4qg5AplH8vgc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jo3VssEBuYOnmck4qg5AplH8vgc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156334/E7CDDFCEC8D811EE9F4AB96DC4F9AE02/B0C5F17CC8DA11EE9340650EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.192.0/24 Signature Algorithm: sha256WithRSAEncryption 54:4a:92:5a:ff:27:16:a2:2c:73:58:36:23:31:81:34:ac:62: 98:fb:dd:5f:ff:9e:40:90:fc:46:e4:74:78:43:ac:e8:c5:4a: 15:27:ab:ea:ec:85:31:57:42:59:32:0a:7a:9c:24:92:03:47: a6:53:d9:2f:66:3a:38:fa:97:2a:c6:90:49:be:74:10:a5:96: da:03:8d:44:da:5f:e1:96:e1:5f:41:21:49:d2:c9:00:0d:0a: d4:de:31:90:b2:5d:63:23:c5:73:a4:51:f5:6a:96:27:76:5c: 0e:29:51:74:91:d9:ae:4d:62:0b:f7:76:df:42:67:40:a0:6e: 1c:cd:6d:6d:cd:ff:32:56:7c:21:8a:a2:8d:07:43:8b:26:fa: e4:11:5c:80:1f:93:da:d6:fd:58:fd:a2:6c:18:36:ad:ed:27: 1c:4c:40:9c:76:1e:7a:68:8b:1d:2d:83:1c:10:50:e1:6a:93: 58:79:76:2d:1b:bf:11:24:37:94:c2:f5:b2:eb:c4:cd:d7:d7: d6:f1:fe:e0:e6:94:da:50:b5:d2:62:24:52:50:cf:89:84:98: 43:ca:f3:e7:85:b1:da:df:6b:6e:01:69:c2:f6:f3:72:e9:d8: 97:f6:87:d9:35:7a:96:fa:c4:f9:68:53:ac:d0:6f:bf:d7:97: 51:5c:5a:9a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NjMzNDExMC8GA1UEBRMoOEU4REQ1QjJDMTAxQjk4M0E3OTlDOTM4QUEwRTQwQTY1 MUZDQkUwNzAeFw0yNDAyMTExMjQwMDlaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzhjMDI5LTJhMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2xqAcZMEmFXFtoWNAEwXmMYb31fugUI3l89VdtWIcaAYAIxvKMZe4UBmoiAL2 GxV/IKUARppC5+lXVME2i+/f0PCOIQgQBT4wyhuEq7cocxnwq42kh7WHci88geww eCsc+N6VLKcMno2LSel15wi/n6hjmRkdO5Xd1nXgjDiwpE1KzQ9T5DBQIuJ8dP0e DSrH5+3N5hV5boSL/S1XuJ95BBzZGww5BtHYvP3NjxJZTmRbIdZkhimSTZh2JY+h f4IxKLGRBC4RKbNBW8g5HewnUZyrLZiyehUrYMikLWOGWyPvg8OpQiSZXjlNDV09 ph/5i3arl+chHWhZ9OM+//7zAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKsZDOGr/ cLMgCVjf4d56/64unD4wHwYDVR0jBBgwFoAUjo3VssEBuYOnmck4qg5AplH8vgcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU2MzM0L0U3Q0RERkNFQzhE ODExRUU5RjRBQjk2REM0RjlBRTAyL2pvM1Zzc0VCdVlPbm1jazRxZzVBcGxIOHZn Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvam8zVnNzRUJ1WU9ubWNrNHFnNUFwbEg4dmdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NjMzNC9FN0NEREZDRUM4RDgxMUVFOUY0QUI5NkRDNEY5QUUwMi9CMEM1RjE3Q0M4 REExMUVFOTM0MDY1MEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeuwDANBgkqhkiG9w0BAQsFAAOCAQEAVEqSWv8nFqIsc1g2 IzGBNKximPvdX/+eQJD8RuR0eEOs6MVKFSer6uyFMVdCWTIKepwkkgNHplPZL2Y6 OPqXKsaQSb50EKWW2gONRNpf4ZbhX0EhSdLJAA0K1N4xkLJdYyPFc6RR9WqWJ3Zc DilRdJHZrk1iC/d230JnQKBuHM1tbc3/MlZ8IYqijQdDiyb65BFcgB+T2tb9WP2i bBg2re0nHExAnHYeemiLHS2DHBBQ4WqTWHl2LRu/ESQ3lML1suvEzdfX1vH+4OaU 2lC10mIkUlDPiYSYQ8rz54Wx2t9rbgFpwvbzcunYl/aH2TV6lvrE+WhTrNBvv9eX UVxamg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:27 2024 by rpki-client on console-fra.rpki-client.org