$ rpki-client -vvf rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/E82A7D8840CE11EABBE63B6BC4F9AE02.roa File: E82A7D8840CE11EABBE63B6BC4F9AE02.roa (raw, json) Hash identifier: haC4mzBCka2C4XI2abEqyRFQojyis7K+gx1fbeV1iug= Subject key identifier: 51:7C:92:6A:D7:9D:12:2B:33:EB:34:28:DF:CD:42:52:EA:CA:DF:6C Certificate issuer: /CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Certificate serial: 0A52 Authority key identifier: D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/E82A7D8840CE11EABBE63B6BC4F9AE02.roa Signing time: Thu 16 May 2024 20:59:33 +0000 ROA not before: Thu 16 May 2024 20:59:33 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 58616 IP address blocks: 103.9.184.0/24 maxlen: 24 103.9.186.0/24 maxlen: 24 2404:d00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 20:19:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2642 (0xa52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157705/serialNumber=D6183A6167EC2E4A7247070F1F0B39B6B9C953E1 Validity Not Before: May 16 20:59:33 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=664673b4-1b5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a7:9d:3c:12:6a:3b:c3:c3:fe:dd:09:5f:38: 20:25:20:be:b6:ae:c1:ae:dc:43:f5:8d:97:43:96: cf:c3:20:98:61:4b:43:c2:9e:08:88:14:24:ed:ac: 74:1c:46:ed:36:07:9d:03:34:9e:91:00:61:31:f4: e1:6e:9f:a8:75:cd:b0:59:a2:db:3c:ce:cb:6b:8e: bf:da:1c:23:d5:13:f8:84:e3:5f:0b:ff:91:53:74: 67:8d:f7:99:cf:61:2b:9c:13:7d:fa:58:4a:35:7f: 1f:ca:7d:ab:db:03:ef:52:1d:6a:62:15:e3:ad:a3: 9e:99:c7:5f:07:a6:8c:72:80:30:44:b0:e5:f6:86: b5:40:82:0f:85:4f:44:0c:2c:45:f0:18:f8:a0:93: ed:d9:25:31:6c:ad:a6:6f:61:66:23:04:a4:54:3b: ab:37:93:bc:5b:00:02:29:57:54:2b:a6:cf:26:dc: 4d:f7:70:bd:48:47:e7:85:69:ad:22:b1:75:3e:62: ac:62:4b:55:fe:b4:6b:7a:c2:88:7f:9f:38:4d:a6: e0:4d:46:1c:0e:2f:21:ab:c4:3c:77:36:68:c5:9e: 48:43:7e:99:26:bc:a8:97:f3:7d:df:e3:ae:1c:de: 3a:8d:3f:33:50:d6:7e:a2:26:bb:9e:7e:f5:80:cc: f2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:7C:92:6A:D7:9D:12:2B:33:EB:34:28:DF:CD:42:52:EA:CA:DF:6C X509v3 Authority Key Identifier: keyid:D6:18:3A:61:67:EC:2E:4A:72:47:07:0F:1F:0B:39:B6:B9:C9:53:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/1hg6YWfsLkpyRwcPHws5trnJU-E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1hg6YWfsLkpyRwcPHws5trnJU-E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157705/33FAE6F440CE11EABECD676AC4F9AE02/E82A7D8840CE11EABBE63B6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.184.0/24 103.9.186.0/24 IPv6: 2404:d00::/32 Signature Algorithm: sha256WithRSAEncryption 7c:02:6e:be:d2:5b:61:30:43:a4:87:34:85:db:15:37:c1:eb: 8c:94:67:72:d9:54:03:dd:64:2e:70:14:e2:9c:1b:98:e3:16: a3:b4:c8:2e:a2:ad:db:7f:cc:c5:89:9c:66:d2:71:17:df:17: 23:8b:71:22:ac:76:e4:4d:20:22:b6:6a:7e:82:cf:98:11:7d: 94:b1:a0:18:3e:b9:8e:5b:87:2b:15:d9:94:0f:c1:48:5f:f2: ca:71:5c:9d:70:0c:d4:f9:c3:5b:d9:4d:51:c6:c8:92:55:91: 9e:d0:f2:4c:a7:f7:9d:13:b2:ca:ba:a0:0c:ca:0f:86:4b:1f: c6:52:1c:ea:67:f9:d0:e7:15:6a:2b:37:23:6d:99:63:8f:7d: 22:05:48:00:7b:73:ef:5c:c9:23:96:b0:9a:89:29:15:89:be: de:89:72:88:1a:04:52:1d:c2:09:d7:89:d7:22:dc:ac:1c:14: e6:a7:be:99:26:67:14:90:7d:76:41:55:f1:74:fc:4a:53:b5: 49:42:df:0f:0b:f7:3e:1d:c3:1a:77:98:fb:30:76:47:ee:6f: f3:c7:b0:9a:08:aa:8a:d7:99:29:57:7e:67:fd:a4:05:01:a3: 06:b5:d3:64:45:a0:b2:78:43:90:2e:dd:ab:22:c6:38:e0:bb: 5d:44:75:9b -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICClIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc3MDUxMTAvBgNVBAUTKEQ2MTgzQTYxNjdFQzJFNEE3MjQ3MDcwRjFGMEIzOUI2 QjlDOTUzRTEwHhcNMjQwNTE2MjA1OTMzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2NzNiNC0xYjVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aedPBJqO8PD/t0JXzggJSC+tq7BrtxD9Y2XQ5bPwyCYYUtDwp4IiBQk7ax0 HEbtNgedAzSekQBhMfThbp+odc2wWaLbPM7La46/2hwj1RP4hONfC/+RU3RnjfeZ z2ErnBN9+lhKNX8fyn2r2wPvUh1qYhXjraOemcdfB6aMcoAwRLDl9oa1QIIPhU9E DCxF8Bj4oJPt2SUxbK2mb2FmIwSkVDurN5O8WwACKVdUK6bPJtxN93C9SEfnhWmt IrF1PmKsYktV/rRresKIf584TabgTUYcDi8hq8Q8dzZoxZ5IQ36ZJryol/N93+Ou HN46jT8zUNZ+oia7nn71gMzy7wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFF8kmrX nRIrM+s0KN/NQlLqyt9sMB8GA1UdIwQYMBaAFNYYOmFn7C5KckcHDx8LOba5yVPh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzcwNS8zM0ZBRTZGNDQw Q0UxMUVBQkVDRDY3NkFDNEY5QUUwMi8xaGc2WVdmc0xrcHlSd2NQSHdzNXRybkpV LUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFoZzZZV2ZzTGtweVJ3Y1BId3M1dHJuSlUtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTc3MDUvMzNGQUU2RjQ0MENFMTFFQUJFQ0Q2NzZBQzRGOUFFMDIvRTgyQTdEODg0 MENFMTFFQUJCRTYzQjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABnCbgDBABnCbowDQQCAAIwBwMFACQEDQAwDQYJKoZIhvcN AQELBQADggEBAHwCbr7SW2EwQ6SHNIXbFTfB64yUZ3LZVAPdZC5wFOKcG5jjFqO0 yC6irdt/zMWJnGbScRffFyOLcSKsduRNICK2an6Cz5gRfZSxoBg+uY5bhysV2ZQP wUhf8spxXJ1wDNT5w1vZTVHGyJJVkZ7Q8kyn950Tssq6oAzKD4ZLH8ZSHOpn+dDn FWorNyNtmWOPfSIFSAB7c+9cySOWsJqJKRWJvt6JcogaBFIdwgnXidci3KwcFOan vpkmZxSQfXZBVfF0/EpTtUlC3w8L9z4dwxp3mPswdkfub/PHsJoIqorXmSlXfmf9 pAUBowa102RFoLJ4Q5Au3asixjjgu11EdZs= -----END CERTIFICATE-----Generated at Fri Jun 14 21:14:24 2024 by rpki-client on console-fra.rpki-client.org