$ rpki-client -vvf rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/1ED040D0137511E98DD28353C4F9AE02.roa File: 1ED040D0137511E98DD28353C4F9AE02.roa (raw, json) Hash identifier: zV6REZhrlHRK9WwneyCjOZlr9H4FQ1buelUqX0wvym8= Subject key identifier: A7:6D:45:91:5F:DB:64:3B:B3:61:08:8D:AF:1B:FA:D4:82:4B:2E:B4 Certificate issuer: /CN=A915C325/serialNumber=434A4917595216BF08829DC52C2ED3A8F282048B Certificate serial: 1022 Authority key identifier: 43:4A:49:17:59:52:16:BF:08:82:9D:C5:2C:2E:D3:A8:F2:82:04:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/1ED040D0137511E98DD28353C4F9AE02.roa Signing time: Sun 04 Feb 2024 18:06:08 +0000 ROA not before: Sun 04 Feb 2024 18:06:08 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136214 IP address blocks: 103.83.204.0/22 maxlen: 24 203.89.120.0/22 maxlen: 24 2401:5740::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.crl rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 17:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4130 (0x1022) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C325/serialNumber=434A4917595216BF08829DC52C2ED3A8F282048B Validity Not Before: Feb 4 18:06:08 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bfd210-b9be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:47:a2:8e:0d:dc:8a:5e:40:d3:dd:c3:98:71: 1b:99:01:0e:58:13:d8:eb:5e:55:6c:a9:b7:52:7f: b9:98:9b:cb:3a:9b:00:a0:e1:fc:5e:28:85:98:45: e3:f0:8c:1f:ba:49:11:81:01:d2:8a:d2:2e:2c:c1: b4:9a:0e:4a:c1:e8:ad:a2:7e:38:dd:ac:08:00:5a: 8e:1a:1a:f3:d4:e3:76:fc:4e:57:1b:38:11:6c:86: 95:3c:cb:0a:13:a6:47:33:d1:c9:01:5e:c3:cc:1a: f8:58:8f:74:d4:3d:24:9e:d5:05:1d:f5:94:44:db: af:ba:41:18:8b:68:c1:6f:af:f2:76:70:83:f1:c4: 67:9f:5b:1b:1b:03:58:5f:6a:bc:65:71:f4:77:c0: 32:ca:5f:f3:c8:3c:be:68:ed:91:3f:4c:a2:98:52: 47:c6:9a:9d:4c:ce:4f:a3:bc:ae:49:3d:fc:27:43: 70:38:c7:1b:cd:ea:6a:bb:fd:32:ca:1b:3b:22:04: 01:fd:90:0f:dc:c5:1c:7b:84:1b:79:db:d1:07:68: 3e:79:59:c6:2c:f0:24:30:04:0d:7e:ca:f0:d3:ab: a3:8a:21:97:5b:76:fb:19:11:bb:83:9a:e9:11:5e: 56:d0:05:15:f2:88:9f:ac:9a:22:b7:26:ea:5c:48: 68:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:6D:45:91:5F:DB:64:3B:B3:61:08:8D:AF:1B:FA:D4:82:4B:2E:B4 X509v3 Authority Key Identifier: keyid:43:4A:49:17:59:52:16:BF:08:82:9D:C5:2C:2E:D3:A8:F2:82:04:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q0pJF1lSFr8Igp3FLC7TqPKCBIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C325/8CE7DE76137411E9A1DC1053C4F9AE02/1ED040D0137511E98DD28353C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.204.0/22 203.89.120.0/22 IPv6: 2401:5740::/32 Signature Algorithm: sha256WithRSAEncryption 98:c3:06:fb:86:3f:17:b9:a8:58:ec:d7:6b:d8:26:8e:c8:dc: 15:e1:dd:80:92:f8:35:c2:02:52:a0:99:3d:6d:c6:ba:63:f6: 9d:c9:51:4b:24:80:93:43:21:bb:ad:54:92:a7:62:ad:41:ba: fb:97:64:36:26:ab:ef:9f:6d:67:67:35:a6:ee:ee:db:4c:c5: c8:a4:06:fe:1b:38:6b:ad:56:d0:f6:bb:5d:ad:40:ef:3f:9d: 0a:01:83:0f:6e:0f:53:f2:5f:38:33:20:41:f0:3f:5c:1b:07: 9d:a5:1d:ca:24:4f:32:57:fa:b8:10:c6:66:6e:62:49:81:88: 3f:b6:b4:22:59:71:d3:c7:ea:0d:64:a0:93:35:04:d5:1a:c7: 1d:4c:34:aa:b3:c5:b3:79:1b:fc:33:74:09:10:2c:f9:77:a2: 5e:b3:a9:01:05:2f:93:f5:d8:fb:cf:94:4b:7d:f3:cf:f8:fe: 27:ff:9a:d2:8e:11:03:0c:91:f3:a2:57:50:37:2c:43:ad:b5: 68:83:be:27:8c:24:2d:4d:39:d2:e9:ee:e0:05:64:28:49:5a: b4:6a:d5:e5:e2:15:3e:91:ab:d1:4e:76:a3:2e:0b:75:e5:70: 85:84:b3:9c:67:b2:35:dc:1f:e7:fc:ce:1f:a1:89:11:4e:7b: 36:b5:c7:7d -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICECIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMzMjUxMTAvBgNVBAUTKDQzNEE0OTE3NTk1MjE2QkYwODgyOURDNTJDMkVEM0E4 RjI4MjA0OEIwHhcNMjQwMjA0MTgwNjA4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJmZDIxMC1iOWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEeijg3cil5A093DmHEbmQEOWBPY615VbKm3Un+5mJvLOpsAoOH8XiiFmEXj 8IwfukkRgQHSitIuLMG0mg5Kweiton443awIAFqOGhrz1ON2/E5XGzgRbIaVPMsK E6ZHM9HJAV7DzBr4WI901D0kntUFHfWURNuvukEYi2jBb6/ydnCD8cRnn1sbGwNY X2q8ZXH0d8Ayyl/zyDy+aO2RP0yimFJHxpqdTM5Po7yuST38J0NwOMcbzepqu/0y yhs7IgQB/ZAP3MUce4QbedvRB2g+eVnGLPAkMAQNfsrw06ujiiGXW3b7GRG7g5rp EV5W0AUV8oifrJoitybqXEhoswIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKdtRZFf 22Q7s2EIja8b+tSCSy60MB8GA1UdIwQYMBaAFENKSRdZUha/CIKdxSwu06jyggSL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzMyNS84Q0U3REU3NjEz NzQxMUU5QTFEQzEwNTNDNEY5QUUwMi9RMHBKRjFsU0ZyOElncDNGTEM3VHFQS0NC SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EwcEpGMWxTRnI4SWdwM0ZMQzdUcVBLQ0JJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMzMjUvOENFN0RFNzYxMzc0MTFFOUExREMxMDUzQzRGOUFFMDIvMUVEMDQwRDAx Mzc1MTFFOThERDI4MzUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnU8wDBALLWXgwDQQCAAIwBwMFACQBV0AwDQYJKoZIhvcN AQELBQADggEBAJjDBvuGPxe5qFjs12vYJo7I3BXh3YCS+DXCAlKgmT1txrpj9p3J UUskgJNDIbutVJKnYq1BuvuXZDYmq++fbWdnNabu7ttMxcikBv4bOGutVtD2u12t QO8/nQoBgw9uD1PyXzgzIEHwP1wbB52lHcokTzJX+rgQxmZuYkmBiD+2tCJZcdPH 6g1koJM1BNUaxx1MNKqzxbN5G/wzdAkQLPl3ol6zqQEFL5P12PvPlEt988/4/if/ mtKOEQMMkfOiV1A3LEOttWiDvieMJC1NOdLp7uAFZChJWrRq1eXiFT6Rq9FOdqMu C3XlcIWEs5xnsjXcH+f8zh+hiRFOeza1x30= -----END CERTIFICATE-----Generated at Thu Jun 6 18:47:48 2024 by rpki-client on console-fra.rpki-client.org