$ rpki-client -vvf rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/B5A6646A4EA211EC9AEBA24CC4F9AE02.roa File: B5A6646A4EA211EC9AEBA24CC4F9AE02.roa (raw, json) Hash identifier: pT1jOJBxibqfgL7ao1iXWPPeCYrzlcJhLrCdb7QZ8Kk= Subject key identifier: EB:76:D1:23:1F:6E:F3:6D:7D:2B:6A:90:BB:88:7B:CE:5F:F2:6F:CB Certificate issuer: /CN=A915D4EA/serialNumber=0F804F17EC357CBF300D3BB2FA9CCD2A360AD5E2 Certificate serial: 035B Authority key identifier: 0F:80:4F:17:EC:35:7C:BF:30:0D:3B:B2:FA:9C:CD:2A:36:0A:D5:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D4BPF-w1fL8wDTuy-pzNKjYK1eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/B5A6646A4EA211EC9AEBA24CC4F9AE02.roa Signing time: Fri 29 Dec 2023 02:03:57 +0000 ROA not before: Fri 29 Dec 2023 02:03:57 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149025 IP address blocks: 103.176.220.0/23 maxlen: 24 2400:3620::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/D4BPF-w1fL8wDTuy-pzNKjYK1eI.crl rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/D4BPF-w1fL8wDTuy-pzNKjYK1eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D4BPF-w1fL8wDTuy-pzNKjYK1eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 859 (0x35b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D4EA/serialNumber=0F804F17EC357CBF300D3BB2FA9CCD2A360AD5E2 Validity Not Before: Dec 29 02:03:57 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658e290d-117c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c7:2f:bb:24:41:f2:a0:56:81:1b:fa:49:51: 10:44:dd:71:47:78:3b:fb:76:d5:d5:db:b7:16:dd: e1:31:be:9d:30:e4:e7:0b:7d:ac:90:d8:94:23:ec: 6b:57:36:d3:2e:81:79:62:08:88:77:c1:7a:3c:2f: a5:57:ae:c0:c2:aa:eb:40:8d:23:d0:5a:0c:51:12: 46:e5:f6:8d:ff:f9:70:aa:0a:72:0d:2c:d6:9a:51: 0d:31:cc:50:b3:f6:4f:7a:8b:c3:e5:94:af:09:7d: df:a8:3a:9f:72:83:d7:dc:9b:48:96:57:23:47:be: c2:b0:66:7c:6d:b5:c2:89:de:fa:98:ed:e9:7a:fe: a1:da:63:5c:0f:a5:11:a9:c8:ef:94:13:76:b2:b3: da:b0:1a:6e:69:dc:00:09:11:33:68:68:9d:86:64: ec:c3:2c:cd:5d:5f:c2:9a:ff:f8:f7:4b:90:c3:13: 68:2a:49:dc:5f:78:3e:47:a0:f1:d1:f6:4f:45:cc: cb:ba:49:30:b4:cd:4e:97:c4:7e:c4:a9:8a:6f:5e: b3:a4:7d:1e:e5:19:01:e5:1f:22:9a:4e:de:cd:af: c4:95:1f:9e:13:bf:39:9c:c0:a1:45:5a:08:e5:2d: b8:2f:92:24:35:a7:87:64:2d:81:14:02:65:91:c4: 78:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:76:D1:23:1F:6E:F3:6D:7D:2B:6A:90:BB:88:7B:CE:5F:F2:6F:CB X509v3 Authority Key Identifier: keyid:0F:80:4F:17:EC:35:7C:BF:30:0D:3B:B2:FA:9C:CD:2A:36:0A:D5:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/D4BPF-w1fL8wDTuy-pzNKjYK1eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D4BPF-w1fL8wDTuy-pzNKjYK1eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D4EA/700FCF284E9C11ECAA488671C4F9AE02/B5A6646A4EA211EC9AEBA24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.220.0/23 IPv6: 2400:3620::/32 Signature Algorithm: sha256WithRSAEncryption 28:25:24:fa:9f:a9:f8:9a:4a:b3:35:eb:89:72:ad:5e:d7:f0: 37:19:8c:ef:3e:fc:99:aa:bc:8a:a8:be:e1:83:55:0e:0b:a7: 07:c9:20:70:7b:43:e9:55:56:b8:68:18:dc:a0:84:dd:00:a2: 3b:9e:df:7e:ee:f6:b8:e2:44:f3:0c:4f:ab:27:e9:5f:b7:07: cd:d7:77:57:dd:00:06:3d:d3:d1:15:e0:00:4f:e1:9f:ce:7d: 99:fd:c2:59:62:53:46:0d:87:e3:da:5d:b4:44:d0:09:01:eb: ca:72:9a:0a:69:27:2d:3c:e0:24:d2:0c:65:49:d8:c4:53:ad: 66:be:94:2b:07:d4:cd:fb:a8:71:ca:9e:03:44:e0:59:f6:ed: 55:31:ee:a5:49:e6:2b:75:7a:9e:e7:41:ca:7e:1f:45:e9:65: c9:d3:b1:49:63:fd:9c:44:37:86:47:1d:f2:b6:f9:e5:3e:3b: 6a:f0:73:ba:79:35:1a:c7:20:e7:ef:8c:5f:a0:10:b2:aa:71: 04:78:82:c3:5b:26:b0:dd:8c:b0:3d:75:bf:8b:81:86:02:21: 02:2e:99:b7:8e:53:b7:68:f7:a8:6d:d3:fe:5b:c8:c5:5f:a7: 92:bd:03:90:d8:a8:5a:bc:a5:d5:99:2d:ba:31:e9:79:11:d4: 1e:5b:3c:3d -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQ0RUExMTAvBgNVBAUTKDBGODA0RjE3RUMzNTdDQkYzMDBEM0JCMkZBOUNDRDJB MzYwQUQ1RTIwHhcNMjMxMjI5MDIwMzU3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThlMjkwZC0xMTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxMcvuyRB8qBWgRv6SVEQRN1xR3g7+3bV1du3Ft3hMb6dMOTnC32skNiUI+xr VzbTLoF5YgiId8F6PC+lV67AwqrrQI0j0FoMURJG5faN//lwqgpyDSzWmlENMcxQ s/ZPeovD5ZSvCX3fqDqfcoPX3JtIllcjR77CsGZ8bbXCid76mO3pev6h2mNcD6UR qcjvlBN2srPasBpuadwACREzaGidhmTswyzNXV/Cmv/490uQwxNoKkncX3g+R6Dx 0fZPRczLukkwtM1Ol8R+xKmKb16zpH0e5RkB5R8imk7eza/ElR+eE785nMChRVoI 5S24L5IkNaeHZC2BFAJlkcR4ewIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOt20SMf bvNtfStqkLuIe85f8m/LMB8GA1UdIwQYMBaAFA+ATxfsNXy/MA07svqczSo2CtXi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDRFQS83MDBGQ0YyODRF OUMxMUVDQUE0ODg2NzFDNEY5QUUwMi9ENEJQRi13MWZMOHdEVHV5LXB6TktqWUsx ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q0QlBGLXcxZkw4d0RUdXktcHpOS2pZSzFlSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQ0RUEvNzAwRkNGMjg0RTlDMTFFQ0FBNDg4NjcxQzRGOUFFMDIvQjVBNjY0NkE0 RUEyMTFFQzlBRUJBMjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsNwwDQQCAAIwBwMFACQANiAwDQYJKoZIhvcNAQELBQAD ggEBACglJPqfqfiaSrM164lyrV7X8DcZjO8+/JmqvIqovuGDVQ4LpwfJIHB7Q+lV VrhoGNyghN0Aojue337u9rjiRPMMT6sn6V+3B83Xd1fdAAY909EV4ABP4Z/OfZn9 wlliU0YNh+PaXbRE0AkB68pymgppJy084CTSDGVJ2MRTrWa+lCsH1M37qHHKngNE 4Fn27VUx7qVJ5it1ep7nQcp+H0XpZcnTsUlj/ZxEN4ZHHfK2+eU+O2rwc7p5NRrH IOfvjF+gELKqcQR4gsNbJrDdjLA9db+LgYYCIQIumbeOU7do96ht0/5byMVfp5K9 A5DYqFq8pdWZLbox6XkR1B5bPD0= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:34 2024 by rpki-client on console-fra.rpki-client.org