$ rpki-client -vvf rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/5D5A631E93D211EBAABA8D6AC4F9AE02.roa File: 5D5A631E93D211EBAABA8D6AC4F9AE02.roa (raw, json) Hash identifier: VbixlrcYm3LEti002JR+XkxlM0l6K+swgtUolMlyd4U= Subject key identifier: B3:EE:AD:4B:E6:9F:C6:66:BC:24:58:A7:06:AA:6F:CB:0A:7C:2D:2F Certificate issuer: /CN=A917C373/serialNumber=DC474D6B25D5E1A1CD1D29000CCC14EAF93341D2 Certificate serial: 1D50 Authority key identifier: DC:47:4D:6B:25:D5:E1:A1:CD:1D:29:00:0C:CC:14:EA:F9:33:41:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3EdNayXV4aHNHSkADMwU6vkzQdI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/5D5A631E93D211EBAABA8D6AC4F9AE02.roa Signing time: Mon 28 Aug 2023 16:33:13 +0000 ROA not before: Mon 28 Aug 2023 16:33:13 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 399502 IP address blocks: 103.70.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/3EdNayXV4aHNHSkADMwU6vkzQdI.crl rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/3EdNayXV4aHNHSkADMwU6vkzQdI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3EdNayXV4aHNHSkADMwU6vkzQdI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 16:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7504 (0x1d50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C373/serialNumber=DC474D6B25D5E1A1CD1D29000CCC14EAF93341D2 Validity Not Before: Aug 28 16:33:13 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64eccc49-9fc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:b4:f2:67:76:70:32:2d:bb:b5:6b:1f:bc:a5: 34:5b:45:63:9d:52:b6:a8:4a:ea:31:a1:e9:83:25: 78:f2:d2:df:e4:92:a6:50:17:02:37:b1:0f:d6:c0: 56:5b:5c:b7:e7:57:33:29:b9:7f:a4:1a:85:d4:03: 6c:55:7d:ff:92:f9:40:5a:a7:f3:ad:ca:94:25:fa: cd:db:20:f8:28:dd:33:5f:d2:9b:db:56:c4:fd:f5: 5b:6a:ca:a9:d0:d7:ae:e1:a3:30:6e:9a:80:5e:96: b6:45:e2:78:2b:52:e3:0d:b5:c6:4e:27:d9:8e:22: 4b:ef:f7:4d:60:76:aa:e4:6e:6c:75:0e:1a:b4:fe: 97:3f:ee:1e:ca:e2:cf:7d:f3:e0:ca:6e:ef:50:f7: 25:53:ff:11:9f:b5:ea:eb:31:70:86:3f:df:b3:d0: 07:4b:df:1d:27:f9:71:5e:a4:aa:43:12:fb:8e:fa: a3:25:fe:dd:9e:80:f1:5e:f1:d8:33:44:20:68:30: 47:d0:7c:37:3a:29:6a:a7:81:76:09:2a:44:e5:98: 09:99:d2:cc:6c:fc:fb:e6:50:3f:eb:1e:8c:48:f5: 94:2c:87:71:f6:3c:42:77:45:11:36:f7:17:2a:36: a2:4e:47:a2:f2:5b:e1:da:21:23:a4:70:3a:8a:6e: 7a:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:EE:AD:4B:E6:9F:C6:66:BC:24:58:A7:06:AA:6F:CB:0A:7C:2D:2F X509v3 Authority Key Identifier: keyid:DC:47:4D:6B:25:D5:E1:A1:CD:1D:29:00:0C:CC:14:EA:F9:33:41:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/3EdNayXV4aHNHSkADMwU6vkzQdI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3EdNayXV4aHNHSkADMwU6vkzQdI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C373/CFCAC6106FF511E69F2B1023C4F9AE02/5D5A631E93D211EBAABA8D6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.137.0/24 Signature Algorithm: sha256WithRSAEncryption b8:ce:53:25:2a:a0:55:39:42:e6:ea:dc:38:c2:88:1f:26:45: b4:1c:ad:db:18:c4:9f:83:72:7f:4a:0e:67:09:7e:15:75:61: f6:51:df:81:74:1c:8f:8e:7c:37:0c:3a:d3:54:45:9f:d1:56: 3e:76:a9:74:e1:86:2f:0c:0b:f4:35:0b:bc:9f:fd:de:53:51: d0:c1:2e:4e:a4:e6:a9:bb:31:e1:33:17:d6:0b:ad:79:81:71: 90:7e:4e:3a:48:a5:0c:9e:b5:c0:4d:2b:5b:cc:de:f9:e0:29: 35:d4:11:d8:58:b8:df:dd:cf:5e:35:d5:28:2f:4f:12:88:d9: 1a:3a:33:7f:86:ce:70:fa:87:43:36:c8:1c:75:9d:14:df:9a: 29:0c:f2:18:77:dc:77:a5:16:94:3a:c7:15:76:4e:22:ec:13: e6:6b:4a:8d:cd:64:5b:5d:50:09:71:be:e4:f1:91:89:c9:ca: cf:8a:12:78:b2:f2:c7:3e:25:8c:63:68:3f:65:46:36:f2:be: 7c:18:44:57:c9:3e:a8:2d:78:03:29:09:23:4b:95:fa:aa:af: d9:ff:34:bc:95:19:56:d0:31:1a:87:81:ea:6b:f3:0f:4a:5b: aa:db:89:30:35:66:48:48:e0:43:c6:6f:c0:98:f1:ea:a2:df: 60:4b:22:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHVAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MzNzMxMTAvBgNVBAUTKERDNDc0RDZCMjVENUUxQTFDRDFEMjkwMDBDQ0MxNEVB RjkzMzQxRDIwHhcNMjMwODI4MTYzMzEzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVjY2M0OS05ZmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkrTyZ3ZwMi27tWsfvKU0W0VjnVK2qErqMaHpgyV48tLf5JKmUBcCN7EP1sBW W1y351czKbl/pBqF1ANsVX3/kvlAWqfzrcqUJfrN2yD4KN0zX9Kb21bE/fVbasqp 0Neu4aMwbpqAXpa2ReJ4K1LjDbXGTifZjiJL7/dNYHaq5G5sdQ4atP6XP+4eyuLP ffPgym7vUPclU/8Rn7Xq6zFwhj/fs9AHS98dJ/lxXqSqQxL7jvqjJf7dnoDxXvHY M0QgaDBH0Hw3Oilqp4F2CSpE5ZgJmdLMbPz75lA/6x6MSPWULIdx9jxCd0URNvcX KjaiTkei8lvh2iEjpHA6im56NQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLPurUvm n8ZmvCRYpwaqb8sKfC0vMB8GA1UdIwQYMBaAFNxHTWsl1eGhzR0pAAzMFOr5M0HS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzM3My9DRkNBQzYxMDZG RjUxMUU2OUYyQjEwMjNDNEY5QUUwMi8zRWROYXlYVjRhSE5IU2tBRE13VTZ2a3pR ZEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNFZE5heVhWNGFITkhTa0FETXdVNnZrelFkSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MzNzMvQ0ZDQUM2MTA2RkY1MTFFNjlGMkIxMDIzQzRGOUFFMDIvNUQ1QTYzMUU5 M0QyMTFFQkFBQkE4RDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnRokwDQYJKoZIhvcNAQELBQADggEBALjOUyUqoFU5Qubq 3DjCiB8mRbQcrdsYxJ+Dcn9KDmcJfhV1YfZR34F0HI+OfDcMOtNURZ/RVj52qXTh hi8MC/Q1C7yf/d5TUdDBLk6k5qm7MeEzF9YLrXmBcZB+TjpIpQyetcBNK1vM3vng KTXUEdhYuN/dz1411SgvTxKI2Ro6M3+GznD6h0M2yBx1nRTfmikM8hh33HelFpQ6 xxV2TiLsE+ZrSo3NZFtdUAlxvuTxkYnJys+KEniy8sc+JYxjaD9lRjbyvnwYRFfJ PqgteAMpCSNLlfqqr9n/NLyVGVbQMRqHgepr8w9KW6rbiTA1ZkhI4EPGb8CY8eqi 32BLItI= -----END CERTIFICATE-----Generated at Fri Jun 14 18:52:10 2024 by rpki-client on console-fra.rpki-client.org