$ rpki-client -vvf rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/5B24C51A60ED11EC874B903BC4F9AE02.roa File: 5B24C51A60ED11EC874B903BC4F9AE02.roa (raw, json) Hash identifier: 5KlVV40dnTtpT7Iu2PhBylpIj/RTeJ/3JQqia5d4j2E= Subject key identifier: 75:ED:2D:DE:06:08:A3:38:56:A4:C3:23:94:75:23:19:F5:0F:32:B6 Certificate issuer: /CN=A9190992/serialNumber=7F65C110E2A17E41D770FC2DFA403D16A33E5CAF Certificate serial: 035C Authority key identifier: 7F:65:C1:10:E2:A1:7E:41:D7:70:FC:2D:FA:40:3D:16:A3:3E:5C:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2XBEOKhfkHXcPwt-kA9FqM-XK8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/5B24C51A60ED11EC874B903BC4F9AE02.roa Signing time: Sat 03 Feb 2024 02:34:42 +0000 ROA not before: Sat 03 Feb 2024 02:34:42 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 141449 IP address blocks: 103.159.174.0/24 maxlen: 24 103.159.175.0/24 maxlen: 24 2406:d740::/48 maxlen: 48 2406:d740:1::/48 maxlen: 48 2406:d740:2::/48 maxlen: 48 2406:d740:3::/48 maxlen: 48 2406:d740:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/f2XBEOKhfkHXcPwt-kA9FqM-XK8.crl rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/f2XBEOKhfkHXcPwt-kA9FqM-XK8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2XBEOKhfkHXcPwt-kA9FqM-XK8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:48:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 860 (0x35c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190992/serialNumber=7F65C110E2A17E41D770FC2DFA403D16A33E5CAF Validity Not Before: Feb 3 02:34:42 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bda641-470f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6e:59:76:27:f1:f4:91:16:d8:70:d0:59:d0: da:6f:1d:64:bf:5d:22:99:3f:f3:dd:4b:54:50:cb: 85:d2:ed:5d:ec:c3:36:1a:3d:33:1e:b1:c1:42:35: 2b:c3:de:87:48:67:57:d6:4f:4d:f8:5d:1a:e5:72: 46:26:17:a3:ec:e6:14:74:02:12:38:5f:98:02:bc: 41:df:bc:73:8e:e9:f1:cd:1b:2d:1b:83:77:d1:b8: 12:5d:6c:4e:ab:4f:bf:c6:f0:c6:1f:47:39:aa:f2: ab:aa:36:9b:f3:e0:25:b5:2d:ec:df:5c:51:71:ba: b1:6b:1a:2a:b3:17:be:29:d7:4f:f3:a8:28:94:90: 81:e4:63:3c:bd:67:90:34:ce:0c:a1:ce:e7:fb:09: 6f:f1:56:74:05:b0:c7:43:8d:79:15:12:bb:ed:e2: 8c:ac:ae:f7:be:aa:17:e4:0c:9a:31:8d:d3:c5:a6: a2:83:56:78:a2:fe:d6:00:5c:d2:0a:f3:c5:7f:14: d9:14:1b:01:f6:c6:dd:b1:94:fe:71:4a:24:91:8a: c2:83:48:ef:99:5d:68:3a:b2:92:c9:93:3b:11:e6: 24:54:ce:7f:c2:f5:43:6b:a9:cc:5d:03:22:27:38: 8a:f7:bf:d8:e7:b9:56:2c:47:29:07:33:65:ec:b3: db:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:ED:2D:DE:06:08:A3:38:56:A4:C3:23:94:75:23:19:F5:0F:32:B6 X509v3 Authority Key Identifier: keyid:7F:65:C1:10:E2:A1:7E:41:D7:70:FC:2D:FA:40:3D:16:A3:3E:5C:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/f2XBEOKhfkHXcPwt-kA9FqM-XK8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f2XBEOKhfkHXcPwt-kA9FqM-XK8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190992/5B3D08025C0E11EC97603617C4F9AE02/5B24C51A60ED11EC874B903BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.174.0/23 IPv6: 2406:d740::-2406:d740:4:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b0:9b:ca:a1:56:36:dc:c0:34:f1:d0:a1:2e:2c:68:b4:0c:c9: 11:d2:8b:2d:2b:b6:21:74:a1:33:91:57:ed:a1:01:77:69:ec: 37:a1:a9:05:6c:05:47:3a:ff:b1:63:c4:85:c0:06:62:1b:51: e8:6c:cf:f9:79:f7:87:ae:9c:9b:c6:6c:20:06:98:42:ee:5f: bb:51:ae:bd:b4:ec:88:9d:11:97:81:eb:cf:fd:4f:0c:8b:13: 0b:c4:8b:9e:ec:43:66:42:02:96:c5:8b:01:11:dd:e1:ae:70: 42:00:c6:a8:d0:5f:b6:33:a8:b7:24:02:bb:0f:92:0b:cf:e7: fa:84:1f:ac:15:a0:8e:ba:b4:b4:93:00:7d:1b:e2:42:d2:63: ce:4a:01:08:ad:6b:17:48:d3:a9:14:ad:f5:0c:fe:b2:d4:29: 68:cf:a1:7b:08:1d:84:10:d9:50:9d:fe:92:90:84:ac:e6:25: f0:d4:90:c5:48:88:cc:6b:29:a5:62:49:f6:9a:25:4e:e2:30: fe:60:a7:e0:9c:86:6b:28:5c:c0:a5:41:3e:e5:9b:c6:b0:9e: 79:16:a2:16:ea:5f:c5:71:28:df:57:ec:5e:f6:bd:2d:4a:c4: ef:a9:27:97:3c:01:c4:38:5c:a3:c7:7d:20:ae:4c:94:27:bd: 0c:82:3c:78 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICA1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTA5OTIxMTAvBgNVBAUTKDdGNjVDMTEwRTJBMTdFNDFENzcwRkMyREZBNDAzRDE2 QTMzRTVDQUYwHhcNMjQwMjAzMDIzNDQyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkYTY0MS00NzBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyW5Zdifx9JEW2HDQWdDabx1kv10imT/z3UtUUMuF0u1d7MM2Gj0zHrHBQjUr w96HSGdX1k9N+F0a5XJGJhej7OYUdAISOF+YArxB37xzjunxzRstG4N30bgSXWxO q0+/xvDGH0c5qvKrqjab8+AltS3s31xRcbqxaxoqsxe+KddP86golJCB5GM8vWeQ NM4Moc7n+wlv8VZ0BbDHQ415FRK77eKMrK73vqoX5AyaMY3Txaaig1Z4ov7WAFzS CvPFfxTZFBsB9sbdsZT+cUokkYrCg0jvmV1oOrKSyZM7EeYkVM5/wvVDa6nMXQMi JziK97/Y57lWLEcpBzNl7LPbOQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFHXtLd4G CKM4VqTDI5R1Ixn1DzK2MB8GA1UdIwQYMBaAFH9lwRDioX5B13D8LfpAPRajPlyv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MDk5Mi81QjNEMDgwMjVD MEUxMUVDOTc2MDM2MTdDNEY5QUUwMi9mMlhCRU9LaGZrSFhjUHd0LWtBOUZxTS1Y SzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2YyWEJFT0toZmtIWGNQd3Qta0E5RnFNLVhLOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTA5OTIvNUIzRDA4MDI1QzBFMTFFQzk3NjAzNjE3QzRGOUFFMDIvNUIyNEM1MUE2 MEVEMTFFQzg3NEI5MDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnn64wGAQCAAIwEjAQAwUGJAbXQAMHACQG10AABDANBgkq hkiG9w0BAQsFAAOCAQEAsJvKoVY23MA08dChLixotAzJEdKLLSu2IXShM5FX7aEB d2nsN6GpBWwFRzr/sWPEhcAGYhtR6GzP+Xn3h66cm8ZsIAaYQu5fu1GuvbTsiJ0R l4Hrz/1PDIsTC8SLnuxDZkIClsWLARHd4a5wQgDGqNBftjOotyQCuw+SC8/n+oQf rBWgjrq0tJMAfRviQtJjzkoBCK1rF0jTqRSt9Qz+stQpaM+hewgdhBDZUJ3+kpCE rOYl8NSQxUiIzGsppWJJ9polTuIw/mCn4JyGayhcwKVBPuWbxrCeeRaiFupfxXEo 31fsXva9LUrE76knlzwBxDhco8d9IK5MlCe9DII8eA== -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:04 2024 by rpki-client on console-fra.rpki-client.org