$ rpki-client -vvf rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/AB2D69A4217A11EA9AB7211BC4F9AE02.roa File: AB2D69A4217A11EA9AB7211BC4F9AE02.roa (raw, json) Hash identifier: pzFUGKlSlrla1++X9NgIJFwcgYI9JlvjgFwID6aF0UQ= Subject key identifier: 8D:9B:99:B2:97:20:BD:C1:E4:59:4C:1C:68:A2:A3:B9:02:C0:DF:65 Certificate issuer: /CN=A9193D85/serialNumber=BB07ED464B280D57FA771841F77F52EA7D507927 Certificate serial: 0F76 Authority key identifier: BB:07:ED:46:4B:28:0D:57:FA:77:18:41:F7:7F:52:EA:7D:50:79:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwftRksoDVf6dxhB939S6n1QeSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/AB2D69A4217A11EA9AB7211BC4F9AE02.roa Signing time: Sun 31 Mar 2024 18:26:39 +0000 ROA not before: Sun 31 Mar 2024 18:26:39 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139884 IP address blocks: 103.136.40.0/23 maxlen: 23 103.136.40.0/24 maxlen: 24 103.136.41.0/24 maxlen: 24 103.136.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/uwftRksoDVf6dxhB939S6n1QeSc.crl rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/uwftRksoDVf6dxhB939S6n1QeSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwftRksoDVf6dxhB939S6n1QeSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3958 (0xf76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193D85/serialNumber=BB07ED464B280D57FA771841F77F52EA7D507927 Validity Not Before: Mar 31 18:26:39 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6609aadf-4a46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e5:44:9d:7a:f9:dc:58:be:78:7d:b0:b6:58: ab:b1:1e:5f:c1:8c:9c:4e:22:30:2a:13:c1:f3:7c: ad:b8:42:ee:2c:c4:3b:bb:de:3b:08:c9:16:85:ec: de:23:95:41:f8:13:a0:3e:23:cc:01:c3:00:38:a1: 6c:2f:c0:9b:16:61:85:c4:46:bb:39:ca:4f:14:be: 28:d9:ca:6b:46:65:d7:9a:01:b4:0a:08:0f:83:27: c3:34:24:42:12:11:ee:17:74:02:1c:c8:10:ac:2f: fd:ed:46:dc:b1:d3:1a:68:6e:66:d6:2a:de:43:88: d2:49:58:3e:23:a7:b1:65:20:11:6e:88:26:9d:d4: 5d:c2:bc:5a:e7:7a:3f:4b:d9:67:01:bd:d8:a8:0e: ba:70:08:cc:20:ae:84:0a:df:5f:c0:13:eb:d2:8c: ed:00:e2:78:bc:19:fa:b6:d5:94:7f:45:23:e8:21: c3:e6:0e:ca:ea:5d:84:83:54:26:49:ac:17:54:c5: fa:00:cb:94:75:bc:e8:b5:fa:f7:42:06:a3:a0:56: 4b:15:91:c9:e5:a7:c0:44:d8:f1:28:d4:2b:85:9a: d0:30:f9:c3:ec:9b:d8:13:c8:fb:10:ca:ce:b4:4f: f8:59:e0:62:5a:b7:b0:d4:0a:06:31:27:a8:bf:ff: 10:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:9B:99:B2:97:20:BD:C1:E4:59:4C:1C:68:A2:A3:B9:02:C0:DF:65 X509v3 Authority Key Identifier: keyid:BB:07:ED:46:4B:28:0D:57:FA:77:18:41:F7:7F:52:EA:7D:50:79:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/uwftRksoDVf6dxhB939S6n1QeSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwftRksoDVf6dxhB939S6n1QeSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193D85/915325203FC911E9979BB83BC4F9AE02/AB2D69A4217A11EA9AB7211BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.40.0-103.136.42.255 Signature Algorithm: sha256WithRSAEncryption 53:c7:85:a9:c1:62:97:67:5e:1a:b4:84:e0:f0:c4:9a:35:59: 8c:fe:0d:67:20:d8:93:50:14:20:90:57:73:20:99:95:66:fb: 55:20:1b:d3:62:e4:26:10:21:ae:a1:48:fd:3e:2b:eb:62:d2: e2:8a:aa:18:cd:05:59:2b:5d:5b:1d:0f:ab:df:2e:f7:14:ff: c4:e0:74:0a:c8:62:85:57:25:02:fb:b0:ba:2f:e7:fc:a0:de: 9b:25:df:34:32:9b:59:9f:e3:14:9b:a8:67:10:bb:98:a9:03: 86:b5:13:93:34:3e:38:a7:40:23:8d:b0:a3:cd:4e:cb:0a:b2: 8b:59:42:6f:2d:8d:6b:30:3b:38:c4:83:13:30:6f:b4:bd:bf: 66:bd:e9:ee:20:bc:72:3e:b1:63:18:27:06:56:5f:66:9d:65: fe:67:98:c6:56:19:22:81:a7:ae:b2:b2:da:bc:61:49:78:f2: 2a:08:c5:de:03:9e:2e:84:57:1d:79:d2:ad:8f:57:8f:af:83: be:bf:7a:82:b1:ab:1e:1b:7c:7c:d6:0f:e2:35:28:f7:73:94: 0b:14:72:b0:72:01:32:ab:22:30:6f:85:c2:f0:2d:cc:6e:e1: d3:a2:e8:2a:8b:82:e4:c9:f7:57:96:69:fb:b1:bf:48:8d:64: ed:be:34:23 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICD3YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNEODUxMTAvBgNVBAUTKEJCMDdFRDQ2NEIyODBENTdGQTc3MTg0MUY3N0Y1MkVB N0Q1MDc5MjcwHhcNMjQwMzMxMTgyNjM5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA5YWFkZi00YTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnuVEnXr53Fi+eH2wtlirsR5fwYycTiIwKhPB83ytuELuLMQ7u947CMkWheze I5VB+BOgPiPMAcMAOKFsL8CbFmGFxEa7OcpPFL4o2cprRmXXmgG0CggPgyfDNCRC EhHuF3QCHMgQrC/97UbcsdMaaG5m1ireQ4jSSVg+I6exZSARbogmndRdwrxa53o/ S9lnAb3YqA66cAjMIK6ECt9fwBPr0oztAOJ4vBn6ttWUf0Uj6CHD5g7K6l2Eg1Qm SawXVMX6AMuUdbzotfr3QgajoFZLFZHJ5afARNjxKNQrhZrQMPnD7JvYE8j7EMrO tE/4WeBiWrew1AoGMSeov/8QxwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFI2bmbKX IL3B5FlMHGiio7kCwN9lMB8GA1UdIwQYMBaAFLsH7UZLKA1X+ncYQfd/Uup9UHkn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0Q4NS85MTUzMjUyMDNG QzkxMUU5OTc5QkI4M0JDNEY5QUUwMi91d2Z0Umtzb0RWZjZkeGhCOTM5UzZuMVFl U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3ZnRSa3NvRFZmNmR4aEI5MzlTNm4xUWVTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTNEODUvOTE1MzI1MjAzRkM5MTFFOTk3OUJCODNCQzRGOUFFMDIvQUIyRDY5QTQy MTdBMTFFQTlBQjcyMTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA2eIKAMEAGeIKjANBgkqhkiG9w0BAQsFAAOCAQEAU8eF qcFil2deGrSE4PDEmjVZjP4NZyDYk1AUIJBXcyCZlWb7VSAb02LkJhAhrqFI/T4r 62LS4oqqGM0FWStdWx0Pq98u9xT/xOB0CshihVclAvuwui/n/KDemyXfNDKbWZ/j FJuoZxC7mKkDhrUTkzQ+OKdAI42wo81Oywqyi1lCby2NazA7OMSDEzBvtL2/Zr3p 7iC8cj6xYxgnBlZfZp1l/meYxlYZIoGnrrKy2rxhSXjyKgjF3gOeLoRXHXnSrY9X j6+Dvr96grGrHht8fNYP4jUo93OUCxRysHIBMqsiMG+FwvAtzG7h06LoKouC5Mn3 V5Zp+7G/SI1k7b40Iw== -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:23 2024 by rpki-client on console-fra.rpki-client.org