$ rpki-client -vvf rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/7568D85E731211EBAFF0B481C4F9AE02.roa File: 7568D85E731211EBAFF0B481C4F9AE02.roa (raw, json) Hash identifier: SELYIISzgBI7zrtRFkV2ypEgCIX/db0xuNfofQR/Qs0= Subject key identifier: 63:A5:6A:3A:0B:6A:EE:BF:48:8F:AE:78:E9:75:79:36:7F:AA:C5:C1 Certificate issuer: /CN=A9196412/serialNumber=A4AEF706994EF7DEEC8C8A26834372910484B1B0 Certificate serial: 05C8 Authority key identifier: A4:AE:F7:06:99:4E:F7:DE:EC:8C:8A:26:83:43:72:91:04:84:B1:B0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pK73BplO997sjIomg0NykQSEsbA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/7568D85E731211EBAFF0B481C4F9AE02.roa Signing time: Tue 19 Mar 2024 19:28:35 +0000 ROA not before: Tue 19 Mar 2024 19:28:35 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141729 IP address blocks: 103.162.184.0/23 maxlen: 23 103.162.184.0/24 maxlen: 24 103.162.185.0/24 maxlen: 24 2001:df6:80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.crl rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pK73BplO997sjIomg0NykQSEsbA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1480 (0x5c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196412/serialNumber=A4AEF706994EF7DEEC8C8A26834372910484B1B0 Validity Not Before: Mar 19 19:28:35 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f9e763-58ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e0:f5:0b:81:07:ee:4e:15:cf:3d:46:64:07: 22:c0:41:3b:72:8f:db:89:4d:88:d3:db:d2:9d:f2: f4:44:06:f1:de:55:d3:8a:bd:02:c8:07:3a:38:31: 74:e2:79:11:58:73:a2:a9:cd:c7:f0:03:b7:1c:13: 77:4e:57:b8:e5:7e:4f:90:52:dc:85:10:96:95:43: b5:fb:9d:e1:f2:5b:2a:0f:99:76:81:eb:17:fb:01: 2f:db:8b:fb:2c:42:72:8e:98:91:da:b3:c2:35:d5: c7:28:cb:64:c8:4b:45:47:db:b0:02:4a:6a:7a:b2: 5e:6f:4c:3c:52:fa:b2:c7:58:bb:02:39:de:6e:d7: 3a:19:9c:88:49:b7:03:72:72:3b:a0:f6:57:b9:5d: 56:25:04:b3:21:64:38:7a:d7:4a:a3:07:90:e8:a1: 5d:83:15:c4:aa:00:49:62:a5:f6:2d:8b:23:a3:3a: f0:1f:68:d2:24:83:ad:81:d6:93:86:0c:77:fb:5d: 9a:1c:fa:eb:19:c6:8d:61:e8:3f:3e:76:8c:4b:ea: 4b:17:08:cf:15:ad:3f:51:ec:34:bd:27:0b:48:74: cd:e2:fd:38:e8:f0:7e:87:87:12:63:6f:c4:a4:d6: 61:db:6a:d3:f1:93:2a:d2:ef:51:32:4d:41:41:fb: 6a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:A5:6A:3A:0B:6A:EE:BF:48:8F:AE:78:E9:75:79:36:7F:AA:C5:C1 X509v3 Authority Key Identifier: keyid:A4:AE:F7:06:99:4E:F7:DE:EC:8C:8A:26:83:43:72:91:04:84:B1:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/pK73BplO997sjIomg0NykQSEsbA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pK73BplO997sjIomg0NykQSEsbA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196412/A8D662406F9A11EB8A13DF17C4F9AE02/7568D85E731211EBAFF0B481C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.184.0/23 IPv6: 2001:df6:80::/48 Signature Algorithm: sha256WithRSAEncryption 04:74:4a:7d:2b:9f:a9:3a:d0:ef:ab:bf:89:c0:6c:3a:c4:2f: 45:c9:7b:94:f9:ea:a3:1c:b1:0a:4e:5f:13:bf:28:d4:10:65: 68:25:8c:e6:1e:7d:e3:71:53:0a:eb:f6:cb:16:bd:ca:67:85: 14:5e:ab:b9:c3:e5:d3:66:0e:b7:ce:59:80:32:84:e1:c5:3b: 0f:6b:54:5b:74:50:5d:a3:cc:40:10:3a:11:47:7c:40:74:21: 5e:6d:7b:21:9b:30:87:cd:df:be:e8:ac:b5:b4:75:cf:b2:7b: b8:32:70:8e:ef:e7:39:4f:7a:f9:78:fd:50:4c:f0:dc:93:42: 36:89:8e:82:71:18:34:46:2b:13:3a:bb:a9:13:ef:2e:bd:ed: a5:ba:58:50:14:d5:5e:ed:27:fb:4a:da:82:b1:3e:94:32:81: be:ac:c8:93:c5:72:2a:21:44:17:c9:4e:fc:13:e7:82:a8:ba: d3:0d:29:20:68:08:13:e3:e4:cd:f7:69:80:58:f3:05:2b:30: 59:a6:b0:f0:02:7a:c4:d8:35:5b:0c:36:7a:b7:fb:45:d8:e5: 2e:76:28:0c:6e:db:bc:45:51:78:ec:12:3b:61:5e:89:93:45: 42:af:14:01:59:05:7e:33:01:70:f5:31:f0:56:5a:9f:b9:38: bc:7d:2c:7b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBcgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0MTIxMTAvBgNVBAUTKEE0QUVGNzA2OTk0RUY3REVFQzhDOEEyNjgzNDM3Mjkx MDQ4NEIxQjAwHhcNMjQwMzE5MTkyODM1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWY5ZTc2My01OGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAueD1C4EH7k4Vzz1GZAciwEE7co/biU2I09vSnfL0RAbx3lXTir0CyAc6ODF0 4nkRWHOiqc3H8AO3HBN3Tle45X5PkFLchRCWlUO1+53h8lsqD5l2gesX+wEv24v7 LEJyjpiR2rPCNdXHKMtkyEtFR9uwAkpqerJeb0w8Uvqyx1i7Ajnebtc6GZyISbcD cnI7oPZXuV1WJQSzIWQ4etdKoweQ6KFdgxXEqgBJYqX2LYsjozrwH2jSJIOtgdaT hgx3+12aHPrrGcaNYeg/PnaMS+pLFwjPFa0/Uew0vScLSHTN4v046PB+h4cSY2/E pNZh22rT8ZMq0u9RMk1BQftqbwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGOlajoL au6/SI+ueOl1eTZ/qsXBMB8GA1UdIwQYMBaAFKSu9waZTvfe7IyKJoNDcpEEhLGw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjQxMi9BOEQ2NjI0MDZG OUExMUVCOEExM0RGMTdDNEY5QUUwMi9wSzczQnBsTzk5N3NqSW9tZzBOeWtRU0Vz YkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BLNzNCcGxPOTk3c2pJb21nME55a1FTRXNiQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0MTIvQThENjYyNDA2RjlBMTFFQjhBMTNERjE3QzRGOUFFMDIvNzU2OEQ4NUU3 MzEyMTFFQkFGRjBCNDgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnorgwDwQCAAIwCQMHACABDfYAgDANBgkqhkiG9w0BAQsF AAOCAQEABHRKfSufqTrQ76u/icBsOsQvRcl7lPnqoxyxCk5fE78o1BBlaCWM5h59 43FTCuv2yxa9ymeFFF6rucPl02YOt85ZgDKE4cU7D2tUW3RQXaPMQBA6EUd8QHQh Xm17IZswh83fvuistbR1z7J7uDJwju/nOU96+Xj9UEzw3JNCNomOgnEYNEYrEzq7 qRPvLr3tpbpYUBTVXu0n+0ragrE+lDKBvqzIk8VyKiFEF8lO/BPngqi60w0pIGgI E+PkzfdpgFjzBSswWaaw8AJ6xNg1Www2erf7RdjlLnYoDG7bvEVReOwSO2FeiZNF Qq8UAVkFfjMBcPUx8FZan7k4vH0sew== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:31 2024 by rpki-client on console-fra.rpki-client.org