$ rpki-client -vvf rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/ADA9DA3C2AAE11E9BEFAEF4EC4F9AE02.roa File: ADA9DA3C2AAE11E9BEFAEF4EC4F9AE02.roa (raw, json) Hash identifier: RT81J29uhYl4YzqEly3Rmp3Ji5PBXdnS+hxd+mUFyP8= Subject key identifier: DD:92:46:5C:D4:D8:0D:46:4B:3C:D6:58:EC:41:59:6A:5D:B0:E1:76 Certificate issuer: /CN=A91995D5/serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Certificate serial: 0F99 Authority key identifier: 6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/ADA9DA3C2AAE11E9BEFAEF4EC4F9AE02.roa Signing time: Tue 02 Jan 2024 18:15:29 +0000 ROA not before: Tue 02 Jan 2024 18:15:29 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138443 IP address blocks: 103.125.136.0/22 maxlen: 22 103.125.136.0/24 maxlen: 24 103.125.137.0/24 maxlen: 24 103.125.138.0/24 maxlen: 24 103.125.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 17:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3993 (0xf99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91995D5/serialNumber=6F2C207558764EAB50EF85066F78590CE5B1C561 Validity Not Before: Jan 2 18:15:29 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659452c0-0dae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b8:98:34:85:b5:a3:f6:b6:6c:b7:7b:0c:0f: 6b:43:78:8e:5c:72:a2:e1:01:57:e4:4f:01:a0:70: 9e:a0:dc:e8:3d:c7:bf:b0:8b:94:03:61:14:95:74: 74:81:bb:8c:ed:40:8d:39:70:da:a5:77:88:9d:b8: 3c:5f:4b:3f:ac:49:86:fd:a6:84:d8:7a:25:ef:fd: b4:a3:19:17:84:8c:cf:7a:f1:fe:0f:01:90:13:d1: 8b:3e:c0:44:cd:43:a8:78:b1:b8:f3:d3:52:a5:93: 7b:58:82:41:98:f6:e6:09:90:62:09:1f:6d:bc:3a: 83:ef:a1:ff:e7:c2:9f:fc:6f:8e:bb:47:bb:75:ef: f3:67:d3:2f:72:35:01:26:21:7c:3e:5a:b5:c3:de: d9:d0:86:37:f4:63:fe:4b:ed:36:64:e5:15:a0:99: 42:aa:24:db:04:e7:31:ad:cb:3f:e1:7a:7e:b0:3a: 62:d8:1c:64:1d:8e:98:6f:7e:30:87:ac:66:ae:49: 0f:96:5c:a9:fc:d5:c7:e4:af:e5:53:83:50:82:92: 17:cf:c8:26:f9:26:e6:f5:64:cb:23:a5:2a:28:be: 11:05:1e:c0:eb:37:a9:d7:8e:fb:ba:5f:35:35:5c: 63:30:03:47:31:95:75:7d:56:13:fc:59:75:27:21: a4:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:92:46:5C:D4:D8:0D:46:4B:3C:D6:58:EC:41:59:6A:5D:B0:E1:76 X509v3 Authority Key Identifier: keyid:6F:2C:20:75:58:76:4E:AB:50:EF:85:06:6F:78:59:0C:E5:B1:C5:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/bywgdVh2TqtQ74UGb3hZDOWxxWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bywgdVh2TqtQ74UGb3hZDOWxxWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91995D5/163B1E7C2AAE11E9AA574E4EC4F9AE02/ADA9DA3C2AAE11E9BEFAEF4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.136.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:44:b8:ca:c6:4a:8e:04:54:9d:37:ea:13:0f:2b:1f:c0:53: 05:42:fc:79:84:d7:ea:41:50:95:10:f4:13:7f:0b:87:87:1f: 14:f1:19:50:83:1a:3a:15:09:81:b4:5c:5d:5f:98:75:5a:0a: 4a:19:f3:cc:36:44:44:09:47:93:c3:4c:bc:aa:46:be:5e:4a: 69:ba:cf:d4:15:7b:52:f2:48:18:08:83:24:a8:90:5f:84:ae: 67:19:04:ed:95:8b:fd:a0:c6:3b:38:95:5b:63:42:3f:84:fc: ad:be:90:e3:ab:6a:59:3b:44:02:17:67:32:15:8b:e9:87:4a: 9f:4e:06:f1:a7:91:92:b5:a6:fb:c0:4c:66:02:b9:ac:0f:e4: 5f:c6:c5:6b:c2:62:ea:d1:99:77:b9:d6:69:50:ae:08:59:f5: b0:94:a7:33:8a:9d:71:42:0c:72:c8:28:e5:42:77:bb:ce:f6: fb:53:66:ff:5c:03:95:dd:91:fb:27:32:a9:bc:18:ec:9f:c4: 65:a4:c5:b2:18:29:46:eb:fc:27:6b:40:0f:d5:30:85:10:de: 93:12:e4:98:5a:77:be:11:54:8c:9f:1a:de:76:b3:ce:97:fd: 8a:0e:65:be:6f:09:3a:5f:fd:65:4e:66:9e:af:35:fe:2b:06: 2d:9b:d5:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD5kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk1RDUxMTAvBgNVBAUTKDZGMkMyMDc1NTg3NjRFQUI1MEVGODUwNjZGNzg1OTBD RTVCMUM1NjEwHhcNMjQwMTAyMTgxNTI5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0NTJjMC0wZGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLiYNIW1o/a2bLd7DA9rQ3iOXHKi4QFX5E8BoHCeoNzoPce/sIuUA2EUlXR0 gbuM7UCNOXDapXeInbg8X0s/rEmG/aaE2Hol7/20oxkXhIzPevH+DwGQE9GLPsBE zUOoeLG489NSpZN7WIJBmPbmCZBiCR9tvDqD76H/58Kf/G+Ou0e7de/zZ9MvcjUB JiF8Plq1w97Z0IY39GP+S+02ZOUVoJlCqiTbBOcxrcs/4Xp+sDpi2BxkHY6Yb34w h6xmrkkPllyp/NXH5K/lU4NQgpIXz8gm+Sbm9WTLI6UqKL4RBR7A6zep1477ul81 NVxjMANHMZV1fVYT/Fl1JyGk7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN2SRlzU 2A1GSzzWWOxBWWpdsOF2MB8GA1UdIwQYMBaAFG8sIHVYdk6rUO+FBm94WQzlscVh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTVENS8xNjNCMUU3QzJB QUUxMUU5QUE1NzRFNEVDNEY5QUUwMi9ieXdnZFZoMlRxdFE3NFVHYjNoWkRPV3h4 V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J5d2dkVmgyVHF0UTc0VUdiM2haRE9XeHhXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk1RDUvMTYzQjFFN0MyQUFFMTFFOUFBNTc0RTRFQzRGOUFFMDIvQURBOURBM0My QUFFMTFFOUJFRkFFRjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnfYgwDQYJKoZIhvcNAQELBQADggEBAItEuMrGSo4EVJ03 6hMPKx/AUwVC/HmE1+pBUJUQ9BN/C4eHHxTxGVCDGjoVCYG0XF1fmHVaCkoZ88w2 REQJR5PDTLyqRr5eSmm6z9QVe1LySBgIgySokF+ErmcZBO2Vi/2gxjs4lVtjQj+E /K2+kOOralk7RAIXZzIVi+mHSp9OBvGnkZK1pvvATGYCuawP5F/GxWvCYurRmXe5 1mlQrghZ9bCUpzOKnXFCDHLIKOVCd7vO9vtTZv9cA5XdkfsnMqm8GOyfxGWkxbIY KUbr/CdrQA/VMIUQ3pMS5Jhad74RVIyfGt52s86X/YoOZb5vCTpf/WVOZp6vNf4r Bi2b1ZE= -----END CERTIFICATE-----Generated at Wed Jun 12 18:46:56 2024 by rpki-client on console-fra.rpki-client.org