$ rpki-client -vvf rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/05F74AC4B99C11ECA1344C85C4F9AE02.roa File: 05F74AC4B99C11ECA1344C85C4F9AE02.roa (raw, json) Hash identifier: BArGwM1bK+rweYsGVKqgC9JYCGyliz8oP72ndcEJbbI= Subject key identifier: 62:C7:A7:E2:3E:C0:9F:21:D0:E6:F4:B6:E6:38:58:F3:E1:D7:82:79 Certificate issuer: /CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Certificate serial: 0288 Authority key identifier: 1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/05F74AC4B99C11ECA1344C85C4F9AE02.roa Signing time: Sat 27 Apr 2024 03:46:12 +0000 ROA not before: Sat 27 Apr 2024 03:46:12 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149775 IP address blocks: 103.186.22.0/23 maxlen: 23 103.186.22.0/24 maxlen: 24 103.186.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 648 (0x288) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118E3A/serialNumber=1D642ED28ECEA5F2AACF347B16097F9D9241D76D Validity Not Before: Apr 27 03:46:12 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662c7504-bd95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1b:36:f9:ab:75:08:fe:4e:0a:ec:7b:5e:cb: 3d:9a:7b:53:18:b8:eb:b1:93:31:8d:ac:17:15:b5: 1b:8a:4b:78:19:fb:38:7c:30:5f:5a:41:d3:19:1f: dd:ef:13:93:71:0a:a0:ab:ea:6a:ac:ba:9c:af:d5: fc:9b:92:e0:43:f9:5f:6d:09:34:38:97:91:a6:ce: 9e:92:ae:0e:fa:29:93:ee:03:0e:08:f2:e6:32:f9: b1:8d:9c:e7:42:9d:bf:01:84:61:07:64:e5:1e:ab: bf:5f:cb:6f:61:c8:9a:a2:4b:29:17:1a:f6:31:88: 71:79:87:b8:83:ba:53:59:f2:4c:dc:46:6d:8e:c3: ed:96:fa:1f:7f:e1:e8:a2:eb:d0:24:d8:c4:d6:94: 0b:98:dc:bf:85:39:79:63:42:4e:b0:71:fa:e7:3a: 07:24:ad:c1:e8:ee:71:43:02:8a:32:1f:0f:d5:22: fe:e4:d1:07:25:43:26:cb:4d:bd:87:b5:8a:c7:db: 4e:3f:34:46:0a:91:c6:80:b1:d6:22:5c:a5:e8:79: 89:74:e2:c1:2e:f9:37:e7:73:e7:de:89:4e:53:84: 86:0d:cd:d3:aa:6c:16:aa:5a:e4:55:ac:52:8f:b9: b2:eb:6a:11:42:e6:4f:51:32:0b:e8:dd:7a:c5:8d: dc:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:C7:A7:E2:3E:C0:9F:21:D0:E6:F4:B6:E6:38:58:F3:E1:D7:82:79 X509v3 Authority Key Identifier: keyid:1D:64:2E:D2:8E:CE:A5:F2:AA:CF:34:7B:16:09:7F:9D:92:41:D7:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/HWQu0o7OpfKqzzR7Fgl_nZJB120.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HWQu0o7OpfKqzzR7Fgl_nZJB120.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118E3A/A7AB0A8AB99811EC8DBE9281C4F9AE02/05F74AC4B99C11ECA1344C85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.22.0/23 Signature Algorithm: sha256WithRSAEncryption 83:fd:73:4b:b6:c0:80:2e:ef:65:eb:ac:90:50:78:49:49:55: 2d:34:b4:a1:8b:66:7c:73:3c:c1:61:26:ee:af:d4:90:7f:a2: 24:12:d8:4f:b1:6c:f6:d6:b1:9d:67:98:10:2e:64:fb:22:fd: 87:45:35:55:9f:7a:a3:a1:62:9f:49:e5:07:91:3f:ec:bc:cc: 49:5d:6e:20:48:de:fd:53:89:7f:ed:07:7c:88:8d:00:00:bb: e3:36:d7:98:25:47:b2:de:bb:7d:5a:2b:b5:f5:29:69:fb:d2: 37:ff:31:4a:a2:15:92:bf:f5:da:7e:c0:7e:c1:8f:68:bc:0b: d3:f5:3e:f1:61:09:5c:fc:2a:13:85:74:c4:5f:e6:a7:85:05: e3:f7:93:23:9f:ce:77:d3:66:7d:58:f6:ad:91:14:53:99:b3: 2c:a8:da:26:65:bf:e1:77:f8:85:9c:cb:f1:6b:27:c7:7d:f2: 3b:b1:3e:e1:a7:be:70:53:56:41:91:9c:c7:d6:31:0c:ed:25: 50:31:41:d2:bb:99:06:c0:8b:3c:06:6c:d1:66:13:bc:8f:5a: 41:1e:3b:73:d9:af:6c:0f:7b:72:09:eb:a6:3e:aa:69:77:91: 5a:bb:a7:d6:79:4e:94:81:d4:0f:0f:09:55:a5:96:fe:e3:aa: 3a:9b:8d:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAogwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFM0ExMTAvBgNVBAUTKDFENjQyRUQyOEVDRUE1RjJBQUNGMzQ3QjE2MDk3RjlE OTI0MUQ3NkQwHhcNMjQwNDI3MDM0NjEyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJjNzUwNC1iZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhs2+at1CP5OCux7Xss9mntTGLjrsZMxjawXFbUbikt4Gfs4fDBfWkHTGR/d 7xOTcQqgq+pqrLqcr9X8m5LgQ/lfbQk0OJeRps6ekq4O+imT7gMOCPLmMvmxjZzn Qp2/AYRhB2TlHqu/X8tvYciaokspFxr2MYhxeYe4g7pTWfJM3EZtjsPtlvoff+Ho ouvQJNjE1pQLmNy/hTl5Y0JOsHH65zoHJK3B6O5xQwKKMh8P1SL+5NEHJUMmy029 h7WKx9tOPzRGCpHGgLHWIlyl6HmJdOLBLvk353Pn3olOU4SGDc3TqmwWqlrkVaxS j7my62oRQuZPUTIL6N16xY3cbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGLHp+I+ wJ8h0Ob0tuY4WPPh14J5MB8GA1UdIwQYMBaAFB1kLtKOzqXyqs80exYJf52SQddt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEUzQS9BN0FCMEE4QUI5 OTgxMUVDOERCRTkyODFDNEY5QUUwMi9IV1F1MG83T3BmS3F6elI3RmdsX25aSkIx MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hXUXUwbzdPcGZLcXp6UjdGZ2xfblpKQjEyMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThFM0EvQTdBQjBBOEFCOTk4MTFFQzhEQkU5MjgxQzRGOUFFMDIvMDVGNzRBQzRC OTlDMTFFQ0ExMzQ0Qzg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuhYwDQYJKoZIhvcNAQELBQADggEBAIP9c0u2wIAu72Xr rJBQeElJVS00tKGLZnxzPMFhJu6v1JB/oiQS2E+xbPbWsZ1nmBAuZPsi/YdFNVWf eqOhYp9J5QeRP+y8zEldbiBI3v1TiX/tB3yIjQAAu+M215glR7Leu31aK7X1KWn7 0jf/MUqiFZK/9dp+wH7Bj2i8C9P1PvFhCVz8KhOFdMRf5qeFBeP3kyOfznfTZn1Y 9q2RFFOZsyyo2iZlv+F3+IWcy/FrJ8d98juxPuGnvnBTVkGRnMfWMQztJVAxQdK7 mQbAizwGbNFmE7yPWkEeO3PZr2wPe3IJ66Y+qml3kVq7p9Z5TpSB1A8PCVWllv7j qjqbjTM= -----END CERTIFICATE-----Generated at Wed May 15 04:37:57 2024 by rpki-client on console-fra.rpki-client.org