$ rpki-client -vvf rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/5BF797081CF411EBB5ADE642C4F9AE02.roa File: 5BF797081CF411EBB5ADE642C4F9AE02.roa (raw, json) Hash identifier: zJ5bnaTZj3Ld8nhAh8iVf+mcSTjqXkgD46/psLs9Wko= Subject key identifier: 16:62:98:D7:9C:96:E6:44:FB:9A:BD:FE:F6:D3:88:9D:2A:3E:F3:E6 Certificate issuer: /CN=A9122C94/serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Certificate serial: 0634 Authority key identifier: 50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/5BF797081CF411EBB5ADE642C4F9AE02.roa Signing time: Sat 30 Sep 2023 22:40:16 +0000 ROA not before: Sat 30 Sep 2023 22:40:15 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 133066 IP address blocks: 103.241.156.0/22 maxlen: 22 103.241.156.0/24 maxlen: 24 103.241.157.0/24 maxlen: 24 103.241.158.0/24 maxlen: 24 103.241.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1588 (0x634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122C94/serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Validity Not Before: Sep 30 22:40:15 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6518a3cf-37d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5a:1a:56:eb:f6:65:dc:c2:32:dd:b2:56:96: eb:85:9a:09:30:18:34:ea:59:7c:3f:d1:c8:83:23: c9:f9:7f:40:dc:06:ab:7c:bb:46:ff:14:8e:9c:fc: 3f:21:0d:bd:b5:db:5f:ef:4e:a2:7a:ce:d4:2e:54: 34:75:45:cf:83:d1:82:17:97:31:fc:9e:aa:c8:c2: 95:1e:cd:55:f8:61:be:6c:58:a7:89:0e:ff:2e:95: f2:5b:46:70:5c:7e:4f:90:16:bc:46:f2:68:bd:52: 70:bc:fe:dc:dc:82:23:4a:c4:3a:46:a4:ec:5d:8c: b7:fc:28:88:ee:f8:89:0d:bc:74:6a:a9:d8:7e:c3: 64:77:80:33:e8:48:57:87:4d:11:58:24:86:20:c8: ab:3b:cf:ec:ca:26:cf:13:d2:50:a0:fa:64:45:5b: 45:2e:b0:8a:bf:30:23:e1:cd:51:59:0a:d6:b2:88: bb:b0:f6:3b:33:20:41:14:30:24:43:c1:7f:7f:e7: f5:67:0c:c8:a8:23:61:8c:48:76:fb:73:73:21:86: 37:7c:ba:11:98:28:5e:18:b4:91:b4:10:e8:d3:ec: 12:89:c9:d2:9b:d3:a0:80:2b:69:32:d6:7a:87:61: 7c:09:1d:78:c2:dc:23:be:7e:14:bc:7b:e7:8a:55: 11:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:62:98:D7:9C:96:E6:44:FB:9A:BD:FE:F6:D3:88:9D:2A:3E:F3:E6 X509v3 Authority Key Identifier: keyid:50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/5BF797081CF411EBB5ADE642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.156.0/22 Signature Algorithm: sha256WithRSAEncryption 65:da:c6:82:b9:f7:6e:04:17:50:5c:5a:09:56:d5:a6:f1:dd: 8b:4c:f6:74:69:8a:98:7f:0b:10:ee:ac:d5:6a:e2:b7:7c:3a: 61:af:b2:c9:ac:cf:4c:d3:39:ac:c5:a8:04:ec:a1:07:16:68: 22:ad:1a:2b:a5:9a:e7:59:7c:74:9c:e2:a9:3e:c4:ec:38:ef: 75:8b:07:5a:92:e1:d4:12:cc:d8:4b:34:2b:ab:c4:54:ad:44: 0c:66:4e:5f:06:2c:d3:02:80:06:7d:ed:ea:f9:01:f9:8b:b5: fa:74:cb:4d:8c:6d:50:8b:c6:b5:ab:77:14:71:a6:7e:2b:43: 07:66:d7:2d:83:75:1e:c3:c4:53:95:cd:9a:48:41:40:ca:95: dc:f3:61:cb:10:47:85:59:c3:10:86:5a:5a:a6:9b:2a:50:4d: a4:da:1b:82:b9:8d:2b:84:e2:26:5e:52:f5:34:ae:72:96:1d: 69:53:1f:25:b4:4f:70:09:a3:1d:c3:7c:ff:79:51:77:7a:38: 2c:21:71:e0:86:95:8d:ef:02:31:db:49:54:38:c6:33:5b:03: f3:95:44:9a:15:64:47:45:6e:23:98:6b:62:c0:2c:a2:ca:b3: ca:3f:bd:e0:5a:ed:70:fb:08:24:d0:fe:cc:c8:b5:32:16:a8: 73:ba:4a:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJDOTQxMTAvBgNVBAUTKDUwQ0RENjBDRjhGMzEyM0ZERUJDRTkwODgyQUYzN0JC RTNFRjVDNDgwHhcNMjMwOTMwMjI0MDE1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE4YTNjZi0zN2QzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11oaVuv2ZdzCMt2yVpbrhZoJMBg06ll8P9HIgyPJ+X9A3AarfLtG/xSOnPw/ IQ29tdtf706ies7ULlQ0dUXPg9GCF5cx/J6qyMKVHs1V+GG+bFiniQ7/LpXyW0Zw XH5PkBa8RvJovVJwvP7c3IIjSsQ6RqTsXYy3/CiI7viJDbx0aqnYfsNkd4Az6EhX h00RWCSGIMirO8/syibPE9JQoPpkRVtFLrCKvzAj4c1RWQrWsoi7sPY7MyBBFDAk Q8F/f+f1ZwzIqCNhjEh2+3NzIYY3fLoRmCheGLSRtBDo0+wSicnSm9OggCtpMtZ6 h2F8CR14wtwjvn4UvHvnilURQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBZimNec luZE+5q9/vbTiJ0qPvPmMB8GA1UdIwQYMBaAFFDN1gz48xI/3rzpCIKvN7vj71xI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkM5NC84MjIyQzI3RTFD RjIxMUVCODQyMDk1NDBDNEY5QUUwMi9VTTNXRFBqekVqX2V2T2tJZ3E4M3UtUHZY RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNM1dEUGp6RWpfZXZPa0lncTgzdS1QdlhFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJDOTQvODIyMkMyN0UxQ0YyMTFFQjg0MjA5NTQwQzRGOUFFMDIvNUJGNzk3MDgx Q0Y0MTFFQkI1QURFNjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8ZwwDQYJKoZIhvcNAQELBQADggEBAGXaxoK5924EF1Bc WglW1abx3YtM9nRpiph/CxDurNVq4rd8OmGvssmsz0zTOazFqATsoQcWaCKtGiul mudZfHSc4qk+xOw473WLB1qS4dQSzNhLNCurxFStRAxmTl8GLNMCgAZ97er5AfmL tfp0y02MbVCLxrWrdxRxpn4rQwdm1y2DdR7DxFOVzZpIQUDKldzzYcsQR4VZwxCG WlqmmypQTaTaG4K5jSuE4iZeUvU0rnKWHWlTHyW0T3AJox3DfP95UXd6OCwhceCG lY3vAjHbSVQ4xjNbA/OVRJoVZEdFbiOYa2LALKLKs8o/veBa7XD7CCTQ/szItTIW qHO6Ssc= -----END CERTIFICATE-----Generated at Fri May 10 23:54:54 2024 by rpki-client on console-fra.rpki-client.org