$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/ED4C74EC5B2911EDAC608856C4F9AE02.roa File: ED4C74EC5B2911EDAC608856C4F9AE02.roa (raw, json) Hash identifier: xo3YxEyFwniZbN8RkrtlYPP0V0NbKQQ/nc/1FJQGmBc= Subject key identifier: 14:E3:BF:B1:0D:61:76:75:FB:F9:61:E6:BA:B0:82:2E:23:9B:08:0C Certificate issuer: /CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Certificate serial: 0F62 Authority key identifier: 5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/ED4C74EC5B2911EDAC608856C4F9AE02.roa Signing time: Thu 08 Feb 2024 18:16:07 +0000 ROA not before: Thu 08 Feb 2024 18:16:07 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 54197 IP address blocks: 103.136.184.0/24 maxlen: 32 103.136.186.0/24 maxlen: 32 2404:9ec0:114::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3938 (0xf62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D9C/serialNumber=5B2CF0FB62F160F1838AEE3E6CDE07544DFF8BFF Validity Not Before: Feb 8 18:16:07 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c51a67-a62f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:24:1b:84:8f:c4:e1:16:a6:6e:9d:ab:82:c4: 8d:8f:6e:77:ac:a7:71:6d:04:8f:1b:7e:33:64:6b: 97:86:9a:8e:1d:b5:4f:4d:76:60:8d:ce:91:52:64: d4:f4:7f:8b:fd:98:fe:38:1a:10:bd:6c:00:69:e5: f1:d5:89:9b:87:45:1d:ca:19:f7:b5:15:00:64:a6: 42:70:13:d5:d4:16:84:1b:66:a2:7c:7f:c5:25:50: 01:ab:2d:72:70:00:39:09:4e:bf:d7:9b:67:58:b5: bd:7f:4c:29:7e:9a:eb:f1:94:3d:58:07:c5:fb:33: 62:dc:3b:90:e9:ea:ae:6e:9c:bb:5e:42:82:96:f4: 37:10:df:f7:7b:17:73:35:2a:b1:8b:39:ba:59:b1: 18:1a:73:d4:e6:b9:6e:8e:0c:f2:5e:eb:a1:39:a5: fd:28:17:b0:27:a5:a3:6c:c2:d2:ab:af:c9:02:11: ed:dd:c6:7b:37:bd:15:ff:b5:58:03:3f:89:cc:c0: 0a:8e:9c:44:bf:53:10:d8:bd:45:2d:68:48:5f:19: 58:38:fa:f8:8e:11:48:39:74:50:b9:ce:62:56:7d: 5f:7d:04:84:65:63:06:17:51:94:6b:6e:83:5a:82: 1a:04:27:38:cd:56:c3:24:0f:7c:3d:33:a9:9f:91: fb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:E3:BF:B1:0D:61:76:75:FB:F9:61:E6:BA:B0:82:2E:23:9B:08:0C X509v3 Authority Key Identifier: keyid:5B:2C:F0:FB:62:F1:60:F1:83:8A:EE:3E:6C:DE:07:54:4D:FF:8B:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wyzw-2LxYPGDiu4-bN4HVE3_i_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D9C/455942D650B211E9B5DB6A6BC4F9AE02/ED4C74EC5B2911EDAC608856C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.184.0/24 103.136.186.0/24 IPv6: 2404:9ec0:114::/48 Signature Algorithm: sha256WithRSAEncryption 3b:4d:6b:21:09:fb:3f:be:da:61:43:9a:20:ea:4a:66:ad:e4: 57:e7:0f:48:d6:71:39:c6:ae:57:d7:38:d5:ec:08:18:78:60: d0:37:6a:4a:5b:1f:9a:f3:6a:66:4d:88:6d:0c:3a:95:60:aa: a1:56:e2:ca:73:76:c0:b8:43:75:4a:70:24:19:dd:ea:4b:33: cf:b0:7c:ff:7f:19:82:7f:b6:00:9e:8e:20:ca:2b:c1:02:20: 49:8e:eb:46:01:57:63:09:d6:1a:29:4a:50:4a:a7:cb:85:53: dd:92:21:57:1f:5b:6f:e8:df:4f:fa:d4:b1:40:2b:17:de:b6: 3d:06:ec:2e:ad:2e:a6:d7:54:6d:4c:c6:04:d4:28:67:bf:cd: 03:fb:28:9d:e2:f8:92:63:b9:89:1a:e5:cb:e4:64:50:4f:a8: 46:14:59:9b:50:a6:49:80:3a:78:48:be:a1:45:78:92:0d:8a: 76:46:b0:ea:7e:5f:c0:59:03:9e:2b:bc:ba:e6:82:e0:97:2c: e6:cb:67:21:5b:1f:ed:79:57:d5:b0:ed:8c:33:e9:7e:0a:f5: f4:83:54:b6:db:c7:d0:ac:f6:fb:4f:32:3b:64:70:bc:3b:7e: bb:f2:7f:fa:67:04:2e:f3:e6:a8:4f:f4:50:22:e4:4a:65:45: 63:9f:9e:b9 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICD2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEOUMxMTAvBgNVBAUTKDVCMkNGMEZCNjJGMTYwRjE4MzhBRUUzRTZDREUwNzU0 NERGRjhCRkYwHhcNMjQwMjA4MTgxNjA3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1MWE2Ny1hNjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoSQbhI/E4Rambp2rgsSNj253rKdxbQSPG34zZGuXhpqOHbVPTXZgjc6RUmTU 9H+L/Zj+OBoQvWwAaeXx1Ymbh0Udyhn3tRUAZKZCcBPV1BaEG2aifH/FJVABqy1y cAA5CU6/15tnWLW9f0wpfprr8ZQ9WAfF+zNi3DuQ6equbpy7XkKClvQ3EN/3exdz NSqxizm6WbEYGnPU5rlujgzyXuuhOaX9KBewJ6WjbMLSq6/JAhHt3cZ7N70V/7VY Az+JzMAKjpxEv1MQ2L1FLWhIXxlYOPr4jhFIOXRQuc5iVn1ffQSEZWMGF1GUa26D WoIaBCc4zVbDJA98PTOpn5H7EwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFBTjv7EN YXZ1+/lh5rqwgi4jmwgMMB8GA1UdIwQYMBaAFFss8Pti8WDxg4ruPmzeB1RN/4v/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Q5Qy80NTU5NDJENjUw QjIxMUU5QjVEQjZBNkJDNEY5QUUwMi9XeXp3LTJMeFlQR0RpdTQtYk40SFZFM19p XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1d5enctMkx4WVBHRGl1NC1iTjRIVkUzX2lfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEOUMvNDU1OTQyRDY1MEIyMTFFOUI1REI2QTZCQzRGOUFFMDIvRUQ0Qzc0RUM1 QjI5MTFFREFDNjA4ODU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABniLgDBABniLowDwQCAAIwCQMHACQEnsABFDANBgkqhkiG 9w0BAQsFAAOCAQEAO01rIQn7P77aYUOaIOpKZq3kV+cPSNZxOcauV9c41ewIGHhg 0DdqSlsfmvNqZk2IbQw6lWCqoVbiynN2wLhDdUpwJBnd6kszz7B8/38Zgn+2AJ6O IMorwQIgSY7rRgFXYwnWGilKUEqny4VT3ZIhVx9bb+jfT/rUsUArF962PQbsLq0u ptdUbUzGBNQoZ7/NA/soneL4kmO5iRrly+RkUE+oRhRZm1CmSYA6eEi+oUV4kg2K dkaw6n5fwFkDniu8uuaC4Jcs5stnIVsf7XlX1bDtjDPpfgr19INUttvH0Kz2+08y O2RwvDt+u/J/+mcELvPmqE/0UCLkSmVFY5+euQ== -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org