$ rpki-client -vvf rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/9C524DA858CE11E891382260C4F9AE02.roa File: 9C524DA858CE11E891382260C4F9AE02.roa (raw, json) Hash identifier: s6vtNQQIQsupRxsuHL5whiOvZL5AmFIPdveK43lCi0M= Subject key identifier: C2:12:C6:7E:CE:DF:98:3C:73:A5:24:5B:06:C8:DC:65:13:C3:1C:AB Certificate issuer: /CN=A9127673/serialNumber=31E912E9FF73AF5BC447693528D725B25A2B17F7 Certificate serial: 1400 Authority key identifier: 31:E9:12:E9:FF:73:AF:5B:C4:47:69:35:28:D7:25:B2:5A:2B:17:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MekS6f9zr1vER2k1KNclslorF_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/9C524DA858CE11E891382260C4F9AE02.roa Signing time: Sat 06 Apr 2024 17:55:30 +0000 ROA not before: Sat 06 Apr 2024 17:55:30 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136380 IP address blocks: 103.86.56.0/23 maxlen: 23 103.86.56.0/24 maxlen: 24 103.86.57.0/24 maxlen: 24 2407:2bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/MekS6f9zr1vER2k1KNclslorF_c.crl rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/MekS6f9zr1vER2k1KNclslorF_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MekS6f9zr1vER2k1KNclslorF_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5120 (0x1400) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127673/serialNumber=31E912E9FF73AF5BC447693528D725B25A2B17F7 Validity Not Before: Apr 6 17:55:30 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66118c92-8a2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:dc:b5:0d:da:55:68:48:47:e5:05:4c:00:e2: b9:c5:1f:09:5b:dd:80:50:04:4e:cb:25:71:f0:0f: 02:bd:5b:93:eb:10:41:0d:6d:e6:0c:0a:f2:0f:b2: e3:9b:e6:01:c4:e8:84:86:41:73:88:6d:92:bc:e8: 32:11:9b:27:bc:40:63:64:e9:e4:af:20:09:a4:9d: 59:81:45:31:26:d0:74:78:34:21:db:dd:46:09:cc: 97:c6:18:f0:c6:11:05:bc:a0:de:2d:53:6d:14:36: d9:ca:cc:29:53:57:90:4b:0e:7c:81:3f:6a:10:a2: e8:86:08:5b:44:9a:6d:26:9e:d9:83:a9:e0:45:dd: 80:b2:ac:10:2a:55:63:36:da:4d:42:f9:dc:6d:77: 0c:33:9c:53:eb:f6:0f:95:f3:32:a3:4c:c3:92:c6: 49:75:75:ed:3a:4b:9a:c6:93:77:b6:19:8d:ad:d5: 08:e2:e4:e0:43:37:a0:b5:1d:b5:c7:ac:4d:3c:35: 95:46:63:19:52:76:a5:97:2c:db:85:95:e7:7d:eb: 8a:15:b9:03:a9:2f:13:bd:2d:c3:c2:44:af:2a:85: 26:6f:5f:fa:8d:63:64:2b:4e:cc:5a:a9:a5:df:ce: d4:d0:55:ec:f6:f5:87:4a:53:b5:0e:3f:88:ce:26: 37:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:12:C6:7E:CE:DF:98:3C:73:A5:24:5B:06:C8:DC:65:13:C3:1C:AB X509v3 Authority Key Identifier: keyid:31:E9:12:E9:FF:73:AF:5B:C4:47:69:35:28:D7:25:B2:5A:2B:17:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/MekS6f9zr1vER2k1KNclslorF_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MekS6f9zr1vER2k1KNclslorF_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127673/03F4309A58CD11E8BB2D9E5DC4F9AE02/9C524DA858CE11E891382260C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.86.56.0/23 IPv6: 2407:2bc0::/32 Signature Algorithm: sha256WithRSAEncryption 59:59:e9:ec:3c:87:e0:f9:11:75:68:19:de:89:58:e5:58:af: 31:69:22:47:b8:3e:cf:f0:3d:f4:98:b1:89:c4:0e:2e:75:f8: 5c:15:af:a8:f4:9c:13:9f:98:61:54:4b:60:18:13:14:96:c4: 46:09:96:1e:6a:11:11:e7:32:f6:3b:37:9b:12:8f:8e:e9:fa: de:1b:aa:4d:03:de:26:1c:03:fe:d6:0e:3b:2e:4e:04:aa:77: aa:99:c6:80:69:b8:f0:d3:6c:1e:00:08:09:d0:d6:5b:b4:16: d5:a5:80:25:38:82:6c:1d:36:2b:87:ac:ba:b3:16:75:29:2b: 1e:2c:20:a5:ff:cd:61:70:ed:40:1c:14:46:10:24:a2:75:cf: c2:f5:4d:84:5d:e1:1a:8d:97:b3:cd:82:bd:75:97:c5:7b:f0: f8:ee:2f:ca:fa:13:c2:3d:4d:93:81:34:f1:30:a5:fd:22:ca: 55:6c:f8:eb:7f:ed:e4:f8:30:62:47:27:36:60:88:94:34:dc: 2b:10:b9:dc:ba:b2:9c:cb:6f:ca:d7:cd:a5:0c:6b:5f:eb:2f: 5c:de:08:63:75:f1:60:49:02:d3:ed:6e:a4:a9:cd:7d:c6:0c: eb:c6:2a:29:d4:6f:d3:f7:fa:f0:2b:62:29:b2:2d:af:2f:88: 13:ee:6a:fb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2NzMxMTAvBgNVBAUTKDMxRTkxMkU5RkY3M0FGNUJDNDQ3NjkzNTI4RDcyNUIy NUEyQjE3RjcwHhcNMjQwNDA2MTc1NTMwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjExOGM5Mi04YTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Ny1DdpVaEhH5QVMAOK5xR8JW92AUAROyyVx8A8CvVuT6xBBDW3mDAryD7Lj m+YBxOiEhkFziG2SvOgyEZsnvEBjZOnkryAJpJ1ZgUUxJtB0eDQh291GCcyXxhjw xhEFvKDeLVNtFDbZyswpU1eQSw58gT9qEKLohghbRJptJp7Zg6ngRd2AsqwQKlVj NtpNQvncbXcMM5xT6/YPlfMyo0zDksZJdXXtOkuaxpN3thmNrdUI4uTgQzegtR21 x6xNPDWVRmMZUnallyzbhZXnfeuKFbkDqS8TvS3DwkSvKoUmb1/6jWNkK07MWqml 387U0FXs9vWHSlO1Dj+IziY37wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMISxn7O 35g8c6UkWwbI3GUTwxyrMB8GA1UdIwQYMBaAFDHpEun/c69bxEdpNSjXJbJaKxf3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzY3My8wM0Y0MzA5QTU4 Q0QxMUU4QkIyRDlFNURDNEY5QUUwMi9NZWtTNmY5enIxdkVSMmsxS05jbHNsb3JG X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01la1M2Zjl6cjF2RVIyazFLTmNsc2xvckZfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc2NzMvMDNGNDMwOUE1OENEMTFFOEJCMkQ5RTVEQzRGOUFFMDIvOUM1MjREQTg1 OENFMTFFODkxMzgyMjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnVjgwDQQCAAIwBwMFACQHK8AwDQYJKoZIhvcNAQELBQAD ggEBAFlZ6ew8h+D5EXVoGd6JWOVYrzFpIke4Ps/wPfSYsYnEDi51+FwVr6j0nBOf mGFUS2AYExSWxEYJlh5qERHnMvY7N5sSj47p+t4bqk0D3iYcA/7WDjsuTgSqd6qZ xoBpuPDTbB4ACAnQ1lu0FtWlgCU4gmwdNiuHrLqzFnUpKx4sIKX/zWFw7UAcFEYQ JKJ1z8L1TYRd4RqNl7PNgr11l8V78PjuL8r6E8I9TZOBNPEwpf0iylVs+Ot/7eT4 MGJHJzZgiJQ03CsQudy6spzLb8rXzaUMa1/rL1zeCGN18WBJAtPtbqSpzX3GDOvG KinUb9P3+vArYimyLa8viBPuavs= -----END CERTIFICATE-----Generated at Sat May 18 18:12:31 2024 by rpki-client on console-fra.rpki-client.org