$ rpki-client -vvf rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa File: 5431D022524211ECA52D990FC4F9AE02.roa (raw, json) Hash identifier: QBD6YJv6MqaQvb/fyqpzOOca05ASQtdQe3enzaytMzM= Subject key identifier: C4:70:D1:35:AB:F8:6D:1E:E6:00:48:21:0B:0F:59:9F:A8:41:9A:E2 Certificate issuer: /CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Certificate serial: 0375 Authority key identifier: 58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa Signing time: Thu 07 Mar 2024 02:24:42 +0000 ROA not before: Thu 07 Mar 2024 02:24:42 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 133934 IP address blocks: 103.48.208.0/24 maxlen: 24 103.48.209.0/24 maxlen: 24 103.48.210.0/24 maxlen: 24 103.48.211.0/24 maxlen: 24 2402:b280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 885 (0x375) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912871A/serialNumber=585DDC4FD9F9E314005F37198FD1E22E68249DEB Validity Not Before: Mar 7 02:24:42 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e9256a-52db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4c:de:fb:c2:1f:7e:b2:0c:5b:26:7b:ff:38: fd:60:90:62:ca:bb:d4:17:6b:ee:ee:91:0d:6b:67: f8:6f:e8:b7:b1:1c:08:0c:5d:16:da:66:47:aa:99: 17:a3:82:02:7f:ca:8b:39:9e:b7:0d:18:a8:58:27: 83:10:68:5b:8f:b5:aa:2d:79:64:9b:0e:6d:07:19: cf:fe:c1:e3:c8:71:3d:18:ad:2e:93:b6:ea:08:26: f0:e2:c8:80:66:d9:16:f1:cf:f6:ef:11:ad:e6:62: 06:fd:02:5f:f3:f3:91:a3:9c:64:92:5d:64:38:44: a7:7c:2f:c9:7e:55:68:9b:26:86:3a:7b:7c:18:42: e0:6d:1e:e7:c8:b0:37:91:31:1e:27:af:0e:69:16: 8f:19:d1:9f:5b:17:ff:80:ae:53:94:ec:63:9d:48: 09:39:73:39:e0:46:a4:86:e4:22:7d:db:47:67:d7: 02:df:f7:fe:47:37:92:0c:ef:64:a0:54:6c:0d:99: d5:f7:eb:bd:f1:d2:57:e6:08:31:c3:21:a5:6b:c5: 40:c6:8c:66:dc:bb:0d:00:70:1c:b4:06:2e:c7:9f: 60:51:30:3f:ca:a1:24:98:4b:b0:d9:fb:4a:bb:bc: bf:da:7a:13:83:4a:4b:15:7c:a1:43:37:c5:ac:02: 37:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:70:D1:35:AB:F8:6D:1E:E6:00:48:21:0B:0F:59:9F:A8:41:9A:E2 X509v3 Authority Key Identifier: keyid:58:5D:DC:4F:D9:F9:E3:14:00:5F:37:19:8F:D1:E2:2E:68:24:9D:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/WF3cT9n54xQAXzcZj9HiLmgknes.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WF3cT9n54xQAXzcZj9HiLmgknes.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912871A/05BD0F30524011EC8658060EC4F9AE02/5431D022524211ECA52D990FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.48.208.0/22 IPv6: 2402:b280::/32 Signature Algorithm: sha256WithRSAEncryption 09:27:58:b1:3c:12:a0:33:70:09:26:23:29:9e:72:55:34:96: 4c:d2:7b:f3:2a:23:c5:33:fa:02:6a:32:6d:b0:f5:8b:b2:5c: 9c:90:b0:e3:4b:75:1c:06:30:05:5d:8e:c1:7f:ee:a7:85:3a: 7c:80:8d:60:e0:d1:b2:fd:7d:ff:50:37:20:88:92:c4:82:20: 5a:f1:84:e6:13:ab:8e:09:36:97:80:e7:70:85:fe:31:a9:66: dd:c7:a4:4c:2d:8e:fe:d1:f3:e4:fd:44:c1:32:24:de:fb:16: f6:f5:0e:b0:44:2b:63:4f:17:37:b1:df:fc:88:ff:b0:d3:5f: 50:56:d6:35:e4:8c:7e:07:ea:74:d7:85:26:62:b5:9a:01:cc: cd:94:23:40:4a:98:7b:01:8e:14:29:1b:b0:95:c1:83:86:b5: 52:36:fb:f3:67:97:23:34:45:d8:64:35:a1:b2:fa:1a:24:04: 0f:c1:2c:25:51:03:68:37:7a:7a:1c:2c:65:c7:0f:0d:f4:d4: 18:36:ee:2b:00:07:43:7f:34:3e:b1:38:9b:d8:cd:3c:be:db: 76:15:fd:e3:4e:be:86:1a:58:bb:50:ec:30:07:ef:ad:14:ac: 7b:d6:ea:59:81:f9:22:d3:68:1f:d8:86:c4:45:3d:44:cf:2c: 7e:db:2d:7b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA3UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjg3MUExMTAvBgNVBAUTKDU4NUREQzRGRDlGOUUzMTQwMDVGMzcxOThGRDFFMjJF NjgyNDlERUIwHhcNMjQwMzA3MDIyNDQyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU5MjU2YS01MmRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEze+8IffrIMWyZ7/zj9YJBiyrvUF2vu7pENa2f4b+i3sRwIDF0W2mZHqpkX o4ICf8qLOZ63DRioWCeDEGhbj7WqLXlkmw5tBxnP/sHjyHE9GK0uk7bqCCbw4siA ZtkW8c/27xGt5mIG/QJf8/ORo5xkkl1kOESnfC/JflVomyaGOnt8GELgbR7nyLA3 kTEeJ68OaRaPGdGfWxf/gK5TlOxjnUgJOXM54EakhuQifdtHZ9cC3/f+RzeSDO9k oFRsDZnV9+u98dJX5ggxwyGla8VAxoxm3LsNAHActAYux59gUTA/yqEkmEuw2ftK u7y/2noTg0pLFXyhQzfFrAI3HwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMRw0TWr +G0e5gBIIQsPWZ+oQZriMB8GA1UdIwQYMBaAFFhd3E/Z+eMUAF83GY/R4i5oJJ3r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODcxQS8wNUJEMEYzMDUy NDAxMUVDODY1ODA2MEVDNEY5QUUwMi9XRjNjVDluNTR4UUFYemNaajlIaUxtZ2tu ZXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGM2NUOW41NHhRQVh6Y1pqOUhpTG1na25lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjg3MUEvMDVCRDBGMzA1MjQwMTFFQzg2NTgwNjBFQzRGOUFFMDIvNTQzMUQwMjI1 MjQyMTFFQ0E1MkQ5OTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnMNAwDQQCAAIwBwMFACQCsoAwDQYJKoZIhvcNAQELBQAD ggEBAAknWLE8EqAzcAkmIymeclU0lkzSe/MqI8Uz+gJqMm2w9YuyXJyQsONLdRwG MAVdjsF/7qeFOnyAjWDg0bL9ff9QNyCIksSCIFrxhOYTq44JNpeA53CF/jGpZt3H pEwtjv7R8+T9RMEyJN77Fvb1DrBEK2NPFzex3/yI/7DTX1BW1jXkjH4H6nTXhSZi tZoBzM2UI0BKmHsBjhQpG7CVwYOGtVI2+/NnlyM0RdhkNaGy+hokBA/BLCVRA2g3 enocLGXHDw301Bg27isAB0N/ND6xOJvYzTy+23YV/eNOvoYaWLtQ7DAH760UrHvW 6lmB+SLTaB/YhsRFPUTPLH7bLXs= -----END CERTIFICATE-----Generated at Sun May 19 03:38:13 2024 by rpki-client on console-ams.rpki-client.org