$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/595310E440C911EE9F1D5F41C4F9AE02.roa File: 595310E440C911EE9F1D5F41C4F9AE02.roa (raw, json) Hash identifier: vdUbGylqLVvIWJTYxiqOcph0PmLaT2dn3YuEzpz+jf4= Subject key identifier: A6:78:5F:9F:8D:2F:FE:6C:6A:22:09:82:7D:98:46:2B:33:07:43:D2 Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Certificate serial: 1016 Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/595310E440C911EE9F1D5F41C4F9AE02.roa Signing time: Fri 02 Feb 2024 18:06:30 +0000 ROA not before: Fri 02 Feb 2024 18:06:30 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135413 IP address blocks: 103.132.248.0/22 maxlen: 22 103.132.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4118 (0x1016) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43 Validity Not Before: Feb 2 18:06:30 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bd2f26-f2bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:27:be:3d:4c:a4:d0:1f:6e:f6:30:3f:a7:de: a5:7b:6f:9b:07:48:6c:63:29:92:93:3c:52:87:65: 21:27:4b:e2:4b:ab:2d:87:22:2a:c7:f4:99:56:94: bf:68:25:bd:cf:f0:81:43:cf:fd:2e:38:9f:6b:87: de:bd:f1:e0:19:46:07:de:ab:dd:4b:cc:b7:5b:ac: e9:ee:69:47:31:38:d2:33:95:1b:cf:48:68:41:a3: a1:34:f5:5d:d7:43:fc:58:f6:a7:31:b3:00:fb:3b: 4e:f5:23:ff:9e:87:d1:78:97:e6:eb:59:8e:7d:cb: 70:0c:f3:a1:63:fd:a3:e2:aa:c8:ed:07:20:25:4f: 25:e5:0c:91:10:70:55:2b:28:bd:45:70:ec:60:cf: e3:38:b8:39:75:71:d1:f3:1c:c7:7b:fc:5e:1d:51: d0:8d:b5:20:a7:bd:0d:ed:51:3e:48:44:05:8b:d1: 1d:07:1c:a3:c2:18:71:44:37:a8:63:83:cc:d3:fe: a4:1c:95:f2:f4:14:0a:ee:11:31:57:e3:7a:42:07: 0c:b2:5b:ee:60:52:b5:1f:3e:33:96:8f:42:51:61: c4:06:9b:6d:65:47:d0:50:b8:18:c8:3f:20:fc:3f: 23:cd:d7:ee:8e:dd:b1:bf:4c:ba:b6:46:fa:9c:c1: 25:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:78:5F:9F:8D:2F:FE:6C:6A:22:09:82:7D:98:46:2B:33:07:43:D2 X509v3 Authority Key Identifier: keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/595310E440C911EE9F1D5F41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.248.0/22 Signature Algorithm: sha256WithRSAEncryption 11:10:79:2e:f2:c7:1e:a9:b7:04:12:b1:84:65:9c:ae:80:25: 24:f6:c6:4a:5d:f2:1f:3f:2a:10:89:19:19:b3:df:5c:b9:fc: 7b:41:a2:52:4e:ec:1c:18:6a:ea:d4:c0:3b:f1:dd:ab:38:2c: b9:0d:06:40:68:ca:e4:ff:49:1b:3e:90:7b:8d:a0:93:78:55: 0d:47:3e:b3:9f:d4:06:0f:f0:83:27:b3:87:e6:1d:0a:48:d8: e7:5f:5d:b5:5d:df:fb:fe:e4:a5:ff:a8:f0:ca:03:92:d8:df: 29:ac:5b:97:ff:2c:d4:1c:c1:98:15:56:1d:02:6d:06:0d:a1: fa:bd:1b:62:b1:4a:46:6b:43:fb:99:b3:c3:a4:0f:17:2f:7f: 6e:bd:1d:e5:72:db:72:48:5b:02:2a:be:f0:e5:ec:0d:7d:93: 57:b5:7e:1c:07:93:0c:26:54:29:3a:79:5f:b5:eb:42:b9:3e: 4b:31:25:36:48:a9:c5:66:97:a0:a1:f9:2c:9e:00:8d:c2:7b: fc:9d:a1:62:ad:66:33:ae:3a:12:f7:ae:eb:5a:20:b8:35:77: b0:33:51:1d:ac:b3:21:f9:b1:aa:1c:72:6f:be:db:2d:d1:57: d2:f5:82:a1:39:a1:bd:5f:c0:1b:34:e3:a4:52:f5:4d:76:a2: a2:20:39:39 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEBYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk3OTcxMTAvBgNVBAUTKDcwQkQxQTVEOTUxMkJGNkRFMEJBNjkyNTNEQkJGMDEx MDNFNTNBNDMwHhcNMjQwMjAyMTgwNjMwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkMmYyNi1mMmJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2ie+PUyk0B9u9jA/p96le2+bB0hsYymSkzxSh2UhJ0viS6sthyIqx/SZVpS/ aCW9z/CBQ8/9Ljifa4fevfHgGUYH3qvdS8y3W6zp7mlHMTjSM5Ubz0hoQaOhNPVd 10P8WPanMbMA+ztO9SP/nofReJfm61mOfctwDPOhY/2j4qrI7QcgJU8l5QyREHBV Kyi9RXDsYM/jOLg5dXHR8xzHe/xeHVHQjbUgp70N7VE+SEQFi9EdBxyjwhhxRDeo Y4PM0/6kHJXy9BQK7hExV+N6QgcMslvuYFK1Hz4zlo9CUWHEBpttZUfQULgYyD8g /D8jzdfujt2xv0y6tkb6nMElNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKZ4X5+N L/5saiIJgn2YRiszB0PSMB8GA1UdIwQYMBaAFHC9Gl2VEr9t4LppJT278BED5TpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTc5Ny8wOUYyRDk5NDFB MjIxMUU5QkMwNkQzMEFDNEY5QUUwMi9jTDBhWFpVU3YyM2d1bWtsUGJ2d0VRUGxP a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGFYWlVTdjIzZ3Vta2xQYnZ3RVFQbE9rTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk3OTcvMDlGMkQ5OTQxQTIyMTFFOUJDMDZEMzBBQzRGOUFFMDIvNTk1MzEwRTQ0 MEM5MTFFRTlGMUQ1RjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhPgwDQYJKoZIhvcNAQELBQADggEBABEQeS7yxx6ptwQS sYRlnK6AJST2xkpd8h8/KhCJGRmz31y5/HtBolJO7BwYaurUwDvx3as4LLkNBkBo yuT/SRs+kHuNoJN4VQ1HPrOf1AYP8IMns4fmHQpI2OdfXbVd3/v+5KX/qPDKA5LY 3ymsW5f/LNQcwZgVVh0CbQYNofq9G2KxSkZrQ/uZs8OkDxcvf269HeVy23JIWwIq vvDl7A19k1e1fhwHkwwmVCk6eV+160K5PksxJTZIqcVml6Ch+SyeAI3Ce/ydoWKt ZjOuOhL3rutaILg1d7AzUR2ssyH5saoccm++2y3RV9L1gqE5ob1fwBs046RS9U12 oqIgOTk= -----END CERTIFICATE-----Generated at Sat May 18 18:46:45 2024 by rpki-client on console-fra.rpki-client.org