$ rpki-client -vvf rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa File: B2233F6C7FAB11ED834D8D52C4F9AE02.roa (raw, json) Hash identifier: h3f2of4i7rVBSMw55O0R3l5qvKQlQOhO4lCnYkzMVq8= Subject key identifier: B9:3B:C2:86:9E:88:38:3A:81:E4:5B:47:D9:AC:7E:0F:29:7A:39:D4 Certificate issuer: /CN=A9130BF5/serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Certificate serial: CE Authority key identifier: 2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa Signing time: Mon 15 Jan 2024 04:35:39 +0000 ROA not before: Mon 15 Jan 2024 04:35:38 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150685 IP address blocks: 103.55.240.0/24 maxlen: 24 103.55.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130BF5/serialNumber=2AEAEBA0F018DBEFD1874D226A14FB0B94A9587E Validity Not Before: Jan 15 04:35:38 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a4b61a-6d22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8d:3a:41:17:d9:77:ab:5e:10:0a:fe:99:bc: 60:8e:26:74:2c:c6:95:e5:5d:33:e3:21:6f:3f:dd: 1f:5d:37:30:7d:9b:6b:00:be:cd:04:2a:51:1b:e7: 8a:df:72:6a:cb:89:bd:83:d5:f4:b4:8a:98:bf:96: cd:a5:4b:d3:30:59:9b:9d:8a:0d:6f:a1:64:88:8e: e2:70:5c:4e:66:aa:50:3c:52:e6:d2:27:a4:dd:62: 83:29:9d:52:21:14:8e:66:a5:36:45:69:45:1c:82: b8:16:3a:1e:77:21:41:55:22:03:fe:95:0a:31:7c: 9c:a4:20:d0:bc:51:1b:5e:67:93:18:09:35:16:2c: 8e:ea:b4:f9:11:d1:f8:4b:20:97:82:8a:2e:06:9b: 47:1e:7c:c1:f5:0d:54:38:94:dc:5e:db:43:b5:34: 3e:61:78:0a:43:1c:19:a9:1d:7f:79:16:bf:30:0d: b2:d4:4b:f4:9f:0c:c2:f9:2a:0f:6b:c7:51:aa:bb: db:9c:b5:9a:dd:dc:81:9d:8b:5e:60:bf:6c:d1:bc: cd:49:10:df:41:29:d9:70:bf:8a:de:98:6d:e5:d3: 17:df:00:47:89:fb:9b:3e:76:d2:16:80:8c:a0:55: 64:00:b3:b3:89:2f:6d:2d:86:9e:1c:dc:3c:a2:5b: 0a:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:3B:C2:86:9E:88:38:3A:81:E4:5B:47:D9:AC:7E:0F:29:7A:39:D4 X509v3 Authority Key Identifier: keyid:2A:EA:EB:A0:F0:18:DB:EF:D1:87:4D:22:6A:14:FB:0B:94:A9:58:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/KurroPAY2-_Rh00iahT7C5SpWH4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KurroPAY2-_Rh00iahT7C5SpWH4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130BF5/6FC641347FA911ED9A3A4252C4F9AE02/B2233F6C7FAB11ED834D8D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.240.0/23 Signature Algorithm: sha256WithRSAEncryption 63:64:a0:08:67:63:ad:1d:24:2d:d0:a7:8d:d7:6f:4e:b5:ee: f8:ba:17:a2:f9:17:cc:7a:9b:18:81:07:d1:46:46:5e:02:6b: 67:94:3b:94:23:5c:51:bf:5b:51:2e:18:98:33:3d:79:2b:f1: 45:a9:27:ad:24:f0:af:56:c2:3e:85:8b:c2:1f:4b:fc:30:2d: 72:32:c7:99:1f:d2:c7:d1:9c:d7:23:e9:2e:9a:b4:63:aa:fa: 35:97:42:6b:b5:f1:19:5b:be:1a:31:ab:ec:26:c5:c7:13:78: 8e:75:f2:22:73:fa:c7:17:4c:f2:e7:e3:db:14:2d:46:e2:e2: 42:36:3a:28:43:a9:57:29:9b:b3:87:49:52:8f:43:bc:6d:f9: 95:d8:37:f2:87:cb:c8:d9:00:fe:93:d1:61:fe:8e:b1:23:de: 15:a0:3b:06:a2:64:ac:bf:7a:65:fc:7f:c5:6f:05:9f:3c:c3: bc:d3:7d:c7:a9:f6:0d:05:15:8d:e9:e3:ca:6f:39:7e:7f:a9: ae:52:87:d2:0e:70:fb:8f:d0:0c:53:cd:41:56:e8:89:5b:21: ac:11:64:55:18:51:a5:f5:c7:24:5b:c8:d2:a5:27:80:9f:bc: d4:d8:42:fd:55:35:6d:ca:31:0d:27:b3:c8:93:c6:cd:04:15: 3f:b1:ab:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBCRjUxMTAvBgNVBAUTKDJBRUFFQkEwRjAxOERCRUZEMTg3NEQyMjZBMTRGQjBC OTRBOTU4N0UwHhcNMjQwMTE1MDQzNTM4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE0YjYxYS02ZDIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwY06QRfZd6teEAr+mbxgjiZ0LMaV5V0z4yFvP90fXTcwfZtrAL7NBCpRG+eK 33Jqy4m9g9X0tIqYv5bNpUvTMFmbnYoNb6FkiI7icFxOZqpQPFLm0iek3WKDKZ1S IRSOZqU2RWlFHIK4FjoedyFBVSID/pUKMXycpCDQvFEbXmeTGAk1FiyO6rT5EdH4 SyCXgoouBptHHnzB9Q1UOJTcXttDtTQ+YXgKQxwZqR1/eRa/MA2y1Ev0nwzC+SoP a8dRqrvbnLWa3dyBnYteYL9s0bzNSRDfQSnZcL+K3pht5dMX3wBHifubPnbSFoCM oFVkALOziS9tLYaeHNw8olsKcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLk7woae iDg6geRbR9msfg8pejnUMB8GA1UdIwQYMBaAFCrq66DwGNvv0YdNImoU+wuUqVh+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEJGNS82RkM2NDEzNDdG QTkxMUVEOUEzQTQyNTJDNEY5QUUwMi9LdXJyb1BBWTItX1JoMDBpYWhUN0M1U3BX SDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t1cnJvUEFZMi1fUmgwMGlhaFQ3QzVTcFdINC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBCRjUvNkZDNjQxMzQ3RkE5MTFFRDlBM0E0MjUyQzRGOUFFMDIvQjIyMzNGNkM3 RkFCMTFFRDgzNEQ4RDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnN/AwDQYJKoZIhvcNAQELBQADggEBAGNkoAhnY60dJC3Q p43Xb0617vi6F6L5F8x6mxiBB9FGRl4Ca2eUO5QjXFG/W1EuGJgzPXkr8UWpJ60k 8K9Wwj6Fi8IfS/wwLXIyx5kf0sfRnNcj6S6atGOq+jWXQmu18Rlbvhoxq+wmxccT eI518iJz+scXTPLn49sULUbi4kI2OihDqVcpm7OHSVKPQ7xt+ZXYN/KHy8jZAP6T 0WH+jrEj3hWgOwaiZKy/emX8f8VvBZ88w7zTfcep9g0FFY3p48pvOX5/qa5Sh9IO cPuP0AxTzUFW6IlbIawRZFUYUaX1xyRbyNKlJ4CfvNTYQv1VNW3KMQ0ns8iTxs0E FT+xq84= -----END CERTIFICATE-----Generated at Sat May 11 07:50:54 2024 by rpki-client on console-ams.rpki-client.org