$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/B2B24A4221D711EB9CFAC46EC4F9AE02.roa File: B2B24A4221D711EB9CFAC46EC4F9AE02.roa (raw, json) Hash identifier: 84y81Eerv2g2Dj1aYxq/gPcQ5IkuQM3S9N8tj3Ga7D0= Subject key identifier: 99:F5:00:21:08:2A:3D:E8:A8:CF:68:D7:2E:0D:A7:07:6C:70:9A:6A Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0DF7 Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/B2B24A4221D711EB9CFAC46EC4F9AE02.roa Signing time: Sun 26 Mar 2023 19:06:08 +0000 ROA not before: Sun 26 Mar 2023 19:06:08 +0000 ROA not after: Wed 01 May 2024 00:00:00 +0000 asID: 135386 IP address blocks: 103.133.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Apr 2023 18:46:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3575 (0xdf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Mar 26 19:06:08 2023 GMT Not After : May 1 00:00:00 2024 GMT Subject: CN=642097a0-65e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:42:64:3c:27:ae:76:50:df:0f:40:4f:67:d4: 52:78:e0:40:a7:d0:b9:34:24:25:7e:91:2a:d1:2a: 5f:bf:e2:37:5e:a7:2b:76:d1:1d:cb:53:1e:93:72: e4:84:9b:f6:8b:9c:c4:e0:ed:af:67:01:13:c5:fa: 6c:aa:45:95:ae:e2:68:f5:ae:39:d9:78:83:32:08: 2e:65:eb:d2:d9:39:4d:f7:a0:81:16:1c:6f:65:7a: 26:f7:a6:f4:46:8c:78:01:b2:eb:e4:73:5a:60:fc: ee:56:54:40:bc:fe:d9:c1:47:43:2a:52:bb:16:bf: 55:07:f9:d5:e0:f7:5b:c0:35:de:6e:98:d2:72:2e: e7:d3:14:53:1a:67:8b:76:40:9c:e7:cd:63:65:5a: bd:ff:d1:78:92:f2:86:d8:37:52:cd:be:e9:69:49: bc:66:25:e4:5c:25:d6:90:c1:42:d6:67:62:33:02: 5e:81:79:eb:8a:a2:44:54:12:f4:61:85:2d:13:4f: 5e:b6:e5:f3:3b:c6:d5:e3:47:c1:a4:7a:b1:c8:27: 67:9d:2f:8e:19:6d:25:98:68:99:d5:c1:f7:07:7c: f3:47:38:5a:03:3d:d7:3a:f8:d0:67:0d:fe:f4:e0: 1e:91:da:c1:4c:79:18:df:bf:01:57:10:57:ed:c8: c6:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F5:00:21:08:2A:3D:E8:A8:CF:68:D7:2E:0D:A7:07:6C:70:9A:6A X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/B2B24A4221D711EB9CFAC46EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.176.0/22 Signature Algorithm: sha256WithRSAEncryption b2:0c:21:03:ab:58:1e:d9:c5:bf:a2:40:77:80:5c:fb:36:82: 49:d6:84:49:34:43:0e:5f:7f:88:c8:88:ea:5d:ba:b2:5f:69: 21:e7:ea:06:f8:b0:5f:be:d0:d3:21:f7:cc:5b:c9:c6:76:19: 5d:6f:cc:7f:5a:d5:c0:ba:a7:5e:6f:c5:de:e5:8a:6e:43:a2: bd:f9:68:04:38:bf:6a:7d:e6:d4:ee:f0:65:e2:ad:65:b8:49: 4a:fe:b7:f5:c3:5f:b9:55:4c:a6:05:62:b4:13:22:43:14:e1: c3:94:41:0a:5c:94:93:78:41:bb:05:05:d1:22:f8:a7:ee:94: d7:e1:96:a2:93:ab:3a:d5:f2:bf:f1:25:59:b3:c5:79:fa:fe: 59:39:cd:ef:52:0d:57:17:b6:e5:f8:87:93:5d:cd:a6:b7:62: cb:19:f6:9a:c6:b2:ef:6c:63:9b:30:a2:75:20:57:2c:db:7e: f7:1a:53:4d:76:32:3e:77:bf:72:3d:02:40:93:9e:7b:b8:36: 51:bf:db:a8:ed:63:60:6d:a3:1f:0a:01:83:ae:ce:ad:7a:d7: 4e:f4:4d:6d:f8:a4:69:c2:85:f9:74:41:8c:80:cd:16:d3:2c: ba:a2:eb:2c:2c:ef:e5:b5:12:7b:ae:c7:20:b7:60:81:74:82: 80:50:e8:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjMwMzI2MTkwNjA4WhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDIwOTdhMC02NWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0EJkPCeudlDfD0BPZ9RSeOBAp9C5NCQlfpEq0Spfv+I3XqcrdtEdy1Mek3Lk hJv2i5zE4O2vZwETxfpsqkWVruJo9a452XiDMgguZevS2TlN96CBFhxvZXom96b0 Rox4AbLr5HNaYPzuVlRAvP7ZwUdDKlK7Fr9VB/nV4PdbwDXebpjSci7n0xRTGmeL dkCc581jZVq9/9F4kvKG2DdSzb7paUm8ZiXkXCXWkMFC1mdiMwJegXnriqJEVBL0 YYUtE09etuXzO8bV40fBpHqxyCdnnS+OGW0lmGiZ1cH3B3zzRzhaAz3XOvjQZw3+ 9OAekdrBTHkY378BVxBX7cjGEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJn1ACEI Kj3oqM9o1y4NpwdscJpqMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE2OTAvMTVCNDFCODg2M0YzMTFFOUEwODU0QzQ3QzRGOUFFMDIvQjJCMjRBNDIy MUQ3MTFFQjlDRkFDNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhbAwDQYJKoZIhvcNAQELBQADggEBALIMIQOrWB7Zxb+i QHeAXPs2gknWhEk0Qw5ff4jIiOpdurJfaSHn6gb4sF++0NMh98xbycZ2GV1vzH9a 1cC6p15vxd7lim5Dor35aAQ4v2p95tTu8GXirWW4SUr+t/XDX7lVTKYFYrQTIkMU 4cOUQQpclJN4QbsFBdEi+KfulNfhlqKTqzrV8r/xJVmzxXn6/lk5ze9SDVcXtuX4 h5Ndzaa3YssZ9prGsu9sY5swonUgVyzbfvcaU012Mj53v3I9AkCTnnu4NlG/26jt Y2Btox8KAYOuzq161070TW34pGnChfl0QYyAzRbTLLqi6yws7+W1EnuuxyC3YIF0 goBQ6AY= -----END CERTIFICATE-----Generated at Sun Mar 26 19:31:29 2023 by rpki-client on console-fra.rpki-client.org