$ rpki-client -vvf rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/445C8236B69311EC9650A57CC4F9AE02.roa File: 445C8236B69311EC9650A57CC4F9AE02.roa (raw, json) Hash identifier: OSjZRmeKXZKax23+4VxeOvWOIIsbDVZIV+tHsONt1jk= Subject key identifier: 4A:98:BB:A4:67:4A:2F:95:0D:9C:68:F0:53:F4:D8:A2:B2:50:32:32 Certificate issuer: /CN=A9131B38/serialNumber=FA59B26EC6597800C3579DD7073FA4B685A7C2D2 Certificate serial: 02F3 Authority key identifier: FA:59:B2:6E:C6:59:78:00:C3:57:9D:D7:07:3F:A4:B6:85:A7:C2:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-lmybsZZeADDV53XBz-ktoWnwtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/445C8236B69311EC9650A57CC4F9AE02.roa Signing time: Thu 25 Jan 2024 02:45:11 +0000 ROA not before: Thu 25 Jan 2024 02:45:11 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133766 IP address blocks: 103.180.52.0/23 maxlen: 23 103.180.52.0/24 maxlen: 24 103.180.53.0/24 maxlen: 24 2001:df0:5740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.crl rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-lmybsZZeADDV53XBz-ktoWnwtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 755 (0x2f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131B38/serialNumber=FA59B26EC6597800C3579DD7073FA4B685A7C2D2 Validity Not Before: Jan 25 02:45:11 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b1cb37-1cfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0a:22:0e:df:8e:80:4b:10:66:d8:05:0f:bb: e9:71:a5:67:81:b6:d5:5a:89:2a:b5:1d:dd:eb:83: 5c:62:8a:aa:16:8b:10:43:dd:19:f4:1e:0f:07:81: 32:fe:2b:b4:86:17:0b:6c:70:cd:ad:a6:01:28:33: b1:d4:0a:ff:b8:21:84:c2:bf:c2:bf:82:6b:f8:ab: 11:71:32:a6:44:cd:6f:94:17:bc:58:bc:78:fa:22: 21:2e:08:93:d1:73:79:22:78:92:db:32:d5:48:ef: 36:d0:ee:a8:a0:5c:1e:ae:f0:b5:b5:5a:f2:8b:45: 2a:df:df:8c:48:d7:cf:15:c3:63:22:84:88:f5:14: ca:25:40:00:dd:05:d9:d7:2e:31:6f:f9:7e:ad:3a: 26:07:4f:db:4d:55:41:0f:2a:fb:73:b5:16:69:78: df:d4:61:d5:ce:b5:8b:f4:fb:b8:00:68:43:cb:7f: cf:96:5b:49:85:27:a7:75:8f:8c:32:e6:5d:5d:89: 42:53:45:72:1a:29:f0:d2:d6:b8:fa:cc:f0:9c:42: dc:96:4c:a8:83:50:88:bd:2b:af:bd:74:d7:7a:4c: 47:9c:ec:e3:30:1c:eb:3f:8d:a4:34:d1:79:8a:24: 99:fd:73:09:dd:8b:83:45:f1:0e:8d:ea:36:f1:9b: 57:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:98:BB:A4:67:4A:2F:95:0D:9C:68:F0:53:F4:D8:A2:B2:50:32:32 X509v3 Authority Key Identifier: keyid:FA:59:B2:6E:C6:59:78:00:C3:57:9D:D7:07:3F:A4:B6:85:A7:C2:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/-lmybsZZeADDV53XBz-ktoWnwtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-lmybsZZeADDV53XBz-ktoWnwtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131B38/2DF544547D0B11ECBA239433C4F9AE02/445C8236B69311EC9650A57CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.180.52.0/23 IPv6: 2001:df0:5740::/48 Signature Algorithm: sha256WithRSAEncryption 44:d1:5d:11:46:39:07:5b:e7:91:a0:fa:0c:57:da:39:2a:8d: b3:2b:ac:f1:aa:1b:2d:d5:22:42:b9:fb:63:f2:c0:3f:bb:a0: 6f:54:9e:a1:39:3b:5a:15:5b:51:42:93:38:81:18:22:07:94: 57:b7:e0:51:03:d0:17:55:38:1c:81:01:e5:bc:73:91:00:cd: df:1b:0a:83:97:59:7d:98:cf:08:3a:da:29:19:21:73:40:ef: 5e:7d:1b:85:59:fe:1e:58:2f:1a:4f:7e:f1:a9:cc:8f:1a:99: 37:7e:bc:6b:fe:bb:0e:21:ef:d0:6a:4b:3e:b2:d5:c8:3e:5a: b4:75:3e:e1:30:20:ff:39:a4:43:27:63:6a:b2:c5:1b:ed:3f: c8:8d:62:ec:1d:81:d6:5c:21:50:bf:49:62:86:a4:1c:80:aa: 9d:c9:f3:7a:e9:35:bd:d0:15:f2:88:e8:f2:ec:3a:d6:3c:4e: b0:73:d7:9b:b1:66:85:19:9a:99:8a:5e:a4:38:3f:45:84:95: d7:9c:cf:66:10:76:41:7b:f3:9c:14:ae:af:06:74:ce:64:1a: 0f:2f:c7:03:d8:76:f7:9d:66:19:4e:a3:a8:af:ef:23:86:06: ed:43:aa:f5:75:2b:25:d8:f1:71:76:5e:e3:00:a5:9c:e9:4c: 69:c5:24:49 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAvMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFCMzgxMTAvBgNVBAUTKEZBNTlCMjZFQzY1OTc4MDBDMzU3OURENzA3M0ZBNEI2 ODVBN0MyRDIwHhcNMjQwMTI1MDI0NTExWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIxY2IzNy0xY2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0woiDt+OgEsQZtgFD7vpcaVngbbVWokqtR3d64NcYoqqFosQQ90Z9B4PB4Ey /iu0hhcLbHDNraYBKDOx1Ar/uCGEwr/Cv4Jr+KsRcTKmRM1vlBe8WLx4+iIhLgiT 0XN5IniS2zLVSO820O6ooFwervC1tVryi0Uq39+MSNfPFcNjIoSI9RTKJUAA3QXZ 1y4xb/l+rTomB0/bTVVBDyr7c7UWaXjf1GHVzrWL9Pu4AGhDy3/PlltJhSendY+M MuZdXYlCU0VyGinw0ta4+szwnELclkyog1CIvSuvvXTXekxHnOzjMBzrP42kNNF5 iiSZ/XMJ3YuDRfEOjeo28ZtXAwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEqYu6Rn Si+VDZxo8FP02KKyUDIyMB8GA1UdIwQYMBaAFPpZsm7GWXgAw1ed1wc/pLaFp8LS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUIzOC8yREY1NDQ1NDdE MEIxMUVDQkEyMzk0MzNDNEY5QUUwMi8tbG15YnNaWmVBRERWNTNYQnota3RvV253 dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1sbXlic1paZUFERFY1M1hCei1rdG9Xbnd0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFCMzgvMkRGNTQ0NTQ3RDBCMTFFQ0JBMjM5NDMzQzRGOUFFMDIvNDQ1QzgyMzZC NjkzMTFFQzk2NTBBNTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntDQwDwQCAAIwCQMHACABDfBXQDANBgkqhkiG9w0BAQsF AAOCAQEARNFdEUY5B1vnkaD6DFfaOSqNsyus8aobLdUiQrn7Y/LAP7ugb1SeoTk7 WhVbUUKTOIEYIgeUV7fgUQPQF1U4HIEB5bxzkQDN3xsKg5dZfZjPCDraKRkhc0Dv Xn0bhVn+HlgvGk9+8anMjxqZN368a/67DiHv0GpLPrLVyD5atHU+4TAg/zmkQydj arLFG+0/yI1i7B2B1lwhUL9JYoakHICqncnzeuk1vdAV8ojo8uw61jxOsHPXm7Fm hRmamYpepDg/RYSV15zPZhB2QXvznBSurwZ0zmQaDy/HA9h2951mGU6jqK/vI4YG 7UOq9XUrJdjxcXZe4wClnOlMacUkSQ== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:33 2024 by rpki-client on console-fra.rpki-client.org