$ rpki-client -vvf rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/3058390A7C4511E984DEA431C4F9AE02.roa File: 3058390A7C4511E984DEA431C4F9AE02.roa (raw, json) Hash identifier: 4/YtE2E7cZOvCsQDJx5zxuAVDUTir907xX3hoJmimmE= Subject key identifier: E0:30:CB:D9:7B:CF:55:DB:F0:E5:73:FC:DE:10:BA:7A:10:8E:BE:E1 Certificate issuer: /CN=A9132DF5/serialNumber=57FB89395389640B6869A5E24074B42E421E2BD7 Certificate serial: 0E36 Authority key identifier: 57:FB:89:39:53:89:64:0B:68:69:A5:E2:40:74:B4:2E:42:1E:2B:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V_uJOVOJZAtoaaXiQHS0LkIeK9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/3058390A7C4511E984DEA431C4F9AE02.roa Signing time: Tue 30 Apr 2024 18:57:19 +0000 ROA not before: Tue 30 Apr 2024 18:57:19 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136474 IP address blocks: 42.156.32.0/22 maxlen: 24 103.89.180.0/22 maxlen: 22 103.89.180.0/24 maxlen: 24 103.89.181.0/24 maxlen: 24 103.89.182.0/24 maxlen: 24 103.89.183.0/24 maxlen: 24 2400:f240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/V_uJOVOJZAtoaaXiQHS0LkIeK9c.crl rsync://rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/V_uJOVOJZAtoaaXiQHS0LkIeK9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V_uJOVOJZAtoaaXiQHS0LkIeK9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:41:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3638 (0xe36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132DF5/serialNumber=57FB89395389640B6869A5E24074B42E421E2BD7 Validity Not Before: Apr 30 18:57:19 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66313f0e-c3b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:71:35:65:73:e3:b3:93:1b:e1:8d:3e:9f:b5: 57:02:8d:51:b0:e4:21:89:2a:06:1d:dd:9c:97:1b: a4:e4:79:91:04:5e:87:41:cc:28:c3:b8:88:93:cf: 39:a1:15:2e:b1:42:f3:82:86:34:17:b0:a3:42:5a: 36:17:0c:74:af:01:1d:74:0b:1d:10:46:b4:65:23: a0:e7:65:7f:a5:fb:4a:d7:e5:29:b6:20:d0:91:58: e5:f9:3b:ee:60:70:dd:da:55:d0:12:26:53:b4:ca: 65:29:65:7e:69:45:43:7e:68:3c:95:b1:13:95:e7: e8:68:99:32:b1:90:44:5b:bd:97:98:fb:dc:57:50: e5:13:57:30:b6:a9:a4:e5:7c:07:8b:de:44:d2:e4: 4e:e2:ee:a7:4d:ae:7a:28:03:4e:41:e9:5c:8f:35: b9:c3:76:88:40:9d:28:c1:3b:03:47:1a:6b:d7:2a: 36:c2:b3:c4:41:2d:7f:f5:8d:41:cd:e0:14:45:9a: d0:15:f8:8b:7a:cb:f9:dd:a5:75:4c:2c:25:50:52: 0f:24:9b:b7:6c:6d:7a:39:0c:00:82:d9:12:77:83: 5c:0e:f2:38:54:cf:f8:34:13:51:14:f6:6d:b1:2b: e6:6a:b1:84:57:68:30:f7:3e:83:77:e7:a3:dd:ee: 76:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:30:CB:D9:7B:CF:55:DB:F0:E5:73:FC:DE:10:BA:7A:10:8E:BE:E1 X509v3 Authority Key Identifier: keyid:57:FB:89:39:53:89:64:0B:68:69:A5:E2:40:74:B4:2E:42:1E:2B:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/V_uJOVOJZAtoaaXiQHS0LkIeK9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/V_uJOVOJZAtoaaXiQHS0LkIeK9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132DF5/82072E7A7C4311E98286512CC4F9AE02/3058390A7C4511E984DEA431C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.156.32.0/22 103.89.180.0/22 IPv6: 2400:f240::/32 Signature Algorithm: sha256WithRSAEncryption 43:1e:e2:33:f6:0b:4e:90:14:e2:8d:8b:a5:28:5e:2e:f7:b3: 6e:3b:e3:ed:0d:63:54:5c:88:e9:3a:86:4f:93:19:63:bf:fe: c8:bd:8a:5c:0f:1a:1b:9a:10:50:e5:a3:27:a5:91:3d:ec:5a: 81:e8:23:24:4d:0e:ec:16:09:1b:1e:b6:fd:ea:30:3c:72:4f: cc:a8:c6:1f:37:06:63:e2:a1:a6:69:34:a4:6c:21:9e:ef:6b: ff:93:cc:d7:d1:41:4f:d2:f5:49:04:d2:38:7e:0c:55:f9:2a: 4d:5e:0c:cd:f5:56:02:e1:b4:08:f5:af:1d:e2:0c:b2:5d:2a: fc:c8:bc:0e:4f:68:f2:81:37:ea:f7:a5:50:40:dd:ae:b3:7b: 0f:2d:f4:ab:46:60:d0:df:c2:60:8c:91:f9:8e:8e:d1:cf:98: bb:e5:ef:b6:ae:74:59:90:94:11:49:5b:67:ef:94:18:a6:a8: 1c:76:5b:ae:98:5c:33:48:09:a2:2f:f2:37:d0:88:63:9d:78: db:6f:0f:7a:19:6c:e5:f0:1b:05:8a:44:6d:d9:b9:74:9e:cb: 35:0e:24:49:77:e9:f0:80:32:28:91:74:c6:06:01:3c:36:1a: da:d0:45:c4:f5:32:57:50:3f:4c:b7:10:1c:d7:c6:68:34:03: 66:16:c0:17 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJERjUxMTAvBgNVBAUTKDU3RkI4OTM5NTM4OTY0MEI2ODY5QTVFMjQwNzRCNDJF NDIxRTJCRDcwHhcNMjQwNDMwMTg1NzE5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxM2YwZS1jM2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXE1ZXPjs5Mb4Y0+n7VXAo1RsOQhiSoGHd2clxuk5HmRBF6HQcwow7iIk885 oRUusULzgoY0F7CjQlo2Fwx0rwEddAsdEEa0ZSOg52V/pftK1+UptiDQkVjl+Tvu YHDd2lXQEiZTtMplKWV+aUVDfmg8lbETlefoaJkysZBEW72XmPvcV1DlE1cwtqmk 5XwHi95E0uRO4u6nTa56KANOQelcjzW5w3aIQJ0owTsDRxpr1yo2wrPEQS1/9Y1B zeAURZrQFfiLesv53aV1TCwlUFIPJJu3bG16OQwAgtkSd4NcDvI4VM/4NBNRFPZt sSvmarGEV2gw9z6Dd+ej3e52gwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOAwy9l7 z1Xb8OVz/N4QunoQjr7hMB8GA1UdIwQYMBaAFFf7iTlTiWQLaGml4kB0tC5CHivX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkRGNS84MjA3MkU3QTdD NDMxMUU5ODI4NjUxMkNDNEY5QUUwMi9WX3VKT1ZPSlpBdG9hYVhpUUhTMExrSWVL OWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZfdUpPVk9KWkF0b2FhWGlRSFMwTGtJZUs5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJERjUvODIwNzJFN0E3QzQzMTFFOTgyODY1MTJDQzRGOUFFMDIvMzA1ODM5MEE3 QzQ1MTFFOTg0REVBNDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIqnCADBAJnWbQwDQQCAAIwBwMFACQA8kAwDQYJKoZIhvcN AQELBQADggEBAEMe4jP2C06QFOKNi6UoXi73s2474+0NY1RciOk6hk+TGWO//si9 ilwPGhuaEFDloyelkT3sWoHoIyRNDuwWCRsetv3qMDxyT8yoxh83BmPioaZpNKRs IZ7va/+TzNfRQU/S9UkE0jh+DFX5Kk1eDM31VgLhtAj1rx3iDLJdKvzIvA5PaPKB N+r3pVBA3a6zew8t9KtGYNDfwmCMkfmOjtHPmLvl77audFmQlBFJW2fvlBimqBx2 W66YXDNICaIv8jfQiGOdeNtvD3oZbOXwGwWKRG3ZuXSeyzUOJEl36fCAMiiRdMYG ATw2GtrQRcT1MldQP0y3EBzXxmg0A2YWwBc= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:57 2024 by rpki-client on console-fra.rpki-client.org