$ rpki-client -vvf rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/4A7E1926947511EC9795DF56C4F9AE02.roa File: 4A7E1926947511EC9795DF56C4F9AE02.roa (raw, json) Hash identifier: giHqn1/3d10aU8kBcDkIzHSLzjCb4f19XjmHmFU0fHU= Subject key identifier: CC:73:82:C8:57:96:34:37:92:79:16:B3:4E:EC:24:F0:B4:37:7A:31 Certificate issuer: /CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Certificate serial: 02DE Authority key identifier: B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/4A7E1926947511EC9795DF56C4F9AE02.roa Signing time: Wed 20 Mar 2024 03:27:06 +0000 ROA not before: Wed 20 Mar 2024 03:27:06 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139852 IP address blocks: 103.146.59.0/24 maxlen: 24 202.0.116.0/24 maxlen: 24 2001:df2:4d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 734 (0x2de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Validity Not Before: Mar 20 03:27:06 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65fa5789-2dce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:45:70:b9:20:b7:d8:42:d8:bb:cb:d6:54:14: 9b:23:4a:c1:bb:99:39:ac:60:40:86:b8:62:61:39: 77:13:4e:5b:d2:77:0e:25:f9:e0:e4:32:8f:39:ad: 37:f3:73:10:f9:34:82:bd:2c:a6:c3:c2:64:69:eb: 64:76:44:a6:12:cf:88:d2:8b:7c:83:98:22:a2:74: 64:f0:1b:c3:3c:01:d6:a7:8a:b5:43:ef:14:e3:8a: aa:dc:09:ff:7b:ec:41:eb:4e:70:f2:39:73:1f:82: ae:9e:cc:85:79:c3:93:1e:3b:c0:91:c8:19:52:d8: 97:65:1e:74:9d:60:d6:16:05:8e:b4:ed:9c:6b:9a: 81:49:2c:5d:74:dc:54:f4:38:3e:23:4b:6d:8e:4d: f3:5e:dc:58:39:c0:67:8d:4c:85:28:54:cb:3c:fd: 87:81:03:67:af:90:bf:19:e2:59:c3:97:b4:05:78: 06:c9:2d:38:8a:d8:47:23:68:0c:8f:0b:94:03:9e: f8:b4:83:da:11:87:65:dd:36:e3:c4:82:bf:3e:ac: 41:4c:12:15:b3:fe:9c:e1:39:95:25:39:28:10:0e: 30:c7:74:45:fc:93:05:a2:e9:7c:d2:dc:b5:bb:84: af:7e:1d:e9:09:67:84:76:16:6e:60:ad:ed:0f:3d: 27:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:73:82:C8:57:96:34:37:92:79:16:B3:4E:EC:24:F0:B4:37:7A:31 X509v3 Authority Key Identifier: keyid:B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/4A7E1926947511EC9795DF56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.59.0/24 202.0.116.0/24 IPv6: 2001:df2:4d80::/48 Signature Algorithm: sha256WithRSAEncryption 19:b6:4a:89:32:9f:7d:cc:cf:47:80:91:42:6a:78:7d:b7:21: 06:8a:f3:ff:64:b3:83:fc:88:4c:c9:b0:bf:11:81:10:ca:c7: a2:87:3d:e2:e9:27:44:8e:b3:57:9e:7e:d6:f4:94:6c:d2:55: 9a:0d:9e:0e:1e:36:52:00:2f:91:a5:85:36:ff:8e:a6:d9:7d: cd:ad:21:50:18:78:6f:22:b2:95:6e:e1:43:6b:61:91:47:be: 95:cf:e3:07:73:c8:87:a0:9e:c8:a9:11:d7:7a:86:27:ff:f7: 15:66:98:1a:b5:5c:5b:56:f1:b7:f6:8b:ad:d1:d9:68:83:0f: ee:c6:0a:73:66:eb:9a:f0:ef:db:93:5a:c2:92:34:b7:30:d6: 47:10:05:14:a0:92:4e:ce:f5:0b:92:77:a9:39:5b:f6:e7:73: 59:94:a5:29:eb:81:25:0e:a7:29:7b:55:4f:a4:23:c2:5e:f2: 3a:cb:fa:e5:99:5d:42:a2:7f:ba:78:e4:d0:ed:74:04:91:b2: 11:46:75:99:b3:a7:44:18:d2:f5:6f:26:94:93:6c:5f:86:9a: 24:52:72:99:8b:79:c7:40:65:16:90:01:68:fd:7b:de:6d:20: 4b:df:d7:e9:2e:ee:a8:96:8d:0d:ba:3b:e3:49:18:0f:0c:1c: aa:d5:77:19 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAt4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMjAxMTAvBgNVBAUTKEI2MzIxM0Q4RTY2MkY0NTRCRUFFRUM3RjNDNDJFM0FG NkY4OTVGQjIwHhcNMjQwMzIwMDMyNzA2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZhNTc4OS0yZGNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkVwuSC32ELYu8vWVBSbI0rBu5k5rGBAhrhiYTl3E05b0ncOJfng5DKPOa03 83MQ+TSCvSymw8JkaetkdkSmEs+I0ot8g5gionRk8BvDPAHWp4q1Q+8U44qq3An/ e+xB605w8jlzH4KunsyFecOTHjvAkcgZUtiXZR50nWDWFgWOtO2ca5qBSSxddNxU 9Dg+I0ttjk3zXtxYOcBnjUyFKFTLPP2HgQNnr5C/GeJZw5e0BXgGyS04ithHI2gM jwuUA574tIPaEYdl3TbjxIK/PqxBTBIVs/6c4TmVJTkoEA4wx3RF/JMFoul80ty1 u4Svfh3pCWeEdhZuYK3tDz0ndQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMxzgshX ljQ3knkWs07sJPC0N3oxMB8GA1UdIwQYMBaAFLYyE9jmYvRUvq7sfzxC469viV+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAyMC9CRTFFRTUwNDk0 NzAxMUVDOTFCNDZDNERDNEY5QUUwMi90aklUMk9aaTlGUy1ydXhfUEVManIyLUpY N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RqSVQyT1ppOUZTLXJ1eF9QRUxqcjItSlg3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMjAvQkUxRUU1MDQ5NDcwMTFFQzkxQjQ2QzREQzRGOUFFMDIvNEE3RTE5MjY5 NDc1MTFFQzk3OTVERjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnkjsDBADKAHQwDwQCAAIwCQMHACABDfJNgDANBgkqhkiG 9w0BAQsFAAOCAQEAGbZKiTKffczPR4CRQmp4fbchBorz/2Szg/yITMmwvxGBEMrH ooc94uknRI6zV55+1vSUbNJVmg2eDh42UgAvkaWFNv+Optl9za0hUBh4byKylW7h Q2thkUe+lc/jB3PIh6CeyKkR13qGJ//3FWaYGrVcW1bxt/aLrdHZaIMP7sYKc2br mvDv25NawpI0tzDWRxAFFKCSTs71C5J3qTlb9udzWZSlKeuBJQ6nKXtVT6Qjwl7y Osv65ZldQqJ/unjk0O10BJGyEUZ1mbOnRBjS9W8mlJNsX4aaJFJymYt5x0BlFpAB aP173m0gS9/X6S7uqJaNDbo740kYDwwcqtV3GQ== -----END CERTIFICATE-----Generated at Fri May 17 03:50:06 2024 by rpki-client on console-fra.rpki-client.org