$ rpki-client -vvf rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/E61E258895F611EC88E42C7EC4F9AE02.roa File: E61E258895F611EC88E42C7EC4F9AE02.roa (raw, json) Hash identifier: 5GhD9mQfhCL+pSwJ+q/IdJCZPgqv78mB5o/uGt0Iv1w= Subject key identifier: 15:B9:B9:68:EF:95:2E:41:99:F8:37:6D:A9:4E:22:D5:AD:B9:36:93 Certificate issuer: /CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Certificate serial: 02DF Authority key identifier: B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/E61E258895F611EC88E42C7EC4F9AE02.roa Signing time: Wed 20 Mar 2024 03:27:07 +0000 ROA not before: Wed 20 Mar 2024 03:27:07 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 4775 IP address blocks: 103.146.59.0/24 maxlen: 24 202.0.116.0/24 maxlen: 24 2001:df2:4d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 735 (0x2df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Validity Not Before: Mar 20 03:27:07 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65fa578a-83d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:56:60:fe:81:ea:5c:55:49:a5:57:21:78:31: 41:e4:28:80:5a:1d:87:ff:01:7f:48:db:c2:2c:de: f0:2f:1c:63:17:25:e9:dd:9e:5a:11:ae:2e:22:ef: 05:ce:64:7d:ec:72:cf:76:8d:1b:e4:0d:72:23:96: 69:0e:47:9b:17:ee:e1:0e:d3:8d:d7:2f:ea:cc:3b: c9:9d:5f:4c:d1:44:fc:f7:52:b1:e5:02:92:ba:70: 21:16:36:a4:8f:38:80:70:96:58:c1:40:65:64:e4: 18:8f:37:aa:00:0e:54:c9:9a:fc:23:7a:71:e5:22: 94:a6:05:2f:37:ec:38:41:5a:81:39:f7:aa:48:50: 94:a8:6c:79:06:02:35:b0:b5:80:39:7f:1a:36:fb: c1:f8:12:0f:aa:ea:3a:5a:82:28:5a:ea:d3:22:b4: 6e:67:62:c1:de:a9:a2:70:e3:41:44:ac:fb:cc:8d: 18:36:c6:3a:2c:4a:16:50:31:c4:0e:f0:e5:3d:4e: 2c:1f:db:16:f3:6f:8a:30:f8:f6:de:1c:58:d6:9e: 56:7a:7d:30:6f:fd:f2:57:e5:61:65:f7:22:d7:6d: 15:3f:6c:20:80:17:76:06:59:49:d7:60:2b:ac:63: c6:05:cb:2a:c6:ac:db:aa:28:f7:86:75:30:1a:04: e7:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:B9:B9:68:EF:95:2E:41:99:F8:37:6D:A9:4E:22:D5:AD:B9:36:93 X509v3 Authority Key Identifier: keyid:B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/E61E258895F611EC88E42C7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.59.0/24 202.0.116.0/24 IPv6: 2001:df2:4d80::/48 Signature Algorithm: sha256WithRSAEncryption be:a0:0a:47:9e:99:cb:0d:05:09:b5:aa:87:06:ef:b2:7a:bb: 0d:d8:36:e0:4d:f2:33:a3:65:27:58:b4:24:d2:41:7e:58:bf: 30:7b:ce:37:cb:dd:84:ae:9e:21:5d:c2:6f:a4:35:ad:42:08: fb:12:1f:f9:dd:dd:f7:f1:01:7c:b2:0d:02:5d:34:76:9d:20: 99:1f:7c:4f:e8:10:6b:12:4b:9c:67:72:cd:2b:37:15:12:13: 5c:c2:2e:87:02:f3:04:3a:c2:61:0d:23:af:7c:8e:8e:65:17: c2:a4:d9:5d:ce:82:48:e5:72:d1:22:d2:95:32:e5:20:16:49: 70:54:1e:24:9d:92:ef:77:80:bf:08:20:a4:c1:b1:24:69:35: a9:89:8a:1e:e3:85:56:b1:f9:b1:1e:88:4e:1c:5c:46:90:aa: 73:b7:41:5c:68:1b:8a:74:51:90:55:bf:fb:af:af:6c:e6:92: bb:08:9c:91:2b:32:48:c7:ed:65:e4:62:c9:74:cd:6e:c3:9f: 89:fc:4e:3c:51:29:0b:bd:9e:66:36:2f:40:af:3f:aa:88:c1: a8:bd:ca:da:a1:09:2a:39:ae:44:65:fe:37:37:7e:ca:21:d8: 06:b2:58:cb:79:19:30:11:fc:4e:bb:45:28:16:8c:5f:5f:3e: 0e:47:45:40 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMjAxMTAvBgNVBAUTKEI2MzIxM0Q4RTY2MkY0NTRCRUFFRUM3RjNDNDJFM0FG NkY4OTVGQjIwHhcNMjQwMzIwMDMyNzA3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZhNTc4YS04M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlZg/oHqXFVJpVcheDFB5CiAWh2H/wF/SNvCLN7wLxxjFyXp3Z5aEa4uIu8F zmR97HLPdo0b5A1yI5ZpDkebF+7hDtON1y/qzDvJnV9M0UT891Kx5QKSunAhFjak jziAcJZYwUBlZOQYjzeqAA5UyZr8I3px5SKUpgUvN+w4QVqBOfeqSFCUqGx5BgI1 sLWAOX8aNvvB+BIPquo6WoIoWurTIrRuZ2LB3qmicONBRKz7zI0YNsY6LEoWUDHE DvDlPU4sH9sW82+KMPj23hxY1p5Wen0wb/3yV+VhZfci120VP2wggBd2BllJ12Ar rGPGBcsqxqzbqij3hnUwGgTnywIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFBW5uWjv lS5Bmfg3balOItWtuTaTMB8GA1UdIwQYMBaAFLYyE9jmYvRUvq7sfzxC469viV+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAyMC9CRTFFRTUwNDk0 NzAxMUVDOTFCNDZDNERDNEY5QUUwMi90aklUMk9aaTlGUy1ydXhfUEVManIyLUpY N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RqSVQyT1ppOUZTLXJ1eF9QRUxqcjItSlg3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMjAvQkUxRUU1MDQ5NDcwMTFFQzkxQjQ2QzREQzRGOUFFMDIvRTYxRTI1ODg5 NUY2MTFFQzg4RTQyQzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnkjsDBADKAHQwDwQCAAIwCQMHACABDfJNgDANBgkqhkiG 9w0BAQsFAAOCAQEAvqAKR56Zyw0FCbWqhwbvsnq7Ddg24E3yM6NlJ1i0JNJBfli/ MHvON8vdhK6eIV3Cb6Q1rUII+xIf+d3d9/EBfLINAl00dp0gmR98T+gQaxJLnGdy zSs3FRITXMIuhwLzBDrCYQ0jr3yOjmUXwqTZXc6CSOVy0SLSlTLlIBZJcFQeJJ2S 73eAvwggpMGxJGk1qYmKHuOFVrH5sR6IThxcRpCqc7dBXGgbinRRkFW/+6+vbOaS uwickSsySMftZeRiyXTNbsOfifxOPFEpC72eZjYvQK8/qojBqL3K2qEJKjmuRGX+ Nzd+yiHYBrJYy3kZMBH8TrtFKBaMX18+DkdFQA== -----END CERTIFICATE-----Generated at Sat May 25 04:21:39 2024 by rpki-client on console-fra.rpki-client.org