$ rpki-client -vvf rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2245ADD8840211EEB9348E11C4F9AE02.roa File: 2245ADD8840211EEB9348E11C4F9AE02.roa (raw, json) Hash identifier: ENpu+8HNJZwaYX6cLyPJBl0Pp1N4nZX8iKiRlKmkkIY= Subject key identifier: 39:74:D4:4D:17:C3:5B:66:CB:95:45:DD:FA:F0:1C:E0:21:BA:88:B0 Certificate issuer: /CN=A9135033/serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Certificate serial: 0BFB Authority key identifier: 0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2245ADD8840211EEB9348E11C4F9AE02.roa Signing time: Wed 15 Nov 2023 21:58:40 +0000 ROA not before: Wed 15 Nov 2023 21:58:40 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 396998 IP address blocks: 103.131.64.0/24 maxlen: 24 103.131.65.0/24 maxlen: 24 103.131.66.0/24 maxlen: 24 103.131.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3067 (0xbfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135033/serialNumber=0DE596CB2C60CB757DB8F40EB86F247652C13A30 Validity Not Before: Nov 15 21:58:40 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65553f0f-11a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c5:06:14:4c:e0:67:be:5e:bb:fb:08:af:e6: 24:ea:65:18:51:08:36:f0:0d:b7:d1:b8:3a:2c:29: ee:53:55:89:1d:d7:06:a7:61:4b:4c:78:0d:85:f6: 1a:69:68:6f:1c:da:60:4c:c3:76:e4:28:34:42:a6: 56:64:97:3d:0f:82:af:9f:c1:92:3a:8d:7f:b8:82: 79:ca:7e:ab:1c:e8:63:8b:7c:f2:e5:18:b4:0a:6d: 93:41:bf:65:ee:a1:fe:a8:e4:d1:5f:0a:12:d4:58: f8:16:1d:1c:79:52:a4:fb:a7:5c:a5:d0:c3:9b:63: e8:89:0d:52:63:2a:b8:b7:96:db:eb:49:5d:d2:3b: 1b:83:f4:0a:a6:3a:ce:ef:b3:7f:12:1e:b1:4f:3f: a0:e1:21:7d:ad:ff:28:12:1b:a9:9a:49:31:bf:fe: ac:8a:42:d0:e7:de:c8:d5:4f:9b:8a:e6:72:e9:59: 37:3b:6b:e3:9e:63:f4:52:e1:97:ca:68:db:1f:8b: 4b:15:55:89:fa:ac:d9:21:83:7f:f7:ef:24:1a:63: 85:69:a5:bd:0b:fc:69:97:9d:18:f7:f0:37:c5:32: f2:2c:96:ae:b6:b0:f6:fb:e8:a2:53:bb:2d:35:42: 16:f2:37:7d:56:fe:6e:ae:bc:9a:46:95:f1:36:d9: d5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:74:D4:4D:17:C3:5B:66:CB:95:45:DD:FA:F0:1C:E0:21:BA:88:B0 X509v3 Authority Key Identifier: keyid:0D:E5:96:CB:2C:60:CB:75:7D:B8:F4:0E:B8:6F:24:76:52:C1:3A:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/DeWWyyxgy3V9uPQOuG8kdlLBOjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DeWWyyxgy3V9uPQOuG8kdlLBOjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135033/5D00AE52DD4C11E9A6D4BB1DC4F9AE02/2245ADD8840211EEB9348E11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.64.0/22 Signature Algorithm: sha256WithRSAEncryption b7:95:6c:16:8c:f5:4f:48:f3:27:c5:a7:dc:d8:cc:16:c9:27: 4c:26:14:0b:70:b7:02:19:e2:fc:4e:a5:09:2c:b4:7b:7b:3b: fd:27:be:3a:83:70:ce:53:21:99:00:8d:ba:d1:95:7d:12:8b: a8:36:bc:7c:c7:8f:00:ad:86:28:5c:f4:7b:7d:56:78:5c:4e: 6a:9b:56:2b:1b:13:ac:dd:f9:91:d6:4c:95:8f:65:96:79:34: f0:3c:c2:ab:67:76:78:37:e7:7d:5a:b1:f7:fa:25:24:e9:e3: b4:96:a3:09:4f:46:1e:62:df:4b:dd:c6:4e:37:4b:63:8c:c7: b8:41:16:63:44:c4:1f:03:53:d1:96:61:24:ce:82:af:e8:e0: b0:74:c1:60:9a:cd:3d:3a:31:ff:ae:2d:f4:4b:a0:1e:85:c1: 24:c3:35:2d:d5:6a:b5:d3:be:12:c7:76:d3:43:45:c8:bd:0a: e2:61:a2:e7:3a:b0:b0:65:5a:42:f1:a7:97:f7:7d:91:5f:07: 6f:00:ff:92:9d:dd:43:30:00:38:d5:32:b7:f5:23:6c:e9:1d: e1:69:83:6e:d8:a8:28:1b:0d:42:62:70:2d:a0:84:b7:91:5a: ac:d8:55:19:3f:0f:d3:58:b4:50:50:d3:d3:05:8d:91:5e:60: b3:99:a8:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMzMxMTAvBgNVBAUTKDBERTU5NkNCMkM2MENCNzU3REI4RjQwRUI4NkYyNDc2 NTJDMTNBMzAwHhcNMjMxMTE1MjE1ODQwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU1M2YwZi0xMWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3sUGFEzgZ75eu/sIr+Yk6mUYUQg28A230bg6LCnuU1WJHdcGp2FLTHgNhfYa aWhvHNpgTMN25Cg0QqZWZJc9D4Kvn8GSOo1/uIJ5yn6rHOhji3zy5Ri0Cm2TQb9l 7qH+qOTRXwoS1Fj4Fh0ceVKk+6dcpdDDm2PoiQ1SYyq4t5bb60ld0jsbg/QKpjrO 77N/Eh6xTz+g4SF9rf8oEhupmkkxv/6sikLQ597I1U+biuZy6Vk3O2vjnmP0UuGX ymjbH4tLFVWJ+qzZIYN/9+8kGmOFaaW9C/xpl50Y9/A3xTLyLJautrD2++iiU7st NUIW8jd9Vv5urryaRpXxNtnVIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDl01E0X w1tmy5VF3frwHOAhuoiwMB8GA1UdIwQYMBaAFA3llsssYMt1fbj0DrhvJHZSwTow MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAzMy81RDAwQUU1MkRE NEMxMUU5QTZENEJCMURDNEY5QUUwMi9EZVdXeXl4Z3kzVjl1UFFPdUc4a2RsTEJP akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RlV1d5eXhneTNWOXVQUU91RzhrZGxMQk9qQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMzMvNUQwMEFFNTJERDRDMTFFOUE2RDRCQjFEQzRGOUFFMDIvMjI0NUFERDg4 NDAyMTFFRUI5MzQ4RTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJng0AwDQYJKoZIhvcNAQELBQADggEBALeVbBaM9U9I8yfF p9zYzBbJJ0wmFAtwtwIZ4vxOpQkstHt7O/0nvjqDcM5TIZkAjbrRlX0Si6g2vHzH jwCthihc9Ht9VnhcTmqbVisbE6zd+ZHWTJWPZZZ5NPA8wqtndng3531asff6JSTp 47SWowlPRh5i30vdxk43S2OMx7hBFmNExB8DU9GWYSTOgq/o4LB0wWCazT06Mf+u LfRLoB6FwSTDNS3VarXTvhLHdtNDRci9CuJhouc6sLBlWkLxp5f3fZFfB28A/5Kd 3UMwADjVMrf1I2zpHeFpg27YqCgbDUJicC2ghLeRWqzYVRk/D9NYtFBQ09MFjZFe YLOZqG8= -----END CERTIFICATE-----Generated at Fri May 10 20:05:23 2024 by rpki-client on console-fra.rpki-client.org