$ rpki-client -vvf rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/3ADF4748836D11EBAD2CDC13C4F9AE02.roa File: 3ADF4748836D11EBAD2CDC13C4F9AE02.roa (raw, json) Hash identifier: gCEgPezqeHJOUfLbqrO/hd2fxgGI7Zl4e741pIVAPGA= Subject key identifier: 5D:FD:31:57:4F:80:BD:3A:29:1A:D5:60:1C:36:E0:B8:9C:BD:E1:E6 Certificate issuer: /CN=A9136B8D/serialNumber=EFBFF16B3A9F6E44DA1E758E9395D1C5B714475A Certificate serial: 0572 Authority key identifier: EF:BF:F1:6B:3A:9F:6E:44:DA:1E:75:8E:93:95:D1:C5:B7:14:47:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77_xazqfbkTaHnWOk5XRxbcUR1o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/3ADF4748836D11EBAD2CDC13C4F9AE02.roa Signing time: Sat 03 Feb 2024 00:12:54 +0000 ROA not before: Sat 03 Feb 2024 00:12:54 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 141997 IP address blocks: 103.164.50.0/23 maxlen: 23 103.164.50.0/24 maxlen: 24 103.164.51.0/24 maxlen: 24 2001:df6:3d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.crl rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77_xazqfbkTaHnWOk5XRxbcUR1o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 00:19:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1394 (0x572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136B8D/serialNumber=EFBFF16B3A9F6E44DA1E758E9395D1C5B714475A Validity Not Before: Feb 3 00:12:54 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65bd8505-d382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d6:5e:5a:d3:43:80:ed:4d:29:3c:ee:61:fb: aa:99:68:b7:cb:01:d7:4d:46:88:2d:7f:c0:70:69: e7:9e:a0:16:87:1a:fe:2d:f4:cc:5f:14:d4:67:8c: 82:c2:d3:29:66:37:e1:11:c0:ed:b8:fa:19:29:be: 6b:ed:b5:5c:64:0a:1c:31:ce:16:80:31:d1:81:b6: b8:1a:2a:a7:e2:11:24:ef:f5:2f:57:7f:87:2b:f6: 81:9d:4d:21:21:6a:a0:81:39:21:fd:8c:b1:aa:e0: f2:ce:69:94:c6:7d:48:e7:59:39:37:1b:86:6d:6a: 90:42:13:b4:2e:5e:9a:c6:fc:fa:cd:99:3e:68:31: 51:ea:d3:fb:2a:93:c8:57:9c:c1:6e:3b:5a:03:f9: 89:29:8f:42:a9:e9:aa:88:a1:df:95:c7:e0:4d:e1: 54:7f:69:c2:27:c4:7f:9a:e3:70:5c:b6:fb:28:83: 47:09:20:17:62:51:54:3f:2a:35:5b:cf:85:e2:fd: 2e:17:3c:3d:8b:7f:43:45:8b:56:10:03:26:c7:7c: 93:44:34:ba:ea:c7:22:5a:17:6a:3d:75:4e:20:ce: f4:b9:35:05:c1:20:ba:07:72:32:54:c8:9f:98:ba: 19:62:1e:63:95:7a:ee:fa:9b:ed:2b:a9:8d:b7:00: bc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:FD:31:57:4F:80:BD:3A:29:1A:D5:60:1C:36:E0:B8:9C:BD:E1:E6 X509v3 Authority Key Identifier: keyid:EF:BF:F1:6B:3A:9F:6E:44:DA:1E:75:8E:93:95:D1:C5:B7:14:47:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/77_xazqfbkTaHnWOk5XRxbcUR1o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/77_xazqfbkTaHnWOk5XRxbcUR1o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136B8D/0DB893EC836C11EB8C1A9813C4F9AE02/3ADF4748836D11EBAD2CDC13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.50.0/23 IPv6: 2001:df6:3d80::/48 Signature Algorithm: sha256WithRSAEncryption 22:0d:ba:44:dc:4b:b2:28:d8:fd:aa:6a:0c:3c:4e:b0:48:a5: 74:9b:86:eb:7e:53:f7:a2:86:ea:fd:ea:d1:4a:df:15:81:8b: 88:b5:3e:e3:22:3f:65:c3:84:ca:4c:57:52:96:4f:e4:b4:18: 3c:13:7e:71:38:ef:31:9b:82:57:43:cc:45:7c:39:43:d8:f6: bd:b8:f3:9a:11:7f:c2:e4:4f:8e:89:00:8d:62:c8:c4:fd:a7: 6c:5e:c0:8e:e8:f9:ca:2e:81:77:32:41:8c:a9:ce:7f:eb:0b: b8:de:bc:42:0a:95:40:17:cf:be:6d:8d:b6:fc:86:6f:1e:2e: da:ba:e8:f7:65:fa:79:68:b8:d6:2d:ca:0b:26:a9:2e:0e:40: e3:b7:a3:fc:a5:72:35:e1:ec:d1:df:d0:56:f4:14:e2:f2:aa: b1:10:45:83:f1:6d:69:f5:88:be:e5:19:c2:5b:35:2a:c7:98: a5:cb:b2:c9:4a:0d:39:38:86:e9:14:e3:c1:32:9e:78:64:48: ae:26:19:5b:f0:9b:46:42:56:04:48:81:f3:e1:3b:3a:86:fb: 46:9c:82:29:be:87:f6:04:17:bc:49:6f:49:c9:c6:e8:0a:38: 6c:c1:42:5a:78:6c:57:82:50:c2:5d:4d:54:98:b8:72:d6:85: 50:d8:95:d9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCOEQxMTAvBgNVBAUTKEVGQkZGMTZCM0E5RjZFNDREQTFFNzU4RTkzOTVEMUM1 QjcxNDQ3NUEwHhcNMjQwMjAzMDAxMjU0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkODUwNS1kMzgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAudZeWtNDgO1NKTzuYfuqmWi3ywHXTUaILX/AcGnnnqAWhxr+LfTMXxTUZ4yC wtMpZjfhEcDtuPoZKb5r7bVcZAocMc4WgDHRgba4Giqn4hEk7/UvV3+HK/aBnU0h IWqggTkh/YyxquDyzmmUxn1I51k5NxuGbWqQQhO0Ll6axvz6zZk+aDFR6tP7KpPI V5zBbjtaA/mJKY9CqemqiKHflcfgTeFUf2nCJ8R/muNwXLb7KINHCSAXYlFUPyo1 W8+F4v0uFzw9i39DRYtWEAMmx3yTRDS66sciWhdqPXVOIM70uTUFwSC6B3IyVMif mLoZYh5jlXru+pvtK6mNtwC8swIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF39MVdP gL06KRrVYBw24LicveHmMB8GA1UdIwQYMBaAFO+/8Ws6n25E2h51jpOV0cW3FEda MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkI4RC8wREI4OTNFQzgz NkMxMUVCOEMxQTk4MTNDNEY5QUUwMi83N194YXpxZmJrVGFIbldPazVYUnhiY1VS MW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzc3X3hhenFmYmtUYUhuV09rNVhSeGJjVVIxby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCOEQvMERCODkzRUM4MzZDMTFFQjhDMUE5ODEzQzRGOUFFMDIvM0FERjQ3NDg4 MzZEMTFFQkFEMkNEQzEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnpDIwDwQCAAIwCQMHACABDfY9gDANBgkqhkiG9w0BAQsF AAOCAQEAIg26RNxLsijY/apqDDxOsEildJuG635T96KG6v3q0UrfFYGLiLU+4yI/ ZcOEykxXUpZP5LQYPBN+cTjvMZuCV0PMRXw5Q9j2vbjzmhF/wuRPjokAjWLIxP2n bF7Ajuj5yi6BdzJBjKnOf+sLuN68QgqVQBfPvm2NtvyGbx4u2rro92X6eWi41i3K CyapLg5A47ej/KVyNeHs0d/QVvQU4vKqsRBFg/FtafWIvuUZwls1KseYpcuyyUoN OTiG6RTjwTKeeGRIriYZW/CbRkJWBEiB8+E7Oob7RpyCKb6H9gQXvElvScnG6Ao4 bMFCWnhsV4JQwl1NVJi4ctaFUNiV2Q== -----END CERTIFICATE-----Generated at Sat May 25 01:24:48 2024 by rpki-client on console-fra.rpki-client.org