$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa File: ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa (raw, json) Hash identifier: Gu53Xb3UW0I/sazAk3mhgfWKWY5VAgF6HwWldac3STY= Subject key identifier: 22:5E:78:BE:48:A2:B3:E8:3A:8B:97:93:60:3D:A1:5D:46:40:A2:4D Certificate issuer: /CN=A9136BFF/serialNumber=C14389517F886805A2D485BA412DAD2B52776F72 Certificate serial: 0E70 Authority key identifier: C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa Signing time: Sun 02 Jun 2024 18:51:51 +0000 ROA not before: Sun 02 Jun 2024 18:51:51 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 51847 IP address blocks: 103.232.214.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3696 (0xe70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BFF Validity Not Before: Jun 2 18:51:51 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=665cbf46-6968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:47:f5:23:de:bd:b1:9f:dc:95:8f:de:16:10: d1:a9:7d:c2:fd:26:4f:f3:b3:60:9a:97:d4:92:f1: b9:80:b0:d2:46:e2:4c:f6:b1:5a:e3:f2:4b:fd:92: d9:68:cb:ca:f5:64:95:b0:42:37:90:af:f9:17:78: 3c:fb:a8:26:32:23:3e:f9:3c:2e:09:d2:9d:e9:4c: 10:c9:b8:12:c3:b2:2a:a5:07:8d:f0:a8:be:a4:14: 86:e9:9b:e5:76:87:e5:e1:ae:9d:8f:13:ba:97:52: e1:a4:47:63:3d:65:b9:cd:6b:25:f1:ec:3e:f1:fc: 1a:d3:6a:dc:38:69:27:ea:04:4d:aa:72:bb:23:d9: 9e:c3:f0:18:6e:87:03:af:ab:76:84:ee:64:dd:c5: 22:65:75:20:2c:d9:e2:a5:ed:7a:b5:71:3b:20:23: e6:49:97:8d:c8:bc:a2:39:a7:87:62:d1:7f:1d:b1: 27:57:f8:3a:21:23:b7:b6:f9:17:61:d8:67:13:c1: 22:cb:46:76:29:08:2f:ff:8e:cd:0c:2f:66:79:11: 0b:91:0d:38:b2:dd:48:bc:e1:e3:20:72:e5:56:f8: 3b:fb:00:d7:b1:00:5d:2c:48:ff:14:44:24:a0:70: f4:8f:05:c1:1c:ec:a9:7c:f1:ef:da:4a:c0:c2:8c: 59:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:5E:78:BE:48:A2:B3:E8:3A:8B:97:93:60:3D:A1:5D:46:40:A2:4D X509v3 Authority Key Identifier: keyid:C1:43:89:51:7F:88:68:05:A2:D4:85:BA:41:2D:AD:2B:52:77:6F:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/wUOJUX-IaAWi1IW6QS2tK1J3b3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUOJUX-IaAWi1IW6QS2tK1J3b3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BFF/E42BEAC293F011E9BC0CFF71C4F9AE02/ED2BF5FEDF3711ED99AC7D58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.214.0/23 Signature Algorithm: sha256WithRSAEncryption 23:d8:12:62:fd:c3:e0:4a:43:9a:85:01:f4:dc:8e:2e:a6:95: 7d:bd:67:4e:6d:10:9f:b8:69:c9:21:f1:aa:81:21:3a:58:82: 1b:73:83:1e:9d:ef:26:0f:c2:b3:6d:55:d9:00:0b:7c:7c:8f: 8d:54:e9:a9:1a:4e:9a:a9:8e:75:69:98:f9:0d:99:f2:a9:3b: 76:7b:7c:e5:3c:1b:44:40:97:e2:d9:e6:39:76:05:b8:ec:4a: 8b:6e:83:45:ab:fb:c8:10:79:7f:6f:ce:7d:5b:f1:58:e6:6a: 93:60:92:27:1d:d0:60:32:fa:26:d8:33:eb:d2:70:6c:9d:a7: d3:cd:2c:34:c2:81:14:96:f2:8d:1f:f3:e3:41:65:78:a9:07: 0f:97:38:25:4e:58:56:ec:b7:60:95:b4:77:67:ca:f5:a9:65: 05:33:9a:cd:31:c3:c8:c1:ef:84:ed:87:91:e5:fe:4b:58:76: da:ec:bc:be:2b:d7:20:14:20:14:fc:19:10:40:d5:34:45:3d: e0:cc:c8:9a:8a:91:48:4d:01:fe:a7:fd:d6:48:8d:4c:52:d4: 0b:6f:1c:c9:6e:e0:af:44:e3:d5:7d:72:31:db:58:7c:a2:ef: 52:2f:92:c5:16:e7:22:a3:ca:d3:9c:60:3f:8e:bd:ef:f4:b7: 62:b2:2f:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRkYxMTAvBgNVBAUTKEMxNDM4OTUxN0Y4ODY4MDVBMkQ0ODVCQTQxMkRBRDJC NTI3NzZGNzIwHhcNMjQwNjAyMTg1MTUxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjYmY0Ni02OTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kf1I969sZ/clY/eFhDRqX3C/SZP87NgmpfUkvG5gLDSRuJM9rFa4/JL/ZLZ aMvK9WSVsEI3kK/5F3g8+6gmMiM++TwuCdKd6UwQybgSw7IqpQeN8Ki+pBSG6Zvl dofl4a6djxO6l1LhpEdjPWW5zWsl8ew+8fwa02rcOGkn6gRNqnK7I9mew/AYbocD r6t2hO5k3cUiZXUgLNnipe16tXE7ICPmSZeNyLyiOaeHYtF/HbEnV/g6ISO3tvkX YdhnE8Eiy0Z2KQgv/47NDC9meRELkQ04st1IvOHjIHLlVvg7+wDXsQBdLEj/FEQk oHD0jwXBHOypfPHv2krAwoxZqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCJeeL5I orPoOouXk2A9oV1GQKJNMB8GA1UdIwQYMBaAFMFDiVF/iGgFotSFukEtrStSd29y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJGRi9FNDJCRUFDMjkz RjAxMUU5QkMwQ0ZGNzFDNEY5QUUwMi93VU9KVVgtSWFBV2kxSVc2UVMydEsxSjNi M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVT0pVWC1JYUFXaTFJVzZRUzJ0SzFKM2IzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRkYvRTQyQkVBQzI5M0YwMTFFOUJDMENGRjcxQzRGOUFFMDIvRUQyQkY1RkVE RjM3MTFFRDk5QUM3RDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn6NYwDQYJKoZIhvcNAQELBQADggEBACPYEmL9w+BKQ5qF AfTcji6mlX29Z05tEJ+4ackh8aqBITpYghtzgx6d7yYPwrNtVdkAC3x8j41U6aka TpqpjnVpmPkNmfKpO3Z7fOU8G0RAl+LZ5jl2BbjsSotug0Wr+8gQeX9vzn1b8Vjm apNgkicd0GAy+ibYM+vScGydp9PNLDTCgRSW8o0f8+NBZXipBw+XOCVOWFbst2CV tHdnyvWpZQUzms0xw8jB74Tth5Hl/ktYdtrsvL4r1yAUIBT8GRBA1TRFPeDMyJqK kUhNAf6n/dZIjUxS1AtvHMlu4K9E49V9cjHbWHyi71IvksUW5yKjytOcYD+Ove/0 t2KyL8E= -----END CERTIFICATE-----Generated at Sun Feb 16 22:06:22 2025 by rpki-client