$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/35C2303AE6FA11EC87D3034DC4F9AE02.roa File: 35C2303AE6FA11EC87D3034DC4F9AE02.roa (raw, json) Hash identifier: vuVl4x8ODxXITMH7KKkyYBqXNY43fEyh4lQvP95MTPQ= Subject key identifier: 24:CD:63:7A:75:B8:59:0F:8B:D5:42:95:0A:4F:07:7F:9A:98:A0:04 Certificate issuer: /CN=A913A7E7/serialNumber=E65BA8FA65705B8F3BF6EDCD9D0DB10FDADCB916 Certificate serial: 0213 Authority key identifier: E6:5B:A8:FA:65:70:5B:8F:3B:F6:ED:CD:9D:0D:B1:0F:DA:DC:B9:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/35C2303AE6FA11EC87D3034DC4F9AE02.roa Signing time: Tue 23 Apr 2024 04:36:53 +0000 ROA not before: Tue 23 Apr 2024 04:36:53 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139355 IP address blocks: 103.184.2.0/23 maxlen: 23 103.184.2.0/24 maxlen: 24 103.184.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.crl rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 04:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7E7/serialNumber=E65BA8FA65705B8F3BF6EDCD9D0DB10FDADCB916 Validity Not Before: Apr 23 04:36:53 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66273ae5-30e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:86:39:5b:c6:e1:39:7a:c9:5c:45:c3:f2:57: 91:35:3b:91:37:c3:43:41:35:10:81:41:82:89:9c: b4:0f:f2:06:25:f8:96:fe:fe:30:c7:fe:c6:77:41: ef:c3:ae:56:a1:66:54:57:20:61:60:04:fa:1e:0e: cd:35:2f:10:a2:85:ec:30:9e:7e:88:ea:5e:f4:f5: a0:f7:d1:61:13:b9:af:6b:5a:4b:9c:51:93:44:a0: 62:f7:e3:3a:ea:c2:6a:39:ba:96:fd:a6:28:a9:11: ad:10:73:47:dc:8d:22:01:49:7b:56:62:cc:cd:d5: 56:aa:53:a2:eb:a7:0b:e1:2e:72:29:b9:ae:17:d0: 50:69:01:f6:b7:10:21:6d:0d:8d:d3:e3:b0:f6:b5: 87:63:47:7e:86:48:d1:7a:19:c7:b3:d4:ed:56:bc: 06:8d:03:cb:c6:77:0b:af:c7:6d:d9:ff:b7:d7:f3: 75:72:a0:b5:63:c1:ad:1b:3f:99:03:51:a4:23:fa: 62:ae:bb:b8:87:68:c4:c8:0f:b4:86:61:10:7e:57: 0f:5f:04:e4:a9:05:97:45:71:05:b0:97:21:d8:77: 28:9a:f0:1f:cb:a3:c0:44:5a:6f:79:ef:47:26:21: b7:97:63:f0:6d:c2:59:6a:02:bd:50:e3:16:d4:07: 39:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:CD:63:7A:75:B8:59:0F:8B:D5:42:95:0A:4F:07:7F:9A:98:A0:04 X509v3 Authority Key Identifier: keyid:E6:5B:A8:FA:65:70:5B:8F:3B:F6:ED:CD:9D:0D:B1:0F:DA:DC:B9:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/5luo-mVwW4879u3NnQ2xD9rcuRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5luo-mVwW4879u3NnQ2xD9rcuRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7E7/6B923544E6EA11EC99942667C4F9AE02/35C2303AE6FA11EC87D3034DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.184.2.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:c8:f5:40:2a:8c:28:7d:14:19:b8:12:2a:46:f5:3e:a4:8f: fe:d7:a1:b6:a9:05:f6:b0:26:4c:81:eb:39:1b:f5:23:26:ee: af:72:a8:29:63:24:95:99:aa:eb:f6:40:89:3f:cd:99:fc:41: b6:c5:77:c3:33:c8:02:4f:5c:30:21:f8:31:35:f2:02:34:04: 81:41:25:e2:ed:72:22:e5:ca:c5:25:ab:39:bd:a6:8d:06:e5: 9b:9d:04:ac:7a:3b:cc:51:89:03:01:6b:af:15:5d:43:09:e6: ac:a6:c0:98:f9:bc:45:e1:30:27:09:53:7f:e0:fe:43:58:84: e2:4f:b9:53:16:ac:2f:48:66:76:11:ea:87:67:7c:00:ff:f1: cb:ba:70:4f:da:35:ef:8c:1d:95:c0:93:e0:1b:ae:13:63:74: 17:62:a6:37:93:39:a8:90:58:5b:1a:a6:79:47:b6:42:81:c7: 76:e0:c6:d1:39:53:da:ba:b6:51:5c:68:06:8f:1b:80:88:f1: 10:bd:15:be:2a:31:8c:0c:75:ac:eb:9b:18:3a:96:8b:ac:5c: d1:ec:9e:2a:07:ea:97:7f:8a:c8:20:2a:fb:1d:20:ce:83:16: 74:25:9e:ab:b6:f0:c6:03:9c:5f:59:d4:df:13:e1:9b:01:3f: 3d:6c:35:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3RTcxMTAvBgNVBAUTKEU2NUJBOEZBNjU3MDVCOEYzQkY2RURDRDlEMERCMTBG REFEQ0I5MTYwHhcNMjQwNDIzMDQzNjUzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI3M2FlNS0zMGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4Y5W8bhOXrJXEXD8leRNTuRN8NDQTUQgUGCiZy0D/IGJfiW/v4wx/7Gd0Hv w65WoWZUVyBhYAT6Hg7NNS8QooXsMJ5+iOpe9PWg99FhE7mva1pLnFGTRKBi9+M6 6sJqObqW/aYoqRGtEHNH3I0iAUl7VmLMzdVWqlOi66cL4S5yKbmuF9BQaQH2txAh bQ2N0+Ow9rWHY0d+hkjRehnHs9TtVrwGjQPLxncLr8dt2f+31/N1cqC1Y8GtGz+Z A1GkI/pirru4h2jEyA+0hmEQflcPXwTkqQWXRXEFsJch2HcomvAfy6PARFpvee9H JiG3l2PwbcJZagK9UOMW1Ac5mwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCTNY3p1 uFkPi9VClQpPB3+amKAEMB8GA1UdIwQYMBaAFOZbqPplcFuPO/btzZ0NsQ/a3LkW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdFNy82QjkyMzU0NEU2 RUExMUVDOTk5NDI2NjdDNEY5QUUwMi81bHVvLW1Wd1c0ODc5dTNOblEyeEQ5cmN1 UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVsdW8tbVZ3VzQ4Nzl1M05uUTJ4RDlyY3VSWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0E3RTcvNkI5MjM1NDRFNkVBMTFFQzk5OTQyNjY3QzRGOUFFMDIvMzVDMjMwM0FF NkZBMTFFQzg3RDMwMzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnuAIwDQYJKoZIhvcNAQELBQADggEBAE3I9UAqjCh9FBm4 EipG9T6kj/7XobapBfawJkyB6zkb9SMm7q9yqCljJJWZquv2QIk/zZn8QbbFd8Mz yAJPXDAh+DE18gI0BIFBJeLtciLlysUlqzm9po0G5ZudBKx6O8xRiQMBa68VXUMJ 5qymwJj5vEXhMCcJU3/g/kNYhOJPuVMWrC9IZnYR6odnfAD/8cu6cE/aNe+MHZXA k+AbrhNjdBdipjeTOaiQWFsapnlHtkKBx3bgxtE5U9q6tlFcaAaPG4CI8RC9Fb4q MYwMdazrmxg6lousXNHsnioH6pd/isggKvsdIM6DFnQlnqu28MYDnF9Z1N8T4ZsB Pz1sNTA= -----END CERTIFICATE-----Generated at Fri May 17 06:18:05 2024 by rpki-client on console-fra.rpki-client.org