$ rpki-client -vvf rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/A5B98912C77D11EB9DF68B6AC4F9AE02.roa File: A5B98912C77D11EB9DF68B6AC4F9AE02.roa (raw, json) Hash identifier: 05zuRjf75fXjXAeo4t4GpINbZ90yUo1Y+dwQD0T3Pic= Subject key identifier: B4:9C:E7:D5:C1:BF:11:9F:93:F6:68:45:BF:C9:75:06:5F:D4:93:6B Certificate issuer: /CN=A913D30A/serialNumber=EB811B1488B20F12664E648A82624A3050689F25 Certificate serial: 0C63 Authority key identifier: EB:81:1B:14:88:B2:0F:12:66:4E:64:8A:82:62:4A:30:50:68:9F:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/A5B98912C77D11EB9DF68B6AC4F9AE02.roa Signing time: Sat 06 Jan 2024 18:56:42 +0000 ROA not before: Sat 06 Jan 2024 18:56:42 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 136156 IP address blocks: 103.82.8.0/23 maxlen: 24 103.82.10.0/23 maxlen: 24 202.52.40.0/24 maxlen: 24 203.4.187.0/24 maxlen: 24 2402:d3c0::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.crl rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3171 (0xc63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D30A/serialNumber=EB811B1488B20F12664E648A82624A3050689F25 Validity Not Before: Jan 6 18:56:42 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6599a26a-d696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:21:43:59:af:4e:93:5d:8d:c1:0c:ae:8e:9e: df:03:44:f2:db:d1:18:f6:80:f7:9e:b9:3c:71:a9: 7b:a6:18:0b:ee:1f:01:d4:22:83:3f:19:4d:43:90: ba:67:0f:12:02:b2:ed:bc:e7:9e:d9:f1:0d:aa:b7: 43:41:2e:43:19:3e:5a:cd:78:b5:f2:f4:28:40:21: 5c:00:9d:fe:2c:70:aa:eb:76:45:93:90:f5:e5:98: 3e:53:b4:d5:7a:f2:a5:2c:53:cc:c1:00:5f:08:98: e2:5c:9d:48:35:d6:20:d6:78:1d:34:b2:27:62:37: 82:5f:f5:06:47:6b:e7:bc:12:20:4e:a3:b9:c1:4b: 94:b1:20:61:ce:64:98:96:b2:13:e2:db:d7:fa:55: cd:bb:4e:e9:1b:79:44:91:fd:03:3a:2b:8a:ee:52: 78:8c:c0:83:1e:f2:f3:df:49:8a:b3:7d:2d:6f:73: dd:7d:5e:5b:b3:5a:49:f2:25:b1:8c:79:ef:ce:f4: 10:5f:eb:c4:9e:ca:9b:cb:0c:a7:25:9b:b7:89:0a: 0c:7d:fd:37:21:86:ee:ee:72:03:69:4d:2c:d0:18: b3:b6:cd:01:a0:33:a2:fc:bf:33:2b:0a:80:61:12: 3d:ad:e4:17:36:8e:06:b1:7a:c7:fe:5c:35:96:66: c3:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:9C:E7:D5:C1:BF:11:9F:93:F6:68:45:BF:C9:75:06:5F:D4:93:6B X509v3 Authority Key Identifier: keyid:EB:81:1B:14:88:B2:0F:12:66:4E:64:8A:82:62:4A:30:50:68:9F:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/64EbFIiyDxJmTmSKgmJKMFBonyU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64EbFIiyDxJmTmSKgmJKMFBonyU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D30A/B85424F8D49811E9B9474738C4F9AE02/A5B98912C77D11EB9DF68B6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.82.8.0/22 202.52.40.0/24 203.4.187.0/24 IPv6: 2402:d3c0::/32 Signature Algorithm: sha256WithRSAEncryption 03:07:41:6a:c5:98:8d:d3:0b:66:a9:b8:47:b8:6f:5f:e1:fb: ea:38:95:ae:a7:59:2c:68:36:07:3b:e9:43:f3:41:e9:da:d4: c7:1e:c9:04:40:9d:e9:9e:1d:e9:66:a2:35:d4:f5:64:d9:bd: d9:7e:61:3c:6c:c9:46:fc:09:99:f8:24:fb:64:bd:38:7e:56: 0e:5e:ae:a3:83:dc:d2:85:31:7a:79:54:f1:d8:ad:be:b9:f6: b8:91:86:09:12:9c:39:d8:c7:50:a4:91:61:e7:5d:18:ae:29: e8:dc:bc:d8:18:cb:76:a9:ac:e7:d5:8e:bc:36:28:7d:20:47: 18:98:0c:46:19:54:95:76:ff:73:e4:09:43:da:35:08:2b:94: 28:bc:31:57:1b:49:1d:73:01:85:83:02:03:d8:13:35:e9:1a: 2c:38:c0:f8:b4:b8:3c:ba:13:c2:7c:1a:b2:cb:9c:e6:99:e0: 7e:49:04:46:43:14:71:a2:46:c7:51:57:44:e4:ee:2a:72:a4: 6e:38:f0:06:0e:10:fd:10:5e:8c:98:d4:25:c1:ae:fe:96:ed: 02:26:95:8d:93:7a:0e:11:eb:00:90:e4:61:ac:56:9b:e0:0e: 47:c1:d8:bd:cd:e7:af:62:4a:da:36:17:62:63:31:98:b7:17: 7d:9e:b7:7c -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICDGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QzMEExMTAvBgNVBAUTKEVCODExQjE0ODhCMjBGMTI2NjRFNjQ4QTgyNjI0QTMw NTA2ODlGMjUwHhcNMjQwMTA2MTg1NjQyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk5YTI2YS1kNjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yFDWa9Ok12NwQyujp7fA0Ty29EY9oD3nrk8cal7phgL7h8B1CKDPxlNQ5C6 Zw8SArLtvOee2fENqrdDQS5DGT5azXi18vQoQCFcAJ3+LHCq63ZFk5D15Zg+U7TV evKlLFPMwQBfCJjiXJ1INdYg1ngdNLInYjeCX/UGR2vnvBIgTqO5wUuUsSBhzmSY lrIT4tvX+lXNu07pG3lEkf0DOiuK7lJ4jMCDHvLz30mKs30tb3PdfV5bs1pJ8iWx jHnvzvQQX+vEnsqbywynJZu3iQoMff03IYbu7nIDaU0s0Bizts0BoDOi/L8zKwqA YRI9reQXNo4GsXrH/lw1lmbDhwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFLSc59XB vxGfk/ZoRb/JdQZf1JNrMB8GA1UdIwQYMBaAFOuBGxSIsg8SZk5kioJiSjBQaJ8l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDMwQS9CODU0MjRGOEQ0 OTgxMUU5Qjk0NzQ3MzhDNEY5QUUwMi82NEViRklpeUR4Sm1UbVNLZ21KS01GQm9u eVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0RWJGSWl5RHhKbVRtU0tnbUpLTUZCb255VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QzMEEvQjg1NDI0RjhENDk4MTFFOUI5NDc0NzM4QzRGOUFFMDIvQTVCOTg5MTJD NzdEMTFFQjlERjY4QjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnUggDBADKNCgDBADLBLswDQQCAAIwBwMFACQC08AwDQYJ KoZIhvcNAQELBQADggEBAAMHQWrFmI3TC2apuEe4b1/h++o4la6nWSxoNgc76UPz Qena1MceyQRAnemeHelmojXU9WTZvdl+YTxsyUb8CZn4JPtkvTh+Vg5erqOD3NKF MXp5VPHYrb659riRhgkSnDnYx1CkkWHnXRiuKejcvNgYy3aprOfVjrw2KH0gRxiY DEYZVJV2/3PkCUPaNQgrlCi8MVcbSR1zAYWDAgPYEzXpGiw4wPi0uDy6E8J8GrLL nOaZ4H5JBEZDFHGiRsdRV0Tk7ipypG448AYOEP0QXoyY1CXBrv6W7QImlY2Teg4R 6wCQ5GGsVpvgDkfB2L3N569iSto2F2JjMZi3F32et3w= -----END CERTIFICATE-----Generated at Thu May 16 19:49:58 2024 by rpki-client on console-fra.rpki-client.org