$ rpki-client -vvf rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/13F37A72C14C11E888561034C4F9AE02.roa File: 13F37A72C14C11E888561034C4F9AE02.roa (raw, json) Hash identifier: cDTiETpses8imKGQg7LW9sKc6Ao94RxH3grFSirwhBI= Subject key identifier: 0C:56:8F:81:73:2C:79:D9:7C:BA:D1:AC:DF:61:3A:CD:69:24:DF:2E Certificate issuer: /CN=A91475C0/serialNumber=19CA97F9ECB50C584D1BFBD6B745024139A01522 Certificate serial: 1207 Authority key identifier: 19:CA:97:F9:EC:B5:0C:58:4D:1B:FB:D6:B7:45:02:41:39:A0:15:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GcqX-ey1DFhNG_vWt0UCQTmgFSI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/13F37A72C14C11E888561034C4F9AE02.roa Signing time: Fri 31 May 2024 18:29:43 +0000 ROA not before: Fri 31 May 2024 18:29:43 +0000 ROA not after: Tue 01 Oct 2024 00:00:00 +0000 asID: 133383 IP address blocks: 103.226.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/GcqX-ey1DFhNG_vWt0UCQTmgFSI.crl rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/GcqX-ey1DFhNG_vWt0UCQTmgFSI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GcqX-ey1DFhNG_vWt0UCQTmgFSI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 17:53:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4615 (0x1207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91475C0/serialNumber=19CA97F9ECB50C584D1BFBD6B745024139A01522 Validity Not Before: May 31 18:29:43 2024 GMT Not After : Oct 1 00:00:00 2024 GMT Subject: CN=665a1717-4409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:e0:67:49:c8:bc:7a:83:13:74:ac:01:74:7e: 99:f9:24:f0:4e:bc:3b:b8:98:c1:4f:e3:89:d5:d1: 91:88:ac:43:d4:ab:0b:af:60:56:4d:76:86:28:e8: ed:2e:91:b7:a4:59:b0:80:d6:fd:e5:08:b6:88:28: 42:25:e0:d1:89:f5:c9:9f:51:db:06:1a:8d:74:13: 2e:57:a5:4f:2e:2c:95:05:9a:82:a3:c0:68:8a:89: 3f:7d:fe:b0:14:af:45:d2:8d:7e:87:d4:ec:c1:b5: b6:39:6f:21:2f:f0:52:47:39:08:ad:8f:a3:2d:15: b7:a8:b6:d3:1c:14:c1:aa:d6:6c:5b:a6:da:1f:04: 62:7b:e2:f5:55:34:0f:c6:4a:03:73:fd:bb:b2:24: 9a:b2:e0:9f:cd:e2:df:cd:cf:fd:ba:d2:2d:03:9d: 5b:20:16:92:98:b8:e6:9c:22:cd:54:07:83:45:86: ea:6f:56:55:f7:6f:ba:b5:3a:13:29:39:b1:1a:64: 49:ff:c4:5b:d1:8e:31:08:e8:61:7d:d3:ed:f4:60: c5:a5:42:a3:7c:83:51:47:ae:d3:fa:04:9d:86:5c: 83:7f:7e:19:07:1c:c8:4f:1d:43:00:e9:04:be:b2: 47:47:66:05:6e:82:10:87:6d:cc:41:44:d9:52:55: d3:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:56:8F:81:73:2C:79:D9:7C:BA:D1:AC:DF:61:3A:CD:69:24:DF:2E X509v3 Authority Key Identifier: keyid:19:CA:97:F9:EC:B5:0C:58:4D:1B:FB:D6:B7:45:02:41:39:A0:15:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/GcqX-ey1DFhNG_vWt0UCQTmgFSI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GcqX-ey1DFhNG_vWt0UCQTmgFSI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/13F37A72C14C11E888561034C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.22.0/24 Signature Algorithm: sha256WithRSAEncryption ca:7e:20:da:8d:65:65:20:1b:86:bc:9a:5a:88:50:9f:d5:0a: d1:df:77:be:e1:6a:e7:c8:23:3c:aa:37:bd:4f:ef:c3:44:51: ac:a8:94:97:0c:40:c0:41:29:91:4a:77:9c:77:5e:3f:dd:9f: 94:d7:43:d1:b6:ad:06:c1:e5:46:45:dc:db:5a:09:bd:bb:35: c0:19:8f:19:04:59:dd:ae:82:20:42:61:f0:db:2a:58:c8:e7: f1:84:d9:e0:b5:f2:32:33:65:b0:80:a1:67:ca:a8:f2:6c:b0: 60:1e:a9:83:31:3d:c2:02:8c:d2:71:72:0b:a1:f1:d6:e4:39: 6d:0e:46:08:5a:08:82:46:0b:1a:e4:86:09:92:a7:c1:96:35: a1:e0:a4:fe:0c:a3:ab:93:3f:56:fe:2f:76:54:46:26:96:e5: 7f:2b:87:f9:91:e3:46:d1:4a:8d:0d:85:b5:48:2b:45:21:6e: 91:b1:58:70:ef:11:4c:cb:13:be:f5:8b:4d:c0:1e:ba:6d:6e: c4:76:c4:fe:7a:b1:58:3d:c6:11:98:99:1b:74:38:49:cc:46: 8c:4d:01:5c:66:c1:3c:a7:8f:f7:28:dd:2b:11:7c:62:38:b0: 60:2b:72:82:0d:76:98:bb:a3:31:4d:83:36:b3:a8:4e:b3:a7: 34:5c:f8:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc1QzAxMTAvBgNVBAUTKDE5Q0E5N0Y5RUNCNTBDNTg0RDFCRkJENkI3NDUwMjQx MzlBMDE1MjIwHhcNMjQwNTMxMTgyOTQzWhcNMjQxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhMTcxNy00NDA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8eBnSci8eoMTdKwBdH6Z+STwTrw7uJjBT+OJ1dGRiKxD1KsLr2BWTXaGKOjt LpG3pFmwgNb95Qi2iChCJeDRifXJn1HbBhqNdBMuV6VPLiyVBZqCo8Boiok/ff6w FK9F0o1+h9TswbW2OW8hL/BSRzkIrY+jLRW3qLbTHBTBqtZsW6baHwRie+L1VTQP xkoDc/27siSasuCfzeLfzc/9utItA51bIBaSmLjmnCLNVAeDRYbqb1ZV92+6tToT KTmxGmRJ/8Rb0Y4xCOhhfdPt9GDFpUKjfINRR67T+gSdhlyDf34ZBxzITx1DAOkE vrJHR2YFboIQh23MQUTZUlXTzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAxWj4Fz LHnZfLrRrN9hOs1pJN8uMB8GA1UdIwQYMBaAFBnKl/nstQxYTRv71rdFAkE5oBUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzVDMC81QTJDMTJBQ0Mx NEIxMUU4QjA5MkU3MzJDNEY5QUUwMi9HY3FYLWV5MURGaE5HX3ZXdDBVQ1FUbWdG U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0djcVgtZXkxREZoTkdfdld0MFVDUVRtZ0ZTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc1QzAvNUEyQzEyQUNDMTRCMTFFOEIwOTJFNzMyQzRGOUFFMDIvMTNGMzdBNzJD MTRDMTFFODg4NTYxMDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn4hYwDQYJKoZIhvcNAQELBQADggEBAMp+INqNZWUgG4a8 mlqIUJ/VCtHfd77haufIIzyqN71P78NEUayolJcMQMBBKZFKd5x3Xj/dn5TXQ9G2 rQbB5UZF3NtaCb27NcAZjxkEWd2ugiBCYfDbKljI5/GE2eC18jIzZbCAoWfKqPJs sGAeqYMxPcICjNJxcguh8dbkOW0ORghaCIJGCxrkhgmSp8GWNaHgpP4Mo6uTP1b+ L3ZURiaW5X8rh/mR40bRSo0NhbVIK0UhbpGxWHDvEUzLE771i03AHrptbsR2xP56 sVg9xhGYmRt0OEnMRoxNAVxmwTynj/co3SsRfGI4sGArcoINdpi7ozFNgzazqE6z pzRc+OU= -----END CERTIFICATE-----Generated at Sun Jun 2 18:40:06 2024 by rpki-client on console-fra.rpki-client.org