$ rpki-client -vvf rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/C5639A24E0F511EABB96D531C4F9AE02.roa File: C5639A24E0F511EABB96D531C4F9AE02.roa (raw, json) Hash identifier: yx8TBb/TuXum0pJEp+Wzpqk77BnNIMbRNcycPvceWF0= Subject key identifier: 55:A0:84:94:0E:00:92:EC:66:7F:70:2D:0D:C1:F4:5F:03:D9:12:E9 Certificate issuer: /CN=A914BFE5/serialNumber=78A9977FFB47AF3EC1E946BC10F81376949EBEC2 Certificate serial: 074B Authority key identifier: 78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/C5639A24E0F511EABB96D531C4F9AE02.roa Signing time: Thu 18 Apr 2024 22:31:44 +0000 ROA not before: Thu 18 Apr 2024 22:31:44 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.152.248.0/24 maxlen: 24 103.152.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1867 (0x74b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914BFE5 Validity Not Before: Apr 18 22:31:44 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66219f50-6585 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:01:7a:c6:7d:90:ea:f4:97:b6:ff:fb:9c:60: 12:2b:13:e7:b6:2a:ec:5c:c9:b7:21:8f:95:e3:40: ca:ef:d3:d8:12:d8:29:82:2b:ed:10:b2:db:c6:51: 80:70:f4:e8:1e:2a:2b:d3:ce:2b:cb:d6:7f:a8:a9: 22:d1:5c:39:bf:c2:8e:82:cc:d6:f9:ca:ad:23:48: f8:95:de:64:70:e3:d6:92:f3:fd:5d:c6:ce:36:ce: e8:7b:dc:79:3c:96:b8:16:fd:96:4e:cd:3c:b4:cd: b6:47:51:23:9d:08:05:1e:92:04:b8:d7:8b:d0:d1: d6:04:b4:03:fb:89:ac:10:9a:a0:19:b9:49:55:c8: 3c:1d:e2:4d:b1:35:50:43:15:94:60:50:fc:b8:02: 31:a7:cd:82:25:d8:ac:5e:0f:a9:ac:f7:f8:2d:5f: 8f:18:91:db:57:a1:0b:2f:37:da:3d:82:74:c7:ee: fc:15:95:c5:4c:e7:29:dc:01:3c:8a:ee:47:1a:45: 9b:85:f4:23:c7:7e:51:e7:d0:18:e3:53:df:26:cf: a2:91:0d:c4:b4:aa:49:82:3f:aa:4a:11:cc:7e:46: c4:46:25:c1:fc:2d:9e:99:89:e0:07:75:26:26:28: 51:7a:ef:5f:c8:df:c6:e6:19:15:12:c8:95:8f:39: ea:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:A0:84:94:0E:00:92:EC:66:7F:70:2D:0D:C1:F4:5F:03:D9:12:E9 X509v3 Authority Key Identifier: keyid:78:A9:97:7F:FB:47:AF:3E:C1:E9:46:BC:10:F8:13:76:94:9E:BE:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/eKmXf_tHrz7B6Ua8EPgTdpSevsI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eKmXf_tHrz7B6Ua8EPgTdpSevsI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914BFE5/9DAF486EDDEB11EAB30ED921C4F9AE02/C5639A24E0F511EABB96D531C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.248.0/23 Signature Algorithm: sha256WithRSAEncryption 34:c1:92:48:62:01:f3:70:0b:17:88:a8:8b:21:eb:b1:f5:61: de:71:5a:aa:d9:64:34:80:21:eb:49:66:ec:9d:85:9b:3b:a2: 88:ca:1e:db:fe:46:bb:dd:02:c3:f9:0c:01:41:70:32:8c:0a: 95:69:6c:66:10:c0:e0:e7:57:da:2e:d0:db:e2:3a:fc:44:97: b9:47:0e:2d:41:26:53:e5:e2:12:1d:3f:ed:17:e1:c6:02:d8: 9f:39:79:7d:24:79:10:3c:36:29:1b:0f:9b:1a:9b:12:07:8c: a2:4a:57:7c:0d:26:0d:08:24:23:cd:e4:9b:75:25:c5:f0:f3: 18:6e:8e:e9:dc:4b:c6:ff:6f:fd:dd:75:f8:ca:9d:22:db:2c: 7a:7e:05:b5:2a:3a:4b:de:78:f9:59:25:aa:a0:ef:d6:c1:26: ef:20:d6:64:d2:ee:25:8f:4e:30:5b:0e:ba:aa:c7:97:fb:7b: b8:91:d4:92:50:f9:27:54:2b:b8:dd:ca:81:94:0b:09:15:e7: 65:e8:1f:77:35:0a:4a:ad:7c:44:85:6b:f6:84:32:91:d6:80: 9b:52:09:ae:83:62:3e:25:c2:c3:26:61:82:07:27:e0:1f:43: 78:cf:cd:e1:89:d8:2e:ca:c7:18:13:e4:68:43:2a:11:b0:39: 7e:c0:ce:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB0swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEJGRTUxMTAvBgNVBAUTKDc4QTk5NzdGRkI0N0FGM0VDMUU5NDZCQzEwRjgxMzc2 OTQ5RUJFQzIwHhcNMjQwNDE4MjIzMTQ0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIxOWY1MC02NTg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4wF6xn2Q6vSXtv/7nGASKxPntirsXMm3IY+V40DK79PYEtgpgivtELLbxlGA cPToHior084ry9Z/qKki0Vw5v8KOgszW+cqtI0j4ld5kcOPWkvP9XcbONs7oe9x5 PJa4Fv2WTs08tM22R1EjnQgFHpIEuNeL0NHWBLQD+4msEJqgGblJVcg8HeJNsTVQ QxWUYFD8uAIxp82CJdisXg+prPf4LV+PGJHbV6ELLzfaPYJ0x+78FZXFTOcp3AE8 iu5HGkWbhfQjx35R59AY41PfJs+ikQ3EtKpJgj+qShHMfkbERiXB/C2emYngB3Um JihReu9fyN/G5hkVEsiVjznqlwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFWghJQO AJLsZn9wLQ3B9F8D2RLpMB8GA1UdIwQYMBaAFHipl3/7R68+welGvBD4E3aUnr7C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QkZFNS85REFGNDg2RURE RUIxMUVBQjMwRUQ5MjFDNEY5QUUwMi9lS21YZl90SHJ6N0I2VWE4RVBnVGRwU2V2 c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VLbVhmX3RIcno3QjZVYThFUGdUZHBTZXZzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEJGRTUvOURBRjQ4NkVEREVCMTFFQUIzMEVEOTIxQzRGOUFFMDIvQzU2MzlBMjRF MEY1MTFFQUJCOTZENTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmPgwDQYJKoZIhvcNAQELBQADggEBADTBkkhiAfNwCxeI qIsh67H1Yd5xWqrZZDSAIetJZuydhZs7oojKHtv+RrvdAsP5DAFBcDKMCpVpbGYQ wODnV9ou0NviOvxEl7lHDi1BJlPl4hIdP+0X4cYC2J85eX0keRA8NikbD5samxIH jKJKV3wNJg0IJCPN5Jt1JcXw8xhujuncS8b/b/3ddfjKnSLbLHp+BbUqOkveePlZ Jaqg79bBJu8g1mTS7iWPTjBbDrqqx5f7e7iR1JJQ+SdUK7jdyoGUCwkV52XoH3c1 CkqtfESFa/aEMpHWgJtSCa6DYj4lwsMmYYIHJ+AfQ3jPzeGJ2C7KxxgT5GhDKhGw OX7AznQ= -----END CERTIFICATE-----Generated at Sun Feb 16 15:55:31 2025 by rpki-client