$ rpki-client -vvf rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/5EAB725014A211EEA889E832C4F9AE02.roa File: 5EAB725014A211EEA889E832C4F9AE02.roa (raw, json) Hash identifier: N9v1fXpAWQUpJZbuaCy/aYTK4l+eZ+kCyMuepJ8AyXI= Subject key identifier: 35:C2:B7:89:FC:19:A9:12:A3:BD:D4:26:36:92:6B:E5:2D:C1:55:CF Certificate issuer: /CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Certificate serial: 7E Authority key identifier: 4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/5EAB725014A211EEA889E832C4F9AE02.roa Signing time: Sun 11 Feb 2024 05:57:46 +0000 ROA not before: Sun 11 Feb 2024 05:57:46 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 150812 IP address blocks: 103.65.242.0/24 maxlen: 24 103.65.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914D271/serialNumber=4CEEEE6D3663C13FD82E931DAC69F17046FC99B3 Validity Not Before: Feb 11 05:57:46 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c861da-20dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d5:54:b1:90:86:91:73:56:f9:2f:f0:d9:e6: 1b:5e:99:c4:4d:a1:15:fd:63:02:4b:99:44:e0:82: c0:ee:b8:68:11:af:10:a0:d2:8b:1b:38:23:ed:9f: 0c:91:c8:0d:3f:ff:76:12:43:0a:d5:13:7a:19:49: a6:a5:1e:06:74:71:44:0c:b1:ad:23:c0:30:30:f6: 3f:50:c5:7c:5c:36:ae:55:96:20:d1:5f:01:4c:bf: 46:0d:7f:c9:85:f0:ab:87:8c:84:c5:03:44:6c:7b: 85:d0:06:47:54:d6:eb:cb:ba:bb:d6:8c:2c:43:41: cc:9d:58:29:e2:2c:5c:15:a7:04:3b:a7:55:d0:51: 23:66:49:b9:88:70:ee:a3:a4:34:81:0e:a8:e6:4f: 85:9b:67:ac:96:bc:fb:e0:60:dc:1e:70:8f:62:b1: 59:13:cd:b2:ea:d6:a5:4f:45:7a:94:ee:7b:94:d5: f7:e9:67:3d:e0:15:8e:e7:7d:76:21:d2:4b:38:f0: cc:ec:9b:97:c8:61:e2:75:fd:18:9e:b7:5f:a5:62: 97:e8:64:f2:65:60:d8:42:64:4c:73:57:93:e1:bd: 3d:4b:e8:e6:ab:10:77:de:bf:50:f5:8f:95:5a:9c: bb:28:0d:4d:32:e6:86:ee:7b:7a:86:37:be:7e:0e: 79:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:C2:B7:89:FC:19:A9:12:A3:BD:D4:26:36:92:6B:E5:2D:C1:55:CF X509v3 Authority Key Identifier: keyid:4C:EE:EE:6D:36:63:C1:3F:D8:2E:93:1D:AC:69:F1:70:46:FC:99:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/TO7ubTZjwT_YLpMdrGnxcEb8mbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TO7ubTZjwT_YLpMdrGnxcEb8mbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914D271/2814F0DE11B111EE9047BF18C4F9AE02/5EAB725014A211EEA889E832C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.242.0/23 Signature Algorithm: sha256WithRSAEncryption a8:97:cd:a0:2d:f2:e6:20:72:4b:3a:d4:25:c1:8c:73:96:30: 2d:ea:5d:ac:a2:5c:1d:7c:88:1c:d8:c5:63:68:3b:12:ff:4f: 9e:91:c7:ec:db:3a:ed:91:9d:76:52:bc:ab:4e:ff:cb:44:82: 55:3e:92:f5:cc:29:4a:e4:a7:a9:e0:30:8c:1d:2d:48:71:1e: 49:9d:6b:10:d8:5c:9e:05:42:5a:c3:b3:c5:97:c5:b5:2c:53: 30:33:11:a2:e1:a0:50:47:81:01:5f:b4:a5:cd:cc:32:42:13: b5:08:39:57:4f:ad:aa:b1:a3:37:a7:74:8b:b2:76:be:e6:41: 65:c5:8b:8b:ab:b8:85:c5:b1:9c:ea:4c:f9:8b:18:e6:f8:b5: 3a:93:58:4e:78:93:03:f6:89:c3:67:3f:8c:3c:5c:07:81:61: e2:e5:c0:28:2c:45:e8:b9:84:d4:5a:b3:31:ff:94:41:7d:09: 25:c2:e0:39:0a:08:c5:86:5b:a0:5a:65:1f:62:37:b8:48:c7: c6:03:0b:7f:2a:63:a0:58:21:01:33:b9:16:54:b1:3f:f9:08: f9:6b:e9:d5:89:fe:3f:bf:43:4d:4c:c5:95:3d:06:a0:4a:a9: b4:84:3f:4a:62:d4:99:3f:3b:6a:9e:90:6a:52:77:41:05:22: 4a:d1:28:a2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 RDI3MTExMC8GA1UEBRMoNENFRUVFNkQzNjYzQzEzRkQ4MkU5MzFEQUM2OUYxNzA0 NkZDOTlCMzAeFw0yNDAyMTEwNTU3NDZaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Yzg2MWRhLTIwZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDE1VSxkIaRc1b5L/DZ5htemcRNoRX9YwJLmUTggsDuuGgRrxCg0osbOCPtnwyR yA0//3YSQwrVE3oZSaalHgZ0cUQMsa0jwDAw9j9QxXxcNq5VliDRXwFMv0YNf8mF 8KuHjITFA0Rse4XQBkdU1uvLurvWjCxDQcydWCniLFwVpwQ7p1XQUSNmSbmIcO6j pDSBDqjmT4WbZ6yWvPvgYNwecI9isVkTzbLq1qVPRXqU7nuU1ffpZz3gFY7nfXYh 0ks48Mzsm5fIYeJ1/Riet1+lYpfoZPJlYNhCZExzV5PhvT1L6OarEHfev1D1j5Va nLsoDU0y5obue3qGN75+Dnm1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNcK3ifwZ qRKjvdQmNpJr5S3BVc8wHwYDVR0jBBgwFoAUTO7ubTZjwT/YLpMdrGnxcEb8mbMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTREMjcxLzI4MTRGMERFMTFC MTExRUU5MDQ3QkYxOEM0RjlBRTAyL1RPN3ViVFpqd1RfWUxwTWRyR254Y0ViOG1i TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVE83dWJUWmp3VF9ZTHBNZHJHbnhjRWI4bWJNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 RDI3MS8yODE0RjBERTExQjExMUVFOTA0N0JGMThDNEY5QUUwMi81RUFCNzI1MDE0 QTIxMUVFQTg4OUU4MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdB8jANBgkqhkiG9w0BAQsFAAOCAQEAqJfNoC3y5iBySzrU JcGMc5YwLepdrKJcHXyIHNjFY2g7Ev9PnpHH7Ns67ZGddlK8q07/y0SCVT6S9cwp SuSnqeAwjB0tSHEeSZ1rENhcngVCWsOzxZfFtSxTMDMRouGgUEeBAV+0pc3MMkIT tQg5V0+tqrGjN6d0i7J2vuZBZcWLi6u4hcWxnOpM+YsY5vi1OpNYTniTA/aJw2c/ jDxcB4Fh4uXAKCxF6LmE1FqzMf+UQX0JJcLgOQoIxYZboFplH2I3uEjHxgMLfypj oFghATO5FlSxP/kI+Wvp1Yn+P79DTUzFlT0GoEqptIQ/SmLUmT87ap6QalJ3QQUi StEoog== -----END CERTIFICATE-----Generated at Fri Jun 7 08:56:39 2024 by rpki-client on console-fra.rpki-client.org