$ rpki-client -vvf rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/1AD373BAB85911EEAD35104FC4F9AE02.roa File: 1AD373BAB85911EEAD35104FC4F9AE02.roa (raw, json) Hash identifier: 4SlIaTwQG5C7Z3NVeZVgFQclH1vtAwFQo1VKovMtgy0= Subject key identifier: 1E:C4:71:02:32:49:1F:4C:8F:A2:3D:28:1C:77:62:D0:E2:B8:BB:EF Certificate issuer: /CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Certificate serial: 097B Authority key identifier: 3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/1AD373BAB85911EEAD35104FC4F9AE02.roa Signing time: Sun 21 Jan 2024 12:34:01 +0000 ROA not before: Sun 21 Jan 2024 12:34:01 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 137030 IP address blocks: 103.102.132.0/22 maxlen: 22 103.102.132.0/23 maxlen: 23 103.102.132.0/24 maxlen: 24 103.102.133.0/24 maxlen: 24 103.102.134.0/23 maxlen: 23 103.102.134.0/24 maxlen: 24 103.102.135.0/24 maxlen: 24 2405:e2c0::/32 maxlen: 32 2405:e2c0::/48 maxlen: 48 2405:e2c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 20:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2427 (0x97b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915802B/serialNumber=3A43780F6C432DEE474A8A9568590282DBEA5DB3 Validity Not Before: Jan 21 12:34:01 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65ad0f38-2297 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:86:fe:50:51:8d:d2:ee:8c:c0:74:8f:c3:38: 4d:54:e9:78:a8:44:a1:c6:d9:98:3b:b9:c2:80:11: d2:92:6f:ab:d8:af:70:32:0f:50:8b:8c:34:3b:23: 6e:88:c0:ed:bf:28:07:f0:5c:da:01:24:fe:e6:0b: 27:db:42:cf:a5:b2:3b:ec:a5:ad:06:09:9c:f4:b6: 03:51:db:c1:a4:c0:ed:f6:0c:5d:d9:86:ff:a3:27: ce:09:e2:bb:cc:d2:a5:c5:6d:58:e2:75:fa:57:65: 38:6f:11:29:7c:2e:e8:07:ea:df:b7:31:c0:8b:06: 30:a1:98:7e:3b:df:a8:82:08:e0:2f:4a:a2:17:1b: 0e:60:13:50:ea:af:39:4c:7a:bd:00:32:6f:b4:e8: 44:bb:9a:d5:73:25:e5:ec:7f:e2:64:43:09:be:f7: 2d:b0:b0:54:58:dc:5f:15:9c:34:a2:30:d3:c7:d2: 51:21:2f:68:e7:a3:05:c2:b0:62:81:af:8d:2c:93: a0:55:ff:9b:d7:17:77:7f:26:69:0d:ed:16:7f:a0: fc:c7:ee:06:96:dc:b9:c9:ed:9a:b3:a5:05:cf:53: 75:ba:94:a0:f4:63:fc:48:d1:71:1b:9b:56:d5:56: b0:f9:40:97:49:0a:63:e2:f4:62:9a:f4:75:2e:14: 1d:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C4:71:02:32:49:1F:4C:8F:A2:3D:28:1C:77:62:D0:E2:B8:BB:EF X509v3 Authority Key Identifier: keyid:3A:43:78:0F:6C:43:2D:EE:47:4A:8A:95:68:59:02:82:DB:EA:5D:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/OkN4D2xDLe5HSoqVaFkCgtvqXbM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OkN4D2xDLe5HSoqVaFkCgtvqXbM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915802B/330CC3C4605011EA95776754C4F9AE02/1AD373BAB85911EEAD35104FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.132.0/22 IPv6: 2405:e2c0::/32 Signature Algorithm: sha256WithRSAEncryption 50:a1:37:48:6c:fd:96:b0:70:3b:95:bc:ff:97:f9:33:93:24: be:ad:36:5c:20:41:00:37:98:6c:d2:f7:53:b7:6f:49:a9:6c: 9c:9c:1c:2e:0a:7e:63:21:9e:b9:81:e5:fe:95:e4:96:d9:e4: 71:2b:62:b9:0c:c5:cc:85:d1:40:6e:2f:a2:9a:04:e8:b0:41: ba:f5:b0:b5:6d:a5:7d:58:a4:cd:df:e4:f5:d5:76:b9:6c:b7: c6:37:23:2d:6f:4e:72:77:ec:fe:88:d9:b2:1e:a4:48:05:23: 2e:b0:d3:54:71:78:4b:9b:7d:29:77:88:a2:b0:5a:53:78:1d: 61:c7:6a:42:bf:f6:c8:ef:76:df:12:44:b9:f7:ff:98:5a:4d: f7:83:bf:3a:28:42:28:98:3d:34:56:b2:d5:6d:54:19:be:f8: 7d:c7:7e:ac:de:a5:e2:2c:53:f6:3d:46:e9:3f:1a:50:e0:5e: 79:fe:7e:8d:50:bc:3c:9e:61:02:13:ac:cc:eb:51:4a:ea:cf: b6:3c:31:54:fc:96:5f:1e:8b:19:a8:df:83:c8:ab:09:5c:5d: e9:0e:b0:12:d3:a5:92:51:c3:db:2a:80:69:fc:21:30:b7:12: 30:a9:b7:d4:06:69:7f:6f:7c:55:1e:2e:92:7d:0d:a3:e3:3b: 92:dc:51:dd -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwMkIxMTAvBgNVBAUTKDNBNDM3ODBGNkM0MzJERUU0NzRBOEE5NTY4NTkwMjgy REJFQTVEQjMwHhcNMjQwMTIxMTIzNDAxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFkMGYzOC0yMjk3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkob+UFGN0u6MwHSPwzhNVOl4qEShxtmYO7nCgBHSkm+r2K9wMg9Qi4w0OyNu iMDtvygH8FzaAST+5gsn20LPpbI77KWtBgmc9LYDUdvBpMDt9gxd2Yb/oyfOCeK7 zNKlxW1Y4nX6V2U4bxEpfC7oB+rftzHAiwYwoZh+O9+oggjgL0qiFxsOYBNQ6q85 THq9ADJvtOhEu5rVcyXl7H/iZEMJvvctsLBUWNxfFZw0ojDTx9JRIS9o56MFwrBi ga+NLJOgVf+b1xd3fyZpDe0Wf6D8x+4Glty5ye2as6UFz1N1upSg9GP8SNFxG5tW 1Vaw+UCXSQpj4vRimvR1LhQdTQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFB7EcQIy SR9Mj6I9KBx3YtDiuLvvMB8GA1UdIwQYMBaAFDpDeA9sQy3uR0qKlWhZAoLb6l2z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODAyQi8zMzBDQzNDNDYw NTAxMUVBOTU3NzY3NTRDNEY5QUUwMi9Pa040RDJ4RExlNUhTb3FWYUZrQ2d0dnFY Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09rTjREMnhETGU1SFNvcVZhRmtDZ3R2cVhiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgwMkIvMzMwQ0MzQzQ2MDUwMTFFQTk1Nzc2NzU0QzRGOUFFMDIvMUFEMzczQkFC ODU5MTFFRUFEMzUxMDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZoQwDQQCAAIwBwMFACQF4sAwDQYJKoZIhvcNAQELBQAD ggEBAFChN0hs/ZawcDuVvP+X+TOTJL6tNlwgQQA3mGzS91O3b0mpbJycHC4KfmMh nrmB5f6V5JbZ5HErYrkMxcyF0UBuL6KaBOiwQbr1sLVtpX1YpM3f5PXVdrlst8Y3 Iy1vTnJ37P6I2bIepEgFIy6w01RxeEubfSl3iKKwWlN4HWHHakK/9sjvdt8SRLn3 /5haTfeDvzooQiiYPTRWstVtVBm++H3HfqzepeIsU/Y9Ruk/GlDgXnn+fo1QvDye YQITrMzrUUrqz7Y8MVT8ll8eixmo34PIqwlcXekOsBLTpZJRw9sqgGn8ITC3EjCp t9QGaX9vfFUeLpJ9DaPjO5LcUd0= -----END CERTIFICATE-----Generated at Mon May 20 21:23:08 2024 by rpki-client on console-fra.rpki-client.org