$ rpki-client -vvf rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/B5EA3B509EDD11EC85676D09C4F9AE02.roa File: B5EA3B509EDD11EC85676D09C4F9AE02.roa (raw, json) Hash identifier: ibj8KgitiLOO63xInpDEW7gNAYWQe6nI4+x8vt/ZxMg= Subject key identifier: A3:E1:CE:34:DF:40:A5:1D:15:28:6A:41:37:2A:4D:BD:A3:3B:0A:BD Certificate issuer: /CN=A9158D75/serialNumber=F4345C314D6EBEDEB45FE0755F8FFEACF363CB8A Certificate serial: 0BDB Authority key identifier: F4:34:5C:31:4D:6E:BE:DE:B4:5F:E0:75:5F:8F:FE:AC:F3:63:CB:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/B5EA3B509EDD11EC85676D09C4F9AE02.roa Signing time: Wed 20 Mar 2024 18:57:19 +0000 ROA not before: Wed 20 Mar 2024 18:57:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 58803 IP address blocks: 43.254.96.0/22 maxlen: 24 103.245.96.0/22 maxlen: 22 103.245.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.crl rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:03:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3035 (0xbdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158D75/serialNumber=F4345C314D6EBEDEB45FE0755F8FFEACF363CB8A Validity Not Before: Mar 20 18:57:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fb318f-f0c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:05:5b:da:b5:ee:f3:49:3d:61:84:89:47:5b: c8:65:8c:48:19:38:8c:d6:c7:5a:b5:46:6c:02:58: 22:04:a3:14:1c:2a:43:44:b1:13:24:a2:86:70:b1: 8f:0f:6a:c4:bf:a3:fe:4c:de:6b:b5:6d:3d:e8:d4: 4f:6e:09:95:31:1f:63:47:c9:64:0b:35:c8:78:18: fc:67:a6:db:dd:cf:ce:23:88:55:b2:e3:64:ed:13: 4c:14:a6:ae:fb:da:3b:3a:57:5b:97:39:1f:b2:5b: e2:44:aa:8e:b6:b1:05:73:be:7f:23:43:76:93:43: ae:0c:af:de:83:76:42:e8:f0:6e:6f:01:dc:66:ee: 6b:7f:4a:71:5c:9a:32:c5:a2:21:3b:ca:f8:6a:82: e9:6c:ba:f1:57:36:6a:33:85:cd:17:f1:e4:3b:a7: 51:31:c4:35:7a:f2:a3:f6:86:08:b7:69:56:97:e7: db:d6:5e:90:b0:ea:71:ff:39:0a:94:97:f0:7d:29: 4d:e7:08:fb:25:86:d6:b6:c9:55:b5:f1:49:81:43: 11:0e:cc:e1:cc:eb:a6:6c:47:65:50:02:7f:82:d8: 76:e1:91:11:01:58:54:3f:32:6a:11:7d:d5:90:52: 57:ad:69:92:d0:7e:c8:53:bf:27:20:ad:2c:30:a3: f7:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:E1:CE:34:DF:40:A5:1D:15:28:6A:41:37:2A:4D:BD:A3:3B:0A:BD X509v3 Authority Key Identifier: keyid:F4:34:5C:31:4D:6E:BE:DE:B4:5F:E0:75:5F:8F:FE:AC:F3:63:CB:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/9DRcMU1uvt60X-B1X4_-rPNjy4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9DRcMU1uvt60X-B1X4_-rPNjy4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158D75/7434940EF25E11E99130B181C4F9AE02/B5EA3B509EDD11EC85676D09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.96.0/22 103.245.96.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:30:a6:a3:09:19:4e:a8:90:8e:00:9d:8d:17:87:e3:fc:08: 7c:61:31:b4:30:e5:c5:f8:2c:48:ef:49:74:cb:31:b6:c3:30: 89:b7:9e:c9:03:93:70:3e:72:ff:f9:a8:a5:5b:e5:c0:4e:c3: c8:a6:e2:8e:0e:fd:7e:fb:05:ed:44:1e:80:78:3c:39:60:c1: 9b:92:32:70:73:58:29:fa:31:dc:25:dc:7c:d3:32:48:88:6d: b6:4e:b5:05:62:8e:14:33:b4:23:e9:90:11:86:56:30:39:62: 48:d9:8b:30:f9:08:b1:b5:f8:fd:38:fb:0b:55:30:d5:07:d6: dd:d2:be:09:2d:d0:f4:24:02:15:af:30:6a:d8:01:52:fa:cf: 71:90:0f:85:3c:e9:df:42:d1:0a:29:29:09:6a:51:82:96:7a: b1:6b:17:59:e3:f7:4b:63:39:7a:63:f4:a8:23:38:66:e1:ed: ca:ed:ac:00:b5:00:ce:31:3c:fc:85:58:58:88:78:5c:30:48: 53:0e:b9:d9:96:2d:c6:c5:98:45:0a:d1:64:ec:44:f9:55:85: 93:c7:f9:5c:22:a8:ac:cc:3e:6a:34:5f:9b:f1:03:26:aa:a4: 27:7d:91:8e:50:f9:18:a7:2c:1e:f7:d2:f4:ec:15:65:76:11: 25:d9:5d:de -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NThENzUxMTAvBgNVBAUTKEY0MzQ1QzMxNEQ2RUJFREVCNDVGRTA3NTVGOEZGRUFD RjM2M0NCOEEwHhcNMjQwMzIwMTg1NzE5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiMzE4Zi1mMGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqAVb2rXu80k9YYSJR1vIZYxIGTiM1sdatUZsAlgiBKMUHCpDRLETJKKGcLGP D2rEv6P+TN5rtW096NRPbgmVMR9jR8lkCzXIeBj8Z6bb3c/OI4hVsuNk7RNMFKau +9o7OldblzkfslviRKqOtrEFc75/I0N2k0OuDK/eg3ZC6PBubwHcZu5rf0pxXJoy xaIhO8r4aoLpbLrxVzZqM4XNF/HkO6dRMcQ1evKj9oYIt2lWl+fb1l6QsOpx/zkK lJfwfSlN5wj7JYbWtslVtfFJgUMRDszhzOumbEdlUAJ/gth24ZERAVhUPzJqEX3V kFJXrWmS0H7IU78nIK0sMKP3OQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKPhzjTf QKUdFShqQTcqTb2jOwq9MB8GA1UdIwQYMBaAFPQ0XDFNbr7etF/gdV+P/qzzY8uK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OEQ3NS83NDM0OTQwRUYy NUUxMUU5OTEzMEIxODFDNEY5QUUwMi85RFJjTVUxdXZ0NjBYLUIxWDRfLXJQTmp5 NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlEUmNNVTF1dnQ2MFgtQjFYNF8tclBOank0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NThENzUvNzQzNDk0MEVGMjVFMTFFOTkxMzBCMTgxQzRGOUFFMDIvQjVFQTNCNTA5 RUREMTFFQzg1Njc2RDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/mADBAJn9WAwDQYJKoZIhvcNAQELBQADggEBAH0wpqMJ GU6okI4AnY0Xh+P8CHxhMbQw5cX4LEjvSXTLMbbDMIm3nskDk3A+cv/5qKVb5cBO w8im4o4O/X77Be1EHoB4PDlgwZuSMnBzWCn6Mdwl3HzTMkiIbbZOtQVijhQztCPp kBGGVjA5YkjZizD5CLG1+P04+wtVMNUH1t3Svgkt0PQkAhWvMGrYAVL6z3GQD4U8 6d9C0QopKQlqUYKWerFrF1nj90tjOXpj9KgjOGbh7crtrAC1AM4xPPyFWFiIeFww SFMOudmWLcbFmEUK0WTsRPlVhZPH+VwiqKzMPmo0X5vxAyaqpCd9kY5Q+RinLB73 0vTsFWV2ESXZXd4= -----END CERTIFICATE-----Generated at Thu May 16 19:49:59 2024 by rpki-client on console-fra.rpki-client.org