$ rpki-client -vvf rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/588BE670071211EB87554839C4F9AE02.roa File: 588BE670071211EB87554839C4F9AE02.roa (raw, json) Hash identifier: ujXxHhbApMMPTnDuWxcJaWx4r3wmMI3pwTSLIUDnA38= Subject key identifier: 35:3A:6F:50:EE:71:2A:21:C8:55:71:BB:96:B4:A5:C1:6D:48:33:F9 Certificate issuer: /CN=A915F2CF/serialNumber=CB30D35C70DFC866A837CAEDFEFCE6FECBFC5B5F Certificate serial: 0633 Authority key identifier: CB:30:D3:5C:70:DF:C8:66:A8:37:CA:ED:FE:FC:E6:FE:CB:FC:5B:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yzDTXHDfyGaoN8rt_vzm_sv8W18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/588BE670071211EB87554839C4F9AE02.roa Signing time: Tue 20 Jun 2023 23:05:30 +0000 ROA not before: Tue 20 Jun 2023 23:05:30 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 55720 IP address blocks: 45.123.100.0/24 maxlen: 24 45.123.101.0/24 maxlen: 24 45.123.102.0/24 maxlen: 24 45.123.103.0/24 maxlen: 24 103.9.148.0/24 maxlen: 24 103.9.149.0/24 maxlen: 24 103.9.150.0/24 maxlen: 24 103.9.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/yzDTXHDfyGaoN8rt_vzm_sv8W18.crl rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/yzDTXHDfyGaoN8rt_vzm_sv8W18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yzDTXHDfyGaoN8rt_vzm_sv8W18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 22:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1587 (0x633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915F2CF/serialNumber=CB30D35C70DFC866A837CAEDFEFCE6FECBFC5B5F Validity Not Before: Jun 20 23:05:30 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649230ba-527b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:08:bb:04:4f:11:80:06:f2:81:6c:0a:26:ad: 46:93:1a:55:bd:24:18:a3:1a:3a:b2:6e:81:3d:df: b1:ce:e7:4b:0f:74:14:14:af:c0:f8:ba:4e:b8:4f: 01:d1:79:80:87:ef:61:c9:1d:ee:4d:43:1b:df:b3: fa:3f:05:88:8d:9e:26:64:e7:28:13:c2:19:3f:9a: 20:59:5d:48:6d:6d:18:78:3c:c9:d0:5e:07:23:ef: f7:0f:1a:40:60:3f:89:91:c5:a8:57:39:4b:1d:93: 72:7e:02:fe:2a:dd:25:04:af:32:eb:0c:96:0a:9f: 77:54:03:2d:d2:76:9a:e6:b1:c6:9e:ac:5a:7f:d5: 88:1b:f7:0e:5f:b6:07:f9:e5:b7:d2:29:4f:11:ca: f5:1f:2e:d3:76:c4:35:68:78:13:a4:d6:c3:57:82: ce:16:fa:a5:ef:04:f4:2d:cf:79:51:53:91:85:8e: e0:53:60:28:de:07:89:16:a3:bd:cc:05:4b:70:1a: 80:a2:52:2b:d0:62:16:92:13:a2:b0:a1:d9:a9:56: 83:c5:d7:d3:f5:df:9b:66:1b:cf:87:48:97:a9:95: d7:15:ec:2b:ad:d4:ee:84:e6:3a:30:80:88:6a:6c: bb:0f:f5:f9:f6:fc:d8:17:a2:50:4c:dc:7e:e3:1a: 5a:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:3A:6F:50:EE:71:2A:21:C8:55:71:BB:96:B4:A5:C1:6D:48:33:F9 X509v3 Authority Key Identifier: keyid:CB:30:D3:5C:70:DF:C8:66:A8:37:CA:ED:FE:FC:E6:FE:CB:FC:5B:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/yzDTXHDfyGaoN8rt_vzm_sv8W18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yzDTXHDfyGaoN8rt_vzm_sv8W18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915F2CF/F5C14ED2071011EB97F9F537C4F9AE02/588BE670071211EB87554839C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.123.100.0/22 103.9.148.0/22 Signature Algorithm: sha256WithRSAEncryption 37:68:a0:ed:96:3e:b7:1c:f0:76:19:c3:45:e8:e7:38:42:9d: 80:12:6e:c3:84:a5:3a:75:80:82:6c:a1:9d:52:77:20:50:da: 8f:51:66:c1:cf:e8:89:c6:56:67:97:c2:44:2a:7c:cd:93:2a: 1f:2f:e3:32:1f:f6:fc:8c:f3:27:26:6a:4e:47:5e:bf:57:3f: 41:c1:5a:21:c7:1b:02:e4:2f:69:d7:da:cb:29:e2:61:f6:0b: e5:a9:73:52:19:ff:63:e6:5e:98:ac:c0:26:92:12:23:ff:c2: 33:a6:dd:cf:91:8c:b2:96:68:0e:3e:5c:83:c8:79:c8:77:9c: 37:3f:2f:bb:5b:69:21:df:e1:1f:93:52:64:0e:99:24:a5:0c: 46:68:2e:cc:77:16:d5:39:2a:2c:b4:74:80:21:02:dc:35:1a: f7:b4:9a:5b:a0:1a:16:61:79:ba:37:d2:05:9c:24:a1:2c:1d: 98:54:7b:fc:fe:47:f9:7e:76:92:e8:2e:4c:3a:d2:8d:e6:01: 9d:66:a5:f0:3f:04:e7:7b:e7:06:0d:ad:aa:1d:73:e1:f1:70: aa:e5:04:8d:c7:ca:af:59:9a:bb:9b:fa:3b:c5:a5:54:f4:10: 23:27:cd:27:ea:15:f2:f7:65:1b:f8:c0:cc:2f:c8:fc:d5:17: a3:82:a0:b8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUYyQ0YxMTAvBgNVBAUTKENCMzBEMzVDNzBERkM4NjZBODM3Q0FFREZFRkNFNkZF Q0JGQzVCNUYwHhcNMjMwNjIwMjMwNTMwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDkyMzBiYS01MjdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Qi7BE8RgAbygWwKJq1GkxpVvSQYoxo6sm6BPd+xzudLD3QUFK/A+LpOuE8B 0XmAh+9hyR3uTUMb37P6PwWIjZ4mZOcoE8IZP5ogWV1IbW0YeDzJ0F4HI+/3DxpA YD+JkcWoVzlLHZNyfgL+Kt0lBK8y6wyWCp93VAMt0naa5rHGnqxaf9WIG/cOX7YH +eW30ilPEcr1Hy7TdsQ1aHgTpNbDV4LOFvql7wT0Lc95UVORhY7gU2Ao3geJFqO9 zAVLcBqAolIr0GIWkhOisKHZqVaDxdfT9d+bZhvPh0iXqZXXFewrrdTuhOY6MICI amy7D/X59vzYF6JQTNx+4xpavwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDU6b1Du cSohyFVxu5a0pcFtSDP5MB8GA1UdIwQYMBaAFMsw01xw38hmqDfK7f785v7L/Ftf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RjJDRi9GNUMxNEVEMjA3 MTAxMUVCOTdGOUY1MzdDNEY5QUUwMi95ekRUWEhEZnlHYW9OOHJ0X3Z6bV9zdjhX MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3l6RFRYSERmeUdhb044cnRfdnptX3N2OFcxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUYyQ0YvRjVDMTRFRDIwNzEwMTFFQjk3RjlGNTM3QzRGOUFFMDIvNTg4QkU2NzAw NzEyMTFFQjg3NTU0ODM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIte2QDBAJnCZQwDQYJKoZIhvcNAQELBQADggEBADdooO2W Prcc8HYZw0Xo5zhCnYASbsOEpTp1gIJsoZ1SdyBQ2o9RZsHP6InGVmeXwkQqfM2T Kh8v4zIf9vyM8ycmak5HXr9XP0HBWiHHGwLkL2nX2ssp4mH2C+Wpc1IZ/2PmXpis wCaSEiP/wjOm3c+RjLKWaA4+XIPIech3nDc/L7tbaSHf4R+TUmQOmSSlDEZoLsx3 FtU5Kiy0dIAhAtw1Gve0mlugGhZhebo30gWcJKEsHZhUe/z+R/l+dpLoLkw60o3m AZ1mpfA/BOd75wYNraodc+HxcKrlBI3Hyq9Zmrub+jvFpVT0ECMnzSfqFfL3ZRv4 wMwvyPzVF6OCoLg= -----END CERTIFICATE-----Generated at Thu Apr 18 23:21:42 2024 by rpki-client on console-fra.rpki-client.org