$ rpki-client -vvf rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/E135D94C04A511EF84B5D783C4F9AE02.roa File: E135D94C04A511EF84B5D783C4F9AE02.roa (raw, json) Hash identifier: qeKpax6tWFd6dXRCCgHpRrEIFHUWf08cbXJ0Npcf3Z0= Subject key identifier: E4:DB:AC:6B:72:42:F3:98:49:3C:2A:65:54:AF:F2:56:E1:74:BB:1D Certificate issuer: /CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Certificate serial: 0F Authority key identifier: 54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/E135D94C04A511EF84B5D783C4F9AE02.roa Signing time: Mon 06 May 2024 11:03:38 +0000 ROA not before: Mon 06 May 2024 11:03:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152709 IP address blocks: 103.39.120.0/23 maxlen: 23 103.39.120.0/24 maxlen: 24 103.39.121.0/24 maxlen: 24 2001:df3:b740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165556/serialNumber=54AA4F2113A0D1A1B7EE5512BEAE5371EC6DA421 Validity Not Before: May 6 11:03:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6638b909-d0ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c0:67:c2:5a:ce:6e:bc:37:38:73:27:e2:07: c4:3a:92:99:82:0e:68:ee:1e:12:31:9c:d7:8e:b6: d4:09:87:2c:d9:ee:2d:63:3f:d9:f2:7c:00:e3:3f: 11:73:c0:40:e4:cf:45:2a:b5:7c:43:e2:b1:a7:87: d9:a4:c2:0e:68:66:f7:37:1f:16:5f:67:97:64:f9: b5:fe:ce:00:f8:b1:97:45:05:ee:be:1b:93:d0:c8: f8:34:0a:28:2e:ad:66:7e:b0:6b:ab:ef:15:1e:48: bd:87:c3:82:f3:0e:75:4b:4e:85:ef:68:71:0f:85: 37:aa:62:73:26:95:01:15:7a:11:da:d9:04:67:4b: 1b:f8:26:f0:b8:67:11:67:69:84:42:e5:76:02:66: 7f:bb:56:fc:fb:af:9f:ab:ba:a7:31:e4:cf:ee:cf: e0:ea:4b:ed:a6:32:86:ca:12:61:8a:53:e9:71:ef: 84:b5:b0:08:1a:9a:9a:bb:08:70:e3:13:c4:d0:10: 0c:e2:25:e3:e8:2d:ce:da:3e:bf:fe:5f:4e:a9:01: 4e:f3:53:4d:49:a3:3c:b5:3f:b8:de:49:24:5c:7c: dd:dc:4a:e4:69:ad:11:8b:5e:a9:42:66:06:c5:ca: 67:ea:90:4b:0b:31:fb:16:4d:51:e1:05:e2:f8:c2: ff:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:DB:AC:6B:72:42:F3:98:49:3C:2A:65:54:AF:F2:56:E1:74:BB:1D X509v3 Authority Key Identifier: keyid:54:AA:4F:21:13:A0:D1:A1:B7:EE:55:12:BE:AE:53:71:EC:6D:A4:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/VKpPIROg0aG37lUSvq5TcextpCE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VKpPIROg0aG37lUSvq5TcextpCE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165556/B145D02E017C11EFB864325AC4F9AE02/E135D94C04A511EF84B5D783C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.120.0/23 IPv6: 2001:df3:b740::/48 Signature Algorithm: sha256WithRSAEncryption b4:dc:ce:18:6c:37:4c:09:d5:5d:3b:52:3d:b4:61:0d:20:50: f2:26:51:8c:61:83:37:a3:f6:28:65:6a:48:93:e5:2b:00:62: 74:e3:fc:fa:52:ac:2e:8e:74:27:1b:63:77:50:d5:54:54:71: bb:d5:56:8f:02:c8:46:ee:23:6b:47:50:1d:f5:6c:9b:43:7c: 0a:b8:bd:b2:5f:91:ca:8a:c0:39:90:8d:b0:dd:8e:c3:72:13: 5f:0d:2f:cd:61:c3:62:af:49:36:16:fd:09:ca:1b:92:e2:d9: 1c:ec:58:76:58:58:24:c9:19:40:a1:c1:c0:3a:01:b4:e2:f3: a0:de:63:de:3d:74:a5:3d:71:08:1a:72:28:00:a2:11:66:4c: 2f:d2:cf:41:9e:89:84:f1:ff:21:f6:21:2b:7e:b3:7d:7b:bd: a7:0c:c3:82:7a:d0:14:eb:8f:52:c1:56:11:73:f4:11:ab:38: 99:93:53:3c:6a:0b:5d:36:27:b4:09:3b:91:a8:88:95:b1:27: a9:9f:ca:6c:f4:93:2c:cd:0d:4a:bc:5b:61:34:8f:d0:14:3b: d7:76:f0:5b:56:31:50:bf:61:50:7c:5a:c1:4d:8d:0f:dc:6d: 60:06:09:8a:51:0f:77:d4:82:ca:5f:94:87:e9:c5:e2:e5:82: 8b:fe:61:44 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTU1NjExMC8GA1UEBRMoNTRBQTRGMjExM0EwRDFBMUI3RUU1NTEyQkVBRTUzNzFF QzZEQTQyMTAeFw0yNDA1MDYxMTAzMzhaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzhiOTA5LWQwYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3wGfCWs5uvDc4cyfiB8Q6kpmCDmjuHhIxnNeOttQJhyzZ7i1jP9nyfADjPxFz wEDkz0UqtXxD4rGnh9mkwg5oZvc3HxZfZ5dk+bX+zgD4sZdFBe6+G5PQyPg0Cigu rWZ+sGur7xUeSL2Hw4LzDnVLToXvaHEPhTeqYnMmlQEVehHa2QRnSxv4JvC4ZxFn aYRC5XYCZn+7Vvz7r5+ruqcx5M/uz+DqS+2mMobKEmGKU+lx74S1sAgampq7CHDj E8TQEAziJePoLc7aPr/+X06pAU7zU01Jozy1P7jeSSRcfN3cSuRprRGLXqlCZgbF ymfqkEsLMfsWTVHhBeL4wv9FAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU5Nusa3JC 85hJPCplVK/yVuF0ux0wHwYDVR0jBBgwFoAUVKpPIROg0aG37lUSvq5TcextpCEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NTU2L0IxNDVEMDJFMDE3 QzExRUZCODY0MzI1QUM0RjlBRTAyL1ZLcFBJUk9nMGFHMzdsVVN2cTVUY2V4dHBD RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVktwUElST2cwYUczN2xVU3ZxNVRjZXh0cENFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTU1Ni9CMTQ1RDAyRTAxN0MxMUVGQjg2NDMyNUFDNEY5QUUwMi9FMTM1RDk0QzA0 QTUxMUVGODRCNUQ3ODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWcneDAPBAIAAjAJAwcAIAEN87dAMA0GCSqGSIb3DQEBCwUA A4IBAQC03M4YbDdMCdVdO1I9tGENIFDyJlGMYYM3o/YoZWpIk+UrAGJ04/z6Uqwu jnQnG2N3UNVUVHG71VaPAshG7iNrR1Ad9WybQ3wKuL2yX5HKisA5kI2w3Y7DchNf DS/NYcNir0k2Fv0JyhuS4tkc7Fh2WFgkyRlAocHAOgG04vOg3mPePXSlPXEIGnIo AKIRZkwv0s9BnomE8f8h9iErfrN9e72nDMOCetAU649SwVYRc/QRqziZk1M8agtd Nie0CTuRqIiVsSepn8ps9JMszQ1KvFthNI/QFDvXdvBbVjFQv2FQfFrBTY0P3G1g BgmKUQ931ILKX5SH6cXi5YKL/mFE -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org