$ rpki-client -vvf rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/96540A72CD0E11ED9A9CAE58C4F9AE02.roa File: 96540A72CD0E11ED9A9CAE58C4F9AE02.roa (raw, json) Hash identifier: kU6fsRIP10rXpeTdFL72qzNk8DJAVh671AdmFJV9slI= Subject key identifier: 22:F0:93:6B:63:63:24:5B:1F:84:60:3C:02:B5:BC:A2:62:8A:28:0B Certificate issuer: /CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Certificate serial: 86 Authority key identifier: 48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/96540A72CD0E11ED9A9CAE58C4F9AE02.roa Signing time: Sun 03 Dec 2023 05:36:02 +0000 ROA not before: Sun 03 Dec 2023 05:36:02 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 7647 IP address blocks: 203.18.78.0/24 maxlen: 24 203.21.83.0/24 maxlen: 24 203.22.196.0/24 maxlen: 24 203.22.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916899E/serialNumber=487CB633171A0DDF38ACBB6AD1ED8AE69655860A Validity Not Before: Dec 3 05:36:02 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656c13c2-dc6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bc:2d:c9:c2:8b:33:da:0f:88:13:5e:22:c6: 16:99:b2:e1:de:fa:83:11:bb:28:61:02:a7:8e:de: f9:13:23:e4:33:2d:7b:f2:9e:66:e2:4b:0a:56:b2: 55:0a:69:a8:f4:79:33:36:06:ef:31:c8:c8:72:31: c0:ff:33:5c:f0:f2:41:5d:81:6d:03:2d:29:0d:da: 0f:66:c2:b6:09:1f:7e:cb:78:f4:03:ca:f7:e0:4f: e8:82:ec:ba:d9:a0:34:0a:9c:03:9d:ed:aa:6b:29: 72:d9:1b:6a:60:7d:49:8e:ae:be:77:38:14:b8:18: 24:57:c3:31:e1:6e:9f:ad:8d:d5:9c:c9:db:c3:67: 7d:84:2e:57:dd:da:0b:12:b1:67:0e:ae:d5:5e:29: ac:41:cf:55:15:61:78:25:d7:8f:d1:30:6b:16:c6: 68:71:90:49:84:75:1b:55:35:0d:46:cd:64:ae:02: 19:16:14:79:df:85:23:29:fe:c2:7b:c9:28:fd:05: 3d:2f:cc:ab:59:0e:53:9c:f2:79:ff:38:ed:62:dd: 63:bd:b9:56:be:73:05:81:aa:d2:d2:bc:6c:85:5d: 5a:c2:9a:a7:2f:ca:9e:f1:35:79:f4:5b:5c:39:60: 94:4b:48:5f:b7:5f:3c:7c:8e:f8:55:f7:c9:06:72: 29:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:F0:93:6B:63:63:24:5B:1F:84:60:3C:02:B5:BC:A2:62:8A:28:0B X509v3 Authority Key Identifier: keyid:48:7C:B6:33:17:1A:0D:DF:38:AC:BB:6A:D1:ED:8A:E6:96:55:86:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/SHy2MxcaDd84rLtq0e2K5pZVhgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SHy2MxcaDd84rLtq0e2K5pZVhgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916899E/6C135434C9F311EDA5849269C4F9AE02/96540A72CD0E11ED9A9CAE58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.18.78.0/24 203.21.83.0/24 203.22.196.0/24 203.22.202.0/24 Signature Algorithm: sha256WithRSAEncryption 94:3d:80:18:33:f0:cf:b2:7c:73:63:cf:76:98:dc:17:51:96: 12:ac:f9:2b:d9:7b:79:ef:a3:49:02:52:dc:7c:7e:34:39:89: 07:26:d0:cb:98:9e:8d:83:e5:cb:aa:72:73:7d:d2:6a:0d:7c: 49:aa:55:15:a8:0b:ca:b9:de:09:a9:df:83:95:f5:23:35:39: 8b:a5:39:06:cd:6c:32:b1:b8:46:c2:c6:56:f0:00:cf:1f:d6: d6:05:f5:30:31:9b:dd:15:01:76:77:23:eb:65:8b:35:0b:34: 58:e1:f7:7f:19:1f:89:17:59:cd:70:21:31:2a:84:22:3e:b1: 09:19:ee:79:b5:9f:3a:bb:4e:e4:e8:3d:29:d2:1c:32:49:51: fe:88:7f:e8:8b:0e:8c:17:bf:39:13:28:a4:e7:47:07:7d:23: 71:f7:9e:85:07:5c:24:3c:96:0d:04:0b:1f:81:31:76:f0:5d: b4:c5:31:d6:27:46:78:a0:02:91:f9:3a:3e:10:a1:4a:95:04: e0:6d:9d:6c:cd:a0:71:9f:56:02:b5:46:3c:04:41:6b:f5:5f: 6a:56:25:0e:06:bd:b5:14:5e:6b:09:08:59:2a:fa:26:df:63: ae:51:ca:b3:91:16:d4:bf:ea:f4:38:3b:84:7a:22:6c:a8:c5: 4d:ae:e3:28 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg5OUUxMTAvBgNVBAUTKDQ4N0NCNjMzMTcxQTBEREYzOEFDQkI2QUQxRUQ4QUU2 OTY1NTg2MEEwHhcNMjMxMjAzMDUzNjAyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZjMTNjMi1kYzZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAobwtycKLM9oPiBNeIsYWmbLh3vqDEbsoYQKnjt75EyPkMy178p5m4ksKVrJV Cmmo9HkzNgbvMcjIcjHA/zNc8PJBXYFtAy0pDdoPZsK2CR9+y3j0A8r34E/oguy6 2aA0CpwDne2qayly2RtqYH1Jjq6+dzgUuBgkV8Mx4W6frY3VnMnbw2d9hC5X3doL ErFnDq7VXimsQc9VFWF4JdeP0TBrFsZocZBJhHUbVTUNRs1krgIZFhR534UjKf7C e8ko/QU9L8yrWQ5TnPJ5/zjtYt1jvblWvnMFgarS0rxshV1awpqnL8qe8TV59Ftc OWCUS0hft188fI74VffJBnIpVQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFCLwk2tj YyRbH4RgPAK1vKJiiigLMB8GA1UdIwQYMBaAFEh8tjMXGg3fOKy7atHtiuaWVYYK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODk5RS82QzEzNTQzNEM5 RjMxMUVEQTU4NDkyNjlDNEY5QUUwMi9TSHkyTXhjYURkODRyTHRxMGUySzVwWlZo Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NIeTJNeGNhRGQ4NHJMdHEwZTJLNXBaVmhnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg5OUUvNkMxMzU0MzRDOUYzMTFFREE1ODQ5MjY5QzRGOUFFMDIvOTY1NDBBNzJD RDBFMTFFRDlBOUNBRTU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBADLEk4DBADLFVMDBADLFsQDBADLFsowDQYJKoZIhvcNAQEL BQADggEBAJQ9gBgz8M+yfHNjz3aY3BdRlhKs+SvZe3nvo0kCUtx8fjQ5iQcm0MuY no2D5cuqcnN90moNfEmqVRWoC8q53gmp34OV9SM1OYulOQbNbDKxuEbCxlbwAM8f 1tYF9TAxm90VAXZ3I+tlizULNFjh938ZH4kXWc1wITEqhCI+sQkZ7nm1nzq7TuTo PSnSHDJJUf6If+iLDowXvzkTKKTnRwd9I3H3noUHXCQ8lg0ECx+BMXbwXbTFMdYn RnigApH5Oj4QoUqVBOBtnWzNoHGfVgK1RjwEQWv1X2pWJQ4GvbUUXmsJCFkq+ibf Y65RyrORFtS/6vQ4O4R6ImyoxU2u4yg= -----END CERTIFICATE-----Generated at Tue May 7 07:01:20 2024 by rpki-client on console-fra.rpki-client.org