$ rpki-client -vvf rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/4A2FAA9CA91511ED9E2AC948C4F9AE02.roa File: 4A2FAA9CA91511ED9E2AC948C4F9AE02.roa (raw, json) Hash identifier: z8ukFWdqrMaj8Txdr1RmUA7T8b6amt2D73o8bRppZxM= Subject key identifier: 4C:D4:80:DE:A9:39:24:D6:B9:E7:6E:18:04:B7:FE:F9:53:00:EB:D5 Certificate issuer: /CN=A916DB8E/serialNumber=9DE3DA7A0AC6940D32ABB9CFFCB061F2AEE5661D Certificate serial: 03C7 Authority key identifier: 9D:E3:DA:7A:0A:C6:94:0D:32:AB:B9:CF:FC:B0:61:F2:AE:E5:66:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nePaegrGlA0yq7nP_LBh8q7lZh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/4A2FAA9CA91511ED9E2AC948C4F9AE02.roa Signing time: Wed 03 Apr 2024 03:04:40 +0000 ROA not before: Wed 03 Apr 2024 03:04:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 140224 IP address blocks: 45.113.0.0/22 maxlen: 24 103.52.152.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/nePaegrGlA0yq7nP_LBh8q7lZh0.crl rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/nePaegrGlA0yq7nP_LBh8q7lZh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nePaegrGlA0yq7nP_LBh8q7lZh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 967 (0x3c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916DB8E/serialNumber=9DE3DA7A0AC6940D32ABB9CFFCB061F2AEE5661D Validity Not Before: Apr 3 03:04:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660cc748-5eb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:93:80:34:80:27:07:66:2c:b6:fd:d4:0d:9c: 00:20:c4:40:b0:ee:ae:c6:54:ee:72:1b:87:36:1e: 5e:e6:37:98:d4:23:65:67:75:e4:1b:9b:73:f9:58: 8f:f9:71:f6:f0:25:32:68:90:8a:ba:65:a8:68:b3: bc:86:55:8a:3c:e8:75:60:08:3d:7e:85:cc:d0:28: 04:99:4e:b4:6c:2f:34:b2:92:40:91:59:bc:88:43: 9c:55:ae:01:51:88:95:91:9d:08:2d:13:c4:45:6d: 27:be:de:bd:40:34:bf:21:50:b6:32:d5:fa:56:76: 20:ad:b4:06:c7:3a:64:48:45:9e:1a:cd:ef:04:f5: b3:8b:54:56:88:88:65:fd:8a:3f:56:32:27:b7:da: 9e:e7:39:b0:25:46:07:f2:c8:6d:1b:9b:a8:47:e3: 3a:9f:6e:04:7f:6a:a9:b1:f4:6f:d0:b0:91:0f:3d: 8d:1f:87:59:d1:0a:54:93:26:65:d1:bc:69:70:84: b0:de:1a:ce:b3:49:29:7a:ac:fb:34:48:62:9a:b3: 6f:5b:ac:de:ae:cb:37:45:19:7a:69:2a:36:91:2c: 51:21:65:da:21:07:47:b0:fe:92:00:c2:81:8a:70: e1:b2:e1:ec:e1:60:5c:40:6b:4e:35:7f:8a:10:03: 23:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:D4:80:DE:A9:39:24:D6:B9:E7:6E:18:04:B7:FE:F9:53:00:EB:D5 X509v3 Authority Key Identifier: keyid:9D:E3:DA:7A:0A:C6:94:0D:32:AB:B9:CF:FC:B0:61:F2:AE:E5:66:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/nePaegrGlA0yq7nP_LBh8q7lZh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nePaegrGlA0yq7nP_LBh8q7lZh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916DB8E/FF80276C3BCC11EC8A6BCD7EC4F9AE02/4A2FAA9CA91511ED9E2AC948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.113.0.0/22 103.52.152.0/22 Signature Algorithm: sha256WithRSAEncryption 30:86:10:49:72:be:dc:0d:06:b0:f2:7f:61:c8:d3:10:1b:ef: 2e:dd:97:d4:e6:5d:33:79:1c:8a:a5:a4:81:26:c3:7f:a4:ee: da:be:0a:9f:61:ca:fd:42:80:ad:e2:b9:92:87:8b:4a:66:8b: 22:b9:75:41:97:f6:56:45:b4:85:2e:a9:09:89:e1:96:4a:78: a6:ea:f3:78:45:84:09:4f:76:08:7a:9a:b3:26:46:4a:53:5f: e6:4a:c3:64:42:27:1e:4f:2a:a2:2e:96:b9:e2:eb:1d:92:65: 21:fd:fe:73:f3:bd:ce:1b:1d:bf:31:c3:5a:c4:0b:a3:78:0a: a8:f1:62:db:b3:c3:aa:8c:ab:b0:6c:7c:85:2f:c6:9c:72:f7: 20:74:28:78:90:db:40:02:e4:7a:8a:89:29:42:23:4a:d4:03: a8:4a:1b:af:f7:5e:d9:c4:aa:45:44:c2:b5:de:40:70:bd:d9: 2f:d5:4b:60:b2:82:c3:1f:2f:b8:c3:84:21:a1:88:4b:d1:9a: 5b:2b:2b:6c:7a:36:9a:ea:2e:74:58:70:16:3e:5c:15:af:fd: 85:80:35:32:1b:2e:34:80:61:0a:5a:51:5f:ed:e9:ca:a5:98: cd:b3:d5:c0:f5:81:47:a7:d7:cc:b0:ae:70:71:b3:f3:d9:ea: 67:db:47:15 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA8cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkRCOEUxMTAvBgNVBAUTKDlERTNEQTdBMEFDNjk0MEQzMkFCQjlDRkZDQjA2MUYy QUVFNTY2MUQwHhcNMjQwNDAzMDMwNDQwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjYzc0OC01ZWIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupOANIAnB2Ystv3UDZwAIMRAsO6uxlTuchuHNh5e5jeY1CNlZ3XkG5tz+ViP +XH28CUyaJCKumWoaLO8hlWKPOh1YAg9foXM0CgEmU60bC80spJAkVm8iEOcVa4B UYiVkZ0ILRPERW0nvt69QDS/IVC2MtX6VnYgrbQGxzpkSEWeGs3vBPWzi1RWiIhl /Yo/VjInt9qe5zmwJUYH8shtG5uoR+M6n24Ef2qpsfRv0LCRDz2NH4dZ0QpUkyZl 0bxpcISw3hrOs0kpeqz7NEhimrNvW6zerss3RRl6aSo2kSxRIWXaIQdHsP6SAMKB inDhsuHs4WBcQGtONX+KEAMj+QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEzUgN6p OSTWueduGAS3/vlTAOvVMB8GA1UdIwQYMBaAFJ3j2noKxpQNMqu5z/ywYfKu5WYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2REI4RS9GRjgwMjc2QzNC Q0MxMUVDOEE2QkNEN0VDNEY5QUUwMi9uZVBhZWdyR2xBMHlxN25QX0xCaDhxN2xa aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25lUGFlZ3JHbEEweXE3blBfTEJoOHE3bFpoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkRCOEUvRkY4MDI3NkMzQkNDMTFFQzhBNkJDRDdFQzRGOUFFMDIvNEEyRkFBOUNB OTE1MTFFRDlFMkFDOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItcQADBAJnNJgwDQYJKoZIhvcNAQELBQADggEBADCGEEly vtwNBrDyf2HI0xAb7y7dl9TmXTN5HIqlpIEmw3+k7tq+Cp9hyv1CgK3iuZKHi0pm iyK5dUGX9lZFtIUuqQmJ4ZZKeKbq83hFhAlPdgh6mrMmRkpTX+ZKw2RCJx5PKqIu lrni6x2SZSH9/nPzvc4bHb8xw1rEC6N4CqjxYtuzw6qMq7BsfIUvxpxy9yB0KHiQ 20AC5HqKiSlCI0rUA6hKG6/3XtnEqkVEwrXeQHC92S/VS2CygsMfL7jDhCGhiEvR mlsrK2x6NprqLnRYcBY+XBWv/YWANTIbLjSAYQpaUV/t6cqlmM2z1cD1gUen18yw rnBxs/PZ6mfbRxU= -----END CERTIFICATE-----Generated at Wed May 1 03:20:32 2024 by rpki-client on console-fra.rpki-client.org