$ rpki-client -vvf rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/D725AC5C091411EABBFC8739C4F9AE02.roa File: D725AC5C091411EABBFC8739C4F9AE02.roa (raw, json) Hash identifier: VI23YCDXjIBJjEO8GafeMzlZaX/Tvi6JTYc9mJtHlpw= Subject key identifier: 87:DF:80:0D:EA:0E:8D:B0:F9:2D:54:27:AB:EA:75:25:46:CF:55:A2 Certificate issuer: /CN=A917148B/serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Certificate serial: 0B48 Authority key identifier: 22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/D725AC5C091411EABBFC8739C4F9AE02.roa Signing time: Sat 24 Feb 2024 19:37:43 +0000 ROA not before: Sat 24 Feb 2024 19:37:43 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135071 IP address blocks: 103.208.132.0/22 maxlen: 24 137.59.152.0/22 maxlen: 24 2402:c0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:28:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2888 (0xb48) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917148B/serialNumber=22DF3175B1DD323117E0C19F3F6D6A1E771F9C1F Validity Not Before: Feb 24 19:37:43 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65da4587-ae65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cc:5d:08:ec:2f:ea:1a:e6:ad:43:4d:33:1a: 42:d9:51:d5:ac:ae:01:4b:6f:6f:94:52:70:a5:28: 76:65:2a:48:60:3b:af:2a:2b:87:09:eb:9a:ce:c5: 7b:d7:26:1c:62:84:0e:4b:27:01:8d:22:3f:67:12: ff:e9:9a:dd:04:2a:d6:02:9c:5f:12:d8:d7:15:fe: b9:73:30:f1:ca:37:a0:89:ee:7e:d4:24:60:fd:b4: 02:25:bd:90:9d:9c:ea:14:1d:24:46:ea:f9:4f:72: c5:00:d7:df:39:38:96:e3:7c:7b:76:57:6e:2b:dc: 79:90:95:d6:c7:48:08:ae:09:70:2b:e9:57:16:00: c9:99:29:c0:58:95:dc:73:1d:b1:46:e4:2d:61:13: 38:4d:7a:b6:65:b4:2d:0e:98:34:98:8e:e4:ed:6a: ee:1b:67:1d:e1:65:8d:ad:3b:c0:5a:56:fa:11:5e: 53:fe:38:67:d1:8f:9b:bc:30:24:3c:3e:af:8c:62: 0c:ad:cc:2f:9a:21:c6:c1:e7:0a:6a:13:82:20:ff: d6:9c:a5:9a:91:8e:5f:8e:1e:fd:2f:c6:23:e3:ed: 68:71:1c:5f:b2:44:6f:62:42:4e:70:cb:f8:ed:41: c5:5c:c3:9a:8c:1f:f0:7c:0d:a8:e4:2b:4d:7d:40: b8:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:DF:80:0D:EA:0E:8D:B0:F9:2D:54:27:AB:EA:75:25:46:CF:55:A2 X509v3 Authority Key Identifier: keyid:22:DF:31:75:B1:DD:32:31:17:E0:C1:9F:3F:6D:6A:1E:77:1F:9C:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/It8xdbHdMjEX4MGfP21qHncfnB8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/It8xdbHdMjEX4MGfP21qHncfnB8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917148B/049410AE091311EABA41C735C4F9AE02/D725AC5C091411EABBFC8739C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.132.0/22 137.59.152.0/22 IPv6: 2402:c0c0::/32 Signature Algorithm: sha256WithRSAEncryption 6c:1a:97:92:aa:bf:55:5b:e1:ca:02:da:eb:a4:c7:46:15:7f: f1:c6:8f:bf:42:09:d2:5b:9e:2a:d3:18:d5:7a:e4:de:fa:aa: 5e:91:44:b1:cc:b4:4b:b4:f3:d9:f6:bb:1e:c5:fe:ba:6e:0e: 9e:3b:73:66:18:0c:4c:37:eb:0b:2f:7d:ae:80:0d:b2:c2:15: ae:f2:5f:58:ed:25:27:d8:c6:2d:c6:bf:e1:b5:67:aa:80:71: 43:e3:a5:9c:f6:26:5b:e6:a4:89:24:47:8a:d3:9b:26:c2:19: e5:c7:9a:7f:cc:23:38:dd:eb:70:34:a4:00:3d:92:31:87:af: 68:97:8c:44:97:fd:5a:b4:4f:82:73:8b:ac:7b:09:d0:28:2d: 48:dd:50:2b:2e:9a:0c:3c:97:ba:be:1d:9c:bf:f3:bb:ac:63: f5:bb:5c:6e:c4:13:39:b2:f7:99:f9:49:f4:f9:2c:61:5c:6c: ba:ec:e5:5e:a9:75:01:38:7f:b6:a6:3e:38:2c:20:f2:4a:cd: fb:35:90:e1:f8:0e:71:d5:08:ea:fc:66:24:c0:1f:3a:fb:f5: 6d:a2:27:ca:0e:a7:0f:4e:13:7b:87:92:63:ea:67:a3:6c:1e: ab:ac:7f:fa:d1:82:4e:37:5b:7f:79:e6:15:c7:63:5f:93:0a: 4d:6a:0c:1c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE0OEIxMTAvBgNVBAUTKDIyREYzMTc1QjFERDMyMzExN0UwQzE5RjNGNkQ2QTFF NzcxRjlDMUYwHhcNMjQwMjI0MTkzNzQzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRhNDU4Ny1hZTY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscxdCOwv6hrmrUNNMxpC2VHVrK4BS29vlFJwpSh2ZSpIYDuvKiuHCeuazsV7 1yYcYoQOSycBjSI/ZxL/6ZrdBCrWApxfEtjXFf65czDxyjegie5+1CRg/bQCJb2Q nZzqFB0kRur5T3LFANffOTiW43x7dlduK9x5kJXWx0gIrglwK+lXFgDJmSnAWJXc cx2xRuQtYRM4TXq2ZbQtDpg0mI7k7WruG2cd4WWNrTvAWlb6EV5T/jhn0Y+bvDAk PD6vjGIMrcwvmiHGwecKahOCIP/WnKWakY5fjh79L8Yj4+1ocRxfskRvYkJOcMv4 7UHFXMOajB/wfA2o5CtNfUC4ZQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFIffgA3q Do2w+S1UJ6vqdSVGz1WiMB8GA1UdIwQYMBaAFCLfMXWx3TIxF+DBnz9tah53H5wf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTQ4Qi8wNDk0MTBBRTA5 MTMxMUVBQkE0MUM3MzVDNEY5QUUwMi9JdDh4ZGJIZE1qRVg0TUdmUDIxcUhuY2Zu QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l0OHhkYkhkTWpFWDRNR2ZQMjFxSG5jZm5COC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE0OEIvMDQ5NDEwQUUwOTEzMTFFQUJBNDFDNzM1QzRGOUFFMDIvRDcyNUFDNUMw OTE0MTFFQUJCRkM4NzM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn0IQDBAKJO5gwDQQCAAIwBwMFACQCwMAwDQYJKoZIhvcN AQELBQADggEBAGwal5Kqv1Vb4coC2uukx0YVf/HGj79CCdJbnirTGNV65N76ql6R RLHMtEu089n2ux7F/rpuDp47c2YYDEw36wsvfa6ADbLCFa7yX1jtJSfYxi3Gv+G1 Z6qAcUPjpZz2JlvmpIkkR4rTmybCGeXHmn/MIzjd63A0pAA9kjGHr2iXjESX/Vq0 T4Jzi6x7CdAoLUjdUCsumgw8l7q+HZy/87usY/W7XG7EEzmy95n5SfT5LGFcbLrs 5V6pdQE4f7amPjgsIPJKzfs1kOH4DnHVCOr8ZiTAHzr79W2iJ8oOpw9OE3uHkmPq Z6NsHqusf/rRgk43W3955hXHY1+TCk1qDBw= -----END CERTIFICATE-----Generated at Sun May 26 20:45:21 2024 by rpki-client on console-fra.rpki-client.org