$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/E0848D606F7611EDB491621FC4F9AE02.roa File: E0848D606F7611EDB491621FC4F9AE02.roa (raw, json) Hash identifier: /x4gISDdQ58Cm6cZRirKRBC5irA+dN86MCQWeCpo8e4= Subject key identifier: 4C:09:19:FC:7E:12:9D:32:B5:67:4F:88:1D:61:9C:F5:D7:6A:5F:E5 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0BAD Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/E0848D606F7611EDB491621FC4F9AE02.roa Signing time: Tue 06 Feb 2024 19:37:29 +0000 ROA not before: Tue 06 Feb 2024 19:37:29 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 62610 IP address blocks: 45.119.5.0/24 maxlen: 24 103.133.93.0/24 maxlen: 24 103.133.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 19:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2989 (0xbad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Feb 6 19:37:29 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c28a79-e1f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8c:05:8b:b3:31:c7:83:da:96:26:54:78:c4: 69:96:1f:33:ce:3d:c9:73:b0:e4:4d:2c:1c:fc:d2: 18:8d:bb:d1:46:ea:23:a0:ed:13:f6:8e:fa:4f:7b: d4:58:18:4e:61:9e:68:b9:81:78:ba:ba:e4:ce:18: 54:de:ed:05:70:2e:2e:95:a3:fa:f8:3f:6c:d3:64: bc:1d:f4:41:4f:66:d4:8c:1c:0f:53:c5:36:d0:fa: 73:f4:5b:57:0b:34:33:76:ad:8b:6c:01:00:5b:b9: d5:6c:68:b5:06:b3:51:50:30:69:ca:c8:b3:24:c8: 19:bf:6a:c0:a8:d8:c5:68:37:93:48:3b:79:e3:49: 9a:a0:e7:f8:d9:04:35:b9:bc:5d:13:55:ce:c9:63: f9:6d:90:17:1f:3a:70:77:6a:aa:9d:5e:a7:60:04: 55:d7:2f:ac:9d:6c:db:d8:a7:df:c0:6c:28:15:95: 3c:9e:87:64:66:58:b7:68:a4:76:2a:3d:a3:44:10: 85:b0:03:2b:57:69:39:2e:b3:5a:8a:68:28:24:47: c5:e9:08:59:bf:c3:bf:95:23:c9:d8:cb:fe:75:25: 29:b4:54:3e:d2:fb:6c:c1:aa:c3:ff:2c:eb:56:63: 9e:32:5a:3b:10:c6:30:47:82:8a:8d:b8:9e:78:b3: 59:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:09:19:FC:7E:12:9D:32:B5:67:4F:88:1D:61:9C:F5:D7:6A:5F:E5 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/E0848D606F7611EDB491621FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.5.0/24 103.133.93.0/24 103.133.95.0/24 Signature Algorithm: sha256WithRSAEncryption 13:cf:c4:63:54:b1:8e:e6:66:25:e6:aa:ab:8e:d7:e8:a6:da: 3e:00:60:98:fe:ea:1a:51:9c:01:81:6c:28:ce:a0:04:ac:15: 3a:8c:ea:ce:b7:b5:5f:8a:30:ea:65:fc:e2:ab:8e:fa:b2:eb: 64:0b:a1:a1:02:a0:cc:00:87:ea:df:a1:d0:7e:1e:34:64:0b: c4:21:0a:b0:8c:8f:8b:0d:b0:91:12:0f:51:5c:bc:52:14:f6: 29:fd:9c:9f:25:fa:a1:39:43:b8:f9:c6:f6:31:ca:53:0b:4f: ce:ac:4d:bc:19:61:ea:d8:43:3a:80:3d:eb:de:32:56:65:57: c0:53:9c:b9:8b:dc:bc:49:f4:1f:10:be:bf:2f:75:d3:9b:b7: 01:4f:76:45:30:c7:81:5b:57:8e:07:2a:d0:a3:b2:fa:95:a0: 0f:ed:e0:88:c4:e1:6f:b2:b1:2a:44:98:b4:f6:6b:9f:0c:39: 03:c5:43:3f:77:b2:85:e1:bb:a9:3a:66:b1:6a:d1:c1:64:e3: 95:7e:f4:3a:2a:7e:a4:a2:a2:df:c7:a4:e8:ca:ba:1a:8e:f3: da:08:45:8d:d0:89:2f:64:df:08:12:8e:a1:1d:d0:76:a2:aa: 75:70:6a:3c:13:bf:d4:9a:a4:ab:83:75:9f:85:d6:4f:bf:61: 18:11:84:a3 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICC60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjQwMjA2MTkzNzI5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyOGE3OS1lMWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7IwFi7Mxx4PaliZUeMRplh8zzj3Jc7DkTSwc/NIYjbvRRuojoO0T9o76T3vU WBhOYZ5ouYF4urrkzhhU3u0FcC4ulaP6+D9s02S8HfRBT2bUjBwPU8U20Ppz9FtX CzQzdq2LbAEAW7nVbGi1BrNRUDBpysizJMgZv2rAqNjFaDeTSDt540maoOf42QQ1 ubxdE1XOyWP5bZAXHzpwd2qqnV6nYARV1y+snWzb2KffwGwoFZU8nodkZli3aKR2 Kj2jRBCFsAMrV2k5LrNaimgoJEfF6QhZv8O/lSPJ2Mv+dSUptFQ+0vtswarD/yzr VmOeMlo7EMYwR4KKjbieeLNZ+wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEwJGfx+ Ep0ytWdPiB1hnPXXal/lMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQjUvQUZFQTI5QzIwNjE5MTFFQTg1NEEzNTE2QzRGOUFFMDIvRTA4NDhENjA2 Rjc2MTFFREI0OTE2MjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAtdwUDBABnhV0DBABnhV8wDQYJKoZIhvcNAQELBQADggEB ABPPxGNUsY7mZiXmqquO1+im2j4AYJj+6hpRnAGBbCjOoASsFTqM6s63tV+KMOpl /OKrjvqy62QLoaECoMwAh+rfodB+HjRkC8QhCrCMj4sNsJESD1FcvFIU9in9nJ8l +qE5Q7j5xvYxylMLT86sTbwZYerYQzqAPeveMlZlV8BTnLmL3LxJ9B8Qvr8vddOb twFPdkUwx4FbV44HKtCjsvqVoA/t4IjE4W+ysSpEmLT2a58MOQPFQz93soXhu6k6 ZrFq0cFk45V+9DoqfqSiot/HpOjKuhqO89oIRY3QiS9k3wgSjqEd0HaiqnVwajwT v9SapKuDdZ+F1k+/YRgRhKM= -----END CERTIFICATE-----Generated at Thu May 2 20:50:28 2024 by rpki-client on console-fra.rpki-client.org