$ rpki-client -vvf rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/86F4D41881C811ECB5F90D48C4F9AE02.roa File: 86F4D41881C811ECB5F90D48C4F9AE02.roa (raw, json) Hash identifier: CVu1eE6uo1a4oR5jqcfO88CtMHewZGUSBjKAtdVPCIw= Subject key identifier: A4:30:9B:70:08:C3:D4:7E:DB:B9:37:03:26:D9:47:DC:1D:5B:A7:18 Certificate issuer: /CN=A9175155/serialNumber=80084A34FD4F3B932C092182407B8905D9406500 Certificate serial: 0572 Authority key identifier: 80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/86F4D41881C811ECB5F90D48C4F9AE02.roa Signing time: Tue 25 Jun 2024 00:49:21 +0000 ROA not before: Tue 25 Jun 2024 00:49:21 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138665 IP address blocks: 103.136.0.0/22 maxlen: 22 103.136.0.0/24 maxlen: 24 103.136.1.0/24 maxlen: 24 2404:8940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1394 (0x572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175155/serialNumber=80084A34FD4F3B932C092182407B8905D9406500 Validity Not Before: Jun 25 00:49:21 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=667a1411-059a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c0:87:5a:0a:62:52:a1:15:e4:66:bf:78:86: 6e:54:46:76:29:13:fe:79:fc:f5:ad:71:d4:1a:2b: 58:e0:bd:9b:cb:8e:47:b7:17:ba:6a:2e:d5:dd:23: 73:e3:54:f9:39:e6:f8:92:79:3d:10:00:48:ca:7e: 47:96:a9:3c:ae:80:dd:5a:63:da:9f:7f:5d:07:50: 73:14:12:7e:3a:ca:21:7c:74:ca:8b:83:79:2e:b1: 2a:36:f0:f2:ca:25:34:82:0e:b0:98:e5:b8:7b:4f: 25:78:da:a1:f0:63:75:78:28:68:5a:c9:62:68:b4: 09:31:d0:ee:6e:3b:1d:15:fd:e8:a0:b0:3a:bd:45: c6:10:51:20:cb:eb:2a:6f:f3:a7:97:c6:26:68:b1: f5:2e:6d:98:20:94:13:1d:6b:5b:0a:f0:40:f1:5b: 85:d2:82:77:44:c7:e3:f1:ca:c3:3f:76:31:aa:2c: 97:cd:45:11:05:02:5b:6f:6d:06:f6:bc:18:55:c8: 1c:85:77:dc:4c:ce:7c:f0:d5:da:4a:10:21:c3:ab: bb:0a:8d:da:40:0c:f5:9c:08:29:4a:d0:bf:d5:a7: 8b:a6:bc:66:ee:d8:11:67:03:8f:19:1c:7b:07:f8: 23:ea:31:4f:eb:bd:65:a0:10:e8:3b:46:6a:bf:62: c0:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:30:9B:70:08:C3:D4:7E:DB:B9:37:03:26:D9:47:DC:1D:5B:A7:18 X509v3 Authority Key Identifier: keyid:80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/86F4D41881C811ECB5F90D48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.0.0/22 IPv6: 2404:8940::/48 Signature Algorithm: sha256WithRSAEncryption 0a:fa:2f:37:73:e6:25:2d:74:78:d9:96:01:8b:4e:dc:2a:3e: c6:95:44:34:83:3b:d0:5d:f6:5b:98:17:89:a6:0f:b5:50:5c: e2:91:4c:0b:e0:69:a9:6d:aa:60:c2:d4:6c:dd:6a:67:85:40: 84:be:4a:d3:10:9e:8e:93:00:83:2f:66:60:a5:3e:f2:25:eb: 7b:ce:e5:16:17:fb:de:65:af:20:da:9f:83:ea:c6:59:a7:f4: c2:da:28:de:b2:a0:f2:3f:4e:77:9c:77:fb:db:42:d7:15:9c: aa:de:ff:ad:c8:84:12:ca:a7:1e:91:2e:4e:71:60:0a:c2:f3: ce:69:72:fc:e6:f0:fb:5c:61:fd:66:0c:d8:17:ec:7a:08:56: 7e:ec:f9:16:57:82:83:7f:6e:0f:64:be:d6:24:66:5d:8e:b3: 29:6a:42:b6:ad:56:dd:03:08:f9:fa:77:fe:e9:11:4b:6b:14: 10:ad:fb:0b:ca:c3:a2:53:73:86:94:f4:09:69:b3:91:92:0e: b7:5d:af:9d:7f:1d:be:dc:fe:23:4d:fa:26:ca:16:2e:e1:79: fb:99:a2:fe:0e:da:a6:9e:b6:03:fd:cb:04:13:17:c3:2b:e2: b0:d6:ea:f9:22:a0:df:4e:f3:42:1a:de:14:4e:49:0b:7b:d4: f3:09:ea:88 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNTUxMTAvBgNVBAUTKDgwMDg0QTM0RkQ0RjNCOTMyQzA5MjE4MjQwN0I4OTA1 RDk0MDY1MDAwHhcNMjQwNjI1MDA0OTIxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhMTQxMS0wNTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8CHWgpiUqEV5Ga/eIZuVEZ2KRP+efz1rXHUGitY4L2by45Htxe6ai7V3SNz 41T5Oeb4knk9EABIyn5Hlqk8roDdWmPan39dB1BzFBJ+OsohfHTKi4N5LrEqNvDy yiU0gg6wmOW4e08leNqh8GN1eChoWsliaLQJMdDubjsdFf3ooLA6vUXGEFEgy+sq b/Onl8YmaLH1Lm2YIJQTHWtbCvBA8VuF0oJ3RMfj8crDP3YxqiyXzUURBQJbb20G 9rwYVcgchXfcTM588NXaShAhw6u7Co3aQAz1nAgpStC/1aeLprxm7tgRZwOPGRx7 B/gj6jFP671loBDoO0Zqv2LAmwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKQwm3AI w9R+27k3AybZR9wdW6cYMB8GA1UdIwQYMBaAFIAISjT9TzuTLAkhgkB7iQXZQGUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE1NS8zNzQ0QjNDNEIw MjgxMUVCOUQyNzg5MUFDNEY5QUUwMi9nQWhLTlAxUE81TXNDU0dDUUh1SkJkbEFa UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dBaEtOUDFQTzVNc0NTR0NRSHVKQmRsQVpRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUxNTUvMzc0NEIzQzRCMDI4MTFFQjlEMjc4OTFBQzRGOUFFMDIvODZGNEQ0MTg4 MUM4MTFFQ0I1RjkwRDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJniAAwDwQCAAIwCQMHACQEiUAAADANBgkqhkiG9w0BAQsF AAOCAQEACvovN3PmJS10eNmWAYtO3Co+xpVENIM70F32W5gXiaYPtVBc4pFMC+Bp qW2qYMLUbN1qZ4VAhL5K0xCejpMAgy9mYKU+8iXre87lFhf73mWvINqfg+rGWaf0 wtoo3rKg8j9Od5x3+9tC1xWcqt7/rciEEsqnHpEuTnFgCsLzzmly/Obw+1xh/WYM 2BfseghWfuz5FleCg39uD2S+1iRmXY6zKWpCtq1W3QMI+fp3/ukRS2sUEK37C8rD olNzhpT0CWmzkZIOt12vnX8dvtz+I036JsoWLuF5+5mi/g7app62A/3LBBMXwyvi sNbq+SKg307zQhreFE5JC3vU8wnqiA== -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org