$ rpki-client -vvf rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/FDA839F8B5E011EEA4B1F86BC4F9AE02.roa File: FDA839F8B5E011EEA4B1F86BC4F9AE02.roa (raw, json) Hash identifier: X/8UoQFrC2J9lERqBw1AFgqgz2Eb+ZxKkLi9QZCaFSg= Subject key identifier: A7:67:05:1B:D9:71:06:6E:D4:AB:99:98:32:71:65:77:0C:20:6A:CE Certificate issuer: /CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Certificate serial: 0A19 Authority key identifier: 81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/FDA839F8B5E011EEA4B1F86BC4F9AE02.roa Signing time: Thu 18 Jan 2024 09:07:23 +0000 ROA not before: Thu 18 Jan 2024 09:07:23 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137048 IP address blocks: 103.124.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 20:34:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2585 (0xa19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175299/serialNumber=81A7151B177592F86823B69F437624E9C002DE41 Validity Not Before: Jan 18 09:07:23 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65a8ea4b-bfe1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:5b:87:4b:29:e0:d3:45:67:89:1c:57:6c:26: 20:3a:fa:bc:fb:8c:0d:c5:47:b9:ce:37:22:7b:42: ca:64:8e:1b:b5:ee:6b:46:ba:8d:d2:7d:b8:c0:81: 6e:fa:72:d2:7b:64:e9:9c:ef:32:c9:eb:33:70:45: 82:91:75:39:b3:bc:5c:c8:2c:3a:c1:49:02:32:c1: 75:5f:1a:bd:21:ab:c2:df:99:f6:e8:66:17:15:96: b0:31:f6:57:a6:ac:80:37:12:10:d4:f0:32:94:00: c3:98:c8:f2:48:93:02:b8:78:a5:cd:ee:fa:60:7d: ef:0f:44:92:cd:8f:6a:cf:18:58:0d:ce:d6:6d:d9: 45:3e:28:0c:50:a5:eb:0e:70:2d:83:83:01:5f:c6: c0:68:61:28:0b:84:3d:a9:de:4c:96:ee:4b:c8:24: bb:62:13:69:68:ac:cc:66:77:55:86:24:05:1f:41: 81:58:94:9f:5b:a5:47:e7:50:ee:f7:e5:d4:22:0b: ae:39:32:ff:4f:63:e4:4f:1d:8a:56:f8:10:d2:db: 57:01:54:64:62:0d:cb:fe:ac:d6:90:01:47:d7:25: b0:f3:7e:b8:20:c3:ea:9c:e2:f7:70:5a:c4:c3:21: de:bf:0a:2b:8b:7c:8b:93:0b:5c:b1:ab:bc:57:51: 65:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:67:05:1B:D9:71:06:6E:D4:AB:99:98:32:71:65:77:0C:20:6A:CE X509v3 Authority Key Identifier: keyid:81:A7:15:1B:17:75:92:F8:68:23:B6:9F:43:76:24:E9:C0:02:DE:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/gacVGxd1kvhoI7afQ3Yk6cAC3kE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gacVGxd1kvhoI7afQ3Yk6cAC3kE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175299/26890EDA42C511EAB26CFD1BC4F9AE02/FDA839F8B5E011EEA4B1F86BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.124.53.0/24 Signature Algorithm: sha256WithRSAEncryption 49:5d:78:9b:ba:c9:54:24:77:b4:d1:e2:cf:9a:ee:ac:b3:2f: b1:ff:0e:67:6e:f2:fd:bd:02:cf:b7:6a:80:2e:b2:e5:38:e0: 4e:c7:75:ab:76:18:b1:e0:3e:d1:b3:d5:b1:73:c7:81:f6:e3: 2f:d2:18:42:34:2e:c8:b0:43:d2:4a:fa:6c:d1:32:63:f1:ce: 1d:00:68:bc:07:51:0b:7c:27:54:47:b2:19:3c:d3:bc:4b:15: 89:0c:4f:c9:7b:a7:8e:2b:6f:7d:7d:90:a0:10:08:50:eb:66: 14:89:19:3d:95:f7:94:0b:da:1a:85:fc:11:8f:23:66:9b:5f: ba:1a:da:e1:79:da:14:d9:f5:45:d8:d6:e4:81:45:c5:bb:23: ac:21:3f:c6:ba:df:ae:d0:35:57:d0:54:22:c1:3d:b1:69:b7: 42:c0:75:41:a0:c6:6c:fc:f2:f7:49:73:10:a3:ce:7a:13:86: 25:95:0f:0a:49:d7:40:a7:96:36:d1:7a:97:b5:89:26:21:20: ba:a0:63:ce:b9:de:b3:6c:07:7c:08:4b:27:97:f3:b9:d6:28: 90:1e:45:32:e5:90:df:4a:27:e5:26:82:20:e1:81:43:d1:0a: 97:a6:69:bb:d7:f5:39:d8:ab:7b:9e:4b:f7:5f:69:b8:db:31: fa:d3:ed:d2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICChkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTkxMTAvBgNVBAUTKDgxQTcxNTFCMTc3NTkyRjg2ODIzQjY5RjQzNzYyNEU5 QzAwMkRFNDEwHhcNMjQwMTE4MDkwNzIzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE4ZWE0Yi1iZmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+FuHSyng00VniRxXbCYgOvq8+4wNxUe5zjcie0LKZI4bte5rRrqN0n24wIFu +nLSe2TpnO8yyeszcEWCkXU5s7xcyCw6wUkCMsF1Xxq9IavC35n26GYXFZawMfZX pqyANxIQ1PAylADDmMjySJMCuHilze76YH3vD0SSzY9qzxhYDc7WbdlFPigMUKXr DnAtg4MBX8bAaGEoC4Q9qd5Mlu5LyCS7YhNpaKzMZndVhiQFH0GBWJSfW6VH51Du 9+XUIguuOTL/T2PkTx2KVvgQ0ttXAVRkYg3L/qzWkAFH1yWw8364IMPqnOL3cFrE wyHevwori3yLkwtcsau8V1FlUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKdnBRvZ cQZu1KuZmDJxZXcMIGrOMB8GA1UdIwQYMBaAFIGnFRsXdZL4aCO2n0N2JOnAAt5B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5OS8yNjg5MEVEQTQy QzUxMUVBQjI2Q0ZEMUJDNEY5QUUwMi9nYWNWR3hkMWt2aG9JN2FmUTNZazZjQUMz a0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dhY1ZHeGQxa3Zob0k3YWZRM1lrNmNBQzNrRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyOTkvMjY4OTBFREE0MkM1MTFFQUIyNkNGRDFCQzRGOUFFMDIvRkRBODM5RjhC NUUwMTFFRUE0QjFGODZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnfDUwDQYJKoZIhvcNAQELBQADggEBAEldeJu6yVQkd7TR 4s+a7qyzL7H/Dmdu8v29As+3aoAusuU44E7Hdat2GLHgPtGz1bFzx4H24y/SGEI0 LsiwQ9JK+mzRMmPxzh0AaLwHUQt8J1RHshk807xLFYkMT8l7p44rb319kKAQCFDr ZhSJGT2V95QL2hqF/BGPI2abX7oa2uF52hTZ9UXY1uSBRcW7I6whP8a6367QNVfQ VCLBPbFpt0LAdUGgxmz88vdJcxCjznoThiWVDwpJ10CnljbRepe1iSYhILqgY865 3rNsB3wISyeX87nWKJAeRTLlkN9KJ+UmgiDhgUPRCpemabvX9TnYq3ueS/dfabjb MfrT7dI= -----END CERTIFICATE-----Generated at Mon May 6 23:05:42 2024 by rpki-client on console-fra.rpki-client.org