$ rpki-client -vvf rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/5E8E480C335B11ED92E25960C4F9AE02.roa File: 5E8E480C335B11ED92E25960C4F9AE02.roa (raw, json) Hash identifier: 9Wsge6uN8/kWPU23/DSAiXCE5pnA2uN+jA1/GNMc3O4= Subject key identifier: 2B:BE:DB:D2:F0:10:0D:2C:7A:4D:99:A9:4A:3D:0C:1C:E4:05:53:2E Certificate issuer: /CN=A9178B2B/serialNumber=202079D6C9FE07BF186221D1A99827CBF6B122AE Certificate serial: 0A7B Authority key identifier: 20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/5E8E480C335B11ED92E25960C4F9AE02.roa Signing time: Sat 04 May 2024 20:58:52 +0000 ROA not before: Sat 04 May 2024 20:58:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 206264 IP address blocks: 45.115.25.0/24 maxlen: 24 103.55.8.0/24 maxlen: 24 103.55.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.crl rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 20:25:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2683 (0xa7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178B2B/serialNumber=202079D6C9FE07BF186221D1A99827CBF6B122AE Validity Not Before: May 4 20:58:52 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6636a18b-fde6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:1d:f1:c1:5b:e1:b6:17:9b:a9:71:43:c6:50: 6b:cd:3a:de:0f:e5:7b:8b:7b:e3:82:c8:0c:6c:1b: 31:b9:8a:e6:37:22:88:4a:10:f9:9f:1a:16:67:80: 13:91:8f:b1:0e:c9:91:7d:c4:c1:35:da:8c:5f:57: 2f:8a:dd:57:9b:eb:7a:54:32:c2:d8:2f:f2:cf:a2: 47:00:af:9b:89:9b:93:2d:b4:25:93:34:bb:b9:52: cd:d6:0d:bf:08:86:43:64:4a:0a:17:b5:2e:57:b4: 37:37:b0:b0:6b:59:b6:64:ef:3b:24:da:da:a0:54: d0:25:32:57:90:29:8c:84:12:a0:93:49:34:d1:2d: f3:3f:6e:f9:a0:90:3f:52:1b:f4:65:a0:92:a4:10: e0:d2:91:22:16:4e:54:9d:03:2b:60:b9:16:c7:3b: b1:b7:8d:72:54:80:b2:c8:54:28:fa:77:4a:84:82: 20:13:e1:00:5d:f3:bf:73:82:31:bb:1d:bd:ea:cd: 41:02:56:68:3d:74:bf:8c:df:83:d5:84:e0:7b:78: be:bb:bc:f6:06:0a:74:eb:a0:de:71:a0:e3:ac:0c: a1:bf:9c:42:45:91:03:16:1d:9f:c8:99:54:f6:f9: 11:75:e1:77:08:41:dd:93:bb:e8:9a:94:c0:e0:c5: b1:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:BE:DB:D2:F0:10:0D:2C:7A:4D:99:A9:4A:3D:0C:1C:E4:05:53:2E X509v3 Authority Key Identifier: keyid:20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/5E8E480C335B11ED92E25960C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.115.25.0/24 103.55.8.0/24 103.55.10.0/24 Signature Algorithm: sha256WithRSAEncryption 45:d4:eb:43:3b:5d:0f:4b:46:83:f0:c4:2a:8e:c5:34:81:7a: 66:67:a4:1a:b9:74:f0:fe:bc:42:e9:ac:a2:73:85:12:ec:73: 32:1e:01:22:eb:08:79:0c:74:9c:a2:a6:66:33:12:d5:13:5b: 04:cc:a4:8c:50:f9:ea:a1:af:e5:03:57:7b:b3:81:0c:24:ee: 14:c6:49:4a:6c:fb:40:ae:03:3a:7e:e9:3c:da:41:f8:3c:98: fb:e4:10:aa:08:2e:29:c7:d0:d0:c4:70:ff:95:95:eb:7b:4d: 2b:a1:4f:8b:4b:19:88:7f:16:f4:b6:c3:01:d0:f8:01:35:4d: e4:95:c5:8a:97:45:2c:9f:e2:03:2a:ca:5e:1f:a7:1b:a9:9a: fa:cd:a7:1a:a4:00:fc:7d:02:24:4b:0e:c7:bc:c4:30:c9:d6: 00:17:af:a6:ba:c8:26:17:89:74:3f:56:ed:ae:b3:9e:09:4e: a1:f9:fd:ef:f8:a8:e4:ef:ae:d7:e1:a4:9c:7c:80:d1:a5:50: 93:bc:73:b1:5f:5a:2b:c1:ec:5c:de:c7:eb:79:a5:56:ae:fd: 96:bd:17:43:94:e4:f9:4e:cf:f3:0b:6b:7f:86:48:8a:3f:e5: e8:21:22:19:46:d5:0f:3e:b8:43:b3:73:3f:82:1f:ac:51:0e: 41:96:34:17 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhCMkIxMTAvBgNVBAUTKDIwMjA3OUQ2QzlGRTA3QkYxODYyMjFEMUE5OTgyN0NC RjZCMTIyQUUwHhcNMjQwNTA0MjA1ODUyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2YTE4Yi1mZGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7R3xwVvhthebqXFDxlBrzTreD+V7i3vjgsgMbBsxuYrmNyKIShD5nxoWZ4AT kY+xDsmRfcTBNdqMX1cvit1Xm+t6VDLC2C/yz6JHAK+biZuTLbQlkzS7uVLN1g2/ CIZDZEoKF7UuV7Q3N7Cwa1m2ZO87JNraoFTQJTJXkCmMhBKgk0k00S3zP275oJA/ Uhv0ZaCSpBDg0pEiFk5UnQMrYLkWxzuxt41yVICyyFQo+ndKhIIgE+EAXfO/c4Ix ux296s1BAlZoPXS/jN+D1YTge3i+u7z2Bgp066DecaDjrAyhv5xCRZEDFh2fyJlU 9vkRdeF3CEHdk7vompTA4MWxhwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCu+29Lw EA0sek2ZqUo9DBzkBVMuMB8GA1UdIwQYMBaAFCAgedbJ/ge/GGIh0amYJ8v2sSKu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEIyQi9CRkREMjIyRTND NDQxMUVBQUVFNkY3MEFDNEY5QUUwMi9JQ0I1MXNuLUI3OFlZaUhScVpnbnlfYXhJ cTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lDQjUxc24tQjc4WVlpSFJxWmdueV9heElxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhCMkIvQkZERDIyMkUzQzQ0MTFFQUFFRTZGNzBBQzRGOUFFMDIvNUU4RTQ4MEMz MzVCMTFFRDkyRTI1OTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAtcxkDBABnNwgDBABnNwowDQYJKoZIhvcNAQELBQADggEB AEXU60M7XQ9LRoPwxCqOxTSBemZnpBq5dPD+vELprKJzhRLsczIeASLrCHkMdJyi pmYzEtUTWwTMpIxQ+eqhr+UDV3uzgQwk7hTGSUps+0CuAzp+6TzaQfg8mPvkEKoI LinH0NDEcP+Vlet7TSuhT4tLGYh/FvS2wwHQ+AE1TeSVxYqXRSyf4gMqyl4fpxup mvrNpxqkAPx9AiRLDse8xDDJ1gAXr6a6yCYXiXQ/Vu2us54JTqH5/e/4qOTvrtfh pJx8gNGlUJO8c7FfWivB7Fzex+t5pVau/Za9F0OU5PlOz/MLa3+GSIo/5eghIhlG 1Q8+uEOzcz+CH6xRDkGWNBc= -----END CERTIFICATE-----Generated at Fri May 24 21:26:09 2024 by rpki-client on console-fra.rpki-client.org