$ rpki-client -vvf rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/82FB96E899E411EB8B298058C4F9AE02.roa File: 82FB96E899E411EB8B298058C4F9AE02.roa (raw, json) Hash identifier: lB8jvJ5bEzn+S/BaX3fSwOG1B3sAsvq+F5z/Unmp2x0= Subject key identifier: DA:61:0C:2C:7E:AD:9F:C0:78:12:E2:4B:DE:A6:F7:5F:FA:2A:3C:93 Certificate issuer: /CN=A9178E49/serialNumber=2D3DFB5E2212B2905868B177167D548B0DFE3CF4 Certificate serial: 0748 Authority key identifier: 2D:3D:FB:5E:22:12:B2:90:58:68:B1:77:16:7D:54:8B:0D:FE:3C:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/82FB96E899E411EB8B298058C4F9AE02.roa Signing time: Sun 30 Jul 2023 21:38:16 +0000 ROA not before: Sun 30 Jul 2023 21:38:16 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 140877 IP address blocks: 103.152.213.0/24 maxlen: 24 2400:dc60::/32 maxlen: 32 2400:dc60::/48 maxlen: 48 2400:dc60:1::/48 maxlen: 48 2400:dc60:2::/48 maxlen: 48 2400:dc60:3::/48 maxlen: 48 2400:dc60:4::/48 maxlen: 48 2400:dc60:5::/48 maxlen: 48 2400:dc60:6::/48 maxlen: 48 2400:dc60:7::/48 maxlen: 48 2400:dc60:8::/48 maxlen: 48 2400:dc60:9::/48 maxlen: 48 2400:dc60:a::/48 maxlen: 48 2400:dc60:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.crl rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1864 (0x748) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178E49/serialNumber=2D3DFB5E2212B2905868B177167D548B0DFE3CF4 Validity Not Before: Jul 30 21:38:16 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64c6d847-a556 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9d:ce:8f:eb:43:0f:f6:40:0c:68:26:ac:b7: 81:3d:10:fb:f6:1c:fe:f0:b4:b7:4d:b7:ce:51:b7: 00:16:46:c7:aa:06:93:55:c3:a4:ed:c6:f6:a1:18: 43:56:ce:5e:66:63:85:54:14:33:43:8a:6b:b9:45: 68:3e:42:fd:4e:0a:1d:90:fd:c4:8f:37:58:2e:f1: c4:0d:e1:62:34:2b:1d:a7:f4:20:c1:26:f6:42:e8: 8c:6b:6c:4d:ef:ab:ba:56:87:54:2f:79:e4:73:d3: f7:c8:4b:19:86:d0:51:33:18:14:86:53:f0:7e:79: 77:16:01:73:a2:ab:b1:6b:43:55:c9:98:d2:a4:26: 02:34:c2:a0:da:cb:c6:c1:2f:6a:02:f8:94:aa:d0: 0d:78:0f:83:90:a6:63:71:db:e9:83:a5:b8:77:87: 19:55:85:d2:17:f9:96:12:2b:eb:c3:77:cc:33:90: f1:86:e7:b1:2e:2b:e0:25:06:fc:c7:45:4e:34:20: d2:f7:fd:e2:22:f2:65:c6:27:9e:5e:c5:cc:c2:1a: 26:d0:1e:4d:70:4a:14:1c:40:4f:81:98:3a:ab:a3: 29:00:1f:6c:7b:93:5d:a8:e8:c2:93:37:c7:5c:61: 10:1f:2e:26:2a:3c:c8:d4:1d:af:ed:e2:fa:b2:07: 72:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:61:0C:2C:7E:AD:9F:C0:78:12:E2:4B:DE:A6:F7:5F:FA:2A:3C:93 X509v3 Authority Key Identifier: keyid:2D:3D:FB:5E:22:12:B2:90:58:68:B1:77:16:7D:54:8B:0D:FE:3C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/82FB96E899E411EB8B298058C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.213.0/24 IPv6: 2400:dc60::/32 Signature Algorithm: sha256WithRSAEncryption 57:03:6d:32:54:d0:57:04:07:f1:8f:4d:7f:2a:b6:c1:60:38: 8d:58:96:d9:9b:90:c7:3f:6a:45:6e:1c:23:6c:2a:14:d0:71: 1d:71:47:5f:87:19:6c:84:8a:2f:c4:e2:80:df:17:eb:05:9f: 92:97:5f:9d:68:1e:05:86:2a:f0:43:04:17:7a:75:31:1f:79: 03:13:d0:a2:61:6f:ef:bc:27:f8:63:33:91:86:d2:de:a3:cc: bd:ed:7c:13:62:3f:76:08:cc:b2:33:60:cf:d3:69:84:a0:f3: 68:73:27:2c:2f:d1:e9:b4:f4:a8:0e:bb:7b:83:3b:2d:43:a0: 91:04:e1:c3:6f:55:67:b8:b5:9e:48:bf:5f:fc:9c:85:7e:ac: 9e:30:de:35:c7:6c:63:0d:18:f6:f6:cd:13:e8:2f:7f:8d:40: c2:5a:f2:c2:b0:4b:10:08:9f:fd:27:e9:2b:27:e6:73:d0:5c: ac:c3:f8:25:9b:6f:d6:ba:1f:99:6f:52:3f:b6:8a:5d:f1:56: e0:76:75:66:17:53:c9:d1:4f:2c:04:21:9d:f7:70:9f:09:df: 42:e6:3c:f4:bd:c0:ea:e1:d9:d5:fb:08:fb:10:09:31:53:61: a0:01:8b:aa:11:3c:a9:81:9a:36:43:a9:1e:ed:f9:92:37:22: 98:5d:65:99 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB0gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFNDkxMTAvBgNVBAUTKDJEM0RGQjVFMjIxMkIyOTA1ODY4QjE3NzE2N0Q1NDhC MERGRTNDRjQwHhcNMjMwNzMwMjEzODE2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM2ZDg0Ny1hNTU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAop3Oj+tDD/ZADGgmrLeBPRD79hz+8LS3TbfOUbcAFkbHqgaTVcOk7cb2oRhD Vs5eZmOFVBQzQ4pruUVoPkL9TgodkP3EjzdYLvHEDeFiNCsdp/QgwSb2QuiMa2xN 76u6VodUL3nkc9P3yEsZhtBRMxgUhlPwfnl3FgFzoquxa0NVyZjSpCYCNMKg2svG wS9qAviUqtANeA+DkKZjcdvpg6W4d4cZVYXSF/mWEivrw3fMM5DxhuexLivgJQb8 x0VONCDS9/3iIvJlxieeXsXMwhom0B5NcEoUHEBPgZg6q6MpAB9se5NdqOjCkzfH XGEQHy4mKjzI1B2v7eL6sgdyIwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNphDCx+ rZ/AeBLiS96m91/6KjyTMB8GA1UdIwQYMBaAFC09+14iErKQWGixdxZ9VIsN/jz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEU0OS8zRjAyMDI0NkJF MTIxMUVBQkI2MEEyODJDNEY5QUUwMi9MVDM3WGlJU3NwQllhTEYzRm4xVWl3My1Q UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUMzdYaUlTc3BCWWFMRjNGbjFVaXczLVBQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFNDkvM0YwMjAyNDZCRTEyMTFFQUJCNjBBMjgyQzRGOUFFMDIvODJGQjk2RTg5 OUU0MTFFQjhCMjk4MDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnmNUwDQQCAAIwBwMFACQA3GAwDQYJKoZIhvcNAQELBQAD ggEBAFcDbTJU0FcEB/GPTX8qtsFgOI1YltmbkMc/akVuHCNsKhTQcR1xR1+HGWyE ii/E4oDfF+sFn5KXX51oHgWGKvBDBBd6dTEfeQMT0KJhb++8J/hjM5GG0t6jzL3t fBNiP3YIzLIzYM/TaYSg82hzJywv0em09KgOu3uDOy1DoJEE4cNvVWe4tZ5Iv1/8 nIV+rJ4w3jXHbGMNGPb2zRPoL3+NQMJa8sKwSxAIn/0n6Ssn5nPQXKzD+CWbb9a6 H5lvUj+2il3xVuB2dWYXU8nRTywEIZ33cJ8J30LmPPS9wOrh2dX7CPsQCTFTYaAB i6oRPKmBmjZDqR7t+ZI3IphdZZk= -----END CERTIFICATE-----Generated at Sun May 26 22:43:31 2024 by rpki-client on console-fra.rpki-client.org