$ rpki-client -vvf rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/38F5C602B18711EC9F9FA058C4F9AE02.roa File: 38F5C602B18711EC9F9FA058C4F9AE02.roa (raw, json) Hash identifier: NSIrfcEof4oSoVl+Wv6M+0oFTgwzHJSzBT22S0GWuXE= Subject key identifier: 56:04:B7:F0:89:92:11:CC:C0:98:24:1C:33:50:09:25:43:D5:E9:D2 Certificate issuer: /CN=A9182FBC/serialNumber=98B23CBAB184DAB1AD00D1000B820C9B21A433EC Certificate serial: 10C6 Authority key identifier: 98:B2:3C:BA:B1:84:DA:B1:AD:00:D1:00:0B:82:0C:9B:21:A4:33:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLI8urGE2rGtANEAC4IMmyGkM-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/38F5C602B18711EC9F9FA058C4F9AE02.roa Signing time: Sat 02 Mar 2024 17:56:26 +0000 ROA not before: Sat 02 Mar 2024 17:56:26 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135023 IP address blocks: 103.206.32.0/22 maxlen: 23 103.206.32.0/24 maxlen: 24 103.206.33.0/24 maxlen: 24 103.206.35.0/24 maxlen: 24 182.161.56.0/22 maxlen: 24 2402:9740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/mLI8urGE2rGtANEAC4IMmyGkM-w.crl rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/mLI8urGE2rGtANEAC4IMmyGkM-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLI8urGE2rGtANEAC4IMmyGkM-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4294 (0x10c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182FBC/serialNumber=98B23CBAB184DAB1AD00D1000B820C9B21A433EC Validity Not Before: Mar 2 17:56:26 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e3684a-c42a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:1d:08:12:6e:69:b3:71:06:70:f5:1a:f5:f4: b3:4b:a8:01:0d:03:99:ea:cf:8e:86:84:27:58:d6: 6b:35:67:1e:5f:90:5a:df:81:e4:c4:7a:f4:43:65: 97:25:43:77:f7:93:5d:d6:f0:21:a8:0e:fe:e1:d3: 5e:26:c3:8f:0e:c2:2d:d5:11:dd:c0:7b:47:41:8f: 3e:69:2c:00:9d:e4:47:a3:ce:a2:e8:26:95:36:d3: 02:a8:66:32:9e:11:c4:f9:95:87:3b:e3:2c:87:c3: 82:38:f6:9c:fb:09:7e:3d:2b:f3:18:f4:47:26:8f: f3:c6:92:ba:b4:87:56:ac:8b:f1:1e:64:60:0d:4d: d0:0c:47:c5:63:7b:35:e6:71:e3:8d:b9:0a:dc:0b: 7a:e8:14:9c:bf:ce:45:35:fb:c8:60:e9:7f:68:a7: 7b:3b:c3:53:11:dd:7c:c2:8b:32:7b:b5:e8:23:ef: a1:07:4b:d3:c5:d2:24:1b:6c:95:a9:fe:6c:e5:2c: b4:23:39:68:b7:ea:94:ce:ec:36:1f:a4:31:64:ca: 66:80:bb:ae:3c:be:cd:e0:39:30:61:c4:e6:4c:44: b1:f1:87:e4:c6:48:a3:e1:2b:38:8c:cf:27:05:72: 7d:34:5b:b3:6f:ed:ae:b2:06:60:16:ec:4d:29:c2: 83:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:04:B7:F0:89:92:11:CC:C0:98:24:1C:33:50:09:25:43:D5:E9:D2 X509v3 Authority Key Identifier: keyid:98:B2:3C:BA:B1:84:DA:B1:AD:00:D1:00:0B:82:0C:9B:21:A4:33:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/mLI8urGE2rGtANEAC4IMmyGkM-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mLI8urGE2rGtANEAC4IMmyGkM-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182FBC/A335B258FCE411E890FC1E37C4F9AE02/38F5C602B18711EC9F9FA058C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.32.0/22 182.161.56.0/22 IPv6: 2402:9740::/32 Signature Algorithm: sha256WithRSAEncryption b0:7c:88:2a:eb:56:97:4b:88:34:da:b2:ce:08:36:92:47:dd: 32:04:3e:44:b5:b2:4b:4f:9d:ac:b0:3c:9f:c2:b4:34:6a:be: 86:39:1a:e2:e0:35:29:b3:24:fb:6f:18:42:0f:bc:f2:ee:5e: f8:88:7a:0e:5c:5f:bc:99:b1:6b:65:9a:d4:00:9e:33:61:2a: 36:cb:d3:1d:08:b3:46:52:29:ff:0b:6b:15:ee:b1:84:c0:aa: 11:06:4c:6d:aa:39:0d:4a:65:e4:b0:c7:2b:d2:2e:e0:69:d7: 2d:b5:2f:d6:d4:13:33:0f:b2:df:6e:17:26:59:31:b0:2d:b2: e5:42:35:fb:0e:a1:8a:8f:1b:e0:66:56:40:58:3e:a8:13:e2: 3d:38:fe:01:a5:c6:d9:c9:72:be:b1:14:c9:4c:69:31:8b:c0: 9f:de:d7:0d:b4:b4:f9:7e:14:1d:c7:e7:dc:09:45:44:9d:83: 33:80:79:7d:17:7a:27:b7:8d:92:5c:e3:d9:e4:02:27:3d:9d: 2f:67:d7:c8:00:78:77:fe:81:3e:ec:0e:5a:03:d4:96:2f:f6: d8:b4:38:42:36:f6:81:f3:c3:5a:69:cd:7e:01:41:19:55:f6: e2:86:c3:30:a7:ae:f2:d8:19:9c:2c:1e:df:c5:5d:16:3e:f9: 30:bc:6b:49 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODJGQkMxMTAvBgNVBAUTKDk4QjIzQ0JBQjE4NERBQjFBRDAwRDEwMDBCODIwQzlC MjFBNDMzRUMwHhcNMjQwMzAyMTc1NjI2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNjg0YS1jNDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2x0IEm5ps3EGcPUa9fSzS6gBDQOZ6s+OhoQnWNZrNWceX5Ba34HkxHr0Q2WX JUN395Nd1vAhqA7+4dNeJsOPDsIt1RHdwHtHQY8+aSwAneRHo86i6CaVNtMCqGYy nhHE+ZWHO+Msh8OCOPac+wl+PSvzGPRHJo/zxpK6tIdWrIvxHmRgDU3QDEfFY3s1 5nHjjbkK3At66BScv85FNfvIYOl/aKd7O8NTEd18wosye7XoI++hB0vTxdIkG2yV qf5s5Sy0Izlot+qUzuw2H6QxZMpmgLuuPL7N4DkwYcTmTESx8Yfkxkij4Ss4jM8n BXJ9NFuzb+2usgZgFuxNKcKDVwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFYEt/CJ khHMwJgkHDNQCSVD1enSMB8GA1UdIwQYMBaAFJiyPLqxhNqxrQDRAAuCDJshpDPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MkZCQy9BMzM1QjI1OEZD RTQxMUU4OTBGQzFFMzdDNEY5QUUwMi9tTEk4dXJHRTJyR3RBTkVBQzRJTW15R2tN LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21MSTh1ckdFMnJHdEFORUFDNElNbXlHa00tdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODJGQkMvQTMzNUIyNThGQ0U0MTFFODkwRkMxRTM3QzRGOUFFMDIvMzhGNUM2MDJC MTg3MTFFQzlGOUZBMDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnziADBAK2oTgwDQQCAAIwBwMFACQCl0AwDQYJKoZIhvcN AQELBQADggEBALB8iCrrVpdLiDTass4INpJH3TIEPkS1sktPnaywPJ/CtDRqvoY5 GuLgNSmzJPtvGEIPvPLuXviIeg5cX7yZsWtlmtQAnjNhKjbL0x0Is0ZSKf8LaxXu sYTAqhEGTG2qOQ1KZeSwxyvSLuBp1y21L9bUEzMPst9uFyZZMbAtsuVCNfsOoYqP G+BmVkBYPqgT4j04/gGlxtnJcr6xFMlMaTGLwJ/e1w20tPl+FB3H59wJRUSdgzOA eX0Xeie3jZJc49nkAic9nS9n18gAeHf+gT7sDloD1JYv9ti0OEI29oHzw1ppzX4B QRlV9uKGwzCnrvLYGZwsHt/FXRY++TC8a0k= -----END CERTIFICATE-----Generated at Thu May 16 19:10:55 2024 by rpki-client on console-fra.rpki-client.org