$ rpki-client -vvf rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/652993B4884F11EBB2A8337FC4F9AE02.roa File: 652993B4884F11EBB2A8337FC4F9AE02.roa (raw, json) Hash identifier: f6e3Cg2GIwOdxOCdUfNFOlHtMPQH2uBXwUt1kuNCyx0= Subject key identifier: C2:AE:75:79:D2:94:6E:13:C2:A5:A6:60:36:31:2A:E1:A8:33:18:C6 Certificate issuer: /CN=A919546B/serialNumber=95951ECFC91D0F55AD8ED8AFBFE63CB41619FC47 Certificate serial: 0577 Authority key identifier: 95:95:1E:CF:C9:1D:0F:55:AD:8E:D8:AF:BF:E6:3C:B4:16:19:FC:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/652993B4884F11EBB2A8337FC4F9AE02.roa Signing time: Tue 19 Mar 2024 23:23:13 +0000 ROA not before: Tue 19 Mar 2024 23:23:13 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136183 IP address blocks: 103.83.85.0/24 maxlen: 24 103.164.144.0/24 maxlen: 24 2001:df7:d600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.crl rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:07:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1399 (0x577) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919546B/serialNumber=95951ECFC91D0F55AD8ED8AFBFE63CB41619FC47 Validity Not Before: Mar 19 23:23:13 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65fa1e61-87fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d8:a1:65:1d:51:c7:58:8e:78:14:61:2b:1a: fa:76:49:c1:90:86:4e:bc:0a:c7:af:f6:5e:aa:c0: 89:74:b0:f2:9e:28:2e:4a:c3:09:54:72:78:18:79: 7b:dc:1e:27:d8:8f:63:95:ad:4f:13:a7:69:5b:4a: 4e:6f:b8:35:4c:42:cb:87:4d:82:e2:c6:44:fd:92: 82:5c:15:a1:4b:72:e4:70:13:5b:14:ab:c8:57:4d: 33:74:30:df:d3:22:38:3f:aa:7f:a1:00:32:ab:32: 11:af:2a:d4:1a:9b:29:ce:22:5a:26:ad:1f:20:10: a7:97:1c:9a:00:d7:86:a3:2a:e6:27:60:1c:be:3e: 07:3e:63:9a:6f:d8:7a:dd:69:33:78:dc:ef:4b:4f: 5a:14:c6:ee:a4:25:7e:07:34:18:33:10:4b:2b:c2: e2:5c:84:71:59:bf:81:c3:e0:e5:b3:c8:1f:8d:8c: 21:50:a3:b5:ca:a3:22:dc:f5:58:22:5d:4c:fd:c8: 36:ae:5b:7a:65:4f:38:90:33:02:c3:31:00:30:7b: ff:ab:f7:06:6a:8b:16:ad:24:f9:0b:8b:90:cd:27: b6:28:1c:38:82:77:a8:75:80:e9:19:22:43:3a:e0: 8c:2d:08:10:20:f4:64:d9:08:c9:df:c7:77:3e:3e: 1b:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AE:75:79:D2:94:6E:13:C2:A5:A6:60:36:31:2A:E1:A8:33:18:C6 X509v3 Authority Key Identifier: keyid:95:95:1E:CF:C9:1D:0F:55:AD:8E:D8:AF:BF:E6:3C:B4:16:19:FC:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lZUez8kdD1Wtjtivv-Y8tBYZ_Ec.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919546B/E5AE440A884D11EB985EE37DC4F9AE02/652993B4884F11EBB2A8337FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.85.0/24 103.164.144.0/24 IPv6: 2001:df7:d600::/48 Signature Algorithm: sha256WithRSAEncryption 93:84:11:80:5d:b1:8f:7f:4e:86:b2:75:15:87:2b:51:f0:8a: 88:40:c2:d5:d1:8a:99:4c:48:3e:fc:6e:74:c7:73:42:d3:6b: 92:a5:87:63:46:7b:fd:20:c8:4e:bb:66:4f:dd:70:6c:1b:1e: fb:e1:7e:62:10:79:a7:4c:ed:4a:49:8d:ab:69:4a:64:25:24: d3:5a:1d:b8:73:1e:18:39:97:07:23:93:42:7d:b9:6b:f8:3e: df:92:64:23:fc:05:c2:12:c8:0c:fe:19:4c:86:27:d5:be:db: ff:45:49:a7:fc:a5:79:fd:ad:ac:f5:9a:95:c7:3f:13:fd:03: da:8e:b3:05:50:0f:30:bf:83:f3:5e:8e:ee:da:64:c4:b4:dd: 03:af:c9:76:35:38:9b:62:45:b8:f8:40:b7:78:6a:ca:f2:44: 09:74:85:6d:1d:f8:55:e4:a3:4c:c1:9b:d3:5d:78:0b:3a:e9: f7:ea:e9:3a:11:15:cd:8e:39:ae:e1:97:65:e5:d8:07:82:27: 34:e8:2c:99:ae:76:85:c3:86:16:cc:91:8e:a7:c7:7a:7e:b3: c3:c3:9a:06:e7:a5:11:4d:2f:e0:9f:e9:4b:86:44:ad:7f:0c: bb:4b:be:11:07:a1:d8:58:dd:da:3d:6e:48:13:3d:ec:0e:62: 93:d4:bf:c7 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBXcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU0NkIxMTAvBgNVBAUTKDk1OTUxRUNGQzkxRDBGNTVBRDhFRDhBRkJGRTYzQ0I0 MTYxOUZDNDcwHhcNMjQwMzE5MjMyMzEzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZhMWU2MS04N2ZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNihZR1Rx1iOeBRhKxr6dknBkIZOvArHr/ZeqsCJdLDyniguSsMJVHJ4GHl7 3B4n2I9jla1PE6dpW0pOb7g1TELLh02C4sZE/ZKCXBWhS3LkcBNbFKvIV00zdDDf 0yI4P6p/oQAyqzIRryrUGpspziJaJq0fIBCnlxyaANeGoyrmJ2Acvj4HPmOab9h6 3WkzeNzvS09aFMbupCV+BzQYMxBLK8LiXIRxWb+Bw+Dls8gfjYwhUKO1yqMi3PVY Il1M/cg2rlt6ZU84kDMCwzEAMHv/q/cGaosWrST5C4uQzSe2KBw4gneodYDpGSJD OuCMLQgQIPRk2QjJ38d3Pj4bKwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMKudXnS lG4TwqWmYDYxKuGoMxjGMB8GA1UdIwQYMBaAFJWVHs/JHQ9VrY7Yr7/mPLQWGfxH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTQ2Qi9FNUFFNDQwQTg4 NEQxMUVCOTg1RUUzN0RDNEY5QUUwMi9sWlVlejhrZEQxV3RqdGl2di1ZOHRCWVpf RWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xaVWV6OGtkRDFXdGp0aXZ2LVk4dEJZWl9FYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU0NkIvRTVBRTQ0MEE4ODREMTFFQjk4NUVFMzdEQzRGOUFFMDIvNjUyOTkzQjQ4 ODRGMTFFQkIyQTgzMzdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnU1UDBABnpJAwDwQCAAIwCQMHACABDffWADANBgkqhkiG 9w0BAQsFAAOCAQEAk4QRgF2xj39OhrJ1FYcrUfCKiEDC1dGKmUxIPvxudMdzQtNr kqWHY0Z7/SDITrtmT91wbBse++F+YhB5p0ztSkmNq2lKZCUk01oduHMeGDmXByOT Qn25a/g+35JkI/wFwhLIDP4ZTIYn1b7b/0VJp/ylef2trPWalcc/E/0D2o6zBVAP ML+D816O7tpkxLTdA6/JdjU4m2JFuPhAt3hqyvJECXSFbR34VeSjTMGb0114Czrp 9+rpOhEVzY45ruGXZeXYB4InNOgsma52hcOGFsyRjqfHen6zw8OaBuelEU0v4J/p S4ZErX8Mu0u+EQeh2Fjd2j1uSBM97A5ik9S/xw== -----END CERTIFICATE-----Generated at Fri May 17 01:06:59 2024 by rpki-client on console-fra.rpki-client.org