$ rpki-client -vvf rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/582836EAF0BF11ED9EC0094AC4F9AE02.roa File: 582836EAF0BF11ED9EC0094AC4F9AE02.roa (raw, json) Hash identifier: Zy+X5I6jjeoXFlK3ZYHu5Y6X4IicrTsR5c6AYriYvCY= Subject key identifier: 1F:E5:B3:77:59:9C:13:30:07:8E:FC:C5:D8:F1:9F:4D:E9:19:8E:77 Certificate issuer: /CN=A9197E5D/serialNumber=0BA682E8038D771A3707EAFA82FDD04C429A4F86 Certificate serial: A9 Authority key identifier: 0B:A6:82:E8:03:8D:77:1A:37:07:EA:FA:82:FD:D0:4C:42:9A:4F:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6aC6AONdxo3B-r6gv3QTEKaT4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/582836EAF0BF11ED9EC0094AC4F9AE02.roa Signing time: Sun 31 Mar 2024 06:38:59 +0000 ROA not before: Sun 31 Mar 2024 06:38:59 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 149422 IP address blocks: 103.88.102.0/24 maxlen: 24 103.88.103.0/24 maxlen: 24 2400:e0a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/C6aC6AONdxo3B-r6gv3QTEKaT4Y.crl rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/C6aC6AONdxo3B-r6gv3QTEKaT4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6aC6AONdxo3B-r6gv3QTEKaT4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 06:28:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 169 (0xa9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197E5D/serialNumber=0BA682E8038D771A3707EAFA82FDD04C429A4F86 Validity Not Before: Mar 31 06:38:59 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66090502-3f5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:50:5b:e6:4f:4c:94:69:c6:2b:08:d7:c3:a7: d6:c9:85:a3:0d:b2:4a:e9:aa:de:2e:9f:99:5a:f4: 5f:cf:97:0a:d6:70:c3:03:9c:63:01:01:57:e9:37: 90:14:27:24:c5:ab:b7:71:37:8e:5e:54:c4:ee:98: 11:de:ec:35:1c:66:e7:67:f4:d3:e2:ca:0b:a6:7e: b3:34:6a:a9:01:83:58:62:dd:ed:d2:3c:b8:2a:53: 06:b2:66:75:18:a4:69:f4:f3:71:22:42:1c:69:05: 92:07:d7:21:18:ea:dc:18:ad:48:14:38:bd:1f:23: f0:8c:66:b2:34:5b:c1:8b:b2:c2:3c:0f:8a:ea:83: 11:ba:a9:08:f8:76:93:0d:5b:60:0e:53:d8:cc:87: dd:c1:40:75:2c:0d:e0:7c:af:6f:ad:93:1a:a3:7d: ff:35:42:5b:a7:76:93:ca:48:7a:15:68:53:08:84: 1f:00:5d:ce:1c:e5:d7:9e:b3:2a:9d:a8:6b:0e:46: c2:0c:72:84:ac:fc:7b:52:c5:4a:04:40:3a:67:51: 9e:3b:a6:7c:9b:27:80:20:0f:ed:c0:e7:b0:ef:cc: 18:2b:a0:63:53:a3:7e:05:15:9b:6d:00:33:32:45: f3:93:81:4e:41:20:93:25:1a:74:37:64:d5:63:e0: 9a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E5:B3:77:59:9C:13:30:07:8E:FC:C5:D8:F1:9F:4D:E9:19:8E:77 X509v3 Authority Key Identifier: keyid:0B:A6:82:E8:03:8D:77:1A:37:07:EA:FA:82:FD:D0:4C:42:9A:4F:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/C6aC6AONdxo3B-r6gv3QTEKaT4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6aC6AONdxo3B-r6gv3QTEKaT4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197E5D/4122CD9CF0B611ED8F44FB27C4F9AE02/582836EAF0BF11ED9EC0094AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.88.102.0/23 IPv6: 2400:e0a0::/32 Signature Algorithm: sha256WithRSAEncryption 13:24:e0:b4:20:f2:25:4c:9a:97:ff:9c:28:80:1c:63:4c:da: a4:66:9c:fe:6a:b1:00:aa:37:70:4a:2e:bb:7d:f4:2f:bf:35: 1d:4f:44:fa:e2:3d:da:5b:14:3d:a0:36:28:2e:d3:5d:f9:26: da:9a:b0:f4:09:19:bc:a8:e7:d8:fb:60:e0:0b:13:98:89:06: bf:2d:f3:5c:e7:c3:b7:7d:b2:8b:46:fc:0c:66:bf:c2:59:b8: 92:f1:4c:de:a1:11:6c:ed:b8:00:40:e7:3f:a9:aa:ab:5a:64: e7:06:35:f3:ea:d4:30:3f:af:79:ac:5a:c8:b8:62:1e:b2:c3: ff:7a:87:3f:1c:39:66:69:3a:3b:42:2a:20:d0:65:62:bb:c6: 1f:e0:fd:32:8d:8d:b9:52:5b:d6:84:a6:c4:34:8d:9b:37:f4: a4:6b:ff:ea:c4:a6:95:74:e6:1c:02:44:92:91:30:f0:69:7d: ca:ae:98:ed:4c:ca:7b:86:4f:69:6c:25:57:cc:f4:c3:ee:07: 6e:fe:ae:ee:0f:00:14:b6:52:03:ec:0a:7b:e4:11:b0:5b:e6: c9:29:93:c7:40:7d:cd:e1:56:53:73:be:af:27:07:43:c6:88: 36:aa:6f:48:93:74:c7:71:46:86:5e:92:ab:e4:6e:13:a6:e0: fb:fa:af:a7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdFNUQxMTAvBgNVBAUTKDBCQTY4MkU4MDM4RDc3MUEzNzA3RUFGQTgyRkREMDRD NDI5QTRGODYwHhcNMjQwMzMxMDYzODU5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA5MDUwMi0zZjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnFBb5k9MlGnGKwjXw6fWyYWjDbJK6areLp+ZWvRfz5cK1nDDA5xjAQFX6TeQ FCckxau3cTeOXlTE7pgR3uw1HGbnZ/TT4soLpn6zNGqpAYNYYt3t0jy4KlMGsmZ1 GKRp9PNxIkIcaQWSB9chGOrcGK1IFDi9HyPwjGayNFvBi7LCPA+K6oMRuqkI+HaT DVtgDlPYzIfdwUB1LA3gfK9vrZMao33/NUJbp3aTykh6FWhTCIQfAF3OHOXXnrMq nahrDkbCDHKErPx7UsVKBEA6Z1GeO6Z8myeAIA/twOew78wYK6BjU6N+BRWbbQAz MkXzk4FOQSCTJRp0N2TVY+CaMwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFB/ls3dZ nBMwB478xdjxn03pGY53MB8GA1UdIwQYMBaAFAumgugDjXcaNwfq+oL90ExCmk+G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0U1RC80MTIyQ0Q5Q0Yw QjYxMUVEOEY0NEZCMjdDNEY5QUUwMi9DNmFDNkFPTmR4bzNCLXI2Z3YzUVRFS2FU NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2YUM2QU9OZHhvM0ItcjZndjNRVEVLYVQ0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdFNUQvNDEyMkNEOUNGMEI2MTFFRDhGNDRGQjI3QzRGOUFFMDIvNTgyODM2RUFG MEJGMTFFRDlFQzAwOTRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnWGYwDQQCAAIwBwMFACQA4KAwDQYJKoZIhvcNAQELBQAD ggEBABMk4LQg8iVMmpf/nCiAHGNM2qRmnP5qsQCqN3BKLrt99C+/NR1PRPriPdpb FD2gNigu0135JtqasPQJGbyo59j7YOALE5iJBr8t81znw7d9sotG/Axmv8JZuJLx TN6hEWztuABA5z+pqqtaZOcGNfPq1DA/r3msWsi4Yh6yw/96hz8cOWZpOjtCKiDQ ZWK7xh/g/TKNjblSW9aEpsQ0jZs39KRr/+rEppV05hwCRJKRMPBpfcqumO1MynuG T2lsJVfM9MPuB27+ru4PABS2UgPsCnvkEbBb5skpk8dAfc3hVlNzvq8nB0PGiDaq b0iTdMdxRoZekqvkbhOm4Pv6r6c= -----END CERTIFICATE-----Generated at Wed May 15 09:28:11 2024 by rpki-client on console-fra.rpki-client.org