$ rpki-client -vvf rpki.apnic.net/member_repository/A919968F/9BCDA228483611ECB4202957C4F9AE02/9D3B1594253C11ED9D3E1A23C4F9AE02.roa File: 9D3B1594253C11ED9D3E1A23C4F9AE02.roa (raw, json) Hash identifier: Y/YWXQNmdq/MuVZ9sNVXUauhk21JmUnbjwiCOkLsmPI= Subject key identifier: A3:5E:4A:36:53:2C:1F:5A:2C:75:22:E6:AF:DE:25:CA:7F:10:AE:A3 Certificate issuer: /CN=A919968F/serialNumber=09A7D227EE36222ED9F3B9408D98ECF90DE6ADED Certificate serial: 0368 Authority key identifier: 09:A7:D2:27:EE:36:22:2E:D9:F3:B9:40:8D:98:EC:F9:0D:E6:AD:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CafSJ-42Ii7Z87lAjZjs-Q3mre0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919968F/9BCDA228483611ECB4202957C4F9AE02/9D3B1594253C11ED9D3E1A23C4F9AE02.roa Signing time: Sat 23 Dec 2023 02:14:06 +0000 ROA not before: Sat 23 Dec 2023 02:14:06 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 149010 IP address blocks: 103.176.58.0/24 maxlen: 24 103.176.59.0/24 maxlen: 24 2001:df0:940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919968F/9BCDA228483611ECB4202957C4F9AE02/CafSJ-42Ii7Z87lAjZjs-Q3mre0.crl rsync://rpki.apnic.net/member_repository/A919968F/9BCDA228483611ECB4202957C4F9AE02/CafSJ-42Ii7Z87lAjZjs-Q3mre0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CafSJ-42Ii7Z87lAjZjs-Q3mre0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:31:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 872 (0x368) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919968F/serialNumber=09A7D227EE36222ED9F3B9408D98ECF90DE6ADED Validity Not Before: Dec 23 02:14:06 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6586426e-12d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9d:36:65:6e:98:89:5b:3d:c5:d9:09:f2:9f: 40:b6:3f:e4:bd:af:74:85:44:f3:60:67:6b:39:a9: 48:46:6d:b1:ca:37:2c:b9:92:1a:df:63:e4:25:ad: ce:4f:63:37:45:59:d0:9b:48:53:6d:0c:cf:00:ed: d6:b5:88:39:af:6a:9b:c7:11:5f:ca:60:b3:4b:5d: 69:27:e7:fa:00:d8:12:3c:86:d6:a2:4b:cf:df:5d: a4:a6:8c:f7:7a:c4:ba:62:b0:5f:26:86:4c:c2:b6: ac:d2:03:e7:e4:c3:36:45:cd:c5:c2:16:80:3b:c8: f3:6a:ab:9c:b0:58:5b:0d:bd:d3:b2:cd:ee:0c:59: 7e:7b:ea:98:c1:7f:bf:9b:66:69:34:8e:b5:1c:9c: f0:2f:38:5d:cd:38:f7:a1:10:04:97:4f:4e:fd:9a: 95:5d:a0:35:e6:af:69:07:93:b8:f6:a9:af:cf:72: 9d:e4:31:65:d7:e0:9b:9f:c7:c1:ed:c7:90:ef:7b: 25:ca:ae:f7:79:03:5a:b6:df:24:f9:07:d3:a0:0d: 49:be:72:54:d5:62:2b:28:c1:6a:72:0a:c3:a0:b6: 5d:e3:a8:b2:6a:4d:d0:f6:de:06:33:d0:dd:0a:cb: d8:a1:1d:0f:d3:9a:f3:53:2f:40:f0:6d:f8:52:af: 15:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:5E:4A:36:53:2C:1F:5A:2C:75:22:E6:AF:DE:25:CA:7F:10:AE:A3 X509v3 Authority Key Identifier: keyid:09:A7:D2:27:EE:36:22:2E:D9:F3:B9:40:8D:98:EC:F9:0D:E6:AD:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919968F/9BCDA228483611ECB4202957C4F9AE02/CafSJ-42Ii7Z87lAjZjs-Q3mre0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CafSJ-42Ii7Z87lAjZjs-Q3mre0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919968F/9BCDA228483611ECB4202957C4F9AE02/9D3B1594253C11ED9D3E1A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.58.0/23 IPv6: 2001:df0:940::/48 Signature Algorithm: sha256WithRSAEncryption 79:df:6e:b7:ff:80:0c:3a:02:1e:76:94:2e:e0:e5:a1:88:a8: 36:56:ff:30:dc:1d:69:27:c0:fc:37:26:db:cd:7b:a3:e2:43: 66:92:ea:86:6a:97:a3:a7:03:93:3b:26:0a:f7:c3:2f:be:e1: 02:05:b1:64:14:9f:8d:cc:35:62:bc:b3:e4:be:37:14:cf:77: d8:b2:ea:9b:1b:2b:ed:37:51:02:2e:98:ff:01:c4:d1:d6:fe: 70:56:5a:db:e3:0a:b8:ca:f0:e2:79:b6:29:6a:47:83:0f:51: 56:c2:f5:c9:12:6f:47:bf:17:c3:60:42:f5:e9:10:85:fb:8b: 60:b2:0c:60:3a:08:10:0c:b6:0f:fe:eb:54:0f:7e:25:d0:ca: 07:27:9a:80:b5:5a:fa:f0:5a:ec:57:c2:e1:e5:5c:3a:0c:4e: 8c:f9:19:ec:93:a7:f1:ce:24:f6:b1:f5:ad:f3:9a:c2:db:ca: fb:87:ec:ee:af:aa:0b:bc:d4:20:f2:18:63:00:38:69:a3:71: 5c:75:5b:82:f0:b4:78:65:8c:5f:aa:69:d9:96:1e:ed:fa:c4: d3:11:9c:ba:f8:04:ae:38:92:6d:b9:09:cf:2b:a0:23:81:d7: 9b:13:2e:0a:dc:cf:ea:3c:05:80:65:7b:82:55:09:b8:d4:a6: 91:4e:56:4a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA2gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTk2OEYxMTAvBgNVBAUTKDA5QTdEMjI3RUUzNjIyMkVEOUYzQjk0MDhEOThFQ0Y5 MERFNkFERUQwHhcNMjMxMjIzMDIxNDA2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg2NDI2ZS0xMmQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJ02ZW6YiVs9xdkJ8p9Atj/kva90hUTzYGdrOalIRm2xyjcsuZIa32PkJa3O T2M3RVnQm0hTbQzPAO3WtYg5r2qbxxFfymCzS11pJ+f6ANgSPIbWokvP312kpoz3 esS6YrBfJoZMwras0gPn5MM2Rc3FwhaAO8jzaqucsFhbDb3Tss3uDFl+e+qYwX+/ m2ZpNI61HJzwLzhdzTj3oRAEl09O/ZqVXaA15q9pB5O49qmvz3Kd5DFl1+Cbn8fB 7ceQ73slyq73eQNatt8k+QfToA1JvnJU1WIrKMFqcgrDoLZd46iyak3Q9t4GM9Dd CsvYoR0P05rzUy9A8G34Uq8VrwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKNeSjZT LB9aLHUi5q/eJcp/EK6jMB8GA1UdIwQYMBaAFAmn0ifuNiIu2fO5QI2Y7PkN5q3t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTY4Ri85QkNEQTIyODQ4 MzYxMUVDQjQyMDI5NTdDNEY5QUUwMi9DYWZTSi00MklpN1o4N2xBalpqcy1RM21y ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NhZlNKLTQySWk3Wjg3bEFqWmpzLVEzbXJlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTk2OEYvOUJDREEyMjg0ODM2MTFFQ0I0MjAyOTU3QzRGOUFFMDIvOUQzQjE1OTQy NTNDMTFFRDlEM0UxQTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnsDowDwQCAAIwCQMHACABDfAJQDANBgkqhkiG9w0BAQsF AAOCAQEAed9ut/+ADDoCHnaULuDloYioNlb/MNwdaSfA/Dcm2817o+JDZpLqhmqX o6cDkzsmCvfDL77hAgWxZBSfjcw1Yryz5L43FM932LLqmxsr7TdRAi6Y/wHE0db+ cFZa2+MKuMrw4nm2KWpHgw9RVsL1yRJvR78Xw2BC9ekQhfuLYLIMYDoIEAy2D/7r VA9+JdDKByeagLVa+vBa7FfC4eVcOgxOjPkZ7JOn8c4k9rH1rfOawtvK+4fs7q+q C7zUIPIYYwA4aaNxXHVbgvC0eGWMX6pp2ZYe7frE0xGcuvgErjiSbbkJzyugI4HX mxMuCtzP6jwFgGV7glUJuNSmkU5WSg== -----END CERTIFICATE-----Generated at Sun May 19 03:14:49 2024 by rpki-client on console-fra.rpki-client.org