$ rpki-client -vvf rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/8D54D41CFF4A11EBB2CFB65CC4F9AE02.roa File: 8D54D41CFF4A11EBB2CFB65CC4F9AE02.roa (raw, json) Hash identifier: /oai9s0tO9R/CA92gLDGeelZejQBEg1k9ETT577pn5o= Subject key identifier: 30:53:15:C7:BE:16:B2:DE:17:EE:41:7D:AB:1B:A5:89:FE:CD:13:2D Certificate issuer: /CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Certificate serial: 0540 Authority key identifier: 2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/8D54D41CFF4A11EBB2CFB65CC4F9AE02.roa Signing time: Sun 17 Dec 2023 00:32:35 +0000 ROA not before: Sun 17 Dec 2023 00:32:35 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 55933 IP address blocks: 103.145.60.0/24 maxlen: 24 103.145.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1344 (0x540) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919AAA0/serialNumber=2AD526DFD9C7E90CA30C31FCA4E182501B700753 Validity Not Before: Dec 17 00:32:35 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657e41a3-68e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f5:b6:4f:36:6f:e0:98:dc:b0:01:84:d2:bf: d7:e9:55:fd:15:2c:e7:43:92:1d:65:aa:a8:52:81: 7c:98:6e:7b:01:d8:0a:44:82:c7:3a:1e:63:7f:6b: 83:20:ef:9c:ac:b7:7f:d9:27:33:f7:29:57:6a:01: d8:c1:cf:90:d2:f0:f6:22:dc:0c:2f:84:d1:e9:a9: 8c:67:59:6f:21:56:f4:12:7a:25:00:70:d5:41:b8: 1c:2a:69:c5:99:90:a3:19:82:4d:3c:18:71:c0:55: c8:bf:ba:8f:f8:ec:b2:72:67:00:19:06:d2:5a:7c: d2:40:be:19:60:94:37:0f:fc:08:30:36:74:50:82: 73:af:c2:83:98:c5:af:ee:ce:1e:5e:94:72:54:98: e2:40:71:f4:87:32:f6:ad:b2:3a:04:5f:a6:2c:8c: 96:97:d7:ac:e7:fe:46:20:b6:8d:08:01:40:89:a9: dd:83:0b:35:08:af:a9:cf:a9:2b:53:65:c9:7a:f4: 0d:25:15:f4:71:83:da:5d:71:97:c5:38:03:73:89: e2:c4:10:b2:e7:af:68:64:18:d6:af:7b:9f:d6:91: 85:36:5c:6a:4e:2a:94:4e:95:a7:3c:3b:e8:16:12: 6c:26:e3:a0:80:4d:e9:19:a8:ee:b5:94:b5:e8:41: f1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:53:15:C7:BE:16:B2:DE:17:EE:41:7D:AB:1B:A5:89:FE:CD:13:2D X509v3 Authority Key Identifier: keyid:2A:D5:26:DF:D9:C7:E9:0C:A3:0C:31:FC:A4:E1:82:50:1B:70:07:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/KtUm39nH6QyjDDH8pOGCUBtwB1M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KtUm39nH6QyjDDH8pOGCUBtwB1M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919AAA0/228396BA95F411EBB31B8F66C4F9AE02/8D54D41CFF4A11EBB2CFB65CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.60.0/23 Signature Algorithm: sha256WithRSAEncryption 42:a6:ff:38:c7:14:12:80:11:b1:d4:e3:02:6b:01:02:5d:db: b3:76:00:2b:11:6a:9c:78:2b:84:12:8a:f3:22:18:14:21:19: bd:86:7b:b6:8a:a4:2c:10:db:a1:07:38:4e:2e:32:74:72:c5: 58:bd:41:38:f9:93:70:c7:41:be:28:a8:00:f1:06:b5:28:20: ce:76:9f:b7:5f:39:21:93:ad:3d:11:b7:34:55:83:b2:13:5f: 00:6d:dd:37:ac:21:f8:a4:cd:70:8d:8c:07:c2:9c:fa:3c:01: fd:f2:7d:9e:64:ce:1b:c0:f9:ac:65:45:a4:5d:59:6a:a0:68: dd:f9:bd:58:d8:1f:d0:ce:88:7e:09:cb:9a:e7:15:b7:a8:a6: f9:c4:a3:39:b5:95:e8:2c:c8:53:07:8f:37:45:dd:c8:b5:6e: 5c:79:d8:7f:74:32:49:4d:b8:ad:3d:03:1a:0e:46:d3:40:7d: 00:86:ad:96:d9:8c:88:06:ff:66:93:84:c6:7d:90:fb:0e:d7: e7:bd:a2:ec:f7:e9:06:b7:52:89:27:67:4a:c5:6c:4b:19:33: 0d:03:ad:70:f4:4c:aa:6b:0a:3e:6f:9d:a7:d4:aa:f4:90:d2: 02:ab:15:50:ac:42:54:18:e4:54:66:9c:a1:6b:79:46:d2:1d: ae:93:0e:76 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBUAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFBQTAxMTAvBgNVBAUTKDJBRDUyNkRGRDlDN0U5MENBMzBDMzFGQ0E0RTE4MjUw MUI3MDA3NTMwHhcNMjMxMjE3MDAzMjM1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdlNDFhMy02OGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9PW2TzZv4JjcsAGE0r/X6VX9FSznQ5IdZaqoUoF8mG57AdgKRILHOh5jf2uD IO+crLd/2Scz9ylXagHYwc+Q0vD2ItwML4TR6amMZ1lvIVb0EnolAHDVQbgcKmnF mZCjGYJNPBhxwFXIv7qP+OyycmcAGQbSWnzSQL4ZYJQ3D/wIMDZ0UIJzr8KDmMWv 7s4eXpRyVJjiQHH0hzL2rbI6BF+mLIyWl9es5/5GILaNCAFAiandgws1CK+pz6kr U2XJevQNJRX0cYPaXXGXxTgDc4nixBCy569oZBjWr3uf1pGFNlxqTiqUTpWnPDvo FhJsJuOggE3pGajutZS16EHxtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDBTFce+ FrLeF+5BfasbpYn+zRMtMB8GA1UdIwQYMBaAFCrVJt/Zx+kMowwx/KThglAbcAdT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUFBMC8yMjgzOTZCQTk1 RjQxMUVCQjMxQjhGNjZDNEY5QUUwMi9LdFVtMzluSDZReWpEREg4cE9HQ1VCdHdC MU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t0VW0zOW5INlF5akRESDhwT0dDVUJ0d0IxTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFBQTAvMjI4Mzk2QkE5NUY0MTFFQkIzMUI4RjY2QzRGOUFFMDIvOEQ1NEQ0MUNG RjRBMTFFQkIyQ0ZCNjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkTwwDQYJKoZIhvcNAQELBQADggEBAEKm/zjHFBKAEbHU 4wJrAQJd27N2ACsRapx4K4QSivMiGBQhGb2Ge7aKpCwQ26EHOE4uMnRyxVi9QTj5 k3DHQb4oqADxBrUoIM52n7dfOSGTrT0RtzRVg7ITXwBt3TesIfikzXCNjAfCnPo8 Af3yfZ5kzhvA+axlRaRdWWqgaN35vVjYH9DOiH4Jy5rnFbeopvnEozm1legsyFMH jzdF3ci1blx52H90MklNuK09AxoORtNAfQCGrZbZjIgG/2aThMZ9kPsO1+e9ouz3 6Qa3UoknZ0rFbEsZMw0DrXD0TKprCj5vnafUqvSQ0gKrFVCsQlQY5FRmnKFreUbS Ha6TDnY= -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-fra.rpki-client.org