$ rpki-client -vvf rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/F89E68D6982911ED90F8C877C4F9AE02.roa File: F89E68D6982911ED90F8C877C4F9AE02.roa (raw, json) Hash identifier: XvMq/9vITeOjRr0vA0uouJy5AhVhjzN8FwnxzNY6RG4= Subject key identifier: C4:F9:11:1D:FB:C6:07:F5:20:0D:D6:04:CB:C2:5D:74:E7:BA:B4:06 Certificate issuer: /CN=A919E83B/serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Certificate serial: 0716 Authority key identifier: B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/F89E68D6982911ED90F8C877C4F9AE02.roa Signing time: Tue 02 Apr 2024 23:01:37 +0000 ROA not before: Tue 02 Apr 2024 23:01:37 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9498 IP address blocks: 103.149.58.0/24 maxlen: 24 103.149.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1814 (0x716) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919E83B/serialNumber=B8A62CF1DE8B262E14737D93EE3E6F36C3A0E1C9 Validity Not Before: Apr 2 23:01:37 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660c8e51-d9d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:96:78:bd:9a:92:cc:ee:73:53:e1:cf:c6:85: 2d:02:fd:17:09:94:65:20:75:07:c0:ee:8f:37:4c: 7d:11:3a:41:3f:df:80:43:8a:4b:82:ab:07:4e:41: 13:45:9e:17:14:13:8b:5b:d5:fd:1c:cc:a0:11:67: c3:85:2f:44:f4:36:0a:98:c6:4b:b3:d7:7b:df:6a: 10:16:b8:38:a3:13:0f:f2:14:79:87:f7:c4:0f:a8: b7:d1:a0:9a:04:8d:03:77:11:bd:57:b0:e4:fa:2a: 6b:92:83:44:b4:32:97:ed:e1:6e:a4:82:e0:eb:8c: 6b:58:2f:5c:c3:6e:4b:4b:20:c5:c4:ee:4c:36:f1: b4:a9:c9:a3:69:4b:5b:f5:68:b1:d1:f4:37:a5:bf: 46:c1:03:74:5b:7d:3f:97:0c:73:e3:26:3c:dc:d1: 0a:73:2a:78:56:9d:d2:b9:51:73:e0:9e:31:fd:48: 61:dc:e2:18:e5:4f:19:13:c2:28:d7:78:dc:89:13: 26:04:01:41:94:fc:84:7f:2c:38:6e:94:d5:9d:00: 51:03:4f:58:54:6c:4e:59:63:89:f2:6d:f0:69:a8: 88:75:49:12:e8:81:ba:ba:fc:29:26:c7:1c:96:9d: dc:0d:25:9d:ff:3d:a4:4c:ef:cc:12:64:12:92:a7: bd:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:F9:11:1D:FB:C6:07:F5:20:0D:D6:04:CB:C2:5D:74:E7:BA:B4:06 X509v3 Authority Key Identifier: keyid:B8:A6:2C:F1:DE:8B:26:2E:14:73:7D:93:EE:3E:6F:36:C3:A0:E1:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/uKYs8d6LJi4Uc32T7j5vNsOg4ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uKYs8d6LJi4Uc32T7j5vNsOg4ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919E83B/792D148AF28111EA8A6FC66DC4F9AE02/F89E68D6982911ED90F8C877C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.58.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:1f:e9:23:9d:4a:8c:e9:0c:56:86:c4:dc:4b:28:f8:01:3d: 94:2f:8b:33:fb:e1:50:d5:7a:e3:26:4f:1a:27:3b:65:c8:b0: 1d:99:35:35:8c:0c:23:d9:d3:c1:1a:e6:ac:59:9e:68:28:6a: 20:1c:44:68:d8:70:4c:e5:b3:5f:0d:75:ef:21:68:a0:3a:b8: 2a:de:44:a8:bc:fe:9c:ec:64:65:03:4d:f6:70:ef:bd:12:89: e2:c9:d7:f7:b3:c9:a2:e7:b8:76:73:1d:0d:44:9a:a6:56:04: a2:c4:d3:45:0a:71:16:42:5b:2b:30:d0:a1:91:99:0e:2b:b0: 75:69:7d:56:b5:fb:95:97:fc:17:d9:f1:cb:94:bb:8e:3e:4d: 86:ed:c8:68:ac:73:2b:a0:7b:87:0c:48:21:15:13:0d:ce:bf: 52:ba:e4:65:d3:6b:1e:6e:ce:3b:b6:c8:ef:f1:f8:1f:43:8e: 64:0e:1d:e2:69:4b:92:25:54:9a:3e:71:79:8a:b3:33:73:54: 73:42:88:29:d9:ba:ab:12:a6:45:94:46:bc:6c:4a:ee:52:aa: 34:af:2d:6e:79:22:76:3e:2d:77:20:f8:f0:72:8c:02:87:e3: 81:fa:4c:43:dc:3e:f6:97:24:96:29:48:94:fe:05:c5:88:68: fb:d2:c9:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUU4M0IxMTAvBgNVBAUTKEI4QTYyQ0YxREU4QjI2MkUxNDczN0Q5M0VFM0U2RjM2 QzNBMEUxQzkwHhcNMjQwNDAyMjMwMTM3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjOGU1MS1kOWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5Z4vZqSzO5zU+HPxoUtAv0XCZRlIHUHwO6PN0x9ETpBP9+AQ4pLgqsHTkET RZ4XFBOLW9X9HMygEWfDhS9E9DYKmMZLs9d732oQFrg4oxMP8hR5h/fED6i30aCa BI0DdxG9V7Dk+iprkoNEtDKX7eFupILg64xrWC9cw25LSyDFxO5MNvG0qcmjaUtb 9Wix0fQ3pb9GwQN0W30/lwxz4yY83NEKcyp4Vp3SuVFz4J4x/Uhh3OIY5U8ZE8Io 13jciRMmBAFBlPyEfyw4bpTVnQBRA09YVGxOWWOJ8m3waaiIdUkS6IG6uvwpJscc lp3cDSWd/z2kTO/MEmQSkqe9owIDAQABo4IClTCCApEwHQYDVR0OBBYEFMT5ER37 xgf1IA3WBMvCXXTnurQGMB8GA1UdIwQYMBaAFLimLPHeiyYuFHN9k+4+bzbDoOHJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RTgzQi83OTJEMTQ4QUYy ODExMUVBOEE2RkM2NkRDNEY5QUUwMi91S1lzOGQ2TEppNFVjMzJUN2o1dk5zT2c0 Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VLWXM4ZDZMSmk0VWMzMlQ3ajV2TnNPZzRjay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUU4M0IvNzkyRDE0OEFGMjgxMTFFQThBNkZDNjZEQzRGOUFFMDIvRjg5RTY4RDY5 ODI5MTFFRDkwRjhDODc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlTowDQYJKoZIhvcNAQELBQADggEBAF4f6SOdSozpDFaG xNxLKPgBPZQvizP74VDVeuMmTxonO2XIsB2ZNTWMDCPZ08Ea5qxZnmgoaiAcRGjY cEzls18Nde8haKA6uCreRKi8/pzsZGUDTfZw770SieLJ1/ezyaLnuHZzHQ1EmqZW BKLE00UKcRZCWysw0KGRmQ4rsHVpfVa1+5WX/BfZ8cuUu44+TYbtyGiscyuge4cM SCEVEw3Ov1K65GXTax5uzju2yO/x+B9DjmQOHeJpS5IlVJo+cXmKszNzVHNCiCnZ uqsSpkWURrxsSu5SqjSvLW55InY+LXcg+PByjAKH44H6TEPcPvaXJJYpSJT+BcWI aPvSyWk= -----END CERTIFICATE-----Generated at Thu May 16 23:48:42 2024 by rpki-client on console-fra.rpki-client.org