$ rpki-client -vvf rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/1407117C216311EA90D74C52C4F9AE02.roa File: 1407117C216311EA90D74C52C4F9AE02.roa (raw, json) Hash identifier: 4a+tMAEiWkCKQaegnjxPyUcAuZa9uA285YsrVwUzfCg= Subject key identifier: DB:3F:37:45:71:8A:7C:85:35:32:D1:20:24:6D:19:83:4D:C2:17:8C Certificate issuer: /CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Certificate serial: 0AA3 Authority key identifier: 1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/1407117C216311EA90D74C52C4F9AE02.roa Signing time: Tue 12 Dec 2023 20:07:36 +0000 ROA not before: Tue 12 Dec 2023 20:07:36 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 58910 IP address blocks: 103.145.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2723 (0xaa3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110A69/serialNumber=1B6E3292C835654E491492E5584CF993F05BD990 Validity Not Before: Dec 12 20:07:36 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6578bd87-9a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6a:d1:c6:af:dc:d8:6a:c0:a9:59:5b:d2:77: de:ec:27:a7:8e:04:54:19:2c:12:c5:5c:3f:33:2b: f0:52:97:46:5b:06:bb:5b:7c:d6:28:6a:0c:79:19: 93:2a:66:e4:2b:32:6c:62:69:29:3b:51:51:2c:e6: 1d:61:5d:38:09:a9:83:73:be:da:53:5e:b4:95:8f: 8a:89:25:90:34:81:7c:a1:17:2b:0d:0b:9f:64:10: 04:d7:cc:8f:a9:47:96:bd:b3:74:82:99:e1:45:c3: ad:86:69:a0:c8:d5:84:4a:ba:35:c9:06:42:ba:39: d4:51:6b:3d:9e:99:33:2c:6a:bb:03:22:e6:b5:91: 42:3d:5b:31:a8:a0:ee:2a:95:58:8f:ca:ed:ec:bd: 3e:c8:f3:e2:c3:1a:bb:c2:e1:10:82:de:f8:de:1a: d8:1b:30:96:24:91:14:c1:4f:01:45:f0:c2:44:cd: 83:84:ce:c8:0f:b9:44:73:89:e2:90:ba:ac:79:05: f7:f4:33:1d:01:45:2e:7d:b1:84:f4:2f:17:36:e6: e1:33:26:8d:ab:fd:c8:4b:db:b7:c4:2e:de:40:f6: 80:61:6f:86:05:92:f9:90:f6:ee:6e:c2:b6:7c:33: 0d:cb:f0:d3:68:69:f0:9a:c2:e9:a6:43:6f:a9:6b: d4:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:3F:37:45:71:8A:7C:85:35:32:D1:20:24:6D:19:83:4D:C2:17:8C X509v3 Authority Key Identifier: keyid:1B:6E:32:92:C8:35:65:4E:49:14:92:E5:58:4C:F9:93:F0:5B:D9:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G24yksg1ZU5JFJLlWEz5k_Bb2ZA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110A69/E3ABD042214111EABDF67769C4F9AE02/1407117C216311EA90D74C52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.156.0/24 Signature Algorithm: sha256WithRSAEncryption b3:5f:4e:aa:5c:af:c7:44:c0:44:1f:5e:9e:de:92:a9:6f:42: c8:67:4c:66:d7:43:d7:72:0d:0a:f3:28:26:53:26:87:b8:18: 50:c6:a9:d5:a7:28:52:e9:33:a6:50:36:85:03:cf:39:2e:12: c9:18:f2:08:85:90:66:74:74:fa:93:81:55:b1:b0:70:7c:03: 1f:65:e5:64:02:71:57:01:a9:b2:e6:53:a2:25:d0:b4:3d:44: d8:52:0a:c4:61:10:cc:5b:bf:ca:5a:89:97:3e:de:09:fb:21: 8e:a3:20:7e:85:b4:12:44:6b:fe:0c:11:eb:14:c1:8e:03:94: 54:ed:ea:14:07:ea:3a:a6:60:fa:10:f9:3c:a4:f7:d4:f3:da: 99:23:0d:54:c0:6a:26:ad:e2:b3:a6:c9:fd:65:fa:88:14:9c: d0:de:46:23:37:e3:5b:9a:1e:de:16:52:48:d1:36:45:bf:59: 92:51:be:0e:84:b1:f4:29:41:61:f0:e5:fa:bb:ed:08:cd:26: d4:9e:95:11:2f:92:26:09:78:93:33:8d:10:82:87:8f:be:5f: 6e:c3:2d:1d:59:09:45:96:67:24:29:a7:32:a7:ab:44:31:eb: ff:00:aa:cc:fa:29:bf:0f:e3:2a:56:ec:5c:9f:1c:62:f9:95: df:2d:35:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBBNjkxMTAvBgNVBAUTKDFCNkUzMjkyQzgzNTY1NEU0OTE0OTJFNTU4NENGOTkz RjA1QkQ5OTAwHhcNMjMxMjEyMjAwNzM2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc4YmQ4Ny05YTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr2rRxq/c2GrAqVlb0nfe7CenjgRUGSwSxVw/MyvwUpdGWwa7W3zWKGoMeRmT KmbkKzJsYmkpO1FRLOYdYV04CamDc77aU160lY+KiSWQNIF8oRcrDQufZBAE18yP qUeWvbN0gpnhRcOthmmgyNWESro1yQZCujnUUWs9npkzLGq7AyLmtZFCPVsxqKDu KpVYj8rt7L0+yPPiwxq7wuEQgt743hrYGzCWJJEUwU8BRfDCRM2DhM7ID7lEc4ni kLqseQX39DMdAUUufbGE9C8XNubhMyaNq/3IS9u3xC7eQPaAYW+GBZL5kPbubsK2 fDMNy/DTaGnwmsLppkNvqWvUOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNs/N0Vx inyFNTLRICRtGYNNwheMMB8GA1UdIwQYMBaAFBtuMpLINWVOSRSS5VhM+ZPwW9mQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEE2OS9FM0FCRDA0MjIx NDExMUVBQkRGNjc3NjlDNEY5QUUwMi9HMjR5a3NnMVpVNUpGSkxsV0V6NWtfQmIy WkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cyNHlrc2cxWlU1SkZKTGxXRXo1a19CYjJaQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBBNjkvRTNBQkQwNDIyMTQxMTFFQUJERjY3NzY5QzRGOUFFMDIvMTQwNzExN0My MTYzMTFFQTkwRDc0QzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkZwwDQYJKoZIhvcNAQELBQADggEBALNfTqpcr8dEwEQf Xp7ekqlvQshnTGbXQ9dyDQrzKCZTJoe4GFDGqdWnKFLpM6ZQNoUDzzkuEskY8giF kGZ0dPqTgVWxsHB8Ax9l5WQCcVcBqbLmU6Il0LQ9RNhSCsRhEMxbv8paiZc+3gn7 IY6jIH6FtBJEa/4MEesUwY4DlFTt6hQH6jqmYPoQ+Tyk99Tz2pkjDVTAaiat4rOm yf1l+ogUnNDeRiM341uaHt4WUkjRNkW/WZJRvg6EsfQpQWHw5fq77QjNJtSelREv kiYJeJMzjRCCh4++X27DLR1ZCUWWZyQppzKnq0Qx6/8Aqsz6Kb8P4ypW7FyfHGL5 ld8tNYo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:55 2024 by rpki-client on console-fra.rpki-client.org