$ rpki-client -vvf rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/823433125F0C11EC8C2C2820C4F9AE02.roa File: 823433125F0C11EC8C2C2820C4F9AE02.roa (raw, json) Hash identifier: SeaNTqd0MT2Mb0YJWYURazfx/oLk37QwRX3zpyKaSjw= Subject key identifier: F6:AC:FC:D9:8C:33:97:1F:29:F3:E2:A5:FA:D7:71:CE:55:1D:2A:91 Certificate issuer: /CN=A9114D2E/serialNumber=E43C821FBB9CEEA67EBA7A2E505CC5DD7F766055 Certificate serial: 0A0A Authority key identifier: E4:3C:82:1F:BB:9C:EE:A6:7E:BA:7A:2E:50:5C:C5:DD:7F:76:60:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DyCH7uc7qZ-unouUFzF3X92YFU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/823433125F0C11EC8C2C2820C4F9AE02.roa Signing time: Thu 02 May 2024 21:09:44 +0000 ROA not before: Thu 02 May 2024 21:09:44 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 0 IP address blocks: 103.115.193.0/24 maxlen: 24 2001:de9:4000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.crl rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DyCH7uc7qZ-unouUFzF3X92YFU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:09:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2570 (0xa0a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114D2E/serialNumber=E43C821FBB9CEEA67EBA7A2E505CC5DD7F766055 Validity Not Before: May 2 21:09:44 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66340118-917e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:77:ff:be:f9:3d:b1:88:5c:73:27:08:fb:92: c6:5f:5c:cd:a3:54:1e:00:bc:f7:7e:3e:dd:7c:a4: b0:04:6d:55:b1:5e:a8:13:96:10:e2:9a:9f:bf:64: c6:bb:65:00:f5:bd:57:9c:41:30:11:bb:4d:8d:8e: 33:16:98:9c:5c:af:66:c1:6b:e6:0e:dd:c3:9a:8c: df:d0:63:0e:f1:21:53:0d:36:bc:18:a9:61:5a:8a: 54:d8:3e:68:77:3f:44:af:5e:fb:1c:45:35:78:ca: fd:d1:bf:4d:79:2f:8a:ea:db:d2:ac:1c:dd:f9:76: b0:7f:97:bf:7c:b4:c1:25:07:d3:cc:71:1d:9c:80: 1f:e9:f4:ab:ee:9e:0c:51:35:33:97:25:5d:f7:3f: 9e:b4:16:14:09:20:75:87:85:96:f1:2d:c8:23:56: 37:b6:6e:39:85:f4:7a:4e:00:85:f3:a4:46:18:5c: 0f:85:16:6c:aa:99:5e:ef:71:c9:a3:5d:78:6a:89: e4:a0:17:e7:96:09:00:a9:04:3e:69:7c:d9:10:55: 76:ee:ab:63:c6:7d:44:2a:5b:9d:45:b9:ae:85:88: 68:bc:98:4c:96:4f:fd:a6:a6:e3:b4:9a:93:3b:2b: 0d:2d:94:64:7c:e7:cd:2c:d4:86:64:73:5a:bf:29: 55:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AC:FC:D9:8C:33:97:1F:29:F3:E2:A5:FA:D7:71:CE:55:1D:2A:91 X509v3 Authority Key Identifier: keyid:E4:3C:82:1F:BB:9C:EE:A6:7E:BA:7A:2E:50:5C:C5:DD:7F:76:60:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/5DyCH7uc7qZ-unouUFzF3X92YFU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5DyCH7uc7qZ-unouUFzF3X92YFU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114D2E/0FE19C6C511E11EAB8182580C4F9AE02/823433125F0C11EC8C2C2820C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.193.0/24 IPv6: 2001:de9:4000::/48 Signature Algorithm: sha256WithRSAEncryption a1:41:e3:68:d6:9c:43:eb:65:0b:65:d1:47:59:6e:36:d8:d1: de:c1:26:2b:0b:87:0d:51:8e:57:22:36:54:78:83:af:f1:79: 9f:df:2b:43:8b:3c:8b:be:77:86:8e:4d:f8:cf:5c:0f:86:6e: 63:c6:33:04:04:73:12:75:13:31:57:5d:aa:82:fe:19:45:42: b9:d5:de:fe:dc:1b:19:e4:6d:a0:33:be:d6:72:99:d8:84:6f: bd:ea:ad:b0:0a:c3:a5:78:50:b0:f5:38:bb:d1:e8:0f:60:fd: f6:a5:db:d7:25:f7:c5:14:8d:75:29:78:3c:9e:18:9d:77:d4: e5:ea:65:dd:4b:a3:f3:21:e7:3c:1b:04:36:4f:c9:27:3c:e0: 1f:de:ca:c6:42:76:4d:f3:11:21:72:78:81:b4:86:6d:26:a8: c5:07:99:7c:fa:f6:98:3a:89:62:72:df:8a:0a:3f:9d:f9:bf: c4:8e:bc:8a:4e:d3:34:3d:c0:42:62:fe:9b:12:cd:fc:81:27: ed:c0:26:bc:0a:ba:70:dd:3c:b0:d8:7b:76:81:2b:ca:91:ac: a7:50:59:b3:fc:74:51:b1:c7:2b:ed:21:46:dd:bb:ec:fd:4e: 7f:51:d2:9f:3e:07:44:41:52:96:3f:37:d7:07:c8:b9:ca:eb: e1:53:b0:f5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTREMkUxMTAvBgNVBAUTKEU0M0M4MjFGQkI5Q0VFQTY3RUJBN0EyRTUwNUNDNURE N0Y3NjYwNTUwHhcNMjQwNTAyMjEwOTQ0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0MDExOC05MTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt3f/vvk9sYhccycI+5LGX1zNo1QeALz3fj7dfKSwBG1VsV6oE5YQ4pqfv2TG u2UA9b1XnEEwEbtNjY4zFpicXK9mwWvmDt3Dmozf0GMO8SFTDTa8GKlhWopU2D5o dz9Er177HEU1eMr90b9NeS+K6tvSrBzd+Xawf5e/fLTBJQfTzHEdnIAf6fSr7p4M UTUzlyVd9z+etBYUCSB1h4WW8S3II1Y3tm45hfR6TgCF86RGGFwPhRZsqple73HJ o114aonkoBfnlgkAqQQ+aXzZEFV27qtjxn1EKludRbmuhYhovJhMlk/9pqbjtJqT OysNLZRkfOfNLNSGZHNavylVzwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPas/NmM M5cfKfPipfrXcc5VHSqRMB8GA1UdIwQYMBaAFOQ8gh+7nO6mfrp6LlBcxd1/dmBV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEQyRS8wRkUxOUM2QzUx MUUxMUVBQjgxODI1ODBDNEY5QUUwMi81RHlDSDd1YzdxWi11bm91VUZ6RjNYOTJZ RlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVEeUNIN3VjN3FaLXVub3VVRnpGM1g5MllGVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTREMkUvMEZFMTlDNkM1MTFFMTFFQUI4MTgyNTgwQzRGOUFFMDIvODIzNDMzMTI1 RjBDMTFFQzhDMkMyODIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnc8EwDwQCAAIwCQMHACABDelAADANBgkqhkiG9w0BAQsF AAOCAQEAoUHjaNacQ+tlC2XRR1luNtjR3sEmKwuHDVGOVyI2VHiDr/F5n98rQ4s8 i753ho5N+M9cD4ZuY8YzBARzEnUTMVddqoL+GUVCudXe/twbGeRtoDO+1nKZ2IRv veqtsArDpXhQsPU4u9HoD2D99qXb1yX3xRSNdSl4PJ4YnXfU5epl3Uuj8yHnPBsE Nk/JJzzgH97KxkJ2TfMRIXJ4gbSGbSaoxQeZfPr2mDqJYnLfigo/nfm/xI68ik7T ND3AQmL+mxLN/IEn7cAmvAq6cN08sNh7doErypGsp1BZs/x0UbHHK+0hRt277P1O f1HSnz4HREFSlj831wfIucrr4VOw9Q== -----END CERTIFICATE-----Generated at Thu May 2 22:28:47 2024 by rpki-client on console-ams.rpki-client.org