$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/A917D87217A711ED8D17FC7CC4F9AE02.roa File: A917D87217A711ED8D17FC7CC4F9AE02.roa (raw, json) Hash identifier: Zl1OdprsSbZO6kJ93156dFn5LZrbdumG7KQVdLYJ1W0= Subject key identifier: EC:47:DC:7B:E9:3D:61:37:20:8B:5A:50:32:96:50:F1:02:09:80:E9 Certificate issuer: /CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Certificate serial: 01BF Authority key identifier: 47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/A917D87217A711ED8D17FC7CC4F9AE02.roa Signing time: Thu 11 Jul 2024 03:35:30 +0000 ROA not before: Thu 11 Jul 2024 03:35:30 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 150002 IP address blocks: 103.190.130.0/23 maxlen: 23 103.190.130.0/24 maxlen: 24 103.190.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1D/serialNumber=476945B21F2589F7E712751FE747FA2143A5235B Validity Not Before: Jul 11 03:35:30 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668f5302-b0a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:32:38:d5:9e:da:23:02:5c:8f:48:d3:87:15: 91:7c:0f:aa:17:2d:3b:bc:a2:05:35:a7:25:cb:dc: 09:00:5a:9e:83:9b:a3:5a:21:78:90:2f:8b:2e:28: 0f:d8:50:9b:59:9e:63:ab:18:b6:15:1d:84:24:6e: 06:1b:8d:75:48:bb:c5:3d:72:7b:03:e9:25:c8:dd: b3:62:ad:32:7b:ed:c3:aa:e9:7b:32:80:a9:77:3d: 79:89:0d:6d:35:c6:56:75:22:41:3c:56:a0:2f:f5: 52:a7:c6:df:41:07:f9:87:4d:40:9a:55:97:9d:89: c0:f5:3b:b4:35:a8:29:7d:8a:32:62:56:f5:67:c5: cc:c0:8a:b0:4d:98:d6:e6:a9:23:42:41:73:6f:bf: 9f:22:12:82:e6:30:28:7c:95:4f:aa:e3:48:e9:02: 95:2d:9c:16:8f:5d:ac:69:0e:ee:e5:76:0a:bc:26: 66:c8:39:89:75:9e:3e:18:fb:80:64:35:f9:95:b2: f4:5c:ac:ce:e6:1b:10:df:05:4b:7f:59:77:e8:00: a1:8b:16:a5:16:4f:0e:4e:e3:00:e2:11:cd:62:11: d0:bd:48:04:0f:03:22:bf:0b:21:cd:5e:53:9d:40: 4d:fc:ca:d7:9a:82:d6:39:26:b2:c2:a5:ea:b2:18: f5:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:47:DC:7B:E9:3D:61:37:20:8B:5A:50:32:96:50:F1:02:09:80:E9 X509v3 Authority Key Identifier: keyid:47:69:45:B2:1F:25:89:F7:E7:12:75:1F:E7:47:FA:21:43:A5:23:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/R2lFsh8liffnEnUf50f6IUOlI1s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R2lFsh8liffnEnUf50f6IUOlI1s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1D/30203ED017A411EDB3601564C4F9AE02/A917D87217A711ED8D17FC7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.130.0/23 Signature Algorithm: sha256WithRSAEncryption b1:87:99:3b:09:d6:e1:96:3d:51:ba:1c:53:a4:cc:36:0b:c3: bb:2f:39:76:9a:c5:52:25:77:c3:e6:c0:30:d1:f9:00:b7:80: 71:13:b2:28:f3:5e:fb:13:21:c7:d9:d2:f5:4a:ab:82:29:56: d9:68:92:ca:7d:3d:c3:0d:a6:fa:c0:42:9f:2f:3e:03:b7:e8: f0:30:17:0e:70:73:36:93:fa:79:4e:e7:6a:35:1b:17:92:ca: 5b:b3:48:0d:93:31:b8:54:d1:e3:bf:8b:f7:8d:24:4e:36:ef: c9:ab:56:e6:cf:eb:1f:a0:45:a9:a5:6b:c6:68:d2:7c:e4:1f: 16:db:e1:a3:dd:ed:b8:eb:89:16:11:ad:8d:62:89:79:07:52: 3a:29:01:92:8b:5c:c5:ef:3c:ab:26:c2:4c:fd:13:1c:3d:04: a0:da:78:c4:2c:70:49:85:5f:79:90:05:e4:69:cd:38:d5:e6: 82:15:c7:c0:67:6f:3a:77:41:97:60:2d:19:80:6e:57:c1:7e: 9c:05:9d:93:7e:9a:57:5b:73:03:45:e9:12:0f:73:c3:b3:2a: 61:ad:31:86:57:b7:db:74:98:be:10:78:8e:f4:76:14:c4:1f: aa:97:f9:46:ad:a7:9a:7a:4d:b4:b0:bd:6c:87:a8:4c:b3:bb: ee:d4:d9:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUQxMTAvBgNVBAUTKDQ3Njk0NUIyMUYyNTg5RjdFNzEyNzUxRkU3NDdGQTIx NDNBNTIzNUIwHhcNMjQwNzExMDMzNTMwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhmNTMwMi1iMGE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zI41Z7aIwJcj0jThxWRfA+qFy07vKIFNacly9wJAFqeg5ujWiF4kC+LLigP 2FCbWZ5jqxi2FR2EJG4GG411SLvFPXJ7A+klyN2zYq0ye+3Dqul7MoCpdz15iQ1t NcZWdSJBPFagL/VSp8bfQQf5h01AmlWXnYnA9Tu0NagpfYoyYlb1Z8XMwIqwTZjW 5qkjQkFzb7+fIhKC5jAofJVPquNI6QKVLZwWj12saQ7u5XYKvCZmyDmJdZ4+GPuA ZDX5lbL0XKzO5hsQ3wVLf1l36AChixalFk8OTuMA4hHNYhHQvUgEDwMivwshzV5T nUBN/MrXmoLWOSaywqXqshj19wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOxH3Hvp PWE3IItaUDKWUPECCYDpMB8GA1UdIwQYMBaAFEdpRbIfJYn35xJ1H+dH+iFDpSNb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRC8zMDIwM0VEMDE3 QTQxMUVEQjM2MDE1NjRDNEY5QUUwMi9SMmxGc2g4bGlmZm5FblVmNTBmNklVT2xJ MXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IybEZzaDhsaWZmbkVuVWY1MGY2SVVPbEkxcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUQvMzAyMDNFRDAxN0E0MTFFREIzNjAxNTY0QzRGOUFFMDIvQTkxN0Q4NzIx N0E3MTFFRDhEMTdGQzdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvoIwDQYJKoZIhvcNAQELBQADggEBALGHmTsJ1uGWPVG6 HFOkzDYLw7svOXaaxVIld8PmwDDR+QC3gHETsijzXvsTIcfZ0vVKq4IpVtloksp9 PcMNpvrAQp8vPgO36PAwFw5wczaT+nlO52o1GxeSyluzSA2TMbhU0eO/i/eNJE42 78mrVubP6x+gRamla8Zo0nzkHxbb4aPd7bjriRYRrY1iiXkHUjopAZKLXMXvPKsm wkz9Exw9BKDaeMQscEmFX3mQBeRpzTjV5oIVx8Bnbzp3QZdgLRmAblfBfpwFnZN+ mldbcwNF6RIPc8OzKmGtMYZXt9t0mL4QeI70dhTEH6qX+Uatp5p6TbSwvWyHqEyz u+7U2T8= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:33 2024 by rpki-client on console-fra.rpki-client.org