$ rpki-client -vvf rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/7114716A653911EFB61F430DC4F9AE02.roa File: 7114716A653911EFB61F430DC4F9AE02.roa (raw, json) Hash identifier: bO/gfY3HBbGIQDRrLWr0PVEzkY2zoAiDv4q0XXDREo8= Subject key identifier: 23:6F:1C:31:BA:6F:8F:B3:7C:5C:84:94:2A:EA:3B:D9:C0:50:1C:52 Certificate issuer: /CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Certificate serial: 02 Authority key identifier: 83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/7114716A653911EFB61F430DC4F9AE02.roa Signing time: Wed 28 Aug 2024 12:31:26 +0000 ROA not before: Wed 28 Aug 2024 12:31:26 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139003 IP address blocks: 103.168.220.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137E5F/serialNumber=83C2B54B641E3FF06E31A2B4450C157ADAD59B68 Validity Not Before: Aug 28 12:31:26 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66cf189d-115d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c9:e4:94:f1:2a:6a:23:47:dd:2b:a9:5b:20: e8:f5:b0:4c:b8:77:7a:68:bb:65:9b:6c:4b:d0:73: b2:b3:b6:34:69:96:69:de:b3:2d:f9:04:87:61:00: 06:11:4c:37:51:b1:e1:b9:dc:b2:ad:a8:f8:10:3a: 1e:7d:72:99:93:aa:f0:ea:bc:ad:40:42:10:87:ac: 3a:35:d1:e0:d6:1b:34:a1:33:53:f9:36:0f:e7:af: 32:c5:2d:9f:ba:8b:77:f7:4a:a3:f6:5a:26:7c:82: cc:05:c8:cb:84:7c:b9:bf:fe:f1:a2:43:64:9e:7a: 90:46:3b:9b:6a:d8:96:6b:be:e8:e6:2f:ae:9b:eb: 5e:a5:ef:b8:f6:19:cd:e6:c2:42:b1:74:39:3f:c5: 32:19:f8:e0:57:cd:ec:34:28:79:33:b5:81:04:08: 3d:29:c6:4f:cc:a1:f1:0c:1a:06:72:d7:0d:70:b3: dc:bf:49:30:dd:50:08:c3:22:b6:ae:9d:e5:f9:bb: 83:7a:8a:88:04:36:90:68:32:7d:c6:6b:12:a1:41: 98:4a:bb:8a:fb:dd:46:1b:9e:86:66:3e:3e:48:88: eb:49:c0:28:14:e6:60:07:fa:86:64:af:b7:70:e2: 44:86:4e:73:d6:4f:8f:24:76:0d:fc:e7:f5:a7:d9: d4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:6F:1C:31:BA:6F:8F:B3:7C:5C:84:94:2A:EA:3B:D9:C0:50:1C:52 X509v3 Authority Key Identifier: keyid:83:C2:B5:4B:64:1E:3F:F0:6E:31:A2:B4:45:0C:15:7A:DA:D5:9B:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/g8K1S2QeP_BuMaK0RQwVetrVm2g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g8K1S2QeP_BuMaK0RQwVetrVm2g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137E5F/80C4B300653811EF8B46896EC4F9AE02/7114716A653911EFB61F430DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.220.0/23 Signature Algorithm: sha256WithRSAEncryption 51:3a:4e:01:c2:12:e5:36:94:40:d3:40:79:7d:69:d1:43:11: 00:c5:0d:ae:a1:5f:01:6b:d9:4b:ee:c6:ba:8a:87:df:32:73: 2e:b0:30:76:e2:17:6d:51:73:42:2d:d3:7b:cd:d4:0b:bc:ca: c4:29:0e:49:03:68:c8:eb:70:37:45:28:ec:10:50:f9:56:41: ae:a4:f7:52:7f:62:a6:51:63:68:27:fe:35:98:ba:8e:c6:fc: 6d:89:fa:4f:ea:d7:4f:d0:78:96:8d:56:99:61:22:1e:f3:16: 63:38:89:64:4f:53:51:43:ad:69:ed:45:61:8e:ce:09:db:1f: 21:c4:2f:fa:3d:06:09:1f:e0:64:18:3b:77:23:0c:f2:80:43: 4b:1d:ce:bb:07:41:b0:83:34:d5:be:7b:87:6b:8f:65:08:f3: ed:cb:02:50:29:c1:6b:a8:46:bf:d6:15:6e:83:f6:b3:f4:73: de:b3:e7:df:11:94:d9:a1:d8:bc:95:d1:5e:a2:12:d8:f5:56: 72:b6:c9:4b:13:89:b5:5d:f7:57:23:56:2a:dd:f2:7e:e4:d8: e4:5d:ea:45:a8:90:2e:ce:58:ec:d7:55:d8:6e:87:b5:d6:8d: f2:3a:fc:8a:80:d4:8c:9f:e0:23:46:43:26:be:fa:0d:86:cd: 72:fc:d6:a8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz N0U1RjExMC8GA1UEBRMoODNDMkI1NEI2NDFFM0ZGMDZFMzFBMkI0NDUwQzE1N0FE QUQ1OUI2ODAeFw0yNDA4MjgxMjMxMjZaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2YxODlkLTExNWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzyeSU8SpqI0fdK6lbIOj1sEy4d3pou2WbbEvQc7KztjRplmnesy35BIdhAAYR TDdRseG53LKtqPgQOh59cpmTqvDqvK1AQhCHrDo10eDWGzShM1P5Ng/nrzLFLZ+6 i3f3SqP2WiZ8gswFyMuEfLm//vGiQ2SeepBGO5tq2JZrvujmL66b616l77j2Gc3m wkKxdDk/xTIZ+OBXzew0KHkztYEECD0pxk/MofEMGgZy1w1ws9y/STDdUAjDIrau neX5u4N6iogENpBoMn3GaxKhQZhKu4r73UYbnoZmPj5IiOtJwCgU5mAH+oZkr7dw 4kSGTnPWT48kdg385/Wn2dS5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUI28cMbpv j7N8XISUKuo72cBQHFIwHwYDVR0jBBgwFoAUg8K1S2QeP/BuMaK0RQwVetrVm2gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3RTVGLzgwQzRCMzAwNjUz ODExRUY4QjQ2ODk2RUM0RjlBRTAyL2c4SzFTMlFlUF9CdU1hSzBSUXdWZXRyVm0y Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZzhLMVMyUWVQX0J1TWFLMFJRd1ZldHJWbTJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz N0U1Ri84MEM0QjMwMDY1MzgxMUVGOEI0Njg5NkVDNEY5QUUwMi83MTE0NzE2QTY1 MzkxMUVGQjYxRjQzMERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeo3DANBgkqhkiG9w0BAQsFAAOCAQEAUTpOAcIS5TaUQNNA eX1p0UMRAMUNrqFfAWvZS+7GuoqH3zJzLrAwduIXbVFzQi3Te83UC7zKxCkOSQNo yOtwN0Uo7BBQ+VZBrqT3Un9iplFjaCf+NZi6jsb8bYn6T+rXT9B4lo1WmWEiHvMW YziJZE9TUUOtae1FYY7OCdsfIcQv+j0GCR/gZBg7dyMM8oBDSx3OuwdBsIM01b57 h2uPZQjz7csCUCnBa6hGv9YVboP2s/Rz3rPn3xGU2aHYvJXRXqIS2PVWcrbJSxOJ tV33VyNWKt3yfuTY5F3qRaiQLs5Y7NdV2G6HtdaN8jr8ioDUjJ/gI0ZDJr76DYbN cvzWqA== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org