$ rpki-client -vvf rpki.apnic.net/member_repository/A9144266/0E858E2806CB11EC99B0EA3BC4F9AE02/85EAFFD806F911EC9558C827C4F9AE02.roa File: 85EAFFD806F911EC9558C827C4F9AE02.roa (raw, json) Hash identifier: wHbU+G09ph6l8bNV/0smNYx6q5+cqU3QanOLg7uQ2nI= Subject key identifier: DB:D1:8A:E7:15:BD:40:C8:31:BB:85:2D:4A:45:D2:2F:0F:E6:16:0C Certificate issuer: /CN=A9144266/serialNumber=2F9AC68A6B00DF6056F70ABC5AAC6DB920AB1B1D Certificate serial: 03F6 Authority key identifier: 2F:9A:C6:8A:6B:00:DF:60:56:F7:0A:BC:5A:AC:6D:B9:20:AB:1B:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L5rGimsA32BW9wq8WqxtuSCrGx0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144266/0E858E2806CB11EC99B0EA3BC4F9AE02/85EAFFD806F911EC9558C827C4F9AE02.roa Signing time: Tue 31 Oct 2023 01:13:10 +0000 ROA not before: Tue 31 Oct 2023 01:13:10 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 146988 IP address blocks: 103.172.112.0/24 maxlen: 24 103.172.113.0/24 maxlen: 24 2001:df7:6f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144266/0E858E2806CB11EC99B0EA3BC4F9AE02/L5rGimsA32BW9wq8WqxtuSCrGx0.crl rsync://rpki.apnic.net/member_repository/A9144266/0E858E2806CB11EC99B0EA3BC4F9AE02/L5rGimsA32BW9wq8WqxtuSCrGx0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L5rGimsA32BW9wq8WqxtuSCrGx0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 01:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1014 (0x3f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144266/serialNumber=2F9AC68A6B00DF6056F70ABC5AAC6DB920AB1B1D Validity Not Before: Oct 31 01:13:10 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=654054a6-e7b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:76:ae:42:42:5b:b3:54:38:11:da:95:1b:c7: 01:41:34:5c:2b:32:ee:de:3b:79:a0:0e:7d:2f:39: 1a:5a:4e:07:9f:60:8e:fe:8b:55:5e:75:30:8c:9a: f4:0d:33:b7:76:99:73:e5:d9:1d:16:00:4e:ea:f5: ed:37:29:61:2a:dd:a2:00:25:66:ac:e1:11:70:c1: 67:f1:c4:9a:de:c8:7a:cf:65:3d:75:a9:44:4b:0b: f9:d5:b1:94:4c:fd:b9:87:d0:48:0e:35:23:e0:9c: e0:9b:68:6f:ed:00:cf:99:20:35:31:5c:15:d9:c4: d7:c7:d2:9c:79:ed:58:31:a9:e4:4c:b8:62:fd:0e: 33:9c:70:8c:e8:ca:9a:44:12:aa:18:c3:7b:3b:3e: 0c:b3:e7:d2:7b:94:36:ba:97:3b:05:ac:1f:f7:c0: ff:51:73:3a:55:72:ec:23:d8:e8:48:f5:73:e6:d1: f9:9a:58:b4:58:6e:2f:bc:f2:ad:73:cb:37:c2:1d: 74:f0:4c:5b:9f:e7:44:a6:76:be:5b:80:44:52:fa: f9:b4:8c:be:51:c9:04:7e:d6:ea:0e:ae:c8:3d:fd: 96:55:58:04:9b:9a:eb:17:76:4a:f9:cc:42:29:0e: af:0d:0a:7e:9f:d7:25:7d:65:28:03:61:36:83:aa: 9a:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D1:8A:E7:15:BD:40:C8:31:BB:85:2D:4A:45:D2:2F:0F:E6:16:0C X509v3 Authority Key Identifier: keyid:2F:9A:C6:8A:6B:00:DF:60:56:F7:0A:BC:5A:AC:6D:B9:20:AB:1B:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144266/0E858E2806CB11EC99B0EA3BC4F9AE02/L5rGimsA32BW9wq8WqxtuSCrGx0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L5rGimsA32BW9wq8WqxtuSCrGx0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144266/0E858E2806CB11EC99B0EA3BC4F9AE02/85EAFFD806F911EC9558C827C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.112.0/23 IPv6: 2001:df7:6f80::/48 Signature Algorithm: sha256WithRSAEncryption a3:d6:39:f7:5e:7a:aa:73:72:62:50:75:f1:44:2a:c1:7e:5d: d8:40:eb:9a:cc:98:6b:5b:23:27:c6:25:ed:f8:d5:c0:73:40: 82:26:e9:2a:66:69:8d:4f:d0:a7:2b:67:1d:68:0a:a6:f5:78: b2:30:63:d8:09:ce:90:86:da:14:94:af:d5:ad:2a:76:cf:97: d6:5b:48:a5:4f:a6:b1:cd:ed:7c:c6:37:86:dc:17:e4:51:33: 70:97:51:d0:4a:0c:50:8f:47:d2:b2:2f:60:0b:f7:98:81:b9: 8a:aa:56:66:eb:56:a7:88:86:12:a7:44:26:b0:bd:00:6b:34: 8b:73:6b:e4:66:b2:b7:45:ac:54:61:49:12:a3:91:e9:55:11: 1f:07:d1:1d:34:d9:e2:3f:0f:69:3e:db:d7:cd:35:3e:c9:9d: a4:56:e2:26:a0:cf:bc:f8:55:4f:c2:0e:f1:ce:ae:1a:b7:f6: 7b:36:c5:0c:1f:3c:26:d4:55:62:55:33:c5:1e:eb:8b:82:1b: 47:70:24:39:60:ea:ff:6f:d8:4f:b6:20:69:8b:e2:e4:a0:cd: 2d:42:d0:07:35:25:1d:79:aa:4d:2f:b7:34:47:7f:ce:32:27: e3:2c:59:c6:74:4a:0e:64:6f:86:7d:bd:81:f0:25:a6:92:2a: c8:bb:68:b2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQyNjYxMTAvBgNVBAUTKDJGOUFDNjhBNkIwMERGNjA1NkY3MEFCQzVBQUM2REI5 MjBBQjFCMUQwHhcNMjMxMDMxMDExMzEwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQwNTRhNi1lN2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqXauQkJbs1Q4EdqVG8cBQTRcKzLu3jt5oA59LzkaWk4Hn2CO/otVXnUwjJr0 DTO3dplz5dkdFgBO6vXtNylhKt2iACVmrOERcMFn8cSa3sh6z2U9dalESwv51bGU TP25h9BIDjUj4Jzgm2hv7QDPmSA1MVwV2cTXx9Kcee1YMankTLhi/Q4znHCM6Mqa RBKqGMN7Oz4Ms+fSe5Q2upc7Bawf98D/UXM6VXLsI9joSPVz5tH5mli0WG4vvPKt c8s3wh108Exbn+dEpna+W4BEUvr5tIy+UckEftbqDq7IPf2WVVgEm5rrF3ZK+cxC KQ6vDQp+n9clfWUoA2E2g6qafwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNvRiucV vUDIMbuFLUpF0i8P5hYMMB8GA1UdIwQYMBaAFC+axoprAN9gVvcKvFqsbbkgqxsd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDI2Ni8wRTg1OEUyODA2 Q0IxMUVDOTlCMEVBM0JDNEY5QUUwMi9MNXJHaW1zQTMyQlc5d3E4V3F4dHVTQ3JH eDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w1ckdpbXNBMzJCVzl3cThXcXh0dVNDckd4MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQyNjYvMEU4NThFMjgwNkNCMTFFQzk5QjBFQTNCQzRGOUFFMDIvODVFQUZGRDgw NkY5MTFFQzk1NThDODI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrHAwDwQCAAIwCQMHACABDfdvgDANBgkqhkiG9w0BAQsF AAOCAQEAo9Y59156qnNyYlB18UQqwX5d2EDrmsyYa1sjJ8Yl7fjVwHNAgibpKmZp jU/QpytnHWgKpvV4sjBj2AnOkIbaFJSv1a0qds+X1ltIpU+msc3tfMY3htwX5FEz cJdR0EoMUI9H0rIvYAv3mIG5iqpWZutWp4iGEqdEJrC9AGs0i3Nr5Gayt0WsVGFJ EqOR6VURHwfRHTTZ4j8PaT7b1801PsmdpFbiJqDPvPhVT8IO8c6uGrf2ezbFDB88 JtRVYlUzxR7ri4IbR3AkOWDq/2/YT7YgaYvi5KDNLULQBzUlHXmqTS+3NEd/zjIn 4yxZxnRKDmRvhn29gfAlppIqyLtosg== -----END CERTIFICATE-----Generated at Fri Jun 7 03:18:16 2024 by rpki-client on console-ams.rpki-client.org