$ rpki-client -vvf rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9F9CEB425CB911ECAEF7AE14C4F9AE02.roa File: 9F9CEB425CB911ECAEF7AE14C4F9AE02.roa (raw, json) Hash identifier: 3XNH0YsZUZtQ4GlynpMnfxr32DxWEsHkc6y4XPEDHpg= Subject key identifier: 3E:60:96:14:F6:94:4A:84:6D:22:A3:80:AC:E0:0B:4E:5F:2E:B8:C1 Certificate issuer: /CN=A914FE87/serialNumber=EBBB7562C6A49FB7EDE57412BC1FFAD48E1AFB49 Certificate serial: 03DD Authority key identifier: EB:BB:75:62:C6:A4:9F:B7:ED:E5:74:12:BC:1F:FA:D4:8E:1A:FB:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9F9CEB425CB911ECAEF7AE14C4F9AE02.roa Signing time: Sun 03 Nov 2024 00:33:29 +0000 ROA not before: Sun 03 Nov 2024 00:33:28 +0000 ROA not after: Sat 01 Mar 2025 00:00:00 +0000 asID: 147033 IP address blocks: 103.173.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.crl rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 989 (0x3dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914FE87/serialNumber=EBBB7562C6A49FB7EDE57412BC1FFAD48E1AFB49 Validity Not Before: Nov 3 00:33:28 2024 GMT Not After : Mar 1 00:00:00 2025 GMT Subject: CN=6726c4d8-0ccf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:83:c0:14:d7:0c:51:f1:a7:68:75:de:68:97: 58:b0:1d:3d:36:3d:8a:20:a7:81:ab:12:e7:f5:64: 67:cf:dd:28:72:e2:f8:b3:f3:63:17:a7:a9:47:22: 5c:8e:49:4d:87:21:28:58:05:b4:fa:f7:95:8a:d9: 79:f7:c3:2c:b9:e4:fd:30:97:0e:f3:49:2a:40:87: 49:6f:9d:17:eb:0c:74:0b:c2:10:75:e6:ce:42:13: af:50:83:3d:0e:32:10:ac:bc:16:ec:06:60:2c:45: 7a:d5:13:26:a9:21:48:58:5f:8d:c8:d4:73:cc:f0: 8a:2b:bc:2a:6a:95:55:df:59:ff:e0:f6:51:95:c4: 5e:91:7c:5d:a3:5b:36:da:da:8a:98:3f:46:c2:2d: ed:95:6e:9e:2a:0a:11:95:0f:df:e3:7f:01:37:29: f5:f7:db:53:6b:a3:7b:42:44:2e:be:51:9b:72:5a: 92:9c:ea:62:34:5d:fb:b0:a1:45:ec:18:3b:fc:d8: 8c:20:14:c1:e2:ec:5e:85:a4:8b:69:a0:d7:09:81: 5d:8d:a2:6f:5b:87:ac:48:d5:23:a6:72:85:6b:c0: 84:6e:c7:4b:c4:27:14:d0:f7:f1:f7:47:0a:9e:c3: 50:1f:42:07:de:32:44:ef:0c:d4:3f:66:41:42:ea: 83:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:60:96:14:F6:94:4A:84:6D:22:A3:80:AC:E0:0B:4E:5F:2E:B8:C1 X509v3 Authority Key Identifier: keyid:EB:BB:75:62:C6:A4:9F:B7:ED:E5:74:12:BC:1F:FA:D4:8E:1A:FB:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/67t1Ysakn7ft5XQSvB_61I4a-0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/67t1Ysakn7ft5XQSvB_61I4a-0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914FE87/4E1401E65CB611ECA771180EC4F9AE02/9F9CEB425CB911ECAEF7AE14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.106.0/23 Signature Algorithm: sha256WithRSAEncryption 59:05:83:85:5e:62:55:24:cf:85:4f:68:5b:61:64:ed:20:25: 97:93:83:1d:5e:09:01:53:90:46:e5:73:77:f6:55:33:98:30: 52:d0:8b:14:3a:8e:e4:54:52:98:87:35:b5:42:51:d0:ae:fd: 9c:04:05:fc:33:fe:a6:c3:3c:8d:68:7e:31:77:1c:7e:ca:c1: c9:d3:b4:1f:58:cb:a7:8e:4d:71:80:49:2a:05:67:e4:f7:fa: ac:59:8e:19:2a:f0:2c:58:32:8e:d1:88:cf:c4:f6:fd:e5:e3: 3d:1e:2a:bc:f5:1d:80:a0:05:95:69:0f:35:9c:9b:06:33:c6: cb:10:f2:e6:cb:71:2e:a3:b0:5f:4e:ca:7d:0f:19:98:57:9f: 1e:a8:59:9c:94:2b:52:51:23:62:0f:3e:0c:23:ea:1d:68:ee: 06:9c:ad:02:fc:21:df:cf:09:f0:20:11:3c:b4:3e:ae:d4:49: dc:ce:3d:fb:f4:24:9a:00:47:37:43:c2:86:94:78:3b:f8:18: b9:5e:90:34:9c:fc:79:8b:1b:68:14:27:1b:08:b9:a0:89:3d: 81:2d:50:2a:b3:e8:37:07:ff:bd:7f:23:28:83:e1:ae:ad:b4: 06:85:97:ed:17:e4:65:e6:67:14:1b:76:fd:49:72:bb:58:9b: 59:a0:88:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA90wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEZFODcxMTAvBgNVBAUTKEVCQkI3NTYyQzZBNDlGQjdFREU1NzQxMkJDMUZGQUQ0 OEUxQUZCNDkwHhcNMjQxMTAzMDAzMzI4WhcNMjUwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YzRkOC0wY2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYPAFNcMUfGnaHXeaJdYsB09Nj2KIKeBqxLn9WRnz90ocuL4s/NjF6epRyJc jklNhyEoWAW0+veVitl598MsueT9MJcO80kqQIdJb50X6wx0C8IQdebOQhOvUIM9 DjIQrLwW7AZgLEV61RMmqSFIWF+NyNRzzPCKK7wqapVV31n/4PZRlcRekXxdo1s2 2tqKmD9Gwi3tlW6eKgoRlQ/f438BNyn199tTa6N7QkQuvlGbclqSnOpiNF37sKFF 7Bg7/NiMIBTB4uxehaSLaaDXCYFdjaJvW4esSNUjpnKFa8CEbsdLxCcU0Pfx90cK nsNQH0IH3jJE7wzUP2ZBQuqDYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD5glhT2 lEqEbSKjgKzgC05fLrjBMB8GA1UdIwQYMBaAFOu7dWLGpJ+37eV0Erwf+tSOGvtJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RkU4Ny80RTE0MDFFNjVD QjYxMUVDQTc3MTE4MEVDNEY5QUUwMi82N3QxWXNha243ZnQ1WFFTdkJfNjFJNGEt MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY3dDFZc2FrbjdmdDVYUVN2Ql82MUk0YS0way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEZFODcvNEUxNDAxRTY1Q0I2MTFFQ0E3NzExODBFQzRGOUFFMDIvOUY5Q0VCNDI1 Q0I5MTFFQ0FFRjdBRTE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrWowDQYJKoZIhvcNAQELBQADggEBAFkFg4VeYlUkz4VP aFthZO0gJZeTgx1eCQFTkEblc3f2VTOYMFLQixQ6juRUUpiHNbVCUdCu/ZwEBfwz /qbDPI1ofjF3HH7KwcnTtB9Yy6eOTXGASSoFZ+T3+qxZjhkq8CxYMo7RiM/E9v3l 4z0eKrz1HYCgBZVpDzWcmwYzxssQ8ubLcS6jsF9Oyn0PGZhXnx6oWZyUK1JRI2IP Pgwj6h1o7gacrQL8Id/PCfAgETy0Pq7USdzOPfv0JJoARzdDwoaUeDv4GLlekDSc /HmLG2gUJxsIuaCJPYEtUCqz6DcH/71/IyiD4a6ttAaFl+0X5GXmZxQbdv1JcrtY m1mgiIg= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:34 2024 by rpki-client on console-fra.rpki-client.org