$ rpki-client -vvf rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/D1FCB742514711ED92E3885EC4F9AE02.roa File: D1FCB742514711ED92E3885EC4F9AE02.roa (raw, json) Hash identifier: YxeOVJUAGpB4uR8Uh6hpe+MVw/LDcqDhKKHxSAXAZM4= Subject key identifier: 2A:7E:1E:91:9C:BF:3C:0E:E4:9B:AC:16:8B:2A:C4:5F:CC:E8:A2:9D Certificate issuer: /CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Certificate serial: CA Authority key identifier: 5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/D1FCB742514711ED92E3885EC4F9AE02.roa Signing time: Tue 07 Nov 2023 05:16:56 +0000 ROA not before: Tue 07 Nov 2023 05:16:56 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38195 IP address blocks: 103.12.96.0/23 maxlen: 23 2001:df1:69c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 03:58:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156255/serialNumber=5F6C8FA3A658740231B2C4B13481BE11500ADC76 Validity Not Before: Nov 7 05:16:56 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6549c848-f715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b7:b2:48:82:ab:3f:ec:db:37:87:94:8c:80: dc:f4:7e:d2:f3:26:b9:fd:ec:1d:3e:aa:d0:16:e4: 0d:6a:14:66:52:f3:8a:d8:a1:e6:9d:b1:66:72:3f: 90:9d:eb:3e:64:35:da:f2:f9:2c:37:c5:3f:ab:a1: 2f:1a:4f:4a:9a:7f:10:36:f5:72:0d:28:1f:c7:7c: d3:2d:ca:22:a0:c0:94:96:57:1d:3c:1e:10:bf:ac: 6f:9c:d3:53:cd:67:9a:c5:57:8b:c1:6a:37:70:85: 72:79:d2:7e:b5:f2:f6:b6:4b:84:ec:3f:64:c7:b6: b3:f2:96:78:d7:43:07:f9:d6:28:78:5e:38:39:c7: e6:7c:2a:19:9f:0d:3c:ad:87:76:72:77:aa:60:4c: f7:c7:d1:86:52:35:ce:db:20:35:7b:eb:0e:5e:3b: f5:f3:61:8b:6c:3a:fc:8b:db:07:fc:cd:42:24:21: 47:5f:d7:f0:e6:05:c7:27:7e:4f:20:c4:64:23:5d: 01:bf:cc:99:33:c5:9e:c4:c8:cf:99:c0:99:ae:f3: bc:07:35:99:7f:4d:cf:9e:c9:9c:39:3a:ae:d5:40: 2e:2d:4a:c1:3e:e9:fb:0f:ac:2f:7e:5c:77:67:a1: 21:12:a5:65:39:ee:cc:7c:f7:de:d6:50:cc:e3:bd: 61:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:7E:1E:91:9C:BF:3C:0E:E4:9B:AC:16:8B:2A:C4:5F:CC:E8:A2:9D X509v3 Authority Key Identifier: keyid:5F:6C:8F:A3:A6:58:74:02:31:B2:C4:B1:34:81:BE:11:50:0A:DC:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/X2yPo6ZYdAIxssSxNIG-EVAK3HY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2yPo6ZYdAIxssSxNIG-EVAK3HY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156255/9162084C507311ED9B8C142DC4F9AE02/D1FCB742514711ED92E3885EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.96.0/23 IPv6: 2001:df1:69c0::/48 Signature Algorithm: sha256WithRSAEncryption 8d:8d:38:bf:5c:a8:38:af:c9:85:45:ef:53:30:ab:7b:06:ce: 59:f4:7c:96:35:2d:29:70:20:de:16:e3:8f:e4:6e:f7:75:63: 89:72:7b:20:85:8f:e8:73:6d:56:32:8d:28:35:a1:63:ab:25: 62:f9:34:8d:94:b5:d4:01:02:35:26:5d:f7:b8:95:07:50:3d: b8:eb:48:4b:c8:19:d5:1d:74:56:50:bc:2f:c1:f4:f2:27:fc: 67:9b:de:a6:76:af:f4:d6:cc:2b:86:50:a8:fc:3f:97:6c:fa: 25:f1:9c:05:38:55:2d:e4:11:f1:3b:68:1a:41:c1:ba:84:b5: a2:44:e5:65:4f:ee:48:01:83:4f:58:40:9a:7f:15:26:a6:37: 35:78:75:91:f4:fd:c7:ed:1d:d2:95:5d:09:17:66:ce:d8:1f: 8c:bc:0e:b3:4b:78:0d:14:c6:db:56:ee:95:0d:85:14:ca:bb: 26:0b:6e:9c:c3:4b:fd:8a:09:d6:a8:2c:2f:af:51:7e:7e:c5: af:cf:6e:ce:5d:a5:93:1a:63:50:53:9b:41:c5:ab:a1:a0:59: c9:49:40:3e:1f:3b:a6:31:29:98:c1:39:27:dc:b2:9d:96:a8: 8f:b5:33:48:cf:ea:02:49:5c:39:be:17:a9:b2:9e:67:80:f4: 82:fd:0e:39 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTYyNTUxMTAvBgNVBAUTKDVGNkM4RkEzQTY1ODc0MDIzMUIyQzRCMTM0ODFCRTEx NTAwQURDNzYwHhcNMjMxMTA3MDUxNjU2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ5Yzg0OC1mNzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbeySIKrP+zbN4eUjIDc9H7S8ya5/ewdPqrQFuQNahRmUvOK2KHmnbFmcj+Q nes+ZDXa8vksN8U/q6EvGk9Kmn8QNvVyDSgfx3zTLcoioMCUllcdPB4Qv6xvnNNT zWeaxVeLwWo3cIVyedJ+tfL2tkuE7D9kx7az8pZ410MH+dYoeF44OcfmfCoZnw08 rYd2cneqYEz3x9GGUjXO2yA1e+sOXjv182GLbDr8i9sH/M1CJCFHX9fw5gXHJ35P IMRkI10Bv8yZM8WexMjPmcCZrvO8BzWZf03PnsmcOTqu1UAuLUrBPun7D6wvflx3 Z6EhEqVlOe7MfPfe1lDM471h2QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCp+HpGc vzwO5JusFosqxF/M6KKdMB8GA1UdIwQYMBaAFF9sj6OmWHQCMbLEsTSBvhFQCtx2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjI1NS85MTYyMDg0QzUw NzMxMUVEOUI4QzE0MkRDNEY5QUUwMi9YMnlQbzZaWWRBSXhzc1N4TklHLUVWQUsz SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1gyeVBvNlpZZEFJeHNzU3hOSUctRVZBSzNIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTYyNTUvOTE2MjA4NEM1MDczMTFFRDlCOEMxNDJEQzRGOUFFMDIvRDFGQ0I3NDI1 MTQ3MTFFRDkyRTM4ODVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnDGAwDwQCAAIwCQMHACABDfFpwDANBgkqhkiG9w0BAQsF AAOCAQEAjY04v1yoOK/JhUXvUzCrewbOWfR8ljUtKXAg3hbjj+Ru93VjiXJ7IIWP 6HNtVjKNKDWhY6slYvk0jZS11AECNSZd97iVB1A9uOtIS8gZ1R10VlC8L8H08if8 Z5vepnav9NbMK4ZQqPw/l2z6JfGcBThVLeQR8TtoGkHBuoS1okTlZU/uSAGDT1hA mn8VJqY3NXh1kfT9x+0d0pVdCRdmztgfjLwOs0t4DRTG21bulQ2FFMq7JgtunMNL /YoJ1qgsL69Rfn7Fr89uzl2lkxpjUFObQcWroaBZyUlAPh87pjEpmME5J9yynZao j7UzSM/qAklcOb4XqbKeZ4D0gv0OOQ== -----END CERTIFICATE-----Generated at Tue Jun 25 07:41:35 2024 by rpki-client on console-ams.rpki-client.org