$ rpki-client -vvf rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/44E9156C730811EC89C1CE31C4F9AE02.roa File: 44E9156C730811EC89C1CE31C4F9AE02.roa (raw, json) Hash identifier: 3P7zE+Wtx98FiHeFJ5MpJ+Mdyi0A3n8ttsX2hYFO/Pg= Subject key identifier: FC:8A:BD:B4:D7:F6:78:B8:C5:74:1E:E8:B5:1A:71:C4:3A:0B:3B:4F Certificate issuer: /CN=A9167D85/serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2 Certificate serial: 0619 Authority key identifier: ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/44E9156C730811EC89C1CE31C4F9AE02.roa Signing time: Wed 04 Sep 2024 23:11:55 +0000 ROA not before: Wed 04 Sep 2024 23:11:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134353 IP address blocks: 103.129.44.0/22 maxlen: 22 103.129.44.0/24 maxlen: 24 103.129.45.0/24 maxlen: 24 103.129.46.0/24 maxlen: 24 103.129.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1561 (0x619) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167D85/serialNumber=EDB43FF3B84FE5595BA0CBC4F6BB873713E41BB2 Validity Not Before: Sep 4 23:11:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d8e93b-09c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e8:d1:b4:4d:f9:01:ee:13:75:b5:21:c2:25: 04:54:cf:c1:ac:de:18:f4:49:33:e3:42:80:d5:0b: 70:94:d7:f0:14:00:bf:31:19:4b:fd:65:26:00:44: 21:4a:1a:4a:dd:6b:74:ed:d8:eb:46:84:c7:d8:16: 72:65:7e:0b:20:be:7e:08:ff:aa:f2:7d:e8:40:91: 87:20:66:74:ff:cc:82:c6:b7:fc:45:d8:82:69:9d: 48:e1:5d:25:7c:ea:b3:8a:51:84:ff:6e:b7:bc:c3: 5d:76:5e:4f:54:87:8c:45:55:0e:33:2c:f4:9b:dd: d6:8b:6c:df:57:f9:30:05:a3:e3:e1:96:3b:cd:0f: db:10:2a:a1:f9:4b:5b:fc:f7:0e:bd:06:1a:e9:6d: 09:6d:0e:a8:9f:a0:3e:e8:f4:a4:5b:47:23:e0:1a: 7f:ca:1a:04:78:e7:32:98:eb:ce:3d:34:03:9d:97: 88:bf:a3:c3:94:85:49:1e:9b:0d:6f:eb:ac:0d:e2: bf:96:51:33:d0:df:03:e4:18:9c:f4:93:6c:26:84: 79:03:34:34:8e:4e:fc:e4:03:53:92:2f:79:68:26: b3:5a:1c:86:ea:bd:39:c6:29:68:8e:a6:9b:9e:c9: 00:84:4e:fa:c0:39:a2:2e:39:1f:9f:95:c0:32:25: 02:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:8A:BD:B4:D7:F6:78:B8:C5:74:1E:E8:B5:1A:71:C4:3A:0B:3B:4F X509v3 Authority Key Identifier: keyid:ED:B4:3F:F3:B8:4F:E5:59:5B:A0:CB:C4:F6:BB:87:37:13:E4:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/7bQ_87hP5VlboMvE9ruHNxPkG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7bQ_87hP5VlboMvE9ruHNxPkG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167D85/71A6F7D46C6C11EBB9C79D4CC4F9AE02/44E9156C730811EC89C1CE31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.44.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:77:8f:19:1e:e5:56:39:eb:06:6a:4c:18:0c:52:79:48:05: ac:45:8a:d6:33:7e:3c:5f:46:e9:ed:47:2f:7a:f5:77:4c:11: df:79:7c:fe:bb:c1:19:5e:5b:52:73:54:c8:ed:43:a6:47:f4: 59:2f:df:96:00:97:ee:4d:c9:6f:82:6a:99:04:b3:89:5d:95: b1:0f:1e:61:95:5f:bf:db:be:ab:79:44:3b:4f:fb:92:35:45: a0:8d:7e:98:06:0c:ac:87:25:ba:7e:54:e7:90:69:35:33:93: 91:12:33:78:ad:e3:e8:63:76:a5:79:01:48:15:34:bc:7e:e8: 54:44:c5:bf:8e:5a:f8:70:96:73:38:cc:f2:34:0e:55:68:63: ea:6f:23:b3:83:45:8f:2a:a5:4b:82:66:dd:a6:0b:2c:12:24: 6a:fc:88:ac:bc:28:94:58:6c:89:6f:71:74:15:42:2f:27:d9: ae:b1:7c:7f:c1:d3:ae:23:6b:b8:37:9b:f9:e8:23:ae:9c:ce: e2:05:4f:37:4c:ff:ad:3d:33:9e:86:b9:fe:eb:fe:48:d1:83: ad:61:9c:34:b6:8f:a0:76:60:ef:ea:34:1c:1a:8a:de:31:a5: 49:af:76:49:b0:ff:11:7c:f2:62:a0:93:46:98:56:72:84:f3: 9c:5e:5a:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdEODUxMTAvBgNVBAUTKEVEQjQzRkYzQjg0RkU1NTk1QkEwQ0JDNEY2QkI4NzM3 MTNFNDFCQjIwHhcNMjQwOTA0MjMxMTU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4ZTkzYi0wOWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx+jRtE35Ae4TdbUhwiUEVM/BrN4Y9Ekz40KA1QtwlNfwFAC/MRlL/WUmAEQh ShpK3Wt07djrRoTH2BZyZX4LIL5+CP+q8n3oQJGHIGZ0/8yCxrf8RdiCaZ1I4V0l fOqzilGE/263vMNddl5PVIeMRVUOMyz0m93Wi2zfV/kwBaPj4ZY7zQ/bECqh+Utb /PcOvQYa6W0JbQ6on6A+6PSkW0cj4Bp/yhoEeOcymOvOPTQDnZeIv6PDlIVJHpsN b+usDeK/llEz0N8D5Bic9JNsJoR5AzQ0jk785ANTki95aCazWhyG6r05xilojqab nskAhE76wDmiLjkfn5XAMiUCHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPyKvbTX 9ni4xXQe6LUaccQ6CztPMB8GA1UdIwQYMBaAFO20P/O4T+VZW6DLxPa7hzcT5Buy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0Q4NS83MUE2RjdENDZD NkMxMUVCQjlDNzlENENDNEY5QUUwMi83YlFfODdoUDVWbGJvTXZFOXJ1SE54UGtH N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdiUV84N2hQNVZsYm9NdkU5cnVITnhQa0c3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdEODUvNzFBNkY3RDQ2QzZDMTFFQkI5Qzc5RDRDQzRGOUFFMDIvNDRFOTE1NkM3 MzA4MTFFQzg5QzFDRTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngSwwDQYJKoZIhvcNAQELBQADggEBAJt3jxke5VY56wZq TBgMUnlIBaxFitYzfjxfRuntRy969XdMEd95fP67wRleW1JzVMjtQ6ZH9Fkv35YA l+5NyW+CapkEs4ldlbEPHmGVX7/bvqt5RDtP+5I1RaCNfpgGDKyHJbp+VOeQaTUz k5ESM3it4+hjdqV5AUgVNLx+6FRExb+OWvhwlnM4zPI0DlVoY+pvI7ODRY8qpUuC Zt2mCywSJGr8iKy8KJRYbIlvcXQVQi8n2a6xfH/B064ja7g3m/noI66czuIFTzdM /609M56Guf7r/kjRg61hnDS2j6B2YO/qNBwait4xpUmvdkmw/xF88mKgk0aYVnKE 85xeWjg= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:26 2024 by rpki-client on console-fra.rpki-client.org