$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/49CE816E430A11EAA674EA74C4F9AE02.roa File: 49CE816E430A11EAA674EA74C4F9AE02.roa (raw, json) Hash identifier: cME7E3dTvb+EGAR48GSsEEHAaLVHg6TnnZaiv9ezcQY= Subject key identifier: 31:0C:69:D7:93:67:A5:A4:75:BB:E1:7C:5C:A0:01:1C:F4:34:90:BD Certificate issuer: /CN=A9175F5F/serialNumber=25A430F16BA87DBBD5155321B80F8201E56DEAFD Certificate serial: 0A7B Authority key identifier: 25:A4:30:F1:6B:A8:7D:BB:D5:15:53:21:B8:0F:82:01:E5:6D:EA:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JaQw8WuofbvVFVMhuA-CAeVt6v0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/49CE816E430A11EAA674EA74C4F9AE02.roa Signing time: Wed 28 Aug 2024 20:18:18 +0000 ROA not before: Wed 28 Aug 2024 20:18:18 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132398 IP address blocks: 103.72.192.0/24 maxlen: 24 2001:df4:2600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/JaQw8WuofbvVFVMhuA-CAeVt6v0.crl rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/JaQw8WuofbvVFVMhuA-CAeVt6v0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JaQw8WuofbvVFVMhuA-CAeVt6v0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:17:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2683 (0xa7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F5F/serialNumber=25A430F16BA87DBBD5155321B80F8201E56DEAFD Validity Not Before: Aug 28 20:18:18 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cf860a-60e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:19:19:2c:0d:da:38:15:42:bb:04:75:d1:fc: c9:8e:48:00:d5:06:2e:5f:da:a8:75:31:a9:52:4f: eb:9f:18:38:e2:73:48:8e:30:e6:79:aa:b3:db:cf: cd:8e:b8:73:a9:96:3f:e9:cf:7e:30:66:bd:f6:79: f8:e0:be:44:3d:9f:5b:d6:66:1c:97:f3:92:e5:41: 2f:15:54:64:c9:b5:19:71:55:d2:50:b3:12:39:50: a0:f3:8f:b1:e3:d5:52:20:6f:e9:a2:e4:d6:ff:d2: 92:a2:70:b3:da:f4:52:f8:fd:95:e4:3e:e6:a4:c5: 4d:21:f0:5a:c1:8b:cd:87:6e:91:c2:0a:f6:2d:e5: c6:f0:6f:f5:e9:10:c6:b8:ec:41:6c:d7:af:12:38: 54:18:e1:ec:45:66:b9:16:19:56:57:b4:f5:0e:a8: 50:23:97:9d:8f:9d:ea:1e:41:2b:56:89:af:52:ef: 42:d9:50:93:f3:db:36:e1:40:76:54:91:81:20:61: 76:a3:b2:74:6a:99:f7:d1:68:e0:31:03:94:85:dd: f3:b4:77:91:1e:f7:4e:52:be:43:da:d5:f9:7c:28: 3b:89:99:93:4e:5b:32:f9:c1:fc:85:21:55:9d:48: 07:38:da:b3:f4:07:a9:b4:d6:b6:a7:80:a4:4f:9d: 24:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:0C:69:D7:93:67:A5:A4:75:BB:E1:7C:5C:A0:01:1C:F4:34:90:BD X509v3 Authority Key Identifier: keyid:25:A4:30:F1:6B:A8:7D:BB:D5:15:53:21:B8:0F:82:01:E5:6D:EA:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/JaQw8WuofbvVFVMhuA-CAeVt6v0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JaQw8WuofbvVFVMhuA-CAeVt6v0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F5F/7011FDB2430811EA8194A66EC4F9AE02/49CE816E430A11EAA674EA74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.72.192.0/24 IPv6: 2001:df4:2600::/48 Signature Algorithm: sha256WithRSAEncryption 89:a8:81:0d:21:5c:8a:0b:b6:2b:88:31:1d:d8:84:c5:ac:37: 90:cf:d8:ce:70:10:af:80:ff:22:94:4c:be:25:6e:a0:67:a6: ba:64:4f:32:ce:a8:c8:85:3f:63:a7:c7:4d:66:81:bb:b3:ab: 2c:8e:50:ae:e9:37:0f:76:b8:9e:a1:b1:18:e7:d1:ce:d4:65: e2:44:52:d7:4a:a7:1c:1c:52:42:a3:83:eb:b4:49:f3:eb:94: 49:a7:30:31:c2:99:31:ee:66:71:5b:22:89:60:e3:19:93:fa: 98:9c:58:c7:7d:16:31:92:5b:5f:dd:fd:96:69:47:99:6e:d1: 5b:9c:b4:10:fd:25:5e:fc:a7:4d:9d:a2:63:8b:b6:3d:a4:fd: a8:ad:79:0f:9e:9d:2e:35:30:6f:37:5f:b1:55:34:7d:b7:f9: 48:02:5a:05:6a:48:a3:1e:bf:5a:3b:a5:79:3e:22:52:97:0c: 80:69:ac:c7:5c:8f:0e:1d:43:c9:4c:8b:8c:c1:be:35:cb:63: d9:5f:35:bc:e8:43:e4:5e:60:78:a6:1a:63:ee:53:ce:ff:d8: 4e:5c:de:15:b2:5f:d0:25:0e:dd:92:19:9f:21:ad:3b:b5:88: 57:bb:54:ef:ef:06:44:bd:dd:52:a4:7f:b5:f8:fd:c6:42:73: 1a:77:4e:c4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGNUYxMTAvBgNVBAUTKDI1QTQzMEYxNkJBODdEQkJENTE1NTMyMUI4MEY4MjAx RTU2REVBRkQwHhcNMjQwODI4MjAxODE4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNmODYwYS02MGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRkZLA3aOBVCuwR10fzJjkgA1QYuX9qodTGpUk/rnxg44nNIjjDmeaqz28/N jrhzqZY/6c9+MGa99nn44L5EPZ9b1mYcl/OS5UEvFVRkybUZcVXSULMSOVCg84+x 49VSIG/pouTW/9KSonCz2vRS+P2V5D7mpMVNIfBawYvNh26Rwgr2LeXG8G/16RDG uOxBbNevEjhUGOHsRWa5FhlWV7T1DqhQI5edj53qHkErVomvUu9C2VCT89s24UB2 VJGBIGF2o7J0apn30WjgMQOUhd3ztHeRHvdOUr5D2tX5fCg7iZmTTlsy+cH8hSFV nUgHONqz9AeptNa2p4CkT50kMwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDEMadeT Z6WkdbvhfFygARz0NJC9MB8GA1UdIwQYMBaAFCWkMPFrqH271RVTIbgPggHlber9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUY1Ri83MDExRkRCMjQz MDgxMUVBODE5NEE2NkVDNEY5QUUwMi9KYVF3OFd1b2ZidlZGVk1odUEtQ0FlVnQ2 djAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0phUXc4V3VvZmJ2VkZWTWh1QS1DQWVWdDZ2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGNUYvNzAxMUZEQjI0MzA4MTFFQTgxOTRBNjZFQzRGOUFFMDIvNDlDRTgxNkU0 MzBBMTFFQUE2NzRFQTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnSMAwDwQCAAIwCQMHACABDfQmADANBgkqhkiG9w0BAQsF AAOCAQEAiaiBDSFcigu2K4gxHdiExaw3kM/YznAQr4D/IpRMviVuoGemumRPMs6o yIU/Y6fHTWaBu7OrLI5Qruk3D3a4nqGxGOfRztRl4kRS10qnHBxSQqOD67RJ8+uU SacwMcKZMe5mcVsiiWDjGZP6mJxYx30WMZJbX939lmlHmW7RW5y0EP0lXvynTZ2i Y4u2PaT9qK15D56dLjUwbzdfsVU0fbf5SAJaBWpIox6/WjuleT4iUpcMgGmsx1yP Dh1DyUyLjMG+Nctj2V81vOhD5F5geKYaY+5Tzv/YTlzeFbJf0CUO3ZIZnyGtO7WI V7tU7+8GRL3dUqR/tfj9xkJzGndOxA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:31 2024 by rpki-client on console-ams.rpki-client.org