$ rpki-client -vvf rpki.apnic.net/member_repository/A9186F69/66A0ADA2112911EF80635B27C4F9AE02/B5C7CDFC112911EFBDE1BF3BC4F9AE02.roa File: B5C7CDFC112911EFBDE1BF3BC4F9AE02.roa (raw, json) Hash identifier: QbtjxmLTL2Cws1ASsYlhmpNTZ1I8QqQQdpKElbXl0rY= Subject key identifier: 68:11:76:6B:42:66:89:1E:F0:0E:BB:2C:29:47:65:D6:74:FF:74:09 Certificate issuer: /CN=A9186F69/serialNumber=96C62A079D2E7D8E7A995D20F4229D8269398E69 Certificate serial: 02 Authority key identifier: 96:C6:2A:07:9D:2E:7D:8E:7A:99:5D:20:F4:22:9D:82:69:39:8E:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lsYqB50ufY56mV0g9CKdgmk5jmk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186F69/66A0ADA2112911EF80635B27C4F9AE02/B5C7CDFC112911EFBDE1BF3BC4F9AE02.roa Signing time: Mon 13 May 2024 13:07:11 +0000 ROA not before: Mon 13 May 2024 13:07:11 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152736 IP address blocks: 103.145.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186F69/66A0ADA2112911EF80635B27C4F9AE02/lsYqB50ufY56mV0g9CKdgmk5jmk.crl rsync://rpki.apnic.net/member_repository/A9186F69/66A0ADA2112911EF80635B27C4F9AE02/lsYqB50ufY56mV0g9CKdgmk5jmk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lsYqB50ufY56mV0g9CKdgmk5jmk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186F69/serialNumber=96C62A079D2E7D8E7A995D20F4229D8269398E69 Validity Not Before: May 13 13:07:11 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6642107f-2f27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2d:39:88:c1:4e:ea:53:bc:ec:07:3b:70:f8: d9:89:0a:14:1b:2e:a2:d9:45:0b:2b:84:e9:cc:f9: c6:4f:00:f3:8c:ca:45:c0:1a:6b:c2:46:a3:f0:7c: 4a:12:c2:d7:66:df:3c:66:b3:f2:52:a5:81:d7:5c: 3b:da:71:69:a7:69:c4:83:74:eb:78:99:ac:ce:13: df:3c:5c:45:9f:96:f0:ce:77:ad:f7:11:0b:86:9c: 7f:1b:f6:59:ed:ea:d0:7a:f9:b7:d7:2d:78:fa:7d: 03:1f:96:2e:f0:00:8e:b9:d1:42:eb:14:9f:39:10: 48:c4:3b:e3:f9:fb:33:6c:d2:73:ed:be:37:2a:23: 16:95:24:17:2b:4d:f9:d8:17:13:ec:61:1a:55:d8: f6:39:e7:01:b9:c2:0e:dd:3e:ca:bf:b7:da:9c:5a: da:4c:4d:44:e7:4f:5a:43:77:cc:14:a3:ce:fc:1e: 28:09:a0:8d:bf:83:bf:f4:70:c8:ce:5c:ea:6b:08: ca:db:48:44:34:54:de:b6:0b:10:93:6e:f6:ce:cd: a9:84:87:cc:f1:5d:ff:8d:fa:7c:8d:7a:dd:bb:9e: b1:8e:f6:5c:69:b6:24:2b:e5:e4:62:0e:27:9a:94: e4:63:1e:dd:71:ce:71:57:97:5e:fc:11:eb:73:16: 86:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:11:76:6B:42:66:89:1E:F0:0E:BB:2C:29:47:65:D6:74:FF:74:09 X509v3 Authority Key Identifier: keyid:96:C6:2A:07:9D:2E:7D:8E:7A:99:5D:20:F4:22:9D:82:69:39:8E:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186F69/66A0ADA2112911EF80635B27C4F9AE02/lsYqB50ufY56mV0g9CKdgmk5jmk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lsYqB50ufY56mV0g9CKdgmk5jmk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186F69/66A0ADA2112911EF80635B27C4F9AE02/B5C7CDFC112911EFBDE1BF3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.152.0/24 Signature Algorithm: sha256WithRSAEncryption 05:6c:3b:eb:65:1a:f7:63:c4:ed:6a:ba:9e:11:43:c9:22:e2: d8:65:39:89:93:81:1a:68:b1:83:59:fc:ae:20:1e:69:dd:61: 8c:af:8d:57:2a:39:67:c6:73:2f:4e:6c:37:64:b0:42:1f:b3: 1c:ee:b7:70:1b:90:21:94:f7:cd:65:f4:e2:fc:8e:30:17:ce: 5d:54:14:da:5c:ab:e2:31:fb:74:dc:53:44:0c:90:b1:e3:73: 69:b9:5c:e9:56:31:fc:3d:55:cc:a7:37:9b:ff:56:51:b9:6d: f2:d7:3c:16:5d:1f:9f:da:5c:40:e9:35:a8:12:ae:d3:a5:36: 48:e9:69:7b:b3:18:62:84:fe:5b:c9:8c:8d:94:90:60:66:24: 72:f3:56:a0:f0:77:58:c1:77:b9:ad:2c:f4:10:f2:1f:56:49: 88:3e:e9:fc:d3:2f:c0:ba:09:2d:fd:d2:ad:b1:c0:66:06:ef: 13:f5:6b:7a:20:e0:34:8b:28:4e:77:14:59:82:e4:f9:39:ac: b2:23:fc:97:c4:96:96:91:86:07:2b:95:47:a5:cf:86:d7:49: db:ae:94:4e:80:db:bf:15:90:97:16:bd:64:ba:1a:21:89:9b: c1:7f:5f:9e:57:0e:0b:28:33:71:dd:6d:ac:78:4a:46:fb:2b: 72:62:15:6b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NkY2OTExMC8GA1UEBRMoOTZDNjJBMDc5RDJFN0Q4RTdBOTk1RDIwRjQyMjlEODI2 OTM5OEU2OTAeFw0yNDA1MTMxMzA3MTFaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDIxMDdmLTJmMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvLTmIwU7qU7zsBztw+NmJChQbLqLZRQsrhOnM+cZPAPOMykXAGmvCRqPwfEoS wtdm3zxms/JSpYHXXDvacWmnacSDdOt4mazOE988XEWflvDOd633EQuGnH8b9lnt 6tB6+bfXLXj6fQMfli7wAI650ULrFJ85EEjEO+P5+zNs0nPtvjcqIxaVJBcrTfnY FxPsYRpV2PY55wG5wg7dPsq/t9qcWtpMTUTnT1pDd8wUo878HigJoI2/g7/0cMjO XOprCMrbSEQ0VN62CxCTbvbOzamEh8zxXf+N+nyNet27nrGO9lxptiQr5eRiDiea lORjHt1xznFXl178EetzFoZJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaBF2a0Jm iR7wDrssKUdl1nT/dAkwHwYDVR0jBBgwFoAUlsYqB50ufY56mV0g9CKdgmk5jmkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg2RjY5LzY2QTBBREEyMTEy OTExRUY4MDYzNUIyN0M0RjlBRTAyL2xzWXFCNTB1Zlk1Nm1WMGc5Q0tkZ21rNWpt ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbHNZcUI1MHVmWTU2bVYwZzlDS2RnbWs1am1rLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NkY2OS82NkEwQURBMjExMjkxMUVGODA2MzVCMjdDNEY5QUUwMi9CNUM3Q0RGQzEx MjkxMUVGQkRFMUJGM0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeRmDANBgkqhkiG9w0BAQsFAAOCAQEABWw762Ua92PE7Wq6 nhFDySLi2GU5iZOBGmixg1n8riAead1hjK+NVyo5Z8ZzL05sN2SwQh+zHO63cBuQ IZT3zWX04vyOMBfOXVQU2lyr4jH7dNxTRAyQseNzablc6VYx/D1VzKc3m/9WUblt 8tc8Fl0fn9pcQOk1qBKu06U2SOlpe7MYYoT+W8mMjZSQYGYkcvNWoPB3WMF3ua0s 9BDyH1ZJiD7p/NMvwLoJLf3SrbHAZgbvE/VreiDgNIsoTncUWYLk+TmssiP8l8SW lpGGByuVR6XPhtdJ266UToDbvxWQlxa9ZLoaIYmbwX9fnlcOCygzcd1trHhKRvsr cmIVaw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:12 2024 by rpki-client on console-ams.rpki-client.org