$ rpki-client -vvf rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/AA57748A148611EFA50CB960C4F9AE02.roa File: AA57748A148611EFA50CB960C4F9AE02.roa (raw, json) Hash identifier: 6adV3OtWsaL6gxsXDWx0iJzz9wizXBVgUANNsM2WlTw= Subject key identifier: A3:90:CD:BC:ED:D5:24:B4:9C:22:08:1F:7D:89:36:E8:71:9C:2D:99 Certificate issuer: /CN=A9187F7E/serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84 Certificate serial: 01F8 Authority key identifier: 1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/AA57748A148611EFA50CB960C4F9AE02.roa Signing time: Mon 19 Aug 2024 03:05:14 +0000 ROA not before: Mon 19 Aug 2024 03:05:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138590 IP address blocks: 103.69.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.crl rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 504 (0x1f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187F7E/serialNumber=1A682941F8789C4CEA3CC33B6373E4947630BC84 Validity Not Before: Aug 19 03:05:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c2b66a-5e94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3e:dd:2b:b2:90:e2:e5:3a:c3:bb:ed:27:5f: 35:f0:24:d2:64:0b:51:b6:22:32:20:ed:90:84:af: 46:28:c2:ec:b3:ad:a3:0d:f5:69:d8:33:96:db:b6: b1:da:18:7e:67:03:53:19:c2:97:d1:9d:91:87:3d: 00:9e:f3:3f:52:48:22:0d:66:2c:25:c7:f9:15:b9: 63:7b:1f:97:3b:29:16:9e:39:27:26:27:d9:54:42: f6:6a:62:85:0d:50:67:b2:99:e6:da:7d:70:49:5a: f8:07:0d:21:30:b3:2e:22:cc:5d:9b:21:05:b9:44: 32:b9:a0:3f:80:53:7e:88:d8:9d:61:92:ab:b7:9f: fe:4a:54:da:c8:5f:f3:cb:75:a6:17:fd:c2:84:35: 1e:a7:d0:fb:5a:1f:b4:9c:c1:06:4a:fc:5e:33:68: 20:f9:91:fc:a5:a5:4e:36:79:27:c5:35:ff:60:f8: 9b:19:32:96:ad:f9:37:bd:83:9d:1b:d4:f4:24:3d: 32:d4:b4:0f:6a:4d:37:07:f7:3c:2f:ea:29:a0:af: af:79:e2:0c:66:a2:e4:20:9a:ce:a2:4f:3c:a4:46: 82:1f:31:ef:89:41:73:6a:07:14:1d:ce:be:b7:b3: a4:e4:d4:04:53:41:17:5e:83:4e:7e:04:3b:c7:ce: f9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:90:CD:BC:ED:D5:24:B4:9C:22:08:1F:7D:89:36:E8:71:9C:2D:99 X509v3 Authority Key Identifier: keyid:1A:68:29:41:F8:78:9C:4C:EA:3C:C3:3B:63:73:E4:94:76:30:BC:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmgpQfh4nEzqPMM7Y3PklHYwvIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187F7E/C763B5E010E911ED85CCEA37C4F9AE02/AA57748A148611EFA50CB960C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.2.0/23 Signature Algorithm: sha256WithRSAEncryption 32:b5:8d:13:aa:b6:a6:2c:22:7b:72:26:8a:a2:6e:36:22:71: aa:a4:53:98:9e:4c:07:a0:e3:20:55:02:fe:0a:d9:ee:a8:89: c9:53:5b:b9:56:a0:28:d3:5d:66:1f:42:c5:af:49:a2:47:c0: 46:7f:d2:20:cc:28:32:ef:3a:0d:7e:53:0f:53:a3:17:7e:8a: 2b:b5:f1:c1:b5:41:d2:44:06:f2:60:aa:2a:67:2b:62:05:e5: 99:d0:e7:75:d3:bd:91:b5:64:03:4d:aa:59:2c:8c:df:17:de: 3a:74:c9:75:e4:a0:f6:10:4f:74:c1:d3:ae:58:bf:a9:5f:ad: b3:ef:94:15:e0:68:27:77:46:a9:9f:7a:c7:49:23:86:23:08: af:56:54:54:72:c5:f8:be:8e:6a:b7:8d:07:af:16:49:b6:31: 50:b7:b0:cd:0d:40:c1:c0:08:c1:4c:ca:51:3d:bb:b6:3f:06: b3:30:8d:3c:f4:28:7d:9b:c0:b2:f5:36:f3:b1:4f:bb:aa:d4: 9a:6d:cd:ae:19:4f:cb:5d:14:ad:ca:14:94:02:ae:67:73:92: 52:7d:49:6d:cb:4e:40:55:99:1d:ae:94:9e:03:9e:1d:6a:d9: 8c:de:ec:24:f5:30:e2:b9:60:0d:42:fc:a4:fa:35:17:2a:54: 65:01:17:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODdGN0UxMTAvBgNVBAUTKDFBNjgyOTQxRjg3ODlDNENFQTNDQzMzQjYzNzNFNDk0 NzYzMEJDODQwHhcNMjQwODE5MDMwNTE0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmMyYjY2YS01ZTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvD7dK7KQ4uU6w7vtJ1818CTSZAtRtiIyIO2QhK9GKMLss62jDfVp2DOW27ax 2hh+ZwNTGcKX0Z2Rhz0AnvM/UkgiDWYsJcf5Fbljex+XOykWnjknJifZVEL2amKF DVBnspnm2n1wSVr4Bw0hMLMuIsxdmyEFuUQyuaA/gFN+iNidYZKrt5/+SlTayF/z y3WmF/3ChDUep9D7Wh+0nMEGSvxeM2gg+ZH8paVONnknxTX/YPibGTKWrfk3vYOd G9T0JD0y1LQPak03B/c8L+opoK+veeIMZqLkIJrOok88pEaCHzHviUFzagcUHc6+ t7Ok5NQEU0EXXoNOfgQ7x8755wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKOQzbzt 1SS0nCIIH32JNuhxnC2ZMB8GA1UdIwQYMBaAFBpoKUH4eJxM6jzDO2Nz5JR2MLyE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4N0Y3RS9DNzYzQjVFMDEw RTkxMUVEODVDQ0VBMzdDNEY5QUUwMi9HbWdwUWZoNG5FenFQTU03WTNQa2xIWXd2 SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtZ3BRZmg0bkV6cVBNTTdZM1BrbEhZd3ZJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODdGN0UvQzc2M0I1RTAxMEU5MTFFRDg1Q0NFQTM3QzRGOUFFMDIvQUE1Nzc0OEEx NDg2MTFFRkE1MENCOTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnRQIwDQYJKoZIhvcNAQELBQADggEBADK1jROqtqYsInty JoqibjYicaqkU5ieTAeg4yBVAv4K2e6oiclTW7lWoCjTXWYfQsWvSaJHwEZ/0iDM KDLvOg1+Uw9Toxd+iiu18cG1QdJEBvJgqipnK2IF5ZnQ53XTvZG1ZANNqlksjN8X 3jp0yXXkoPYQT3TB065Yv6lfrbPvlBXgaCd3RqmfesdJI4YjCK9WVFRyxfi+jmq3 jQevFkm2MVC3sM0NQMHACMFMylE9u7Y/BrMwjTz0KH2bwLL1NvOxT7uq1Jptza4Z T8tdFK3KFJQCrmdzklJ9SW3LTkBVmR2ulJ4Dnh1q2Yze7CT1MOK5YA1C/KT6NRcq VGUBF4c= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:41 2024 by rpki-client on console-fra.rpki-client.org