$ rpki-client -vvf rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/82A9E362DEC111EB9010BE6AC4F9AE02.roa File: 82A9E362DEC111EB9010BE6AC4F9AE02.roa (raw, json) Hash identifier: a7GzfQZpHB/FDQX8t11/W+Jq7q9b14r9hyier7paZ38= Subject key identifier: B2:5F:F6:C5:2D:28:B2:FB:B5:99:EB:D0:5B:0C:A0:E4:A2:9F:4F:75 Certificate issuer: /CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Certificate serial: 04DE Authority key identifier: 85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/82A9E362DEC111EB9010BE6AC4F9AE02.roa Signing time: Sat 03 Aug 2024 01:13:10 +0000 ROA not before: Sat 03 Aug 2024 01:13:10 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 133206 IP address blocks: 103.169.140.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1246 (0x4de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189218/serialNumber=85EF4F52BE6C0D09373869A9002238628233EBEF Validity Not Before: Aug 3 01:13:10 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad8426-873a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:c5:59:f9:15:c1:ff:e8:25:f0:cc:c1:ef:e7: 76:da:24:25:cf:1a:8c:83:51:fe:05:d5:38:93:57: ae:8d:63:64:41:07:c7:05:d0:18:c2:68:33:40:9e: 38:41:53:95:08:85:3b:c9:05:c5:52:68:35:d0:ea: 8b:b6:0f:75:92:af:56:d2:f1:5e:6b:5f:c0:22:55: 3b:b7:88:1a:08:cd:ff:c0:70:0e:31:c7:0e:3f:7d: 73:dd:1a:69:74:d6:4f:94:ca:fb:98:6b:0d:54:c7: 10:3f:1f:e0:80:09:fb:fd:e4:b6:05:a7:95:91:6b: 37:87:5e:0d:3d:16:13:ec:ba:8a:80:02:d7:6f:48: ea:3f:fe:eb:3a:d3:9d:dd:cf:f6:aa:b0:37:27:f7: bc:eb:bd:a9:d8:3b:37:a5:b8:9a:1c:c8:c3:fc:8c: 3b:8d:68:33:8a:fc:d9:f1:71:33:b2:03:e4:66:7e: 79:92:b8:e9:08:e7:40:3f:ac:fe:de:27:e1:d4:89: bb:25:07:7a:e1:3c:41:57:18:4d:24:b5:9f:f6:4f: 09:d4:6e:7b:bb:f2:8c:5e:a5:b0:b4:f6:d6:e1:23: 53:e4:7d:a5:b1:c3:0b:86:9d:8e:6c:08:0b:90:e2: 3c:a9:ed:8b:69:c6:5b:36:07:50:92:b6:31:96:f1: e0:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5F:F6:C5:2D:28:B2:FB:B5:99:EB:D0:5B:0C:A0:E4:A2:9F:4F:75 X509v3 Authority Key Identifier: keyid:85:EF:4F:52:BE:6C:0D:09:37:38:69:A9:00:22:38:62:82:33:EB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/he9PUr5sDQk3OGmpACI4YoIz6-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he9PUr5sDQk3OGmpACI4YoIz6-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189218/D857A13EDEBF11EB9AA63B6AC4F9AE02/82A9E362DEC111EB9010BE6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.140.0/23 Signature Algorithm: sha256WithRSAEncryption b9:ad:c6:0e:d8:35:ba:f8:89:31:9c:51:23:fa:16:f9:8a:dc: f0:1c:01:fd:82:7b:a9:2f:39:74:65:7c:f4:0b:fd:c3:96:6f: a5:f5:e4:47:df:a4:e1:bd:89:ad:18:3c:30:44:18:5e:62:dd: 51:a2:a2:1b:8e:4d:bd:47:f3:b1:4d:ca:e9:4b:1c:70:6d:50: 66:31:34:90:f9:f0:47:f9:22:a4:52:6c:32:58:9c:e3:d1:31: 91:38:c8:8f:1e:06:86:dd:f3:13:5c:5f:7b:86:73:c1:5e:0b: 6a:99:65:0b:1c:f9:fa:f3:34:cf:92:ee:c6:9a:5f:eb:69:b8: 55:f0:61:81:6b:8b:d6:92:f2:71:a8:da:91:48:82:a9:ed:36: 58:9c:7d:9e:3d:84:7e:8e:6a:98:05:49:a7:28:d3:ab:5c:7f: 2d:e0:94:fb:28:ca:d3:46:ba:af:3e:a3:c9:4c:6e:7e:f9:b7: 9a:b1:26:4a:c2:9c:e5:63:2a:84:bb:ca:f6:3a:ec:7f:dc:4b: b6:de:c3:08:23:80:1f:2a:23:03:4d:cc:29:f8:31:75:10:7a: e8:b8:87:f2:18:7b:f8:4a:89:27:17:d6:3f:db:bc:fe:9f:9f: 6b:7c:ab:76:28:cf:a2:5f:10:e0:9c:87:63:05:ce:2e:68:28: 32:b9:20:8b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkyMTgxMTAvBgNVBAUTKDg1RUY0RjUyQkU2QzBEMDkzNzM4NjlBOTAwMjIzODYy ODIzM0VCRUYwHhcNMjQwODAzMDExMzEwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkODQyNi04NzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp8VZ+RXB/+gl8MzB7+d22iQlzxqMg1H+BdU4k1eujWNkQQfHBdAYwmgzQJ44 QVOVCIU7yQXFUmg10OqLtg91kq9W0vFea1/AIlU7t4gaCM3/wHAOMccOP31z3Rpp dNZPlMr7mGsNVMcQPx/ggAn7/eS2BaeVkWs3h14NPRYT7LqKgALXb0jqP/7rOtOd 3c/2qrA3J/e8672p2Ds3pbiaHMjD/Iw7jWgzivzZ8XEzsgPkZn55krjpCOdAP6z+ 3ifh1Im7JQd64TxBVxhNJLWf9k8J1G57u/KMXqWwtPbW4SNT5H2lscMLhp2ObAgL kOI8qe2LacZbNgdQkrYxlvHgLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLJf9sUt KLL7tZnr0FsMoOSin091MB8GA1UdIwQYMBaAFIXvT1K+bA0JNzhpqQAiOGKCM+vv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTIxOC9EODU3QTEzRURF QkYxMUVCOUFBNjNCNkFDNEY5QUUwMi9oZTlQVXI1c0RRazNPR21wQUNJNFlvSXo2 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlOVBVcjVzRFFrM09HbXBBQ0k0WW9JejYtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkyMTgvRDg1N0ExM0VERUJGMTFFQjlBQTYzQjZBQzRGOUFFMDIvODJBOUUzNjJE RUMxMTFFQjkwMTBCRTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqYwwDQYJKoZIhvcNAQELBQADggEBALmtxg7YNbr4iTGc USP6FvmK3PAcAf2Ce6kvOXRlfPQL/cOWb6X15EffpOG9ia0YPDBEGF5i3VGiohuO Tb1H87FNyulLHHBtUGYxNJD58Ef5IqRSbDJYnOPRMZE4yI8eBobd8xNcX3uGc8Fe C2qZZQsc+frzNM+S7saaX+tpuFXwYYFri9aS8nGo2pFIgqntNlicfZ49hH6OapgF Saco06tcfy3glPsoytNGuq8+o8lMbn75t5qxJkrCnOVjKoS7yvY67H/cS7bewwgj gB8qIwNNzCn4MXUQeui4h/IYe/hKiScX1j/bvP6fn2t8q3Yoz6JfEOCch2MFzi5o KDK5IIs= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:44 2024 by rpki-client on console-ams.rpki-client.org