$ rpki-client -vvf rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/688DBA84577911EE8A10F47BC4F9AE02.roa File: 688DBA84577911EE8A10F47BC4F9AE02.roa (raw, json) Hash identifier: Fm4uHiAUi3X+9CLHzcIf57OhsNaBKsN/1TP2wSaWGkE= Subject key identifier: 23:B9:55:69:A6:30:5B:70:E5:7B:27:3D:AE:F9:01:FD:97:F6:4E:3C Certificate issuer: /CN=A9190EF5/serialNumber=98F4ED1EA56EFE37CA134F876A965F2AC6FA3748 Certificate serial: 9E Authority key identifier: 98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/688DBA84577911EE8A10F47BC4F9AE02.roa Signing time: Fri 19 Jul 2024 06:07:24 +0000 ROA not before: Fri 19 Jul 2024 06:07:24 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 1221 IP address blocks: 103.226.244.0/24 maxlen: 24 103.226.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.crl rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 158 (0x9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9190EF5/serialNumber=98F4ED1EA56EFE37CA134F876A965F2AC6FA3748 Validity Not Before: Jul 19 06:07:24 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=669a029c-695c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4f:1f:ad:4a:ec:bc:ee:2e:d4:26:98:e5:61: 61:7a:d1:76:42:d5:b7:10:08:2a:2b:d9:d5:9c:8c: 39:0c:51:1e:5f:98:e1:7f:e6:cd:e8:7b:f0:0a:92: 2a:50:6e:b1:bb:4f:d8:ad:28:d8:ba:7c:a0:85:33: df:8b:7e:bb:2b:c1:1d:48:30:d6:63:1f:7c:27:2f: fd:eb:0e:f4:2f:dd:67:44:72:5b:df:8d:7a:81:d6: 9d:83:c5:c7:56:4f:9a:af:16:83:f8:34:38:b0:db: 3b:dc:63:91:b3:a1:6a:c5:00:3a:ce:87:77:7f:13: 0d:8c:22:ca:e3:86:d6:35:f8:cf:65:21:53:76:c2: 68:9d:96:0d:ca:7e:59:05:72:aa:3c:7d:0e:95:0d: cc:21:2d:fc:12:4c:63:78:48:e1:aa:31:84:73:01: 71:78:b3:fe:02:41:c1:13:c8:b5:36:39:b2:d2:8f: 81:d6:ef:69:b8:4b:5c:35:d6:57:b3:24:3c:2c:b8: de:bc:f9:da:12:99:5f:5c:b1:06:65:ce:18:95:2a: 33:da:af:cd:29:8a:74:55:67:44:d0:cb:6d:be:32: ec:46:01:da:88:1c:6b:3c:4c:d6:8e:de:4a:53:69: 9e:ff:46:57:4c:88:04:36:62:bc:da:80:65:9f:a7: 27:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:B9:55:69:A6:30:5B:70:E5:7B:27:3D:AE:F9:01:FD:97:F6:4E:3C X509v3 Authority Key Identifier: keyid:98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/688DBA84577911EE8A10F47BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.226.244.0/23 Signature Algorithm: sha256WithRSAEncryption 30:0c:5c:1e:0a:7a:02:8c:8b:db:ac:61:07:88:09:45:7d:36: dd:a2:c3:ae:53:cf:fb:1c:7b:31:f2:75:20:38:23:d2:2d:e2: f9:5d:0e:cb:64:d3:d4:b0:03:9b:a4:73:b9:ca:d0:0a:ca:8c: ff:91:49:a6:e1:f3:2d:5d:c3:f1:c0:9c:a6:52:17:c0:18:8e: 34:bd:9c:25:3c:c3:a1:8a:3e:dc:94:6e:9f:87:e6:d7:4f:3e: 58:62:73:e8:43:33:1e:e1:cd:bf:56:3c:e7:b3:62:26:ac:2f: 14:51:6e:2f:ef:bb:bc:c9:d1:d6:f4:4a:ed:64:9e:17:c8:59: 84:83:77:30:0e:4c:9d:93:44:f4:aa:97:50:aa:11:57:e4:30: de:59:78:64:37:eb:13:7e:f9:28:e6:75:99:35:0c:ce:10:df: 9e:2e:25:6c:2f:70:24:72:54:85:4b:c2:0c:ba:98:73:9f:2d: 76:0e:61:b2:f6:46:c8:5c:6d:73:a7:6e:a1:8e:97:78:7e:b6: b2:ac:f2:47:f9:16:5f:16:5a:35:43:bc:a6:d4:47:7c:2f:42: e2:6a:ee:32:06:b3:62:50:de:ba:ee:a6:30:42:0d:e0:9d:e2: 11:f8:f9:11:e2:18:6b:56:b5:2d:c6:e3:9f:6e:ac:6b:4a:83: 70:30:13:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTBFRjUxMTAvBgNVBAUTKDk4RjRFRDFFQTU2RUZFMzdDQTEzNEY4NzZBOTY1RjJB QzZGQTM3NDgwHhcNMjQwNzE5MDYwNzI0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjlhMDI5Yy02OTVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3U8frUrsvO4u1CaY5WFhetF2QtW3EAgqK9nVnIw5DFEeX5jhf+bN6HvwCpIq UG6xu0/YrSjYunyghTPfi367K8EdSDDWYx98Jy/96w70L91nRHJb3416gdadg8XH Vk+arxaD+DQ4sNs73GORs6FqxQA6zod3fxMNjCLK44bWNfjPZSFTdsJonZYNyn5Z BXKqPH0OlQ3MIS38EkxjeEjhqjGEcwFxeLP+AkHBE8i1Njmy0o+B1u9puEtcNdZX syQ8LLjevPnaEplfXLEGZc4YlSoz2q/NKYp0VWdE0MttvjLsRgHaiBxrPEzWjt5K U2me/0ZXTIgENmK82oBln6cnTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCO5VWmm MFtw5XsnPa75Af2X9k48MB8GA1UdIwQYMBaAFJj07R6lbv43yhNPh2qWXyrG+jdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MEVGNS85NDA2NjI4RTU3 NzgxMUVFOENERjg1N0FDNEY5QUUwMi9tUFR0SHFWdV9qZktFMC1IYXBaZktzYjZO MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21QVHRIcVZ1X2pmS0UwLUhhcFpmS3NiNk4wZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTBFRjUvOTQwNjYyOEU1Nzc4MTFFRThDREY4NTdBQzRGOUFFMDIvNjg4REJBODQ1 Nzc5MTFFRThBMTBGNDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn4vQwDQYJKoZIhvcNAQELBQADggEBADAMXB4KegKMi9us YQeICUV9Nt2iw65Tz/scezHydSA4I9It4vldDstk09SwA5ukc7nK0ArKjP+RSabh 8y1dw/HAnKZSF8AYjjS9nCU8w6GKPtyUbp+H5tdPPlhic+hDMx7hzb9WPOezYias LxRRbi/vu7zJ0db0Su1knhfIWYSDdzAOTJ2TRPSql1CqEVfkMN5ZeGQ36xN++Sjm dZk1DM4Q354uJWwvcCRyVIVLwgy6mHOfLXYOYbL2RshcbXOnbqGOl3h+trKs8kf5 Fl8WWjVDvKbUR3wvQuJq7jIGs2JQ3rrupjBCDeCd4hH4+RHiGGtWtS3G459urGtK g3AwE4g= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org