$ rpki-client -vvf rpki.apnic.net/member_repository/A9192E6F/62EB1DFE26B811EC9F205B1EC4F9AE02/1443F7BA200411EE84DAD06BC4F9AE02.roa File: 1443F7BA200411EE84DAD06BC4F9AE02.roa (raw, json) Hash identifier: zLQo77q+5IMP6DcnXVEpDBCRchvfQ2yuvBtuKyjQHYY= Subject key identifier: EC:AF:AF:53:27:EE:42:0D:E0:54:B3:6B:4A:16:AF:3C:4E:4B:BE:74 Certificate issuer: /CN=A9192E6F/serialNumber=93F49DD3EDC9D59271AFE1313C921DE66C222064 Certificate serial: 0443 Authority key identifier: 93:F4:9D:D3:ED:C9:D5:92:71:AF:E1:31:3C:92:1D:E6:6C:22:20:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k_Sd0-3J1ZJxr-ExPJId5mwiIGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192E6F/62EB1DFE26B811EC9F205B1EC4F9AE02/1443F7BA200411EE84DAD06BC4F9AE02.roa Signing time: Wed 11 Sep 2024 02:34:25 +0000 ROA not before: Wed 11 Sep 2024 02:34:25 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141008 IP address blocks: 103.154.196.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192E6F/62EB1DFE26B811EC9F205B1EC4F9AE02/k_Sd0-3J1ZJxr-ExPJId5mwiIGQ.crl rsync://rpki.apnic.net/member_repository/A9192E6F/62EB1DFE26B811EC9F205B1EC4F9AE02/k_Sd0-3J1ZJxr-ExPJId5mwiIGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k_Sd0-3J1ZJxr-ExPJId5mwiIGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1091 (0x443) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192E6F/serialNumber=93F49DD3EDC9D59271AFE1313C921DE66C222064 Validity Not Before: Sep 11 02:34:25 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e101b1-70ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3b:3b:c7:b8:04:65:a4:95:b8:f5:fe:14:57: 1a:45:3b:69:b9:d9:80:16:d8:18:ce:27:4f:54:db: 53:28:b6:b2:a3:36:fc:56:25:f4:8a:e8:2e:bc:ca: aa:3f:e1:7e:66:bd:cb:53:8d:40:66:88:b0:4e:75: bc:59:fd:9a:d9:a7:09:58:89:f1:81:41:50:06:8d: 7f:e1:70:39:6f:38:ac:f9:c8:c8:51:c2:7d:2c:2f: 12:65:81:c2:0c:3b:15:50:1c:a4:c9:cf:bd:24:ed: bf:40:88:04:b1:84:69:bb:cd:05:23:7d:a6:3a:db: 6b:96:60:0a:5a:e5:d5:25:a7:d9:69:83:e8:9c:25: b5:49:d0:27:81:cc:77:71:38:b0:c4:cc:d6:7d:5c: dd:99:16:f3:31:47:bb:cd:d3:bb:83:77:d5:b6:3e: 76:90:50:97:81:e6:20:18:f8:0f:e6:b8:44:75:fb: 5e:15:ac:65:24:1a:83:c0:9f:26:0d:8f:3a:e7:c6: c1:37:33:d0:73:19:4a:1a:f8:53:c3:44:b9:56:07: 82:6f:ab:01:c4:73:ca:4d:60:e8:a0:b1:53:fb:71: ba:4a:b5:f7:b9:a8:87:04:45:3a:a1:68:f0:23:9d: 01:b6:6d:62:97:1f:80:ee:c5:c0:6b:24:f2:98:db: 40:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:AF:AF:53:27:EE:42:0D:E0:54:B3:6B:4A:16:AF:3C:4E:4B:BE:74 X509v3 Authority Key Identifier: keyid:93:F4:9D:D3:ED:C9:D5:92:71:AF:E1:31:3C:92:1D:E6:6C:22:20:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192E6F/62EB1DFE26B811EC9F205B1EC4F9AE02/k_Sd0-3J1ZJxr-ExPJId5mwiIGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k_Sd0-3J1ZJxr-ExPJId5mwiIGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192E6F/62EB1DFE26B811EC9F205B1EC4F9AE02/1443F7BA200411EE84DAD06BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.196.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:bf:d8:c8:f5:87:61:ee:0f:ce:70:c2:ce:3f:88:19:a7:e1: a7:4f:fa:59:e4:dc:c9:c0:c3:9b:4c:d4:5b:2d:49:51:18:54: 13:2b:2b:93:c8:2a:9e:5f:52:64:b3:a4:fd:e3:e4:3c:69:ee: 2c:b0:f3:c0:51:67:84:4e:1a:b7:5c:4c:8a:bd:23:15:5c:5b: 40:4d:be:9b:84:68:fb:db:3d:48:01:85:10:de:24:ee:e8:58: f5:c7:2b:6e:dd:4d:65:72:20:cc:50:2b:0f:74:44:45:ee:4c: 09:4c:f9:dd:3b:eb:b9:5d:5d:32:74:2c:b1:4f:5d:e7:da:37: 26:5a:65:96:c4:05:07:ed:ff:eb:e3:72:12:40:01:ce:cc:08: 06:c6:c9:b5:03:d2:9c:ff:b5:fb:58:aa:db:99:b5:29:1c:a7: 48:b5:3c:dd:15:42:7f:19:98:bd:e3:fe:41:71:70:21:9b:05: fc:e1:c8:79:83:17:e4:0c:10:e1:c9:a3:ff:b0:06:f4:c5:88: de:b3:c6:51:21:bd:06:6c:69:0c:2a:85:6c:ce:42:8e:63:a3: 12:5a:94:71:6c:f8:02:b3:6e:fd:26:36:53:86:25:4e:e6:7c: 76:f5:fe:e3:78:8a:72:64:b8:3b:cf:58:62:ce:1d:40:99:7f: ba:66:05:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJFNkYxMTAvBgNVBAUTKDkzRjQ5REQzRURDOUQ1OTI3MUFGRTEzMTNDOTIxREU2 NkMyMjIwNjQwHhcNMjQwOTExMDIzNDI1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUxMDFiMS03MGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxTs7x7gEZaSVuPX+FFcaRTtpudmAFtgYzidPVNtTKLayozb8ViX0iuguvMqq P+F+Zr3LU41AZoiwTnW8Wf2a2acJWInxgUFQBo1/4XA5bzis+cjIUcJ9LC8SZYHC DDsVUBykyc+9JO2/QIgEsYRpu80FI32mOttrlmAKWuXVJafZaYPonCW1SdAngcx3 cTiwxMzWfVzdmRbzMUe7zdO7g3fVtj52kFCXgeYgGPgP5rhEdfteFaxlJBqDwJ8m DY8658bBNzPQcxlKGvhTw0S5VgeCb6sBxHPKTWDooLFT+3G6SrX3uaiHBEU6oWjw I50Btm1ilx+A7sXAayTymNtAuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOyvr1Mn 7kIN4FSza0oWrzxOS750MB8GA1UdIwQYMBaAFJP0ndPtydWSca/hMTySHeZsIiBk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkU2Ri82MkVCMURGRTI2 QjgxMUVDOUYyMDVCMUVDNEY5QUUwMi9rX1NkMC0zSjFaSnhyLUV4UEpJZDVtd2lJ R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tfU2QwLTNKMVpKeHItRXhQSklkNW13aUlHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJFNkYvNjJFQjFERkUyNkI4MTFFQzlGMjA1QjFFQzRGOUFFMDIvMTQ0M0Y3QkEy MDA0MTFFRTg0REFEMDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmsQwDQYJKoZIhvcNAQELBQADggEBAEq/2Mj1h2HuD85w ws4/iBmn4adP+lnk3MnAw5tM1FstSVEYVBMrK5PIKp5fUmSzpP3j5Dxp7iyw88BR Z4ROGrdcTIq9IxVcW0BNvpuEaPvbPUgBhRDeJO7oWPXHK27dTWVyIMxQKw90REXu TAlM+d0767ldXTJ0LLFPXefaNyZaZZbEBQft/+vjchJAAc7MCAbGybUD0pz/tftY qtuZtSkcp0i1PN0VQn8ZmL3j/kFxcCGbBfzhyHmDF+QMEOHJo/+wBvTFiN6zxlEh vQZsaQwqhWzOQo5joxJalHFs+AKzbv0mNlOGJU7mfHb1/uN4inJkuDvPWGLOHUCZ f7pmBRI= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:36 2024 by rpki-client on console-fra.rpki-client.org