$ rpki-client -vvf rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/E43CFABEB67611ECACB17C42C4F9AE02.roa File: E43CFABEB67611ECACB17C42C4F9AE02.roa (raw, json) Hash identifier: ejgjifoiJDZJ+gWsoAobC1JoVa6W0Im+MVj8NKJ7EYw= Subject key identifier: EC:56:35:7F:62:16:DA:17:C8:75:8F:4E:27:60:B1:EF:70:E9:E9:5F Certificate issuer: /CN=A9113683/serialNumber=CA7C86BE00DB414503ED5EE6C0AF928F34C5C7D8 Certificate serial: 084F Authority key identifier: CA:7C:86:BE:00:DB:41:45:03:ED:5E:E6:C0:AF:92:8F:34:C5:C7:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynyGvgDbQUUD7V7mwK-SjzTFx9g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/E43CFABEB67611ECACB17C42C4F9AE02.roa Signing time: Mon 30 Sep 2024 20:49:29 +0000 ROA not before: Mon 30 Sep 2024 20:49:29 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139009 IP address blocks: 103.153.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/ynyGvgDbQUUD7V7mwK-SjzTFx9g.crl rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/ynyGvgDbQUUD7V7mwK-SjzTFx9g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynyGvgDbQUUD7V7mwK-SjzTFx9g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2127 (0x84f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113683/serialNumber=CA7C86BE00DB414503ED5EE6C0AF928F34C5C7D8 Validity Not Before: Sep 30 20:49:29 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66fb0ed9-25c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1f:68:8f:e4:5b:8d:06:91:ad:f0:87:9c:ef: cb:da:96:5e:7a:cc:38:56:fd:27:3e:05:f1:9e:0f: af:ed:7c:1c:47:a8:9a:e8:01:35:39:8c:72:4e:c4: aa:6e:a2:e4:42:7e:b9:09:af:c5:9c:7f:ff:56:2e: ae:da:1c:74:f2:d7:35:09:0c:e2:5e:78:fb:af:2e: 1b:49:2e:77:42:a1:6c:5f:38:56:9f:5b:1b:23:9d: b1:55:8a:ed:a3:20:52:ff:74:15:47:54:9f:65:9c: 8a:0b:5c:dd:84:a9:90:37:25:48:c9:e8:fc:5a:9c: 0a:db:43:1c:40:c6:1c:ab:ec:dd:20:19:d8:cf:20: 47:9b:95:53:e8:9e:ec:6f:1e:65:87:a1:a9:75:8a: cd:a1:57:a2:aa:14:a5:d3:74:51:37:b2:00:55:1d: 7c:77:98:cd:cf:54:8b:94:d4:4c:0b:76:a4:14:99: f8:61:f2:4f:be:87:b1:31:da:b9:6a:a7:a1:9c:39: 93:4e:cc:54:b3:f1:8f:6b:0b:a9:cd:72:f4:90:47: ff:eb:0d:83:39:ab:02:49:33:32:b2:78:45:d4:a4: f6:e0:87:fb:e3:95:22:24:ee:b3:ea:ee:5b:17:5d: e3:c2:be:2d:5d:e2:c6:cb:86:99:7a:e9:2f:65:4c: f3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:56:35:7F:62:16:DA:17:C8:75:8F:4E:27:60:B1:EF:70:E9:E9:5F X509v3 Authority Key Identifier: keyid:CA:7C:86:BE:00:DB:41:45:03:ED:5E:E6:C0:AF:92:8F:34:C5:C7:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/ynyGvgDbQUUD7V7mwK-SjzTFx9g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ynyGvgDbQUUD7V7mwK-SjzTFx9g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113683/3F0B3562B79311EAA4C54B14C4F9AE02/E43CFABEB67611ECACB17C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.153.66.0/24 Signature Algorithm: sha256WithRSAEncryption a6:d8:a0:7b:d3:0c:15:5b:1c:3a:43:56:9c:98:16:56:78:d6: 3c:80:5a:4e:50:a8:d7:3e:fc:79:7a:7e:ed:4f:96:a9:ff:ab: 5e:77:e8:39:e4:87:c6:48:c8:c3:f8:93:08:38:3f:fd:fa:34: 53:2c:db:b6:55:f9:98:89:4e:f1:2e:90:a5:ed:68:d7:ba:c8: 10:29:49:c5:0c:8c:5e:38:65:58:3c:9f:14:af:9e:6a:d8:7f: 62:f3:03:2a:93:be:67:36:86:51:e9:af:33:d0:0d:b5:f7:07: 49:03:7f:51:31:ef:98:90:f8:50:be:00:89:2a:ef:f2:c5:20: 88:57:af:f2:80:33:1a:dd:15:8d:8a:23:85:b2:ff:01:91:8f: 3a:42:be:9e:e8:66:83:03:bd:e4:95:35:e4:b8:7e:53:88:d5: 37:53:da:ce:8e:24:5a:1a:bd:c5:06:34:b1:bc:8d:ef:c9:d1: ea:bf:8e:7f:31:c6:42:0a:fb:a8:95:85:34:d7:f7:c1:54:fb: 69:4a:c4:1f:3e:ab:43:c0:3f:d7:29:c4:b3:f5:29:68:3e:e1: c3:45:d2:7c:73:05:26:2d:96:24:4f:bf:08:83:54:3b:74:c7: c3:8d:36:c5:8e:f5:86:5d:a8:50:9c:e7:f3:e0:9f:47:de:8b: a7:6e:bb:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTM2ODMxMTAvBgNVBAUTKENBN0M4NkJFMDBEQjQxNDUwM0VENUVFNkMwQUY5MjhG MzRDNUM3RDgwHhcNMjQwOTMwMjA0OTI5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiMGVkOS0yNWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvB9oj+RbjQaRrfCHnO/L2pZeesw4Vv0nPgXxng+v7XwcR6ia6AE1OYxyTsSq bqLkQn65Ca/FnH//Vi6u2hx08tc1CQziXnj7ry4bSS53QqFsXzhWn1sbI52xVYrt oyBS/3QVR1SfZZyKC1zdhKmQNyVIyej8WpwK20McQMYcq+zdIBnYzyBHm5VT6J7s bx5lh6GpdYrNoVeiqhSl03RRN7IAVR18d5jNz1SLlNRMC3akFJn4YfJPvoexMdq5 aqehnDmTTsxUs/GPawupzXL0kEf/6w2DOasCSTMysnhF1KT24If745UiJO6z6u5b F13jwr4tXeLGy4aZeukvZUzz3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFOxWNX9i FtoXyHWPTidgse9w6elfMB8GA1UdIwQYMBaAFMp8hr4A20FFA+1e5sCvko80xcfY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzY4My8zRjBCMzU2MkI3 OTMxMUVBQTRDNTRCMTRDNEY5QUUwMi95bnlHdmdEYlFVVUQ3Vjdtd0stU2p6VEZ4 OWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lueUd2Z0RiUVVVRDdWN213Sy1TanpURng5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTM2ODMvM0YwQjM1NjJCNzkzMTFFQUE0QzU0QjE0QzRGOUFFMDIvRTQzQ0ZBQkVC Njc2MTFFQ0FDQjE3QzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmUIwDQYJKoZIhvcNAQELBQADggEBAKbYoHvTDBVbHDpD VpyYFlZ41jyAWk5QqNc+/Hl6fu1Plqn/q1536Dnkh8ZIyMP4kwg4P/36NFMs27ZV +ZiJTvEukKXtaNe6yBApScUMjF44ZVg8nxSvnmrYf2LzAyqTvmc2hlHprzPQDbX3 B0kDf1Ex75iQ+FC+AIkq7/LFIIhXr/KAMxrdFY2KI4Wy/wGRjzpCvp7oZoMDveSV NeS4flOI1TdT2s6OJFoavcUGNLG8je/J0eq/jn8xxkIK+6iVhTTX98FU+2lKxB8+ q0PAP9cpxLP1KWg+4cNF0nxzBSYtliRPvwiDVDt0x8ONNsWO9YZdqFCc5/Pgn0fe i6duu8w= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:36 2024 by rpki-client on console-fra.rpki-client.org