$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1609CE067A4A11EB99C11F5FC4F9AE02.roa File: 1609CE067A4A11EB99C11F5FC4F9AE02.roa (raw, json) Hash identifier: /6vaZiCWJmBFNJgiNOI49M1x4iJoUHYLtfB+8hNudBk= Subject key identifier: A1:B9:A7:98:A2:25:51:E5:26:8E:48:9E:9D:F0:CF:6A:98:27:A3:57 Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0D92 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1609CE067A4A11EB99C11F5FC4F9AE02.roa Signing time: Sat 24 Aug 2024 18:36:44 +0000 ROA not before: Sat 24 Aug 2024 18:36:44 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132825 IP address blocks: 103.140.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3474 (0xd92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Aug 24 18:36:44 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ca283c-8c5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:5c:96:6c:24:d0:b9:6c:fa:68:13:48:0b:b7: 8e:17:77:d6:a7:e0:ff:a7:81:8d:e2:bd:a5:43:e7: e4:e3:41:c2:31:3b:21:84:99:7d:0b:c5:cd:e0:c8: 98:44:cb:3f:ac:79:08:90:7c:ba:94:e7:07:ba:3a: 22:3b:ac:02:26:79:dd:ce:1e:0d:e6:bc:a4:5b:96: 13:12:20:c0:1a:77:db:b8:c7:90:9e:9e:6c:47:68: 55:ab:8d:4a:37:17:ba:a7:88:34:09:67:3a:cb:d5: cf:7b:67:92:51:b6:37:b5:bc:6f:c5:bf:b2:23:86: ec:8b:37:29:49:f0:e5:4d:d5:8e:16:b4:ac:ee:4b: ae:82:e7:1d:37:e6:c0:76:5d:fb:37:d9:c0:de:80: 1b:c8:6b:00:f0:4c:1a:f4:d0:e9:97:3d:53:5c:a3: af:e2:be:9a:16:db:77:8a:53:74:5d:d3:a1:3c:48: 98:96:6d:5d:3d:bc:8b:11:49:bf:3e:a8:22:7e:95: a7:ee:78:31:33:11:b3:f3:2a:e5:2c:f1:c5:c4:0f: e6:97:08:82:cd:3a:06:b6:9e:2b:3b:52:19:c1:e4: 70:9a:89:98:3c:3e:1e:18:77:65:87:fd:15:13:65: 4d:d1:de:71:af:40:fd:5a:c3:13:63:a7:ee:f0:59: 5f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B9:A7:98:A2:25:51:E5:26:8E:48:9E:9D:F0:CF:6A:98:27:A3:57 X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1609CE067A4A11EB99C11F5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.228.0/23 Signature Algorithm: sha256WithRSAEncryption a8:f0:45:31:6c:2d:9e:7a:0f:95:ee:a0:27:57:b9:be:96:3c: 1d:0a:a3:5c:b4:94:dc:b8:55:48:ac:08:6a:38:10:71:41:db: ac:c7:1e:d9:1c:5a:8c:85:a6:d7:e6:90:dd:cd:01:37:0a:26: 2f:55:27:98:f7:b9:ec:d5:17:1c:02:60:43:0e:92:fd:66:43: 35:f7:46:c6:5b:5b:de:93:cc:ad:c2:1e:78:9d:1e:ca:c1:a8: 18:6f:c1:6f:8d:af:ca:96:7f:ff:8d:4e:06:34:da:ed:3b:bf: 29:75:a8:94:a9:49:da:cd:74:25:31:82:c0:f5:f5:05:c2:24: 6a:11:88:83:95:8c:15:b3:a1:32:d1:60:54:90:9c:ed:50:69: 16:cf:4a:e3:6e:3a:14:74:a5:e5:9f:6f:ab:85:c3:a1:db:13: fe:c6:55:2a:53:14:6e:6d:a6:37:d0:e6:34:79:92:1e:72:4d: 1d:11:a2:65:37:13:20:58:96:7f:2c:33:65:41:22:c6:52:67: 8b:26:94:72:44:e6:8e:fc:e3:76:87:94:25:76:ba:f6:db:f6: f5:6b:a7:dd:05:3d:43:9e:35:5a:1b:f2:e2:bb:9e:a6:83:4c: ef:5b:e9:06:f1:ff:cc:a9:48:c6:b7:64:0e:4a:6b:46:1b:3b: 64:89:2b:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjQwODI0MTgzNjQ0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNhMjgzYy04YzVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp1yWbCTQuWz6aBNIC7eOF3fWp+D/p4GN4r2lQ+fk40HCMTshhJl9C8XN4MiY RMs/rHkIkHy6lOcHujoiO6wCJnndzh4N5rykW5YTEiDAGnfbuMeQnp5sR2hVq41K Nxe6p4g0CWc6y9XPe2eSUbY3tbxvxb+yI4bsizcpSfDlTdWOFrSs7kuugucdN+bA dl37N9nA3oAbyGsA8Ewa9NDplz1TXKOv4r6aFtt3ilN0XdOhPEiYlm1dPbyLEUm/ PqgifpWn7ngxMxGz8yrlLPHFxA/mlwiCzToGtp4rO1IZweRwmomYPD4eGHdlh/0V E2VN0d5xr0D9WsMTY6fu8FlflwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKG5p5ii JVHlJo5Inp3wz2qYJ6NXMB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTgwMjIvQzYxQzI1NkFBRENDMTFFOUFDNjcyRjRCQzRGOUFFMDIvMTYwOUNFMDY3 QTRBMTFFQjk5QzExRjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjOQwDQYJKoZIhvcNAQELBQADggEBAKjwRTFsLZ56D5Xu oCdXub6WPB0Ko1y0lNy4VUisCGo4EHFB26zHHtkcWoyFptfmkN3NATcKJi9VJ5j3 uezVFxwCYEMOkv1mQzX3RsZbW96TzK3CHnidHsrBqBhvwW+Nr8qWf/+NTgY02u07 vyl1qJSpSdrNdCUxgsD19QXCJGoRiIOVjBWzoTLRYFSQnO1QaRbPSuNuOhR0peWf b6uFw6HbE/7GVSpTFG5tpjfQ5jR5kh5yTR0RomU3EyBYln8sM2VBIsZSZ4smlHJE 5o7843aHlCV2uvbb9vVrp90FPUOeNVob8uK7nqaDTO9b6Qbx/8ypSMa3ZA5Ka0Yb O2SJK3A= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:11 2024 by rpki-client on console-ams.rpki-client.org