$ rpki-client -vvf rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/E76F99C60FDB11ED9718606AC4F9AE02.roa File: E76F99C60FDB11ED9718606AC4F9AE02.roa (raw, json) Hash identifier: 5xmx4EdtRdh7/raKFzoldytV08fzGVQ9tShtrjhxke0= Subject key identifier: C7:9F:A0:95:EB:41:9D:02:34:6C:CD:32:BF:82:00:BC:8B:A0:D9:55 Certificate issuer: /CN=A9118CA7/serialNumber=F1998A475E92DE8A6C7D4094556A0DA67D5D4D0E Certificate serial: 08C9 Authority key identifier: F1:99:8A:47:5E:92:DE:8A:6C:7D:40:94:55:6A:0D:A6:7D:5D:4D:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/E76F99C60FDB11ED9718606AC4F9AE02.roa Signing time: Fri 20 Sep 2024 20:39:37 +0000 ROA not before: Fri 20 Sep 2024 20:39:37 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 141452 IP address blocks: 103.151.171.0/24 maxlen: 24 2001:df3:cc80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.crl rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2249 (0x8c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118CA7/serialNumber=F1998A475E92DE8A6C7D4094556A0DA67D5D4D0E Validity Not Before: Sep 20 20:39:37 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66eddd89-9add Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:60:23:0c:4d:78:d5:bb:f5:1f:eb:39:04:6b: 81:76:0d:7d:99:6c:5b:ba:89:ec:29:8b:03:c3:20: ed:23:a8:59:21:ac:d8:cf:f9:ba:75:08:aa:cd:fc: 62:ff:7a:52:87:cd:7d:0a:92:4d:48:59:7a:fa:c0: 6b:c0:48:9e:41:cb:07:89:0f:a8:4c:bd:a9:29:d0: bd:32:e6:62:99:a0:d3:53:db:04:25:ac:28:5a:83: c6:87:54:03:f3:b3:0b:70:58:5f:c1:2e:f7:b5:3d: b1:ed:e7:18:c2:e3:78:a9:21:a8:64:6b:61:fd:43: f3:b1:9a:4d:e1:3a:16:71:d4:68:98:bc:41:54:ec: 71:b6:e3:e0:80:a1:06:ab:6a:46:a9:29:38:b9:e8: d0:4c:12:3a:f2:ed:ad:3b:13:40:5e:62:8b:9b:64: 81:5b:be:27:dd:81:c3:c7:d8:6d:81:2c:17:a4:ef: c2:14:7b:cf:4f:87:b6:91:76:45:01:20:5a:76:81: 0f:ff:b4:48:6e:c3:50:c0:55:dd:0f:17:37:a2:21: 2a:ab:0e:2c:d8:f3:1c:03:1f:8c:91:65:e5:30:2e: ee:83:c7:e5:3c:3f:f1:1f:55:6d:68:2a:8d:d4:e1: 79:79:d0:5f:ac:59:5f:2f:25:7c:2c:04:be:71:eb: ff:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:9F:A0:95:EB:41:9D:02:34:6C:CD:32:BF:82:00:BC:8B:A0:D9:55 X509v3 Authority Key Identifier: keyid:F1:99:8A:47:5E:92:DE:8A:6C:7D:40:94:55:6A:0D:A6:7D:5D:4D:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/8ZmKR16S3opsfUCUVWoNpn1dTQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8ZmKR16S3opsfUCUVWoNpn1dTQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118CA7/2FC70A24A0D511EAA7FFDF29C4F9AE02/E76F99C60FDB11ED9718606AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.151.171.0/24 IPv6: 2001:df3:cc80::/48 Signature Algorithm: sha256WithRSAEncryption 41:b9:c1:d6:8c:cb:e2:81:e3:54:a9:7b:7e:4e:81:82:49:5d: 55:11:71:51:2d:80:fb:c9:31:db:30:da:f1:60:65:0c:70:a9: cf:ce:b7:cc:74:48:d9:0a:bd:e5:9d:a5:10:66:3e:04:c3:d4: 49:93:8b:21:6f:c9:3e:d4:09:c1:cd:fd:d4:4d:aa:8b:e0:af: c5:74:13:4c:6f:b5:ae:75:af:e3:16:63:42:42:61:f9:68:5c: 45:39:2c:53:19:da:61:ca:a7:18:a0:81:7a:d4:40:5f:b7:2b: 98:97:36:35:ef:29:60:3a:24:75:6a:9d:c2:67:e1:a9:1e:a5: a6:d5:c3:1a:8e:be:74:27:83:76:9c:89:8e:38:41:48:fa:74: e1:9d:c8:9c:83:1e:ba:5b:b1:53:13:fe:fa:cd:c5:d3:52:e8: cf:2e:62:b4:c7:d8:d0:67:f1:6f:fd:6e:de:cf:65:ab:f1:7f: 34:41:a5:3c:69:cb:41:81:13:2f:a9:f0:ec:51:c3:77:7f:98: 2a:fb:65:24:92:fd:49:6f:e1:bb:bf:6c:df:56:03:ed:63:f4: 41:23:01:c5:b0:9b:e2:ee:9b:8f:6f:ff:7a:44:c0:2f:bf:6b: 85:e3:15:ba:2e:ca:16:8a:00:51:d9:be:c4:f8:c6:5b:e2:25: f5:2f:10:b5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCMkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThDQTcxMTAvBgNVBAUTKEYxOTk4QTQ3NUU5MkRFOEE2QzdENDA5NDU1NkEwREE2 N0Q1RDREMEUwHhcNMjQwOTIwMjAzOTM3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkZGQ4OS05YWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoWAjDE141bv1H+s5BGuBdg19mWxbuonsKYsDwyDtI6hZIazYz/m6dQiqzfxi /3pSh819CpJNSFl6+sBrwEieQcsHiQ+oTL2pKdC9MuZimaDTU9sEJawoWoPGh1QD 87MLcFhfwS73tT2x7ecYwuN4qSGoZGth/UPzsZpN4ToWcdRomLxBVOxxtuPggKEG q2pGqSk4uejQTBI68u2tOxNAXmKLm2SBW74n3YHDx9htgSwXpO/CFHvPT4e2kXZF ASBadoEP/7RIbsNQwFXdDxc3oiEqqw4s2PMcAx+MkWXlMC7ug8flPD/xH1VtaCqN 1OF5edBfrFlfLyV8LAS+cev/GQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMefoJXr QZ0CNGzNMr+CALyLoNlVMB8GA1UdIwQYMBaAFPGZikdekt6KbH1AlFVqDaZ9XU0O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOENBNy8yRkM3MEEyNEEw RDUxMUVBQTdGRkRGMjlDNEY5QUUwMi84Wm1LUjE2UzNvcHNmVUNVVldvTnBuMWRU UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhabUtSMTZTM29wc2ZVQ1VWV29OcG4xZFRRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThDQTcvMkZDNzBBMjRBMEQ1MTFFQUE3RkZERjI5QzRGOUFFMDIvRTc2Rjk5QzYw RkRCMTFFRDk3MTg2MDZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnl6swDwQCAAIwCQMHACABDfPMgDANBgkqhkiG9w0BAQsF AAOCAQEAQbnB1ozL4oHjVKl7fk6BgkldVRFxUS2A+8kx2zDa8WBlDHCpz863zHRI 2Qq95Z2lEGY+BMPUSZOLIW/JPtQJwc391E2qi+CvxXQTTG+1rnWv4xZjQkJh+Whc RTksUxnaYcqnGKCBetRAX7crmJc2Ne8pYDokdWqdwmfhqR6lptXDGo6+dCeDdpyJ jjhBSPp04Z3InIMeuluxUxP++s3F01Lozy5itMfY0Gfxb/1u3s9lq/F/NEGlPGnL QYETL6nw7FHDd3+YKvtlJJL9SW/hu79s31YD7WP0QSMBxbCb4u6bj2//ekTAL79r heMVui7KFooAUdm+xPjGW+Il9S8QtQ== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org