$ rpki-client -vvf rpki.apnic.net/member_repository/A9119635/AF0F8D8A584911EABF6A8412C4F9AE02/BA767AE8584A11EA91887312C4F9AE02.roa File: BA767AE8584A11EA91887312C4F9AE02.roa (raw, json) Hash identifier: CSO3Zmx3ajDkBk6mIZBI03aEqBJbOoiRtko65P+Duqo= Subject key identifier: 74:93:3C:95:BF:6D:E1:D6:BF:6E:F8:3A:58:43:04:60:38:36:9F:CE Certificate issuer: /CN=A9119635/serialNumber=EBEE81FC4BC9D673DDF74854A655ED5FACE5D184 Certificate serial: 09E1 Authority key identifier: EB:EE:81:FC:4B:C9:D6:73:DD:F7:48:54:A6:55:ED:5F:AC:E5:D1:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6-6B_EvJ1nPd90hUplXtX6zl0YQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119635/AF0F8D8A584911EABF6A8412C4F9AE02/BA767AE8584A11EA91887312C4F9AE02.roa Signing time: Fri 24 May 2024 21:00:20 +0000 ROA not before: Fri 24 May 2024 21:00:20 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138961 IP address blocks: 103.137.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119635/AF0F8D8A584911EABF6A8412C4F9AE02/6-6B_EvJ1nPd90hUplXtX6zl0YQ.crl rsync://rpki.apnic.net/member_repository/A9119635/AF0F8D8A584911EABF6A8412C4F9AE02/6-6B_EvJ1nPd90hUplXtX6zl0YQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6-6B_EvJ1nPd90hUplXtX6zl0YQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2529 (0x9e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119635/serialNumber=EBEE81FC4BC9D673DDF74854A655ED5FACE5D184 Validity Not Before: May 24 21:00:20 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6650ffe4-b402 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:27:06:1c:bc:96:5c:74:1d:17:f9:5d:34:6f: c9:63:d2:c7:c0:db:aa:72:10:58:f9:66:b2:eb:af: 97:6e:cc:73:86:75:41:e8:35:c1:d1:13:a9:7d:89: bb:9b:54:12:9e:a8:ce:62:0f:02:d2:0b:f9:97:a4: 48:3a:fc:f0:49:cc:96:ef:08:f7:7e:25:66:7f:58: de:e9:76:6f:60:0d:24:e8:fb:24:33:e6:6a:10:3b: 25:04:e2:94:77:b8:96:28:c4:69:98:03:42:09:c9: a6:9f:2d:8b:84:af:cd:b8:fd:79:5a:25:d7:67:de: 32:2b:a4:e3:d2:22:3b:96:f4:2a:e3:f4:9c:14:e8: f4:89:0b:75:60:31:4a:29:98:21:8c:8c:93:e3:48: aa:af:26:5d:c8:4b:ea:3e:44:d9:07:bd:e0:2c:78: 28:4d:5c:33:41:d3:c8:6c:05:cc:46:c1:4a:8a:3c: a1:5f:70:c2:82:2e:35:10:7a:0c:95:76:e6:b5:7c: e4:f6:a3:07:8c:61:1d:58:a2:2a:13:aa:be:5c:1b: e4:b6:cc:11:19:bb:fa:40:16:60:66:82:77:57:98: 40:01:de:e7:0a:50:26:d6:ed:9d:67:d9:69:10:aa: 8b:55:29:a8:86:99:3a:3b:ef:45:1c:75:8a:88:a8: 62:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:93:3C:95:BF:6D:E1:D6:BF:6E:F8:3A:58:43:04:60:38:36:9F:CE X509v3 Authority Key Identifier: keyid:EB:EE:81:FC:4B:C9:D6:73:DD:F7:48:54:A6:55:ED:5F:AC:E5:D1:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119635/AF0F8D8A584911EABF6A8412C4F9AE02/6-6B_EvJ1nPd90hUplXtX6zl0YQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6-6B_EvJ1nPd90hUplXtX6zl0YQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119635/AF0F8D8A584911EABF6A8412C4F9AE02/BA767AE8584A11EA91887312C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.178.0/23 Signature Algorithm: sha256WithRSAEncryption a1:c9:28:be:52:fc:ce:37:cc:3d:bd:26:8c:e5:2d:43:f7:7d: 28:1e:a3:07:54:4f:4d:01:90:b3:d1:6d:40:a5:aa:3a:b5:37: 4e:ac:d1:5e:b3:35:a7:40:2a:10:68:c1:88:79:0e:de:13:54: 65:af:d1:2b:ac:e3:b7:a8:cc:f8:34:dc:ee:2f:4d:dd:ef:c1: 54:77:ae:33:bc:6e:62:83:95:0d:13:1a:e2:b1:86:e4:96:e8: a4:3b:ba:d3:49:c5:4b:6f:b4:24:de:81:6a:1c:4e:4e:0a:b8: ee:a4:7e:df:f6:99:1e:27:84:cc:5e:3e:83:46:6b:ad:bd:ee: d2:86:a5:13:75:f2:d9:24:d0:8b:19:bf:5b:78:65:cd:5d:99: 88:af:6b:39:c7:58:14:bd:23:14:b5:9e:02:5c:18:bf:6a:42: 2f:a9:46:a5:7d:6a:c8:77:f6:9f:1e:97:49:6b:fb:d3:b9:45: b9:77:28:eb:9e:43:9a:99:00:3a:0e:79:71:09:d6:92:e8:f7: 7f:43:8d:49:88:21:0a:70:be:05:17:60:c2:f1:1b:0d:70:a1: 22:e7:65:e8:23:71:2f:c9:48:18:fd:65:5b:5c:60:ae:0a:7f: f6:97:09:b5:38:c1:82:dc:ed:b4:80:46:8f:54:f7:22:b6:ab: 66:f1:e9:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTk2MzUxMTAvBgNVBAUTKEVCRUU4MUZDNEJDOUQ2NzNEREY3NDg1NEE2NTVFRDVG QUNFNUQxODQwHhcNMjQwNTI0MjEwMDIwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUwZmZlNC1iNDAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCcGHLyWXHQdF/ldNG/JY9LHwNuqchBY+Way66+XbsxzhnVB6DXB0ROpfYm7 m1QSnqjOYg8C0gv5l6RIOvzwScyW7wj3fiVmf1je6XZvYA0k6PskM+ZqEDslBOKU d7iWKMRpmANCCcmmny2LhK/NuP15WiXXZ94yK6Tj0iI7lvQq4/ScFOj0iQt1YDFK KZghjIyT40iqryZdyEvqPkTZB73gLHgoTVwzQdPIbAXMRsFKijyhX3DCgi41EHoM lXbmtXzk9qMHjGEdWKIqE6q+XBvktswRGbv6QBZgZoJ3V5hAAd7nClAm1u2dZ9lp EKqLVSmohpk6O+9FHHWKiKhiTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHSTPJW/ beHWv274OlhDBGA4Np/OMB8GA1UdIwQYMBaAFOvugfxLydZz3fdIVKZV7V+s5dGE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTYzNS9BRjBGOEQ4QTU4 NDkxMUVBQkY2QTg0MTJDNEY5QUUwMi82LTZCX0V2SjFuUGQ5MGhVcGxYdFg2emww WVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYtNkJfRXZKMW5QZDkwaFVwbFh0WDZ6bDBZUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTk2MzUvQUYwRjhEOEE1ODQ5MTFFQUJGNkE4NDEyQzRGOUFFMDIvQkE3NjdBRTg1 ODRBMTFFQTkxODg3MzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnibIwDQYJKoZIhvcNAQELBQADggEBAKHJKL5S/M43zD29 JozlLUP3fSgeowdUT00BkLPRbUClqjq1N06s0V6zNadAKhBowYh5Dt4TVGWv0Sus 47eozPg03O4vTd3vwVR3rjO8bmKDlQ0TGuKxhuSW6KQ7utNJxUtvtCTegWocTk4K uO6kft/2mR4nhMxePoNGa6297tKGpRN18tkk0IsZv1t4Zc1dmYivaznHWBS9IxS1 ngJcGL9qQi+pRqV9ash39p8el0lr+9O5Rbl3KOueQ5qZADoOeXEJ1pLo939DjUmI IQpwvgUXYMLxGw1woSLnZegjcS/JSBj9ZVtcYK4Kf/aXCbU4wYLc7bSARo9U9yK2 q2bx6WQ= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org