$ rpki-client -vvf rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/9BF55430C4D611EDA65E8C87C4F9AE02.roa File: 9BF55430C4D611EDA65E8C87C4F9AE02.roa (raw, json) Hash identifier: li4OxnhOQgQRujPF67sN5Xz793LOnzHpSZGFaFwRWYE= Subject key identifier: 3B:73:D7:04:31:0D:66:6F:6D:26:75:56:37:FD:2C:5E:6F:F7:2A:B0 Certificate issuer: /CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Certificate serial: 0127 Authority key identifier: A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/9BF55430C4D611EDA65E8C87C4F9AE02.roa Signing time: Thu 05 Sep 2024 04:47:29 +0000 ROA not before: Thu 05 Sep 2024 04:47:29 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 149994 IP address blocks: 103.190.82.0/23 maxlen: 23 103.190.82.0/24 maxlen: 24 103.190.83.0/24 maxlen: 24 2001:df0:e740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:43:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 295 (0x127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911FABC/serialNumber=A87242B73627D429234A5F54C523BB41EBBE87AA Validity Not Before: Sep 5 04:47:29 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66d937e1-7c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:84:06:16:c0:0f:0c:9d:0e:f8:7a:50:fd:f7: 6c:c0:0b:43:ac:a3:4a:61:5a:70:6f:fd:49:94:75: ed:5c:5c:0f:cb:4d:31:b9:42:24:b4:ec:6f:27:07: 3a:12:1a:a8:56:c3:8c:86:55:7a:15:e0:4a:eb:ce: 67:82:45:4d:44:4b:09:42:f6:65:0d:76:0b:d8:b1: f2:a9:f5:98:86:da:c4:a3:1c:05:2a:9c:7f:30:4c: 53:8b:7d:61:02:b3:90:0b:79:1a:c3:2f:c9:7d:86: 0f:18:d1:47:1c:d9:75:bd:d7:82:39:7d:b1:a5:12: 8c:ba:de:d0:5c:e1:f9:06:eb:83:68:42:bc:75:8d: 15:42:15:0e:1b:84:40:bf:be:91:5d:ab:49:6c:fb: 8d:1e:c0:b0:f6:17:6d:7c:09:1c:cf:99:69:8a:a7: 64:a4:a2:2b:da:f6:71:09:c6:7d:3a:7c:3c:0b:ea: 2f:c7:86:ff:4e:ac:e5:1c:31:9d:99:f0:42:8f:66: bd:99:1c:59:30:21:b4:18:d5:8f:34:df:b1:50:4c: 62:96:fe:d7:05:73:59:8c:f4:70:73:df:03:1d:1d: d3:c3:e8:45:3b:eb:20:48:f4:59:81:00:ef:37:af: 00:78:a9:77:cb:0b:84:59:a3:15:68:96:7f:1e:55: e6:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:73:D7:04:31:0D:66:6F:6D:26:75:56:37:FD:2C:5E:6F:F7:2A:B0 X509v3 Authority Key Identifier: keyid:A8:72:42:B7:36:27:D4:29:23:4A:5F:54:C5:23:BB:41:EB:BE:87:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qHJCtzYn1CkjSl9UxSO7Qeu-h6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911FABC/D9420076C4D211EDBF0E1982C4F9AE02/9BF55430C4D611EDA65E8C87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.190.82.0/23 IPv6: 2001:df0:e740::/48 Signature Algorithm: sha256WithRSAEncryption 3d:ce:0b:cf:d5:53:6d:de:b3:bb:b1:36:c2:30:52:33:89:60: ee:6f:46:c3:9b:6d:b1:ac:b6:34:9f:51:42:3d:d3:86:de:52: 22:95:9a:6d:97:23:2b:9a:40:c0:22:4b:49:0b:ec:47:31:61: 2a:e3:ad:b3:f7:a2:70:09:16:dc:1c:31:4c:a6:8c:00:63:05: b9:10:79:5b:e1:ec:81:4c:9f:f3:f0:96:ff:d9:f3:58:2f:f6: e0:d3:fb:75:e7:fe:f5:e7:e8:51:ab:63:10:99:fa:65:78:7d: a4:02:97:30:06:7c:58:72:53:b3:8a:9a:08:e5:8a:28:d9:87: 30:56:45:0b:10:f7:5c:1e:48:5c:6f:cd:b2:6b:f2:92:4a:fb: b0:1f:d2:cf:41:eb:31:77:26:57:6f:df:a9:15:6f:70:bd:b5: 25:e7:8e:c2:40:82:76:70:e3:3c:51:80:85:df:0e:b9:6f:39: b0:d2:9f:82:cf:13:59:57:5f:dd:10:79:21:47:e4:df:cc:e8: 62:ba:38:ef:57:09:9b:48:dc:71:8f:0b:79:f7:71:fa:b2:8b: 49:bd:e7:9a:8c:b1:84:fd:4b:34:be:6f:e9:d0:e3:d2:1f:26: 8c:db:c3:71:7a:2a:86:ac:46:68:43:c2:92:92:f8:30:dd:07: d2:9a:56:49 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUZBQkMxMTAvBgNVBAUTKEE4NzI0MkI3MzYyN0Q0MjkyMzRBNUY1NEM1MjNCQjQx RUJCRTg3QUEwHhcNMjQwOTA1MDQ0NzI5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5MzdlMS03YzNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IQGFsAPDJ0O+HpQ/fdswAtDrKNKYVpwb/1JlHXtXFwPy00xuUIktOxvJwc6 EhqoVsOMhlV6FeBK685ngkVNREsJQvZlDXYL2LHyqfWYhtrEoxwFKpx/MExTi31h ArOQC3kawy/JfYYPGNFHHNl1vdeCOX2xpRKMut7QXOH5BuuDaEK8dY0VQhUOG4RA v76RXatJbPuNHsCw9hdtfAkcz5lpiqdkpKIr2vZxCcZ9Onw8C+ovx4b/TqzlHDGd mfBCj2a9mRxZMCG0GNWPNN+xUExilv7XBXNZjPRwc98DHR3Tw+hFO+sgSPRZgQDv N68AeKl3ywuEWaMVaJZ/HlXmfwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDtz1wQx DWZvbSZ1Vjf9LF5v9yqwMB8GA1UdIwQYMBaAFKhyQrc2J9QpI0pfVMUju0Hrvoeq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRkFCQy9EOTQyMDA3NkM0 RDIxMUVEQkYwRTE5ODJDNEY5QUUwMi9xSEpDdHpZbjFDa2pTbDlVeFNPN1FldS1o Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FISkN0elluMUNralNsOVV4U083UWV1LWg2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUZBQkMvRDk0MjAwNzZDNEQyMTFFREJGMEUxOTgyQzRGOUFFMDIvOUJGNTU0MzBD NEQ2MTFFREE2NUU4Qzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnvlIwDwQCAAIwCQMHACABDfDnQDANBgkqhkiG9w0BAQsF AAOCAQEAPc4Lz9VTbd6zu7E2wjBSM4lg7m9Gw5ttsay2NJ9RQj3Tht5SIpWabZcj K5pAwCJLSQvsRzFhKuOts/eicAkW3BwxTKaMAGMFuRB5W+HsgUyf8/CW/9nzWC/2 4NP7def+9efoUatjEJn6ZXh9pAKXMAZ8WHJTs4qaCOWKKNmHMFZFCxD3XB5IXG/N smvykkr7sB/Sz0HrMXcmV2/fqRVvcL21JeeOwkCCdnDjPFGAhd8OuW85sNKfgs8T WVdf3RB5IUfk38zoYro471cJm0jccY8Lefdx+rKLSb3nmoyxhP1LNL5v6dDj0h8m jNvDcXoqhqxGaEPCkpL4MN0H0ppWSQ== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:01 2024 by rpki-client on console-ams.rpki-client.org