$ rpki-client -vvf rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa File: A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa (raw, json) Hash identifier: R2fgHMU976+Qe8LJMOcQoSeVupcwkHm/BpOIqV/u37U= Subject key identifier: 53:9C:CD:A0:A0:AB:C2:C6:5E:F0:9C:B3:0B:67:04:EC:B0:A4:FB:40 Certificate issuer: /CN=A9123431/serialNumber=2D2E2C569D4B639967E658AD5C497C331AAB885F Certificate serial: F9 Authority key identifier: 2D:2E:2C:56:9D:4B:63:99:67:E6:58:AD:5C:49:7C:33:1A:AB:88:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LS4sVp1LY5ln5litXEl8MxqriF8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa Signing time: Wed 05 Jun 2024 06:45:08 +0000 ROA not before: Wed 05 Jun 2024 06:45:08 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 134359 IP address blocks: 103.233.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/LS4sVp1LY5ln5litXEl8MxqriF8.crl rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/LS4sVp1LY5ln5litXEl8MxqriF8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LS4sVp1LY5ln5litXEl8MxqriF8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123431/serialNumber=2D2E2C569D4B639967E658AD5C497C331AAB885F Validity Not Before: Jun 5 06:45:08 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66600974-8e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f2:69:fa:b6:41:f8:10:53:12:86:c5:41:52: 13:95:08:3b:07:a3:42:5d:1c:eb:d5:4a:b5:3d:c9: 65:e5:df:1e:14:22:c8:e6:3e:5d:69:68:76:a9:3d: 15:e1:e0:e4:2f:a9:be:63:bf:80:a9:c3:90:7f:0a: 7d:55:c5:41:85:9a:65:de:ba:f0:82:ae:8f:10:b4: b9:02:d7:3e:00:73:13:69:cf:9b:86:fb:e8:7c:ce: d0:04:f3:57:f8:93:03:65:71:01:f3:03:a1:0f:26: 1b:21:8b:02:8c:fb:7a:79:b0:73:9b:ea:93:02:81: f4:5c:4a:bd:84:b6:7d:d1:2d:27:93:09:28:b7:3c: c7:19:49:87:9b:c3:b6:4d:be:1b:9b:cd:48:84:1e: 80:9d:71:1c:c9:d9:2a:0b:bf:05:6f:5c:aa:8d:d2: be:4b:2f:78:4f:2c:64:4a:5c:dd:3d:02:86:ff:5d: 99:9c:50:f1:67:92:3f:15:48:09:5e:59:b8:22:39: 88:44:cc:e6:6f:af:00:f3:46:73:e6:63:ed:f6:33: a7:89:2b:79:1d:43:e2:a0:2f:f0:48:1d:ab:6b:ec: a5:b2:3b:44:d0:61:ac:1e:57:cd:4f:2f:99:17:c9: 3f:da:99:5c:5c:e4:af:f1:33:51:66:0b:0a:e8:85: 80:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:9C:CD:A0:A0:AB:C2:C6:5E:F0:9C:B3:0B:67:04:EC:B0:A4:FB:40 X509v3 Authority Key Identifier: keyid:2D:2E:2C:56:9D:4B:63:99:67:E6:58:AD:5C:49:7C:33:1A:AB:88:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/LS4sVp1LY5ln5litXEl8MxqriF8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LS4sVp1LY5ln5litXEl8MxqriF8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123431/C17B7C64ACC311ED8EC42111C4F9AE02/A7B59636ACCB11EDA8DAFF4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.132.0/22 Signature Algorithm: sha256WithRSAEncryption 99:6b:f1:48:0e:f1:b5:c6:9d:21:1e:de:ec:4a:0e:22:d1:59: ba:53:db:6b:62:0b:ad:8c:07:b3:e9:30:9c:17:44:85:d2:93: 61:ea:76:f0:67:dc:d8:67:8e:2a:0e:6c:fe:2d:67:72:e7:4b: cd:ec:6c:df:0e:22:ea:f9:bd:fa:6c:ba:67:3a:67:57:a8:fd: d6:e3:de:6a:22:c5:c6:b6:31:54:44:e0:ea:f4:b8:93:d3:db: ef:56:54:98:b1:21:61:75:1d:13:e3:25:23:1d:31:6c:d6:37: 77:a2:59:d8:76:40:a3:fb:0e:1f:6a:5d:27:be:64:a5:e7:fb: 99:60:36:ef:f7:22:b7:ce:c7:24:ec:89:93:60:b5:54:7d:88: 59:2a:36:60:23:07:f1:ce:bb:0a:b8:b5:5d:32:87:60:14:8b: 4a:ba:3d:7b:fc:0d:77:49:de:ef:ff:04:08:a4:58:3d:3d:da: 36:35:7e:bd:3b:73:45:80:1d:ba:b5:d6:18:4e:9a:98:fd:86: 3d:d3:01:5c:d8:bd:aa:18:ef:4a:2b:94:ab:a1:32:94:ae:1c: 39:50:0f:45:8e:2a:67:a9:44:d2:ac:a2:b7:dd:95:41:81:a5: 5c:ed:1b:fd:40:60:26:f3:81:71:13:7b:7a:e4:28:45:f1:77: 76:44:41:ca -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM0MzExMTAvBgNVBAUTKDJEMkUyQzU2OUQ0QjYzOTk2N0U2NThBRDVDNDk3QzMz MUFBQjg4NUYwHhcNMjQwNjA1MDY0NTA4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYwMDk3NC04ZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPJp+rZB+BBTEobFQVITlQg7B6NCXRzr1Uq1Pcll5d8eFCLI5j5daWh2qT0V 4eDkL6m+Y7+AqcOQfwp9VcVBhZpl3rrwgq6PELS5Atc+AHMTac+bhvvofM7QBPNX +JMDZXEB8wOhDyYbIYsCjPt6ebBzm+qTAoH0XEq9hLZ90S0nkwkotzzHGUmHm8O2 Tb4bm81IhB6AnXEcydkqC78Fb1yqjdK+Sy94TyxkSlzdPQKG/12ZnFDxZ5I/FUgJ Xlm4IjmIRMzmb68A80Zz5mPt9jOniSt5HUPioC/wSB2ra+ylsjtE0GGsHlfNTy+Z F8k/2plcXOSv8TNRZgsK6IWAvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFOczaCg q8LGXvCcswtnBOywpPtAMB8GA1UdIwQYMBaAFC0uLFadS2OZZ+ZYrVxJfDMaq4hf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzQzMS9DMTdCN0M2NEFD QzMxMUVEOEVDNDIxMTFDNEY5QUUwMi9MUzRzVnAxTFk1bG41bGl0WEVsOE14cXJp RjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xTNHNWcDFMWTVsbjVsaXRYRWw4TXhxcmlGOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM0MzEvQzE3QjdDNjRBQ0MzMTFFRDhFQzQyMTExQzRGOUFFMDIvQTdCNTk2MzZB Q0NCMTFFREE4REFGRjRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn6YQwDQYJKoZIhvcNAQELBQADggEBAJlr8UgO8bXGnSEe 3uxKDiLRWbpT22tiC62MB7PpMJwXRIXSk2HqdvBn3NhnjioObP4tZ3LnS83sbN8O Iur5vfpsumc6Z1eo/dbj3moixca2MVRE4Or0uJPT2+9WVJixIWF1HRPjJSMdMWzW N3eiWdh2QKP7Dh9qXSe+ZKXn+5lgNu/3IrfOxyTsiZNgtVR9iFkqNmAjB/HOuwq4 tV0yh2AUi0q6PXv8DXdJ3u//BAikWD092jY1fr07c0WAHbq11hhOmpj9hj3TAVzY vaoY70orlKuhMpSuHDlQD0WOKmepRNKsorfdlUGBpVztG/1AYCbzgXETe3rkKEXx d3ZEQco= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:51 2024 by rpki-client on console-fra.rpki-client.org