$ rpki-client -vvf rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/73E0191A967811EA92E45A27C4F9AE02.roa File: 73E0191A967811EA92E45A27C4F9AE02.roa (raw, json) Hash identifier: ShaJe6Lrds4HI5NQVrTj2+pnsM6ohcQYrpyOOxPkL24= Subject key identifier: 17:AB:CB:FC:F3:8B:92:69:D4:05:B6:1F:BF:44:1D:58:2F:AB:9D:B7 Certificate issuer: /CN=A9123D19/serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Certificate serial: 294D Authority key identifier: BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/73E0191A967811EA92E45A27C4F9AE02.roa Signing time: Mon 30 Sep 2024 15:52:27 +0000 ROA not before: Mon 30 Sep 2024 15:52:27 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 56304 IP address blocks: 103.39.44.0/22 maxlen: 24 202.36.170.0/24 maxlen: 24 202.49.187.0/24 maxlen: 24 2401:9480::/32 maxlen: 32 2401:9480:300::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10573 (0x294d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123D19/serialNumber=BE9854B9849936643E0D4015A3B37B5E4484AD5A Validity Not Before: Sep 30 15:52:27 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fac93b-4109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:af:70:4d:b0:04:37:d4:33:30:cc:42:7b:50: c3:88:63:77:9e:44:be:20:da:b3:2e:42:68:e2:f8: c3:c7:cc:72:3c:1f:b7:4b:02:5d:a6:31:aa:93:ea: cf:8f:06:cf:b4:3e:fa:b5:66:8c:26:32:35:6a:ef: 51:99:e7:3d:cb:de:fe:a0:a1:82:e4:6f:35:49:f1: ef:be:18:a2:9d:f7:7a:2c:32:07:88:d9:1f:9c:52: a3:ff:d4:6b:77:bd:53:f9:d3:44:2e:7b:a9:2e:e8: c6:46:38:67:4a:e3:c1:27:90:1d:53:fa:7e:42:04: 61:66:64:67:76:8f:ac:23:73:11:d7:50:a9:3e:1f: f1:ec:7b:d6:01:e7:02:b5:13:f2:7d:04:61:d9:a6: 86:15:8b:2d:28:14:e1:9e:b5:5e:b1:aa:d7:83:a1: a0:a9:71:f8:cb:b2:6a:07:c6:2c:ee:32:43:ad:ed: b8:a8:f5:91:7f:e3:90:6d:6e:5e:38:75:a8:42:cb: 18:26:e8:81:38:9b:48:c7:1d:99:fb:b2:ab:4a:4d: 0a:61:10:a9:8e:2f:a4:fc:0d:fe:b1:97:81:1c:cc: 1e:37:e1:0f:c7:dc:95:7c:c3:4a:cc:9e:1b:9e:a4: e5:0c:4c:a2:d4:f9:d2:33:d0:32:32:14:4e:ae:96: 11:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:AB:CB:FC:F3:8B:92:69:D4:05:B6:1F:BF:44:1D:58:2F:AB:9D:B7 X509v3 Authority Key Identifier: keyid:BE:98:54:B9:84:99:36:64:3E:0D:40:15:A3:B3:7B:5E:44:84:AD:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/vphUuYSZNmQ-DUAVo7N7XkSErVo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vphUuYSZNmQ-DUAVo7N7XkSErVo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123D19/40ED8020429F11E486B44D72C4F9AE02/73E0191A967811EA92E45A27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.44.0/22 202.36.170.0/24 202.49.187.0/24 IPv6: 2401:9480::/32 Signature Algorithm: sha256WithRSAEncryption 82:ef:ee:f0:86:a2:c9:39:96:64:45:2d:45:91:9e:91:cc:a2: eb:d9:79:06:51:30:d7:c1:3b:0a:d4:3a:5b:a3:c4:f4:5d:b5: 8f:d4:e3:e5:cd:30:cf:24:eb:94:73:54:93:fc:3b:70:b1:60: 5c:4e:c7:96:75:90:5d:c0:de:36:12:b5:bc:7b:c9:2d:91:64: b6:f1:26:e3:ae:05:f8:73:0a:64:05:33:9d:dd:c2:4a:41:2c: e6:cf:07:63:a0:44:b4:58:27:ac:88:e9:f6:98:26:24:3e:a2: f5:02:f9:b8:d0:28:85:8f:29:a3:21:18:d8:0e:5a:1c:bd:80: 3a:a7:df:61:f8:2f:73:7f:99:65:1a:fb:ac:8f:ce:af:84:b7: 5b:74:68:37:8f:1d:83:5a:93:7c:93:00:ca:06:29:db:68:5a: c2:6f:61:c1:1e:bd:10:de:1a:61:1f:d9:c5:26:8d:13:1a:2b: e3:c3:6d:68:63:cc:75:ee:1d:92:e2:83:17:ae:3b:55:c6:20: 0c:41:40:5a:56:9c:62:a0:ad:4c:fc:87:8f:3f:42:d0:0c:1f: a3:9e:01:1a:8f:3b:70:28:e1:d2:21:89:fb:6d:6a:ea:b9:6d: ce:64:bb:78:6f:83:83:1d:ce:fd:ef:05:44:2d:3b:50:df:20: 19:a7:9b:b7 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICKU0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNEMTkxMTAvBgNVBAUTKEJFOTg1NEI5ODQ5OTM2NjQzRTBENDAxNUEzQjM3QjVF NDQ4NEFENUEwHhcNMjQwOTMwMTU1MjI3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZhYzkzYi00MTA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAza9wTbAEN9QzMMxCe1DDiGN3nkS+INqzLkJo4vjDx8xyPB+3SwJdpjGqk+rP jwbPtD76tWaMJjI1au9Rmec9y97+oKGC5G81SfHvvhiinfd6LDIHiNkfnFKj/9Rr d71T+dNELnupLujGRjhnSuPBJ5AdU/p+QgRhZmRndo+sI3MR11CpPh/x7HvWAecC tRPyfQRh2aaGFYstKBThnrVesarXg6GgqXH4y7JqB8Ys7jJDre24qPWRf+OQbW5e OHWoQssYJuiBOJtIxx2Z+7KrSk0KYRCpji+k/A3+sZeBHMweN+EPx9yVfMNKzJ4b nqTlDEyi1PnSM9AyMhROrpYRnwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFBery/zz i5Jp1AW2H79EHVgvq523MB8GA1UdIwQYMBaAFL6YVLmEmTZkPg1AFaOze15EhK1a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0QxOS80MEVEODAyMDQy OUYxMUU0ODZCNDRENzJDNEY5QUUwMi92cGhVdVlTWk5tUS1EVUFWbzdON1hrU0Vy Vm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZwaFV1WVNaTm1RLURVQVZvN043WGtTRXJWby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNEMTkvNDBFRDgwMjA0MjlGMTFFNDg2QjQ0RDcyQzRGOUFFMDIvNzNFMDE5MUE5 Njc4MTFFQTkyRTQ1QTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnJywDBADKJKoDBADKMbswDQQCAAIwBwMFACQBlIAwDQYJ KoZIhvcNAQELBQADggEBAILv7vCGosk5lmRFLUWRnpHMouvZeQZRMNfBOwrUOluj xPRdtY/U4+XNMM8k65RzVJP8O3CxYFxOx5Z1kF3A3jYStbx7yS2RZLbxJuOuBfhz CmQFM53dwkpBLObPB2OgRLRYJ6yI6faYJiQ+ovUC+bjQKIWPKaMhGNgOWhy9gDqn 32H4L3N/mWUa+6yPzq+Et1t0aDePHYNak3yTAMoGKdtoWsJvYcEevRDeGmEf2cUm jRMaK+PDbWhjzHXuHZLigxeuO1XGIAxBQFpWnGKgrUz8h48/QtAMH6OeARqPO3Ao 4dIhifttauq5bc5ku3hvg4Mdzv3vBUQtO1DfIBmnm7c= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:14 2024 by rpki-client on console-ams.rpki-client.org