$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/813EDCA4137E11EF9969A86BC4F9AE02.roa File: 813EDCA4137E11EF9969A86BC4F9AE02.roa (raw, json) Hash identifier: 8cegSUbUuoPE7mPNDdYwV/tSOtw6Sjag/azXHzK7Lu8= Subject key identifier: 96:F6:70:34:7A:41:28:0C:1A:9A:A8:AB:87:52:C9:ED:21:49:CD:4C Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: A1 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/813EDCA4137E11EF9969A86BC4F9AE02.roa Signing time: Mon 23 Sep 2024 04:48:30 +0000 ROA not before: Mon 23 Sep 2024 04:48:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151671 IP address blocks: 103.255.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:42:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Sep 23 04:48:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f0f31e-db43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c6:33:0a:c5:34:0c:12:1a:6f:74:15:51:65: 4f:3e:03:2e:42:59:ee:e4:cd:4f:6a:b6:d5:ca:34: 1a:2c:6a:b3:7e:d8:50:c0:f4:c9:91:ff:30:af:04: 25:4f:72:b0:80:63:e2:d8:1a:45:58:11:c4:f5:a8: 80:c9:72:8b:2a:50:ab:f2:05:65:48:e5:a2:db:71: ef:bc:c3:a1:1a:70:cd:88:88:e0:20:98:9a:66:8e: 73:06:49:98:5b:5e:d6:f7:b5:d6:30:4c:27:f3:1e: 61:a8:e5:70:3c:9f:1e:be:32:ad:fd:46:03:04:29: 2b:5f:28:89:32:ae:16:3f:a6:a5:c4:8e:63:c6:17: c0:74:17:8c:76:e6:3e:87:57:9c:72:06:8b:62:51: 57:7e:ea:03:0f:b1:af:dc:c3:23:ce:5d:9d:ac:9a: dc:1a:69:c5:8d:56:5a:ab:65:bb:8e:38:a0:71:3f: e9:fc:bd:7a:c1:f6:b0:b4:65:14:89:85:f2:85:bc: 42:d7:3f:27:8a:2f:4e:2a:c2:ca:ba:66:cf:c5:ec: d0:43:30:96:89:f5:71:f7:29:96:ec:04:43:c2:17: 50:af:02:47:4d:1e:98:fe:57:51:45:75:aa:2b:e6: 61:01:23:c5:e5:16:f9:de:0d:26:e6:9e:df:02:2a: 4b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:F6:70:34:7A:41:28:0C:1A:9A:A8:AB:87:52:C9:ED:21:49:CD:4C X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/813EDCA4137E11EF9969A86BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.96.0/24 Signature Algorithm: sha256WithRSAEncryption a0:c7:f1:11:ea:77:ac:d4:75:30:e9:6f:01:09:3b:75:2d:4e: bd:7e:c9:9d:d4:de:50:5f:fb:00:da:0b:e8:ae:f8:04:2f:68: 89:6d:10:3c:cb:2c:80:49:a5:37:67:71:6a:d0:c2:27:7c:9b: 25:55:3e:e6:9e:14:9b:49:5e:ee:19:cd:3a:0e:c8:ef:ea:fb: 38:a6:81:7a:e9:a2:b1:61:58:f0:e9:d1:e3:2d:9e:70:7e:27: 98:36:51:de:8e:d2:f9:2c:62:26:f3:c2:4a:65:69:d9:0f:c4: d9:1f:77:5a:a3:fb:04:45:23:76:b1:3b:04:97:a4:d4:ba:75: ec:5d:5f:e1:05:1a:e9:8b:9e:b7:9d:d7:7a:0d:b0:df:ce:10: 41:ba:f0:57:68:35:9c:9b:ce:80:f9:cc:56:f8:19:b5:cb:21: 28:63:7d:e0:74:9f:9d:7b:ad:00:48:e0:03:cf:d5:38:26:05: 49:bc:e8:45:60:44:0e:fe:77:6a:ec:c1:bb:ed:2e:3e:17:57: 82:e0:8c:1e:5f:a5:5a:6f:01:a9:44:0f:c7:d1:a3:57:71:ce: 7d:46:bc:8d:79:ac:cd:cc:cb:37:69:f9:a0:12:13:89:28:82: 85:2c:39:a3:0a:06:7f:3f:13:e5:ed:df:cb:5e:a7:d8:eb:31: b2:82:6a:72 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjQwOTIzMDQ0ODMwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYwZjMxZS1kYjQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8YzCsU0DBIab3QVUWVPPgMuQlnu5M1ParbVyjQaLGqzfthQwPTJkf8wrwQl T3KwgGPi2BpFWBHE9aiAyXKLKlCr8gVlSOWi23HvvMOhGnDNiIjgIJiaZo5zBkmY W17W97XWMEwn8x5hqOVwPJ8evjKt/UYDBCkrXyiJMq4WP6alxI5jxhfAdBeMduY+ h1eccgaLYlFXfuoDD7Gv3MMjzl2drJrcGmnFjVZaq2W7jjigcT/p/L16wfawtGUU iYXyhbxC1z8nii9OKsLKumbPxezQQzCWifVx9ymW7ARDwhdQrwJHTR6Y/ldRRXWq K+ZhASPF5Rb53g0m5p7fAipL3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJb2cDR6 QSgMGpqoq4dSye0hSc1MMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDMzMvOTU2Q0IwODY5ODFCMTFFRUFCMEZDOTIyQzRGOUFFMDIvODEzRURDQTQx MzdFMTFFRjk5NjlBODZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn/2AwDQYJKoZIhvcNAQELBQADggEBAKDH8RHqd6zUdTDp bwEJO3UtTr1+yZ3U3lBf+wDaC+iu+AQvaIltEDzLLIBJpTdncWrQwid8myVVPuae FJtJXu4ZzToOyO/q+zimgXrporFhWPDp0eMtnnB+J5g2Ud6O0vksYibzwkpladkP xNkfd1qj+wRFI3axOwSXpNS6dexdX+EFGumLnred13oNsN/OEEG68FdoNZybzoD5 zFb4GbXLIShjfeB0n517rQBI4APP1TgmBUm86EVgRA7+d2rswbvtLj4XV4LgjB5f pVpvAalED8fRo1dxzn1GvI15rM3Myzdp+aASE4kogoUsOaMKBn8/E+Xt38tep9jr MbKCanI= -----END CERTIFICATE-----Generated at Mon Nov 25 04:43:51 2024 by rpki-client on console-ams.rpki-client.org