$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/B3148DDA1BD711EAB801703AC4F9AE02.roa File: B3148DDA1BD711EAB801703AC4F9AE02.roa (raw, json) Hash identifier: vAnu7lUAwo4HH4C945cyzFyVOcsgKeAbmVZGK6iXYjc= Subject key identifier: 13:DC:3B:02:30:49:FA:FC:7C:CD:75:11:CA:1A:60:C0:3B:0E:CF:AB Certificate issuer: /CN=A9128DE9/serialNumber=81813D6AF96CF0A0748071CDBB1E270F6B5C6113 Certificate serial: 0B4C Authority key identifier: 81:81:3D:6A:F9:6C:F0:A0:74:80:71:CD:BB:1E:27:0F:6B:5C:61:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/B3148DDA1BD711EAB801703AC4F9AE02.roa Signing time: Thu 08 Aug 2024 19:27:17 +0000 ROA not before: Thu 08 Aug 2024 19:27:17 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 9506 IP address blocks: 103.67.168.0/24 maxlen: 24 103.67.169.0/24 maxlen: 24 2405:d180:1::/48 maxlen: 48 2405:d180:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:49:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2892 (0xb4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9/serialNumber=81813D6AF96CF0A0748071CDBB1E270F6B5C6113 Validity Not Before: Aug 8 19:27:17 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b51c15-7cb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:dc:26:f9:77:44:fc:65:ad:ea:a2:85:16:48: e9:32:cf:31:8b:8a:01:ba:15:7a:2a:a8:58:55:a4: 15:a3:3e:2d:56:89:a2:d7:22:a4:10:d9:bd:ce:05: 90:e5:33:71:5e:43:75:53:1f:75:69:92:ba:8d:20: 61:90:ce:f8:e1:90:0d:dc:a4:e2:00:90:0e:8c:94: 40:c8:86:74:38:c5:8e:36:dc:c9:96:d5:15:5a:6f: d9:e3:45:60:ee:e1:88:1f:70:2e:d6:d8:b2:ae:f7: cf:77:23:33:14:23:21:be:7b:a3:f3:46:c3:a3:de: 99:b3:fb:53:1c:a0:f9:87:43:38:ef:46:51:61:f2: fa:b8:3b:cd:ad:70:08:d2:0d:9a:0c:98:ac:13:f9: f3:37:4e:1b:dd:34:90:fb:0a:60:c2:57:1b:1a:35: 3d:43:e8:43:c5:46:41:e0:34:fa:48:ca:b9:3c:19: 5f:17:46:d5:00:8a:f5:4b:13:6c:40:03:3d:fa:fa: 2d:fb:94:c2:04:dc:29:90:58:1a:40:6d:c8:20:6d: 19:fb:10:e9:da:7d:0d:77:ad:e9:c8:ec:55:bf:b0: 1c:78:9b:6e:9e:1b:b9:ba:b5:0e:39:a1:17:0b:87: 72:a9:d4:b2:b4:be:a2:f1:55:71:69:b4:7a:cf:93: 29:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DC:3B:02:30:49:FA:FC:7C:CD:75:11:CA:1A:60:C0:3B:0E:CF:AB X509v3 Authority Key Identifier: keyid:81:81:3D:6A:F9:6C:F0:A0:74:80:71:CD:BB:1E:27:0F:6B:5C:61:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/B3148DDA1BD711EAB801703AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.168.0/23 IPv6: 2405:d180:1::-2405:d180:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption bd:bf:6e:98:0c:dd:94:b1:34:5b:04:1b:05:9c:85:89:f7:d0: 8d:8f:92:f5:14:c3:17:af:13:5f:42:c4:26:db:21:72:4d:29: 14:35:00:e8:66:a3:09:91:75:aa:12:4d:2d:a0:65:9c:50:dd: 3c:e4:1b:de:a4:f4:7c:67:18:b4:20:df:6e:46:b3:1d:f1:17: 55:39:0d:7d:d9:43:cd:54:d7:01:35:a8:3d:73:6b:14:45:16: b9:52:f6:58:7e:54:c8:9b:50:9f:0c:b5:85:1f:1a:f6:1c:2c: 81:89:3f:77:de:ba:a4:71:26:91:01:15:30:4d:ab:78:f6:2c: 4d:d6:30:79:f9:32:c7:4e:5b:3c:1f:f3:4d:ee:98:25:ae:86: ef:8a:42:20:f9:6b:2e:60:98:7f:53:47:61:d0:60:f8:b4:1a: ac:b9:25:c2:c0:5f:60:bf:4b:fc:88:d8:80:6d:c6:ba:87:63: 7b:97:c6:e4:ad:27:2e:d9:f4:75:fb:93:e6:59:1e:2f:94:af: 6c:04:5d:6b:01:ed:ef:f1:fa:35:5d:8f:70:f7:07:e8:e5:0e: ed:ab:9f:ec:f3:4a:6e:f0:4c:94:a7:53:17:e7:b5:46:f5:bb: b3:b0:49:26:02:0e:43:ec:f9:b2:61:d7:d1:b3:4f:86:26:db: 67:1e:6b:e4 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICC0wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDgxODEzRDZBRjk2Q0YwQTA3NDgwNzFDREJCMUUyNzBG NkI1QzYxMTMwHhcNMjQwODA4MTkyNzE3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI1MWMxNS03Y2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49wm+XdE/GWt6qKFFkjpMs8xi4oBuhV6KqhYVaQVoz4tVomi1yKkENm9zgWQ 5TNxXkN1Ux91aZK6jSBhkM744ZAN3KTiAJAOjJRAyIZ0OMWONtzJltUVWm/Z40Vg 7uGIH3Au1tiyrvfPdyMzFCMhvnuj80bDo96Zs/tTHKD5h0M470ZRYfL6uDvNrXAI 0g2aDJisE/nzN04b3TSQ+wpgwlcbGjU9Q+hDxUZB4DT6SMq5PBlfF0bVAIr1SxNs QAM9+vot+5TCBNwpkFgaQG3IIG0Z+xDp2n0Nd63pyOxVv7AceJtunhu5urUOOaEX C4dyqdSytL6i8VVxabR6z5MpjwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFBPcOwIw Sfr8fM11EcoaYMA7Ds+rMB8GA1UdIwQYMBaAFIGBPWr5bPCgdIBxzbseJw9rXGET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9ENjlCNDVFODFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9nWUU5YXZsczhLQjBnSEhOdXg0bkQydGNZ Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZRTlhdmxzOEtCMGdISE51eDRuRDJ0Y1lSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhERTkvRDY5QjQ1RTgxQkQ1MTFFQTgwQ0JDRjM2QzRGOUFFMDIvQjMxNDhEREEx QkQ3MTFFQUI4MDE3MDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAFnQ6gwGgQCAAIwFDASAwcAJAXRgAABAwcAJAXRgAACMA0G CSqGSIb3DQEBCwUAA4IBAQC9v26YDN2UsTRbBBsFnIWJ99CNj5L1FMMXrxNfQsQm 2yFyTSkUNQDoZqMJkXWqEk0toGWcUN085BvepPR8Zxi0IN9uRrMd8RdVOQ192UPN VNcBNag9c2sURRa5UvZYflTIm1CfDLWFHxr2HCyBiT933rqkcSaRARUwTat49ixN 1jB5+TLHTls8H/NN7pglrobvikIg+WsuYJh/U0dh0GD4tBqsuSXCwF9gv0v8iNiA bca6h2N7l8bkrScu2fR1+5PmWR4vlK9sBF1rAe3v8fo1XY9w9wfo5Q7tq5/s80pu 8EyUp1MX57VG9buzsEkmAg5D7PmyYdfRs0+GJttnHmvk -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org