$ rpki-client -vvf rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/B3148DDA1BD711EAB801703AC4F9AE02.roa File: B3148DDA1BD711EAB801703AC4F9AE02.roa (raw, json) Hash identifier: Cf3Jo1DUxcDM3Asn8cjsAzzpeKnd+qF2gvMS7lkXcm4= Subject key identifier: E2:59:F1:56:D0:B0:76:D4:26:2B:0C:2A:F3:F2:0E:00:73:99:AE:D6 Certificate issuer: /CN=A9128DE9/serialNumber=81813D6AF96CF0A0748071CDBB1E270F6B5C6113 Certificate serial: 0A8A Authority key identifier: 81:81:3D:6A:F9:6C:F0:A0:74:80:71:CD:BB:1E:27:0F:6B:5C:61:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/B3148DDA1BD711EAB801703AC4F9AE02.roa Signing time: Fri 04 Aug 2023 19:37:01 +0000 ROA not before: Fri 04 Aug 2023 19:37:01 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 9506 IP address blocks: 103.67.168.0/24 maxlen: 24 103.67.169.0/24 maxlen: 24 2405:d180:1::/48 maxlen: 48 2405:d180:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.crl rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2698 (0xa8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128DE9/serialNumber=81813D6AF96CF0A0748071CDBB1E270F6B5C6113 Validity Not Before: Aug 4 19:37:01 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cd535d-bfd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b9:5e:20:b9:44:33:a2:89:9f:a1:41:39:ad: 8c:6f:8a:1a:e3:84:7d:0e:be:5b:3f:4f:7c:b2:a0: 29:8d:67:93:2d:df:4e:6e:0c:16:22:46:37:11:a6: a5:b8:22:e1:9d:5b:cb:22:8b:0b:30:94:a2:56:b6: 34:dd:b8:ef:ab:f8:7b:ce:30:4e:1b:4a:85:a0:11: 2b:3f:54:e1:f0:cc:5e:6d:83:7f:e1:0e:b3:9a:d1: b6:c2:78:f7:b0:08:52:8f:a6:14:6f:b3:9b:10:6f: 23:54:1c:24:e5:d3:aa:b4:c4:5d:a2:07:f3:f3:83: 6e:d2:e7:d8:53:f8:e0:50:69:c9:d5:80:f6:15:7b: b2:ce:d7:14:fe:8a:50:2a:bc:97:aa:40:35:7c:7a: 56:c1:e5:eb:b7:f5:87:2c:f0:38:72:95:06:0b:76: d0:fd:b4:fd:5a:a1:be:e2:9c:c0:c8:7b:ce:37:3b: 1f:c0:fe:da:d8:b0:28:70:7c:21:7b:6a:a9:1a:f9: a4:bc:d8:1a:29:17:e6:00:85:3c:02:9d:67:f2:10: 6e:3f:c8:9a:f8:7e:86:2c:e5:a7:59:1a:52:3d:ff: 92:8c:93:0b:d6:1e:93:0f:88:e7:f6:e8:7b:d5:32: d8:36:a5:5f:ab:2d:7c:15:bd:70:ef:a3:52:0c:b7: 96:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:59:F1:56:D0:B0:76:D4:26:2B:0C:2A:F3:F2:0E:00:73:99:AE:D6 X509v3 Authority Key Identifier: keyid:81:81:3D:6A:F9:6C:F0:A0:74:80:71:CD:BB:1E:27:0F:6B:5C:61:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/gYE9avls8KB0gHHNux4nD2tcYRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYE9avls8KB0gHHNux4nD2tcYRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128DE9/D69B45E81BD511EA80CBCF36C4F9AE02/B3148DDA1BD711EAB801703AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.168.0/23 IPv6: 2405:d180:1::-2405:d180:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1c:53:b3:74:85:f7:0f:b9:95:5c:14:85:ad:55:fd:46:37:af: cb:e1:19:44:a2:cf:3c:a1:06:e7:76:e3:d9:cf:27:53:ed:ca: df:a4:a6:7d:88:57:0e:ac:07:f9:a5:fa:b2:01:65:b7:bb:13: e4:f8:18:45:f0:ca:49:aa:ee:ef:94:d7:81:8b:42:c2:45:d6: 8a:d1:f6:73:63:bd:83:1e:bc:cd:70:04:b7:70:a4:c6:44:68: 13:b1:0d:0b:3a:5a:12:ef:cf:a8:32:4d:39:f5:fe:ec:a1:38: cf:4b:60:01:46:55:0a:8d:71:96:76:cf:d9:19:5d:d7:f8:62: 97:db:8f:79:7f:91:bc:6a:04:b2:22:8d:b5:9e:19:e2:51:48: d9:61:5a:71:28:af:1a:94:c1:28:d8:f8:ff:6c:6b:b9:bd:d4: 75:e6:b1:6e:0a:c9:94:34:54:04:78:1f:dc:e4:b1:e2:cb:05: be:8f:5f:f9:84:5b:4f:f7:c8:cf:3c:26:de:dd:ba:b0:bc:d8: 1c:9c:29:68:5a:ad:30:b4:40:98:52:95:76:49:65:5f:9c:50: f1:80:80:e5:b4:7c:4d:81:eb:09:a5:2a:f5:8a:e7:69:68:58: 4f:04:52:1d:c5:03:99:1f:3b:23:e5:58:ad:08:1d:55:6d:20: ff:7c:56:ab -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICCoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhERTkxMTAvBgNVBAUTKDgxODEzRDZBRjk2Q0YwQTA3NDgwNzFDREJCMUUyNzBG NkI1QzYxMTMwHhcNMjMwODA0MTkzNzAxWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkNTM1ZC1iZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAprleILlEM6KJn6FBOa2Mb4oa44R9Dr5bP098sqApjWeTLd9ObgwWIkY3Eaal uCLhnVvLIosLMJSiVrY03bjvq/h7zjBOG0qFoBErP1Th8MxebYN/4Q6zmtG2wnj3 sAhSj6YUb7ObEG8jVBwk5dOqtMRdogfz84Nu0ufYU/jgUGnJ1YD2FXuyztcU/opQ KryXqkA1fHpWweXrt/WHLPA4cpUGC3bQ/bT9WqG+4pzAyHvONzsfwP7a2LAocHwh e2qpGvmkvNgaKRfmAIU8Ap1n8hBuP8ia+H6GLOWnWRpSPf+SjJML1h6TD4jn9uh7 1TLYNqVfqy18Fb1w76NSDLeWkwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFOJZ8VbQ sHbUJisMKvPyDgBzma7WMB8GA1UdIwQYMBaAFIGBPWr5bPCgdIBxzbseJw9rXGET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOERFOS9ENjlCNDVFODFC RDUxMUVBODBDQkNGMzZDNEY5QUUwMi9nWUU5YXZsczhLQjBnSEhOdXg0bkQydGNZ Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZRTlhdmxzOEtCMGdISE51eDRuRDJ0Y1lSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhERTkvRDY5QjQ1RTgxQkQ1MTFFQTgwQ0JDRjM2QzRGOUFFMDIvQjMxNDhEREEx QkQ3MTFFQUI4MDE3MDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAFnQ6gwGgQCAAIwFDASAwcAJAXRgAABAwcAJAXRgAACMA0G CSqGSIb3DQEBCwUAA4IBAQAcU7N0hfcPuZVcFIWtVf1GN6/L4RlEos88oQbnduPZ zydT7crfpKZ9iFcOrAf5pfqyAWW3uxPk+BhF8MpJqu7vlNeBi0LCRdaK0fZzY72D HrzNcAS3cKTGRGgTsQ0LOloS78+oMk059f7soTjPS2ABRlUKjXGWds/ZGV3X+GKX 2495f5G8agSyIo21nhniUUjZYVpxKK8alMEo2Pj/bGu5vdR15rFuCsmUNFQEeB/c 5LHiywW+j1/5hFtP98jPPCbe3bqwvNgcnCloWq0wtECYUpV2SWVfnFDxgIDltHxN gesJpSr1iudpaFhPBFIdxQOZHzsj5VitCB1VbSD/fFar -----END CERTIFICATE-----Generated at Thu May 16 22:34:43 2024 by rpki-client on console-ams.rpki-client.org