$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/B9AB0CB475DE11E8B55A1C47C4F9AE02.roa File: B9AB0CB475DE11E8B55A1C47C4F9AE02.roa (raw, json) Hash identifier: atmIiyo4XPPU6AeHw1WXpgRnFa7jfd2pOHkWGew1+XE= Subject key identifier: 18:7A:A4:A2:F4:81:0F:50:AE:81:B6:27:3F:FD:7C:46:F4:79:E4:F1 Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 33F9 Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/B9AB0CB475DE11E8B55A1C47C4F9AE02.roa Signing time: Tue 30 Jan 2024 14:50:49 +0000 ROA not before: Tue 30 Jan 2024 14:50:49 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 38851 IP address blocks: 103.3.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:26:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13305 (0x33f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Validity Not Before: Jan 30 14:50:49 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b90cc9-e3e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:04:93:f5:d8:df:ce:a2:3b:42:f3:13:bd:56: c6:49:3d:e9:ec:68:fb:9e:b9:84:ae:49:fd:fc:80: 07:9e:b4:cf:ed:d1:34:1d:1a:3f:9c:ea:31:e3:7c: 7b:b0:68:ff:f7:d5:e3:6d:86:4b:b8:0c:b8:ef:02: 10:18:b3:d7:b9:b7:61:97:90:15:c8:d9:53:a3:03: 43:b4:40:28:a2:a1:13:30:64:91:b4:05:b9:4c:b0: b9:0b:e1:cd:8a:a1:e1:66:a3:ba:a7:20:46:e3:14: 08:a2:d1:46:93:01:1b:33:4e:0b:d6:72:15:a2:a7: f8:ca:37:b1:09:63:5f:d1:24:b1:d8:89:e0:52:8d: 1d:e6:67:b0:02:67:e3:77:6b:0b:26:90:a7:b9:60: 32:c7:58:65:42:f9:75:7d:ba:15:2d:4a:75:1b:5d: b4:7c:91:1f:24:bb:25:86:7c:e6:0b:b0:8c:19:3f: 07:76:20:1e:64:bd:e0:8d:43:ed:59:81:3a:95:7f: b8:20:8a:bf:a1:3a:f1:55:20:09:30:d0:8e:0e:d4: 71:65:55:b8:d2:43:cc:9b:9b:58:04:fe:7f:df:d2: 5a:4b:ed:72:a0:50:2c:a9:22:8c:30:a1:4e:e6:0d: cd:23:5d:d4:21:34:99:d9:96:a4:6e:0c:54:3f:ce: 8a:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:7A:A4:A2:F4:81:0F:50:AE:81:B6:27:3F:FD:7C:46:F4:79:E4:F1 X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/B9AB0CB475DE11E8B55A1C47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.3.192.0/22 Signature Algorithm: sha256WithRSAEncryption 7f:e2:0c:ce:b0:53:d7:6b:ed:6f:a5:86:40:ec:c1:b8:01:c6: 6b:6a:12:96:3e:4c:e9:ee:88:18:d0:b8:6a:d7:97:fd:9e:b2: 6c:ac:3c:62:c6:e7:44:18:93:33:0a:d6:8c:8d:76:8c:d3:c3: 37:7a:1f:88:c3:8d:f8:0a:65:7b:b5:79:be:fa:02:bf:c0:9a: 02:9f:8c:6d:01:5f:13:2f:38:39:2b:76:41:15:88:5c:59:e7: d6:e1:54:fe:28:05:6b:ff:bf:29:b5:13:de:e2:84:68:c9:1b: 3b:87:f1:07:e2:71:77:35:3e:7f:c2:60:3f:7b:af:24:ea:08: 85:ec:71:8a:4d:dc:db:70:ee:44:d5:8b:2f:25:70:e0:f8:67: 8e:d0:ff:72:4f:63:5f:b8:48:2b:3b:7d:ab:5f:01:90:ae:75: e7:6a:20:33:6a:e1:47:c9:f8:52:63:73:3c:f7:6c:79:9b:7e: 32:33:9d:ec:86:c4:61:d3:9b:3f:c4:99:51:cb:a9:cd:2d:88: 75:6d:e7:b5:49:48:d8:cf:49:38:48:96:b5:8a:45:76:c7:86: ba:12:ea:48:72:f5:fa:d5:58:fb:22:4c:17:69:d8:ca:15:83: 02:77:7a:73:48:43:20:d4:71:b1:9b:18:6f:93:f4:65:ac:42: b2:2f:45:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjQwMTMwMTQ1MDQ5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MGNjOS1lM2U0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgST9djfzqI7QvMTvVbGST3p7Gj7nrmErkn9/IAHnrTP7dE0HRo/nOox43x7 sGj/99XjbYZLuAy47wIQGLPXubdhl5AVyNlTowNDtEAooqETMGSRtAW5TLC5C+HN iqHhZqO6pyBG4xQIotFGkwEbM04L1nIVoqf4yjexCWNf0SSx2IngUo0d5mewAmfj d2sLJpCnuWAyx1hlQvl1fboVLUp1G120fJEfJLslhnzmC7CMGT8HdiAeZL3gjUPt WYE6lX+4IIq/oTrxVSAJMNCODtRxZVW40kPMm5tYBP5/39JaS+1yoFAsqSKMMKFO 5g3NI13UITSZ2ZakbgxUP86KqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBh6pKL0 gQ9QroG2Jz/9fEb0eeTxMB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvQjlBQjBDQjQ3 NURFMTFFOEI1NUExQzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnA8AwDQYJKoZIhvcNAQELBQADggEBAH/iDM6wU9dr7W+l hkDswbgBxmtqEpY+TOnuiBjQuGrXl/2esmysPGLG50QYkzMK1oyNdozTwzd6H4jD jfgKZXu1eb76Ar/AmgKfjG0BXxMvODkrdkEViFxZ59bhVP4oBWv/vym1E97ihGjJ GzuH8QficXc1Pn/CYD97ryTqCIXscYpN3Ntw7kTViy8lcOD4Z47Q/3JPY1+4SCs7 fatfAZCudedqIDNq4UfJ+FJjczz3bHmbfjIzneyGxGHTmz/EmVHLqc0tiHVt57VJ SNjPSThIlrWKRXbHhroS6khy9frVWPsiTBdp2MoVgwJ3enNIQyDUcbGbGG+T9GWs QrIvRTM= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:35 2024 by rpki-client on console-fra.rpki-client.org