$ rpki-client -vvf rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/08CD1510027011EB98FEC44BC4F9AE02.roa File: 08CD1510027011EB98FEC44BC4F9AE02.roa (raw, json) Hash identifier: mILgjaEaplyNRnR3VkJIbJkHq2ArOnJINitmDYzwuDs= Subject key identifier: 40:8F:6F:68:0B:90:11:0D:47:0E:BB:1C:76:42:9F:D2:DB:71:A5:9F Certificate issuer: /CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Certificate serial: 0EBC Authority key identifier: 34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/08CD1510027011EB98FEC44BC4F9AE02.roa Signing time: Tue 26 Mar 2024 18:36:40 +0000 ROA not before: Tue 26 Mar 2024 18:36:40 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137443 IP address blocks: 103.133.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3772 (0xebc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131690/serialNumber=3474C94C36E8F9A0D3A0D22E1DDA108CD340AB28 Validity Not Before: Mar 26 18:36:40 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=660315b8-1ec2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b5:4b:cc:83:9e:b5:88:eb:40:30:7e:cf:1a: 9c:73:9d:e0:07:13:72:0d:e3:b9:e4:3e:d9:a8:14: 9a:c9:e7:0a:21:d4:e1:74:1b:ec:c8:06:35:5f:d7: 6a:a8:c7:9f:ae:b1:9b:71:33:c4:3b:59:7b:08:c6: 67:aa:fb:98:04:f6:82:4d:6a:6a:d6:20:7b:c9:96: e0:d1:e0:ab:7b:b6:2d:f9:ea:a1:f2:77:30:f9:61: 81:53:d3:1e:41:aa:3f:7f:2f:a5:a1:2a:16:22:be: 9a:3a:8b:15:8a:4a:e2:e0:96:e2:bd:8d:b2:04:8a: 85:5d:38:2d:45:d5:9e:01:c8:00:8e:84:3d:02:00: ed:67:cc:d0:2d:fd:62:c2:3c:8c:84:48:cb:89:7d: 6f:44:2b:ce:70:1d:b2:24:54:24:92:7f:2b:ef:6b: 60:b8:5c:7a:82:19:a4:b1:43:89:cb:64:bc:f2:a3: 6c:e8:91:8a:63:8c:56:e0:e9:61:d2:ef:27:9b:4e: 25:73:e2:0b:61:36:9e:4c:05:b3:54:cc:62:17:cb: 9a:b0:bf:fd:b7:d2:a2:fc:b8:96:00:1e:e7:7e:1a: b9:77:43:e3:48:b1:ff:3b:df:1b:91:e3:2b:40:65: e3:5d:9f:c6:9e:45:b5:9e:82:ee:92:6c:08:8d:c0: 23:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:8F:6F:68:0B:90:11:0D:47:0E:BB:1C:76:42:9F:D2:DB:71:A5:9F X509v3 Authority Key Identifier: keyid:34:74:C9:4C:36:E8:F9:A0:D3:A0:D2:2E:1D:DA:10:8C:D3:40:AB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/NHTJTDbo-aDToNIuHdoQjNNAqyg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHTJTDbo-aDToNIuHdoQjNNAqyg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131690/15B41B8863F311E9A0854C47C4F9AE02/08CD1510027011EB98FEC44BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.176.0/22 Signature Algorithm: sha256WithRSAEncryption 08:28:19:3b:3a:c6:71:54:9f:5e:14:a9:13:2f:dd:6a:a5:64: 6a:d2:9f:95:9e:f5:d4:17:e6:d1:11:ef:e3:e6:a3:3f:ac:76: b4:04:01:47:b1:2f:b7:a6:b2:d3:63:28:96:1d:1c:c2:ff:e9: 25:1e:8a:5b:9b:be:dc:6a:2a:30:32:5b:e3:de:f2:0d:d7:d6: 6b:0d:cc:07:3f:63:ab:3f:ab:99:e8:0f:96:76:28:40:be:41: 8e:7f:85:8c:54:04:a5:7c:13:81:ab:53:d7:1c:af:8d:85:8e: bc:ba:17:af:4a:59:b9:70:f2:d6:fa:bf:7e:69:7d:62:b2:57: 46:7c:27:8b:19:22:e4:51:a5:9b:cf:30:0b:91:57:b7:6d:ff: 05:e6:68:4d:d1:7c:9c:7a:58:2a:ad:1d:14:02:b1:42:bc:3f: 89:b9:bb:06:87:ff:e4:64:21:a0:04:1a:2c:8a:e6:e3:a6:b1: 4c:b4:14:f6:01:2c:b7:ae:f4:20:2e:69:3e:33:6a:94:27:88: 21:d6:75:3d:b4:1a:05:0e:e6:27:26:92:b2:6a:ab:f1:fc:64: 2e:17:39:55:d5:4e:ce:21:1e:a5:5a:f8:ff:f6:10:c9:02:88: 97:59:18:f1:45:63:e9:7c:23:25:8e:5d:2f:8e:fa:7b:d6:22: 52:91:ae:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDrwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzE2OTAxMTAvBgNVBAUTKDM0NzRDOTRDMzZFOEY5QTBEM0EwRDIyRTFEREExMDhD RDM0MEFCMjgwHhcNMjQwMzI2MTgzNjQwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMTViOC0xZWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4rVLzIOetYjrQDB+zxqcc53gBxNyDeO55D7ZqBSayecKIdThdBvsyAY1X9dq qMefrrGbcTPEO1l7CMZnqvuYBPaCTWpq1iB7yZbg0eCre7Yt+eqh8ncw+WGBU9Me Qao/fy+loSoWIr6aOosVikri4JbivY2yBIqFXTgtRdWeAcgAjoQ9AgDtZ8zQLf1i wjyMhEjLiX1vRCvOcB2yJFQkkn8r72tguFx6ghmksUOJy2S88qNs6JGKY4xW4Olh 0u8nm04lc+ILYTaeTAWzVMxiF8uasL/9t9Ki/LiWAB7nfhq5d0PjSLH/O98bkeMr QGXjXZ/GnkW1noLukmwIjcAjvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFECPb2gL kBENRw67HHZCn9LbcaWfMB8GA1UdIwQYMBaAFDR0yUw26Pmg06DSLh3aEIzTQKso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMTY5MC8xNUI0MUI4ODYz RjMxMUU5QTA4NTRDNDdDNEY5QUUwMi9OSFRKVERiby1hRFRvTkl1SGRvUWpOTkFx eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IVEpURGJvLWFEVG9OSXVIZG9Rak5OQXF5Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzE2OTAvMTVCNDFCODg2M0YzMTFFOUEwODU0QzQ3QzRGOUFFMDIvMDhDRDE1MTAw MjcwMTFFQjk4RkVDNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhbAwDQYJKoZIhvcNAQELBQADggEBAAgoGTs6xnFUn14U qRMv3WqlZGrSn5We9dQX5tER7+Pmoz+sdrQEAUexL7emstNjKJYdHML/6SUeilub vtxqKjAyW+Pe8g3X1msNzAc/Y6s/q5noD5Z2KEC+QY5/hYxUBKV8E4GrU9ccr42F jry6F69KWblw8tb6v35pfWKyV0Z8J4sZIuRRpZvPMAuRV7dt/wXmaE3RfJx6WCqt HRQCsUK8P4m5uwaH/+RkIaAEGiyK5uOmsUy0FPYBLLeu9CAuaT4zapQniCHWdT20 GgUO5icmkrJqq/H8ZC4XOVXVTs4hHqVa+P/2EMkCiJdZGPFFY+l8IyWOXS+O+nvW IlKRrmk= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:15 2024 by rpki-client on console-ams.rpki-client.org