$ rpki-client -vvf rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/B4684D8A288D11EF96BC5135C4F9AE02.roa File: B4684D8A288D11EF96BC5135C4F9AE02.roa (raw, json) Hash identifier: I/239A+uKGXID5A2Bawe59vn/eGDb/JGz6QWYLcYl8Y= Subject key identifier: 31:33:9E:2B:E8:11:E6:86:DD:16:87:6C:17:3D:1A:FA:53:DD:C9:B1 Certificate issuer: /CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Certificate serial: 02 Authority key identifier: D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/B4684D8A288D11EF96BC5135C4F9AE02.roa Signing time: Wed 12 Jun 2024 07:30:55 +0000 ROA not before: Wed 12 Jun 2024 07:30:55 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138152 IP address blocks: 103.143.72.0/24 maxlen: 24 103.143.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137722/serialNumber=D5289E8B7DF5D92016EC798EEEFF05BC73E85580 Validity Not Before: Jun 12 07:30:55 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=66694eaf-a46a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ff:6a:fa:7d:da:ac:04:12:fb:a1:a0:78:67: 42:0d:72:2b:ac:bb:52:5e:d0:e6:8f:cb:db:60:6b: 3c:30:3d:bc:ba:c6:ab:c8:20:b5:d5:fc:a3:77:1b: 5e:7a:f7:8b:1b:22:1e:09:c0:4f:eb:b4:cf:96:bf: ca:88:3d:44:95:74:9b:d5:85:48:8e:30:b8:7a:61: 9e:82:e7:bc:8b:d0:70:68:79:b0:a8:9c:d1:83:ed: 4e:d6:dc:cc:3b:0f:0d:92:6b:f3:03:87:62:32:05: d7:11:1f:f3:cd:16:1f:a8:31:3b:75:7e:87:e3:8d: fb:e6:ed:56:4b:ac:01:73:a4:1e:fc:f9:67:07:05: eb:4e:97:e8:92:7c:a2:a7:25:74:fd:19:b4:b8:31: d2:e0:9b:9c:7b:0f:a6:48:90:da:70:0e:d1:a9:63: e1:64:a8:3d:3b:97:5f:3c:af:e5:68:09:bd:69:98: 89:8e:65:08:6a:9d:f7:b4:12:e8:84:a6:2a:2c:0d: a4:70:d3:a0:87:7d:4c:00:3c:8a:2e:30:fb:51:8c: 65:7b:3d:00:b4:eb:33:b1:6b:7f:2e:3a:2f:44:f3: 3a:9d:9f:ff:da:83:e1:ee:df:c6:99:b9:7e:7b:bd: 72:b0:f4:5b:72:ea:c4:2d:65:1b:da:02:c3:23:05: b6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:33:9E:2B:E8:11:E6:86:DD:16:87:6C:17:3D:1A:FA:53:DD:C9:B1 X509v3 Authority Key Identifier: keyid:D5:28:9E:8B:7D:F5:D9:20:16:EC:79:8E:EE:FF:05:BC:73:E8:55:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/1Siei3312SAW7HmO7v8FvHPoVYA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Siei3312SAW7HmO7v8FvHPoVYA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137722/46BDDC00288D11EFB1904721C4F9AE02/B4684D8A288D11EF96BC5135C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.72.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:5c:00:a6:9e:5b:4f:2e:3c:fc:18:f8:eb:4e:69:b3:7a:65: 19:a7:d3:c7:44:1b:e1:a6:27:87:90:66:bf:31:e4:8f:c2:8a: 2d:9d:7c:a2:d3:1f:19:51:10:f9:4e:61:d4:01:1a:04:3a:15: dc:73:9c:10:6a:45:c0:3d:33:98:8a:8d:a2:2d:a5:68:86:9f: 81:f5:8d:4b:8d:18:71:2d:32:1b:ce:f9:fe:a0:60:dc:e1:54: da:9a:3f:e2:b0:40:4a:d9:a4:ed:f8:9d:df:e3:0e:f4:21:4b: d3:d1:f6:b7:03:78:13:ad:ef:79:86:a0:80:70:98:57:95:4c: 34:19:97:06:23:ab:a5:17:ab:75:fa:5f:3f:7b:2e:00:63:1f: be:03:f5:48:85:2f:4e:c5:71:7f:22:5d:aa:c7:0b:79:59:af: c8:3a:02:b7:f2:73:cf:68:59:5a:f8:ed:0a:03:5f:dd:92:d4: e2:c9:e8:06:49:94:25:c7:71:b1:90:df:6b:3b:7f:d0:b5:7b: a7:b2:bf:e5:df:3a:4e:c8:5c:37:f4:17:0f:af:fc:a5:22:5c: 0d:d1:8a:35:b1:d7:e9:2a:b9:1c:ec:a2:af:2f:6f:4a:c3:68: 31:71:65:83:4e:a6:7a:39:95:a2:d6:ec:43:e0:51:bc:61:33: 81:a3:6f:91 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz NzcyMjExMC8GA1UEBRMoRDUyODlFOEI3REY1RDkyMDE2RUM3OThFRUVGRjA1QkM3 M0U4NTU4MDAeFw0yNDA2MTIwNzMwNTVaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Njk0ZWFmLWE0NmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz/2r6fdqsBBL7oaB4Z0INciusu1Je0OaPy9tgazwwPby6xqvIILXV/KN3G156 94sbIh4JwE/rtM+Wv8qIPUSVdJvVhUiOMLh6YZ6C57yL0HBoebConNGD7U7W3Mw7 Dw2Sa/MDh2IyBdcRH/PNFh+oMTt1fofjjfvm7VZLrAFzpB78+WcHBetOl+iSfKKn JXT9GbS4MdLgm5x7D6ZIkNpwDtGpY+FkqD07l188r+VoCb1pmImOZQhqnfe0EuiE piosDaRw06CHfUwAPIouMPtRjGV7PQC06zOxa38uOi9E8zqdn//ag+Hu38aZuX57 vXKw9Fty6sQtZRvaAsMjBbbDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUMTOeK+gR 5obdFodsFz0a+lPdybEwHwYDVR0jBBgwFoAU1Siei3312SAW7HmO7v8FvHPoVYAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM3NzIyLzQ2QkREQzAwMjg4 RDExRUZCMTkwNDcyMUM0RjlBRTAyLzFTaWVpMzMxMlNBVzdIbU83djhGdkhQb1ZZ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMVNpZWkzMzEyU0FXN0htTzd2OEZ2SFBvVllBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz NzcyMi80NkJEREMwMDI4OEQxMUVGQjE5MDQ3MjFDNEY5QUUwMi9CNDY4NEQ4QTI4 OEQxMUVGOTZCQzUxMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWePSDANBgkqhkiG9w0BAQsFAAOCAQEAPFwApp5bTy48/Bj4 605ps3plGafTx0Qb4aYnh5BmvzHkj8KKLZ18otMfGVEQ+U5h1AEaBDoV3HOcEGpF wD0zmIqNoi2laIafgfWNS40YcS0yG875/qBg3OFU2po/4rBAStmk7fid3+MO9CFL 09H2twN4E63veYaggHCYV5VMNBmXBiOrpRerdfpfP3suAGMfvgP1SIUvTsVxfyJd qscLeVmvyDoCt/Jzz2hZWvjtCgNf3ZLU4snoBkmUJcdxsZDfazt/0LV7p7K/5d86 TshcN/QXD6/8pSJcDdGKNbHX6Sq5HOyiry9vSsNoMXFlg06mejmVotbsQ+BRvGEz gaNvkQ== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:51 2024 by rpki-client on console-ams.rpki-client.org