$ rpki-client -vvf rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa File: BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa (raw, json) Hash identifier: ACAwTbWxAFnsJHmx19kYwRZ2kYaKIODFxQCzfuXITvo= Subject key identifier: 38:F0:EC:8D:9B:AE:A2:58:D2:6D:17:16:98:AA:44:AD:E6:23:F7:8F Certificate issuer: /CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Certificate serial: 0464 Authority key identifier: 01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa Signing time: Tue 01 Oct 2024 00:14:56 +0000 ROA not before: Tue 01 Oct 2024 00:14:56 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 147029 IP address blocks: 103.173.60.0/23 maxlen: 23 103.173.60.0/24 maxlen: 24 103.173.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1124 (0x464) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138271/serialNumber=01724BA2F40532B7E08D720F4C096641B4A1C8C4 Validity Not Before: Oct 1 00:14:56 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fb3f00-5a40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:2f:c8:f6:08:aa:a8:34:05:8c:e1:17:b5:0c: 09:e1:3a:64:23:80:29:45:77:68:52:4f:8c:fa:5e: 96:56:35:b6:e4:6a:7e:d3:c7:a0:b6:92:0c:04:ca: a8:58:c1:08:de:46:19:80:cb:65:fb:c2:b7:62:76: 17:96:73:28:4e:e1:6f:8a:2a:87:69:11:4a:40:28: ca:c8:23:26:8b:d7:b2:fc:d3:7d:42:36:f3:b8:65: 01:8d:e4:74:c5:74:e7:e1:36:cc:40:3d:e7:d2:4e: 0f:01:ce:f1:6a:7e:91:c8:0d:72:2c:ab:83:bf:08: 8d:77:03:09:63:7e:06:26:af:57:1e:ef:0e:1b:bd: 55:02:6e:c2:af:be:15:e8:db:fe:fe:dd:56:c8:70: da:ba:04:27:79:a2:bc:0f:73:88:16:f4:26:7e:b4: ee:fe:df:75:15:d4:3e:d3:aa:b9:e9:18:bd:98:de: ce:bc:65:ff:14:4f:b1:80:56:48:4c:9a:9d:e4:f6: 81:31:e9:92:8c:e5:61:27:a6:50:c2:62:ee:ca:bf: c7:b5:29:18:4e:65:03:1b:30:80:c9:0a:65:ba:ca: 56:19:3a:d7:7e:83:1b:97:e6:10:c0:1a:43:1f:7c: be:d7:23:ab:b8:76:9e:08:5f:93:63:90:2a:ce:e3: bd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:F0:EC:8D:9B:AE:A2:58:D2:6D:17:16:98:AA:44:AD:E6:23:F7:8F X509v3 Authority Key Identifier: keyid:01:72:4B:A2:F4:05:32:B7:E0:8D:72:0F:4C:09:66:41:B4:A1:C8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/AXJLovQFMrfgjXIPTAlmQbShyMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AXJLovQFMrfgjXIPTAlmQbShyMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138271/81F9E2D01C4411EC9B2E6A5FC4F9AE02/BD4D8A2C1C4811ECBAA21A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.60.0/23 Signature Algorithm: sha256WithRSAEncryption 54:d4:04:9c:7d:39:3d:8d:d0:d4:d5:bc:4a:be:52:f5:21:39: ee:7f:51:d7:39:84:37:a0:c2:23:ee:cd:cf:a7:8b:ce:b0:65: 94:97:da:7f:96:34:ea:58:e9:98:59:4f:c4:e3:10:2f:dc:c6: 56:1a:f7:93:c4:21:ae:b8:e4:63:7e:da:61:47:45:c4:b2:8c: e9:39:54:40:91:66:f7:30:a7:19:97:56:46:a8:17:b6:e4:11: 55:ff:e7:47:0e:c8:ac:e3:a5:6a:d7:c9:7b:5f:c8:29:f3:0a: 21:4a:70:0a:56:15:ea:26:b5:39:20:70:2c:5a:58:94:0a:51: 2b:b3:ad:38:e4:5b:5d:d5:64:17:41:d0:4f:ea:20:ec:0d:ef: 9a:9e:8c:4e:4e:f1:04:94:3a:af:45:82:df:4b:cb:1a:4d:b3: 6d:d6:92:2e:70:49:3f:31:b2:4d:46:4b:5c:61:87:68:6a:14: dc:ab:40:c8:ef:4e:88:32:63:47:99:f1:c4:5a:dd:1d:7f:d1: a8:ab:2f:63:70:f3:e7:65:1b:ea:d0:a8:1e:40:e1:21:b6:2c: f0:a4:c3:12:89:e7:31:f5:aa:47:08:fd:c3:2b:56:c8:71:7a: 74:06:b2:38:19:bb:f2:0b:7d:0c:da:b8:fb:bd:c1:07:c6:34: 16:38:60:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgyNzExMTAvBgNVBAUTKDAxNzI0QkEyRjQwNTMyQjdFMDhENzIwRjRDMDk2NjQx QjRBMUM4QzQwHhcNMjQxMDAxMDAxNDU2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiM2YwMC01YTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7y/I9giqqDQFjOEXtQwJ4TpkI4ApRXdoUk+M+l6WVjW25Gp+08egtpIMBMqo WMEI3kYZgMtl+8K3YnYXlnMoTuFviiqHaRFKQCjKyCMmi9ey/NN9QjbzuGUBjeR0 xXTn4TbMQD3n0k4PAc7xan6RyA1yLKuDvwiNdwMJY34GJq9XHu8OG71VAm7Cr74V 6Nv+/t1WyHDaugQneaK8D3OIFvQmfrTu/t91FdQ+06q56Ri9mN7OvGX/FE+xgFZI TJqd5PaBMemSjOVhJ6ZQwmLuyr/HtSkYTmUDGzCAyQpluspWGTrXfoMbl+YQwBpD H3y+1yOruHaeCF+TY5AqzuO9wwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDjw7I2b rqJY0m0XFpiqRK3mI/ePMB8GA1UdIwQYMBaAFAFyS6L0BTK34I1yD0wJZkG0ocjE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODI3MS84MUY5RTJEMDFD NDQxMUVDOUIyRTZBNUZDNEY5QUUwMi9BWEpMb3ZRRk1yZmdqWElQVEFsbVFiU2h5 TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FYSkxvdlFGTXJmZ2pYSVBUQWxtUWJTaHlNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgyNzEvODFGOUUyRDAxQzQ0MTFFQzlCMkU2QTVGQzRGOUFFMDIvQkQ0RDhBMkMx QzQ4MTFFQ0JBQTIxQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrTwwDQYJKoZIhvcNAQELBQADggEBAFTUBJx9OT2N0NTV vEq+UvUhOe5/Udc5hDegwiPuzc+ni86wZZSX2n+WNOpY6ZhZT8TjEC/cxlYa95PE Ia645GN+2mFHRcSyjOk5VECRZvcwpxmXVkaoF7bkEVX/50cOyKzjpWrXyXtfyCnz CiFKcApWFeomtTkgcCxaWJQKUSuzrTjkW13VZBdB0E/qIOwN75qejE5O8QSUOq9F gt9LyxpNs23Wki5wST8xsk1GS1xhh2hqFNyrQMjvTogyY0eZ8cRa3R1/0airL2Nw 8+dlG+rQqB5A4SG2LPCkwxKJ5zH1qkcI/cMrVshxenQGsjgZu/ILfQzauPu9wQfG NBY4YEc= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org