$ rpki-client -vvf rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa File: 4911720A694F11ECB6F9B541C4F9AE02.roa (raw, json) Hash identifier: znzxqt5ATB6md6snwQGOJ9T4JF8cX1CWxE59m4+gy6E= Subject key identifier: 8C:0B:3D:46:FE:CC:5D:F0:AD:89:AD:84:5A:58:8C:C0:58:8E:73:5B Certificate issuer: /CN=A9138C14/serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Certificate serial: 03C4 Authority key identifier: BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa Signing time: Tue 03 Sep 2024 02:14:30 +0000 ROA not before: Tue 03 Sep 2024 02:14:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 146962 IP address blocks: 103.172.106.0/24 maxlen: 24 103.172.107.0/24 maxlen: 24 2407:d040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 964 (0x3c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138C14/serialNumber=BB0E550379FEA281A881A67479B77C8602D01314 Validity Not Before: Sep 3 02:14:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d67105-b8b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8f:83:f6:0f:01:c4:7d:7d:c0:5f:85:2f:82: 55:8e:a9:2c:fd:dc:89:d4:50:fa:d2:9e:55:6e:c2: 9a:99:8f:9f:db:0b:63:a6:a4:e7:8e:0a:d3:f7:58: 3e:90:dc:85:0a:5a:04:31:82:b2:9d:f3:92:e5:2e: 0b:c9:81:b5:a8:be:48:13:d0:9f:3e:7f:0a:c1:63: 12:74:93:89:84:d6:3b:7e:b7:0d:46:3d:c9:36:a2: ce:4e:5c:ba:fc:1c:c5:7b:d8:27:dc:52:07:51:5a: 9e:d8:c7:c2:71:38:4b:37:94:6c:cd:d3:49:fd:1b: f9:ca:7c:b3:30:83:84:ec:01:25:72:d9:54:40:69: c2:77:fd:21:be:8f:be:89:23:fd:61:cf:af:98:2b: 6d:f7:c1:22:40:6f:86:03:c5:e2:1f:dd:31:e1:d9: a4:22:48:67:1d:d0:4c:f7:d8:0d:e4:04:ba:8c:f6: c0:da:0a:4c:de:d8:79:8e:c9:78:df:77:a1:8a:7b: 2e:6e:88:c6:9c:c6:3f:79:ba:b9:c9:eb:39:31:03: 33:21:fe:37:07:ae:2e:bb:f4:fb:c3:7b:cd:c9:03: 21:f7:37:02:3a:6a:25:5b:13:c4:24:2b:a8:ea:26: 84:01:cc:64:99:ab:ff:f7:68:c5:45:76:73:37:bc: 6f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0B:3D:46:FE:CC:5D:F0:AD:89:AD:84:5A:58:8C:C0:58:8E:73:5B X509v3 Authority Key Identifier: keyid:BB:0E:55:03:79:FE:A2:81:A8:81:A6:74:79:B7:7C:86:02:D0:13:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/uw5VA3n-ooGogaZ0ebd8hgLQExQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uw5VA3n-ooGogaZ0ebd8hgLQExQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138C14/3E4C46305BC411EC96279354C4F9AE02/4911720A694F11ECB6F9B541C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.106.0/23 IPv6: 2407:d040::/32 Signature Algorithm: sha256WithRSAEncryption 36:33:53:4e:d8:93:c6:e7:99:3a:6f:4a:0a:fe:76:21:48:12: dc:76:9a:ad:af:77:96:46:09:7c:6e:60:c6:ed:a4:b2:a7:b4: a1:95:13:81:0d:05:28:da:56:6e:13:1e:94:a7:31:ab:6e:ca: 21:c7:53:bb:7b:e3:be:18:7e:df:3b:53:87:78:35:6e:40:3b: dd:c2:9b:e9:82:c4:89:d9:0a:77:61:b7:29:a0:6b:23:75:aa: ef:62:5b:4a:62:66:47:63:c3:cc:b0:9b:7e:4e:06:55:54:04: dc:65:bf:20:22:f3:a4:f5:2f:30:c3:63:c1:12:39:f6:58:27: 0c:17:dc:8e:d2:1d:07:f6:87:2d:3e:bb:80:a3:ea:23:cb:27: c6:bd:0e:08:3a:31:86:a3:da:ed:61:ed:6d:4f:93:9f:ba:43: 36:86:59:ef:4a:f0:4e:46:c6:af:12:e9:e3:5e:37:be:4f:d5: 66:2d:76:2c:83:37:55:c6:6e:57:d6:8b:9d:db:06:45:1d:7b: 21:52:9a:6b:ae:06:da:de:a3:94:c1:6c:6b:64:80:ca:a9:90: 6a:27:4d:aa:9e:f9:9a:25:2f:eb:aa:70:ac:19:9f:16:9d:d2: b9:43:13:63:a0:e3:61:4e:ca:f9:10:89:24:8e:2a:7c:7b:50: dd:af:ff:0f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICA8QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzhDMTQxMTAvBgNVBAUTKEJCMEU1NTAzNzlGRUEyODFBODgxQTY3NDc5Qjc3Qzg2 MDJEMDEzMTQwHhcNMjQwOTAzMDIxNDMwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NzEwNS1iOGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmo+D9g8BxH19wF+FL4JVjqks/dyJ1FD60p5VbsKamY+f2wtjpqTnjgrT91g+ kNyFCloEMYKynfOS5S4LyYG1qL5IE9CfPn8KwWMSdJOJhNY7frcNRj3JNqLOTly6 /BzFe9gn3FIHUVqe2MfCcThLN5RszdNJ/Rv5ynyzMIOE7AElctlUQGnCd/0hvo++ iSP9Yc+vmCtt98EiQG+GA8XiH90x4dmkIkhnHdBM99gN5AS6jPbA2gpM3th5jsl4 33ehinsubojGnMY/ebq5yes5MQMzIf43B64uu/T7w3vNyQMh9zcCOmolWxPEJCuo 6iaEAcxkmav/92jFRXZzN7xvrwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIwLPUb+ zF3wrYmthFpYjMBYjnNbMB8GA1UdIwQYMBaAFLsOVQN5/qKBqIGmdHm3fIYC0BMU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOEMxNC8zRTRDNDYzMDVC QzQxMUVDOTYyNzkzNTRDNEY5QUUwMi91dzVWQTNuLW9vR29nYVowZWJkOGhnTFFF eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3NVZBM24tb29Hb2dhWjBlYmQ4aGdMUUV4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzhDMTQvM0U0QzQ2MzA1QkM0MTFFQzk2Mjc5MzU0QzRGOUFFMDIvNDkxMTcyMEE2 OTRGMTFFQ0I2RjlCNTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrGowDQQCAAIwBwMFACQH0EAwDQYJKoZIhvcNAQELBQAD ggEBADYzU07Yk8bnmTpvSgr+diFIEtx2mq2vd5ZGCXxuYMbtpLKntKGVE4ENBSja Vm4THpSnMatuyiHHU7t7474Yft87U4d4NW5AO93Cm+mCxInZCndhtymgayN1qu9i W0piZkdjw8ywm35OBlVUBNxlvyAi86T1LzDDY8ESOfZYJwwX3I7SHQf2hy0+u4Cj 6iPLJ8a9Dgg6MYaj2u1h7W1Pk5+6QzaGWe9K8E5Gxq8S6eNeN75P1WYtdiyDN1XG blfWi53bBkUdeyFSmmuuBtreo5TBbGtkgMqpkGonTaqe+ZolL+uqcKwZnxad0rlD E2Og42FOyvkQiSSOKnx7UN2v/w8= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org