$ rpki-client -vvf rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/15DF0B709C5211EFB58CEA09C4F9AE02.roa File: 15DF0B709C5211EFB58CEA09C4F9AE02.roa (raw, json) Hash identifier: BPJMmkMsJ5GR7lvFcWO3tyenH3Ad6L0L8sWU/hgNQ5Y= Subject key identifier: D4:FD:B0:C5:0A:08:6A:82:59:5E:67:49:B2:C9:D3:5E:80:67:98:20 Certificate issuer: /CN=A9139504/serialNumber=5B05825BFBA2B2A5541CF3F09D972113AECC8D75 Certificate serial: 04 Authority key identifier: 5B:05:82:5B:FB:A2:B2:A5:54:1C:F3:F0:9D:97:21:13:AE:CC:8D:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WwWCW_uisqVUHPPwnZchE67MjXU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/15DF0B709C5211EFB58CEA09C4F9AE02.roa Signing time: Wed 06 Nov 2024 15:16:46 +0000 ROA not before: Wed 06 Nov 2024 15:16:46 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132890 IP address blocks: 103.166.206.0/23 maxlen: 23 103.166.206.0/24 maxlen: 24 2407:5bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/WwWCW_uisqVUHPPwnZchE67MjXU.crl rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/WwWCW_uisqVUHPPwnZchE67MjXU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WwWCW_uisqVUHPPwnZchE67MjXU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139504/serialNumber=5B05825BFBA2B2A5541CF3F09D972113AECC8D75 Validity Not Before: Nov 6 15:16:46 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=672b885d-577b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:40:a9:de:96:2b:72:c2:db:9a:77:ec:03:fa: 29:62:5c:b7:70:68:be:3d:2e:26:81:b0:d6:72:07: 59:40:6c:97:05:5e:c4:0e:96:4d:b7:a2:eb:a7:7c: 7f:f9:3d:b5:9f:b8:22:a3:36:a4:09:42:9b:3b:60: 35:b1:8f:af:b5:fd:02:59:40:7a:a2:56:41:97:f1: 31:b1:d6:bc:a6:82:67:85:77:a3:0c:52:57:04:7e: 5b:78:c1:94:79:cc:06:ed:8c:27:29:9a:a7:f2:df: 00:57:76:3e:74:cb:b9:9e:67:b6:66:ca:7a:98:71: 97:3f:85:64:0c:a2:42:ed:59:42:ae:cc:4a:6f:86: 4a:48:d2:cd:db:f4:4c:a6:95:a3:76:7c:ad:03:e3: 7d:c4:53:cd:31:47:a6:b0:95:74:0e:29:32:5e:0e: 0a:54:1d:8b:de:2e:3c:32:37:7d:10:ff:11:12:9a: ee:ac:4c:b7:cd:76:fe:6c:af:f6:2b:dc:4b:fe:27: dd:b7:d6:27:f1:aa:a8:c5:83:71:6c:8e:6e:05:46: 93:d3:95:dd:c6:bf:02:9d:83:60:8f:28:12:90:a9: 85:c3:8d:26:d1:95:5e:2b:8e:24:74:fc:37:e8:8d: e3:05:ea:1f:55:09:be:a5:b7:ee:23:91:6a:bc:1d: d0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FD:B0:C5:0A:08:6A:82:59:5E:67:49:B2:C9:D3:5E:80:67:98:20 X509v3 Authority Key Identifier: keyid:5B:05:82:5B:FB:A2:B2:A5:54:1C:F3:F0:9D:97:21:13:AE:CC:8D:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/WwWCW_uisqVUHPPwnZchE67MjXU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WwWCW_uisqVUHPPwnZchE67MjXU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139504/604D9BD49C4F11EFA9835B6AC4F9AE02/15DF0B709C5211EFB58CEA09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.206.0/23 IPv6: 2407:5bc0::/32 Signature Algorithm: sha256WithRSAEncryption 2f:8b:e1:73:3d:51:c3:b6:35:59:46:4f:1a:a0:be:cb:2c:67: 31:26:c0:09:fc:7b:b9:84:a9:87:69:50:6d:97:fb:b3:13:d2: 4f:b4:4f:5a:5d:08:20:65:61:37:99:26:94:1a:25:54:fb:d7: b0:f4:d3:57:14:cc:e8:8b:99:c0:41:9c:cc:c2:20:7d:dd:a7: 5d:b7:81:dd:bd:f9:e2:36:cd:e4:1e:22:bd:0b:40:27:df:1e: 46:cb:f2:5b:64:b6:57:0a:d3:3d:c2:e2:08:43:45:a4:f3:59: 41:6e:c8:db:cd:24:2b:59:21:6e:5a:e9:e4:2b:4d:36:84:66: 5d:ac:62:db:e3:c1:10:3a:3d:fe:0d:7a:0c:db:71:ac:27:80: 5b:54:ca:c7:ce:33:1d:98:15:14:df:98:b8:68:95:c4:66:9e: 77:da:aa:aa:d4:49:30:6c:ef:b0:2c:86:9c:64:56:e4:bb:a1: 19:6f:b3:09:50:d5:1a:a0:8a:f5:42:43:0e:24:39:46:09:3a: c2:d1:9e:5f:04:21:a4:77:65:6c:6a:00:0a:20:0f:da:41:d9: 38:dc:8b:c0:11:97:e4:53:36:90:d2:e0:1a:27:a5:67:18:be: 77:f9:12:b1:f5:93:df:bd:40:50:cd:dd:9f:8f:a7:65:1d:d5: 64:90:83:4c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OTUwNDExMC8GA1UEBRMoNUIwNTgyNUJGQkEyQjJBNTU0MUNGM0YwOUQ5NzIxMTNB RUNDOEQ3NTAeFw0yNDExMDYxNTE2NDZaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MmI4ODVkLTU3N2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbQKnelitywtuad+wD+iliXLdwaL49LiaBsNZyB1lAbJcFXsQOlk23ouunfH/5 PbWfuCKjNqQJQps7YDWxj6+1/QJZQHqiVkGX8TGx1rymgmeFd6MMUlcEflt4wZR5 zAbtjCcpmqfy3wBXdj50y7meZ7ZmynqYcZc/hWQMokLtWUKuzEpvhkpI0s3b9Eym laN2fK0D433EU80xR6awlXQOKTJeDgpUHYveLjwyN30Q/xESmu6sTLfNdv5sr/Yr 3Ev+J9231ifxqqjFg3Fsjm4FRpPTld3GvwKdg2CPKBKQqYXDjSbRlV4rjiR0/Dfo jeMF6h9VCb6lt+4jkWq8HdCNAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU1P2wxQoI aoJZXmdJssnTXoBnmCAwHwYDVR0jBBgwFoAUWwWCW/uisqVUHPPwnZchE67MjXUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM5NTA0LzYwNEQ5QkQ0OUM0 RjExRUZBOTgzNUI2QUM0RjlBRTAyL1d3V0NXX3Vpc3FWVUhQUHduWmNoRTY3TWpY VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV3dXQ1dfdWlzcVZVSFBQd25aY2hFNjdNalhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OTUwNC82MDREOUJENDlDNEYxMUVGQTk4MzVCNkFDNEY5QUUwMi8xNURGMEI3MDlD NTIxMUVGQjU4Q0VBMDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWemzjANBAIAAjAHAwUAJAdbwDANBgkqhkiG9w0BAQsFAAOC AQEAL4vhcz1Rw7Y1WUZPGqC+yyxnMSbACfx7uYSph2lQbZf7sxPST7RPWl0IIGVh N5kmlBolVPvXsPTTVxTM6IuZwEGczMIgfd2nXbeB3b354jbN5B4ivQtAJ98eRsvy W2S2VwrTPcLiCENFpPNZQW7I280kK1khblrp5CtNNoRmXaxi2+PBEDo9/g16DNtx rCeAW1TKx84zHZgVFN+YuGiVxGaed9qqqtRJMGzvsCyGnGRW5LuhGW+zCVDVGqCK 9UJDDiQ5Rgk6wtGeXwQhpHdlbGoACiAP2kHZONyLwBGX5FM2kNLgGielZxi+d/kS sfWT371AUM3dn4+nZR3VZJCDTA== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:30 2024 by rpki-client on console-fra.rpki-client.org