$ rpki-client -vvf rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/54AC9B64C3B411EEBF90C180C4F9AE02.roa File: 54AC9B64C3B411EEBF90C180C4F9AE02.roa (raw, json) Hash identifier: JrlpqVQiM6sMiitAZj1nZPNS6SGLOAO1mc1OoPH/pp0= Subject key identifier: F9:0B:7C:B9:02:5E:14:C4:AD:EC:F3:BA:83:68:19:5C:31:B2:7A:54 Certificate issuer: /CN=A913D6C9/serialNumber=41F8B6B47BADB00F6F8FE8E7E013FF55A18E7428 Certificate serial: 038D Authority key identifier: 41:F8:B6:B4:7B:AD:B0:0F:6F:8F:E8:E7:E0:13:FF:55:A1:8E:74:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qfi2tHutsA9vj-jn4BP_VaGOdCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/54AC9B64C3B411EEBF90C180C4F9AE02.roa Signing time: Sun 04 Feb 2024 23:22:58 +0000 ROA not before: Sun 04 Feb 2024 23:22:58 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152156 IP address blocks: 103.176.196.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/Qfi2tHutsA9vj-jn4BP_VaGOdCg.crl rsync://rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/Qfi2tHutsA9vj-jn4BP_VaGOdCg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qfi2tHutsA9vj-jn4BP_VaGOdCg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 909 (0x38d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D6C9/serialNumber=41F8B6B47BADB00F6F8FE8E7E013FF55A18E7428 Validity Not Before: Feb 4 23:22:58 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65c01c51-f915 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:47:ee:97:08:77:fc:f1:05:77:22:39:26:67: d6:99:22:34:a3:dd:da:a0:99:f4:7c:49:04:28:8b: ed:46:71:e0:e3:9c:6f:2d:5c:2e:11:18:d7:68:1c: 44:e8:3e:9f:31:68:a4:d6:6b:82:0c:48:a2:41:72: db:16:1c:52:96:c9:25:02:e3:28:75:b5:15:c7:0b: d5:50:9a:41:0a:2a:fa:f1:3f:40:30:12:26:ed:25: f1:46:69:3f:86:38:c8:66:84:06:4b:e6:18:c4:2e: 79:3f:04:81:68:9e:7f:ab:69:80:7b:4b:e6:77:34: eb:d0:51:f4:cc:71:db:0b:b4:8e:69:eb:9c:e1:ca: e0:39:ce:95:8a:f9:c9:ba:76:65:b1:d0:e3:32:ca: 47:08:50:79:d6:76:72:4f:12:d5:da:e5:e6:39:74: 47:68:b5:74:cc:ef:26:e6:27:d3:2f:55:5e:9c:89: 4c:f5:21:25:80:fa:06:e7:7f:e9:48:84:ee:5e:6b: 00:83:21:24:60:7f:1a:87:87:4a:80:21:8d:0c:6e: ce:93:ee:87:03:aa:da:bc:5c:cb:0b:e7:4d:60:0e: 68:e3:a3:bb:4d:da:bd:31:1f:f5:26:7b:f6:83:8e: 88:1d:88:df:38:0a:a7:4f:22:8d:76:1e:9b:5f:ff: ba:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:0B:7C:B9:02:5E:14:C4:AD:EC:F3:BA:83:68:19:5C:31:B2:7A:54 X509v3 Authority Key Identifier: keyid:41:F8:B6:B4:7B:AD:B0:0F:6F:8F:E8:E7:E0:13:FF:55:A1:8E:74:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/Qfi2tHutsA9vj-jn4BP_VaGOdCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qfi2tHutsA9vj-jn4BP_VaGOdCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D6C9/73FBD332481D11ECB6FEDF77C4F9AE02/54AC9B64C3B411EEBF90C180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.196.0/23 Signature Algorithm: sha256WithRSAEncryption 16:08:ff:61:2d:59:73:95:6f:e5:e5:50:b4:36:9a:2a:4d:04: e1:d0:b2:a8:1b:31:c4:e6:d5:6d:f0:01:28:ba:4d:db:90:c3: 7c:1b:fd:d0:75:84:3c:8f:76:d0:5b:2e:85:b1:7e:df:a5:c1: 4f:12:f7:58:8e:94:9a:fc:18:e2:2f:0a:3d:40:de:bc:f2:6e: e8:31:3f:77:c1:44:88:d1:9e:2d:39:b0:84:48:4f:12:b8:7b: 11:df:61:e8:27:d6:54:96:a8:02:0d:44:36:49:8e:94:3f:fc: 33:58:7f:89:eb:88:4a:db:a4:6a:c3:8e:99:0d:91:d1:d1:38: 38:be:b0:87:7b:13:e9:b7:b2:e7:17:0d:69:15:22:09:2b:b3: 45:37:61:f4:8e:ec:8d:7b:5b:ec:36:78:23:bc:55:df:5a:82: 89:ff:d5:1f:0f:1e:6b:ef:44:7c:ed:36:56:63:df:08:60:08: e9:43:a2:48:50:48:a8:97:76:f0:91:1c:7f:e9:c2:52:e1:9f: 02:14:ab:20:7f:aa:89:af:18:52:f5:a5:60:93:5b:e7:65:84: 58:f3:4c:d7:08:4a:d6:c6:09:b4:59:e2:f5:76:33:ca:79:93: 79:37:e0:7c:7c:79:e5:e5:6c:7a:02:13:1b:4b:32:15:d7:61: 5a:b8:e9:99 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0Q2QzkxMTAvBgNVBAUTKDQxRjhCNkI0N0JBREIwMEY2RjhGRThFN0UwMTNGRjU1 QTE4RTc0MjgwHhcNMjQwMjA0MjMyMjU4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMwMWM1MS1mOTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEfulwh3/PEFdyI5JmfWmSI0o93aoJn0fEkEKIvtRnHg45xvLVwuERjXaBxE 6D6fMWik1muCDEiiQXLbFhxSlsklAuModbUVxwvVUJpBCir68T9AMBIm7SXxRmk/ hjjIZoQGS+YYxC55PwSBaJ5/q2mAe0vmdzTr0FH0zHHbC7SOaeuc4crgOc6VivnJ unZlsdDjMspHCFB51nZyTxLV2uXmOXRHaLV0zO8m5ifTL1VenIlM9SElgPoG53/p SITuXmsAgyEkYH8ah4dKgCGNDG7Ok+6HA6ravFzLC+dNYA5o46O7Tdq9MR/1Jnv2 g46IHYjfOAqnTyKNdh6bX/+6SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPkLfLkC XhTErezzuoNoGVwxsnpUMB8GA1UdIwQYMBaAFEH4trR7rbAPb4/o5+AT/1WhjnQo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDZDOS83M0ZCRDMzMjQ4 MUQxMUVDQjZGRURGNzdDNEY5QUUwMi9RZmkydEh1dHNBOXZqLWpuNEJQX1ZhR09k Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FmaTJ0SHV0c0E5dmotam40QlBfVmFHT2RDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0Q2QzkvNzNGQkQzMzI0ODFEMTFFQ0I2RkVERjc3QzRGOUFFMDIvNTRBQzlCNjRD M0I0MTFFRUJGOTBDMTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnsMQwDQYJKoZIhvcNAQELBQADggEBABYI/2EtWXOVb+Xl ULQ2mipNBOHQsqgbMcTm1W3wASi6TduQw3wb/dB1hDyPdtBbLoWxft+lwU8S91iO lJr8GOIvCj1A3rzybugxP3fBRIjRni05sIRITxK4exHfYegn1lSWqAINRDZJjpQ/ /DNYf4nriErbpGrDjpkNkdHRODi+sId7E+m3sucXDWkVIgkrs0U3YfSO7I17W+w2 eCO8Vd9agon/1R8PHmvvRHztNlZj3whgCOlDokhQSKiXdvCRHH/pwlLhnwIUqyB/ qomvGFL1pWCTW+dlhFjzTNcIStbGCbRZ4vV2M8p5k3k34Hx8eeXlbHoCExtLMhXX YVq46Zk= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:53 2024 by rpki-client on console-fra.rpki-client.org