$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/229357E6E46211EBB880A73AC4F9AE02.roa File: 229357E6E46211EBB880A73AC4F9AE02.roa (raw, json) Hash identifier: iFyoONMIG+gLvaU5FtZucihntMHlbo8UufmNYBMrvoQ= Subject key identifier: FA:3E:8D:21:6F:C7:23:D0:88:DA:13:BB:4D:3F:13:B6:7B:56:12:9E Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1E69 Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/229357E6E46211EBB880A73AC4F9AE02.roa Signing time: Sat 02 Nov 2024 16:23:35 +0000 ROA not before: Sat 02 Nov 2024 16:23:35 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.193.8.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7785 (0x1e69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Nov 2 16:23:35 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67265207-62a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:51:57:f2:69:50:57:59:cf:61:3a:9b:02:6b: f5:65:b7:e4:df:4a:aa:cb:5b:1b:5d:e8:ad:db:61: 40:6a:0a:6c:c6:9e:90:b3:01:fb:85:5f:85:12:f8: b0:b7:33:1b:34:8f:fa:8a:c4:dd:30:24:b3:ee:9a: f9:ed:20:ff:37:2d:00:8a:95:11:e4:37:73:5c:f2: f6:06:2f:cd:40:42:e3:bf:d9:b7:db:f1:f7:1f:27: 16:04:cc:9d:f6:23:06:d4:51:17:d6:ac:2e:f9:fb: db:7b:45:53:e3:35:4d:59:89:4a:aa:6d:c1:1a:a8: 11:23:e1:8c:9c:9f:7e:34:73:8b:1f:0d:97:dd:a6: 84:3f:2d:8f:f1:33:9b:45:a3:ee:55:22:af:db:d7: 69:db:45:c3:5f:8c:72:9a:22:07:b9:6d:fc:34:fc: 9c:31:53:15:20:fe:8f:87:73:06:84:fb:3a:6c:ac: 19:11:37:16:29:7a:ce:29:4f:c5:06:55:d5:d0:73: d0:07:7e:f6:c5:c3:20:a8:b7:3e:c7:0b:e6:3a:6d: 9a:8b:2a:72:8b:be:1a:13:4e:5a:2f:cc:ed:e6:ac: 30:d9:bb:bd:e0:33:3f:8c:88:a5:97:7b:30:95:3b: bc:c3:08:30:4b:e1:08:3d:7b:c8:a9:a4:0c:1c:69: 44:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:3E:8D:21:6F:C7:23:D0:88:DA:13:BB:4D:3F:13:B6:7B:56:12:9E X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/229357E6E46211EBB880A73AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.193.8.0/23 Signature Algorithm: sha256WithRSAEncryption 23:87:e3:17:ca:9d:f5:90:d1:f8:a5:c8:22:10:36:b3:bb:10: 32:a1:ef:73:86:6b:69:a6:ee:5c:e2:77:f7:e7:64:2a:c8:a6: 13:83:2a:ec:93:84:d1:00:cf:0a:04:07:c7:f8:05:79:d3:02: e1:0e:73:82:24:f9:6c:0b:19:e3:b8:40:18:65:2a:78:ba:29: 27:7a:37:cb:0b:ce:ea:82:23:fc:c1:5e:7e:4f:c2:bb:76:8e: d1:e7:30:22:9c:b1:33:64:ff:7d:28:3b:6d:a3:3e:ef:0c:5f: 7d:f2:d7:91:d4:59:bc:04:da:ab:22:2a:c0:e2:e1:1d:1b:d2: 3b:49:82:2c:0d:01:8d:63:45:8d:80:05:cc:a2:5e:8a:89:ba: 00:bd:99:ed:79:d5:8b:c1:d6:9c:e1:e7:5f:15:d8:05:e0:7f: 71:3d:2e:90:1f:26:5d:35:98:5f:48:89:67:b4:a8:a1:b8:c6: ce:13:7e:ae:72:c1:86:c1:e2:69:31:14:62:de:eb:70:a3:79: 4f:10:3d:67:cf:74:18:01:3e:86:72:e0:95:d9:c1:43:59:72: 3d:89:cc:f2:35:73:2c:8e:16:df:42:e5:00:43:33:51:be:8c: 29:17:fb:94:08:77:4b:0a:56:30:8c:0d:00:e7:37:20:f6:89: 2e:21:33:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHmkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjQxMTAyMTYyMzM1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NTIwNy02MmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulFX8mlQV1nPYTqbAmv1Zbfk30qqy1sbXeit22FAagpsxp6QswH7hV+FEviw tzMbNI/6isTdMCSz7pr57SD/Ny0AipUR5DdzXPL2Bi/NQELjv9m32/H3HycWBMyd 9iMG1FEX1qwu+fvbe0VT4zVNWYlKqm3BGqgRI+GMnJ9+NHOLHw2X3aaEPy2P8TOb RaPuVSKv29dp20XDX4xymiIHuW38NPycMVMVIP6Ph3MGhPs6bKwZETcWKXrOKU/F BlXV0HPQB372xcMgqLc+xwvmOm2aiypyi74aE05aL8zt5qww2bu94DM/jIill3sw lTu8wwgwS+EIPXvIqaQMHGlEMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPo+jSFv xyPQiNoTu00/E7Z7VhKeMB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YwRTMvMjkxNTc2QkU2QjM0MTFFNjkxODRCNjZDQzRGOUFFMDIvMjI5MzU3RTZF NDYyMTFFQkI4ODBBNzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnwQgwDQYJKoZIhvcNAQELBQADggEBACOH4xfKnfWQ0fil yCIQNrO7EDKh73OGa2mm7lzid/fnZCrIphODKuyThNEAzwoEB8f4BXnTAuEOc4Ik +WwLGeO4QBhlKni6KSd6N8sLzuqCI/zBXn5Pwrt2jtHnMCKcsTNk/30oO22jPu8M X33y15HUWbwE2qsiKsDi4R0b0jtJgiwNAY1jRY2ABcyiXoqJugC9me151YvB1pzh 518V2AXgf3E9LpAfJl01mF9IiWe0qKG4xs4Tfq5ywYbB4mkxFGLe63CjeU8QPWfP dBgBPoZy4JXZwUNZcj2JzPI1cyyOFt9C5QBDM1G+jCkX+5QId0sKVjCMDQDnNyD2 iS4hM5g= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:08 2024 by rpki-client on console-ams.rpki-client.org