$ rpki-client -vvf rpki.apnic.net/member_repository/A914237B/AA86B11E31B011EE9A50D761C4F9AE02/CBCF110C7D1F11EF80D0A264C4F9AE02.roa File: CBCF110C7D1F11EF80D0A264C4F9AE02.roa (raw, json) Hash identifier: t8a9sR6oLKMKZpiGzSHI7sTmBpqhkmpTloPWAXRbA2w= Subject key identifier: AC:2A:CE:03:24:07:C1:B5:81:4F:48:66:F9:D5:4C:F4:EB:4D:22:83 Certificate issuer: /CN=A914237B/serialNumber=643A89EA080AAC86F8A68B55108E77B106A141CA Certificate serial: E3 Authority key identifier: 64:3A:89:EA:08:0A:AC:86:F8:A6:8B:55:10:8E:77:B1:06:A1:41:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDqJ6ggKrIb4potVEI53sQahQco.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914237B/AA86B11E31B011EE9A50D761C4F9AE02/CBCF110C7D1F11EF80D0A264C4F9AE02.roa Signing time: Fri 27 Sep 2024 22:28:19 +0000 ROA not before: Fri 27 Sep 2024 22:28:19 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 945 IP address blocks: 103.69.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914237B/AA86B11E31B011EE9A50D761C4F9AE02/ZDqJ6ggKrIb4potVEI53sQahQco.crl rsync://rpki.apnic.net/member_repository/A914237B/AA86B11E31B011EE9A50D761C4F9AE02/ZDqJ6ggKrIb4potVEI53sQahQco.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDqJ6ggKrIb4potVEI53sQahQco.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Oct 2024 14:46:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914237B/serialNumber=643A89EA080AAC86F8A68B55108E77B106A141CA Validity Not Before: Sep 27 22:28:19 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66f73183-2e5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:81:eb:37:20:52:9d:22:e5:01:81:7b:67:f4: 46:3a:5a:ba:90:41:a2:78:5a:b9:b9:9a:9f:68:22: eb:7b:4d:5e:66:cd:02:ed:7c:87:ba:e2:88:34:bf: ce:77:23:34:b0:cb:e3:aa:1c:2a:f0:74:e9:19:5a: 77:b8:ac:af:fe:9e:53:20:71:be:7e:18:5f:67:9e: 6a:dc:ce:87:34:1c:65:c5:be:72:2d:e8:dc:db:a5: 6c:b6:3c:1d:71:2b:ff:b4:cb:d9:d8:84:39:e6:ff: 1c:11:0c:5d:a7:67:35:c2:9a:17:39:5d:54:a2:bc: 2a:2e:6a:b6:2f:57:1d:44:70:b8:5b:8b:e5:fe:4b: de:14:1d:f7:ca:ea:f0:59:54:91:4b:27:df:5b:7d: 0a:63:dd:59:d3:67:32:26:46:a3:03:ee:03:cf:81: cd:f1:fc:cd:48:c6:07:62:63:3a:88:38:4e:45:07: c9:e0:6a:e1:75:fe:74:bc:90:52:0b:22:f8:a6:39: e4:aa:25:4d:ad:54:c3:4c:86:db:39:0e:f3:3e:c1: da:cc:ac:30:ba:50:72:66:be:c1:f3:dd:c0:aa:b5: 96:89:1b:a7:7a:e1:1e:5a:94:06:9e:26:95:f4:ce: a6:2e:da:b1:36:6d:50:3b:54:d1:48:67:2c:68:4a: 63:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2A:CE:03:24:07:C1:B5:81:4F:48:66:F9:D5:4C:F4:EB:4D:22:83 X509v3 Authority Key Identifier: keyid:64:3A:89:EA:08:0A:AC:86:F8:A6:8B:55:10:8E:77:B1:06:A1:41:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914237B/AA86B11E31B011EE9A50D761C4F9AE02/ZDqJ6ggKrIb4potVEI53sQahQco.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZDqJ6ggKrIb4potVEI53sQahQco.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914237B/AA86B11E31B011EE9A50D761C4F9AE02/CBCF110C7D1F11EF80D0A264C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.92.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:79:94:64:63:65:a4:0c:73:d6:1b:45:b3:eb:66:84:6a:88: 47:73:2e:f7:da:f0:0a:52:7e:21:ac:eb:1c:4e:4f:31:10:89: 0c:a5:20:54:33:80:51:0c:e5:d4:39:c9:0c:29:0a:60:49:b2: af:37:dc:49:f7:4f:b9:85:b8:f7:94:42:06:9c:62:a8:b8:a1: eb:cc:b3:3c:ac:45:80:49:65:83:50:7f:37:1a:68:6c:c2:4f: ce:b4:80:a6:48:de:3d:97:3e:68:70:90:d0:56:39:f0:21:b8: de:b0:72:7c:d7:5c:44:f5:14:aa:ea:59:f5:5d:28:e4:49:cb: 98:31:64:cb:19:ff:58:45:85:eb:67:6f:33:42:59:f6:7d:ce: 7d:ce:44:00:ed:a2:62:24:d2:10:7f:1c:f2:b1:bf:02:0d:13: 1a:09:06:37:45:95:4e:c3:90:27:3a:b5:06:97:a0:76:ad:4a: 00:a2:ac:f6:45:2d:a5:89:b1:d5:47:8c:de:ed:16:0f:70:83: bd:1b:b2:8d:48:5f:3c:2b:bd:3a:a2:c5:b8:cc:70:9c:c0:8d: dd:a7:1b:bf:a8:23:dd:1b:68:ce:4e:4e:c1:20:1d:9e:d9:f3: f1:fd:d5:a0:22:bb:9c:4f:01:df:a6:b6:00:4e:ed:1f:f6:c9: 1d:a7:f5:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzN0IxMTAvBgNVBAUTKDY0M0E4OUVBMDgwQUFDODZGOEE2OEI1NTEwOEU3N0Ix MDZBMTQxQ0EwHhcNMjQwOTI3MjIyODE5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY3MzE4My0yZTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp4HrNyBSnSLlAYF7Z/RGOlq6kEGieFq5uZqfaCLre01eZs0C7XyHuuKINL/O dyM0sMvjqhwq8HTpGVp3uKyv/p5TIHG+fhhfZ55q3M6HNBxlxb5yLejc26Vstjwd cSv/tMvZ2IQ55v8cEQxdp2c1wpoXOV1UorwqLmq2L1cdRHC4W4vl/kveFB33yurw WVSRSyffW30KY91Z02cyJkajA+4Dz4HN8fzNSMYHYmM6iDhORQfJ4Grhdf50vJBS CyL4pjnkqiVNrVTDTIbbOQ7zPsHazKwwulByZr7B893AqrWWiRuneuEeWpQGniaV 9M6mLtqxNm1QO1TRSGcsaEpjMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKwqzgMk B8G1gU9IZvnVTPTrTSKDMB8GA1UdIwQYMBaAFGQ6ieoICqyG+KaLVRCOd7EGoUHK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjM3Qi9BQTg2QjExRTMx QjAxMUVFOUE1MEQ3NjFDNEY5QUUwMi9aRHFKNmdnS3JJYjRwb3RWRUk1M3NRYWhR Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pEcUo2Z2dLckliNHBvdFZFSTUzc1FhaFFjby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIzN0IvQUE4NkIxMUUzMUIwMTFFRTlBNTBENzYxQzRGOUFFMDIvQ0JDRjExMEM3 RDFGMTFFRjgwRDBBMjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnRVwwDQYJKoZIhvcNAQELBQADggEBABp5lGRjZaQMc9Yb RbPrZoRqiEdzLvfa8ApSfiGs6xxOTzEQiQylIFQzgFEM5dQ5yQwpCmBJsq833En3 T7mFuPeUQgacYqi4oevMszysRYBJZYNQfzcaaGzCT860gKZI3j2XPmhwkNBWOfAh uN6wcnzXXET1FKrqWfVdKORJy5gxZMsZ/1hFhetnbzNCWfZ9zn3ORADtomIk0hB/ HPKxvwINExoJBjdFlU7DkCc6tQaXoHatSgCirPZFLaWJsdVHjN7tFg9wg70bso1I XzwrvTqixbjMcJzAjd2nG7+oI90baM5OTsEgHZ7Z8/H91aAiu5xPAd+mtgBO7R/2 yR2n9QI= -----END CERTIFICATE-----Generated at Mon Oct 21 18:21:28 2024 by rpki-client on console-ams.rpki-client.org