$ rpki-client -vvf rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/D9B56C8A7AB211EB99DAFE83C4F9AE02.roa File: D9B56C8A7AB211EB99DAFE83C4F9AE02.roa (raw, json) Hash identifier: zVypx1jthStqt4cyr5Z2sav6JsTBbixhZiV2nbloQxA= Subject key identifier: 9B:80:9D:7F:6C:A3:7B:DF:DC:D5:D1:62:6B:CD:E4:02:F0:E3:BB:2D Certificate issuer: /CN=A9143B09/serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Certificate serial: 07E0 Authority key identifier: 53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/D9B56C8A7AB211EB99DAFE83C4F9AE02.roa Signing time: Thu 04 Apr 2024 18:26:15 +0000 ROA not before: Thu 04 Apr 2024 18:26:15 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136215 IP address blocks: 103.49.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:24:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2016 (0x7e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143B09/serialNumber=5329700B4DDDAD9E3FCDC3273F4D18D3E3045DC0 Validity Not Before: Apr 4 18:26:15 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660ef0c7-4d92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d0:d9:05:03:7f:46:c0:02:e5:4f:1c:b6:2e: 4f:a2:df:a1:0c:42:0b:a0:28:a1:ac:bd:1e:3a:44: 59:14:6c:70:be:25:69:62:5b:b2:9c:09:95:ed:f2: 62:56:55:f1:0b:f7:f9:05:44:53:78:bd:8e:20:e1: 5c:7a:9e:4e:a4:8b:98:64:f0:e8:2a:ae:6a:ee:82: b9:88:35:78:9c:b3:11:6e:7f:99:55:47:67:8a:b0: 9c:72:16:39:57:dc:ba:86:17:c1:8c:cc:15:84:27: 52:77:8b:ee:26:2c:5e:bd:0b:32:ce:45:57:ad:71: 99:68:27:d0:ff:4d:22:fd:40:58:d5:fb:f1:a7:a3: 55:bc:92:3f:7a:28:96:36:d1:b9:17:ad:63:7c:3e: d7:7c:44:6e:53:d2:81:67:f7:3a:41:dc:ef:ca:a3: f7:0a:71:ab:49:79:b1:e2:ff:8f:b1:cd:c8:5c:00: 44:e6:be:ef:20:5c:38:6e:5a:c3:5d:55:54:ef:59: f4:5f:7e:d7:a8:65:97:59:92:f0:44:98:a5:55:56: 80:99:6e:7d:0c:60:07:82:7c:8a:de:27:87:bc:cb: 44:6b:16:f5:ce:c4:4d:7c:fa:2d:b4:3d:f5:f0:bf: 80:20:f6:fd:e2:33:7b:f5:b3:cf:b5:41:af:a2:f1: 89:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:80:9D:7F:6C:A3:7B:DF:DC:D5:D1:62:6B:CD:E4:02:F0:E3:BB:2D X509v3 Authority Key Identifier: keyid:53:29:70:0B:4D:DD:AD:9E:3F:CD:C3:27:3F:4D:18:D3:E3:04:5D:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/UylwC03drZ4_zcMnP00Y0-MEXcA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UylwC03drZ4_zcMnP00Y0-MEXcA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143B09/3B367BCE33B711E9AD0F587AC4F9AE02/D9B56C8A7AB211EB99DAFE83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.49.201.0/24 Signature Algorithm: sha256WithRSAEncryption 95:38:c7:23:04:68:30:ad:1e:a3:84:78:ca:b8:e9:f0:09:7d: dc:52:57:3f:aa:0a:af:35:7f:2d:5b:47:80:f3:9f:75:4e:79: a9:f6:0f:58:34:b9:98:61:da:31:c4:3c:d5:8d:a0:00:4c:21: ac:03:f2:25:84:20:24:4f:a6:ae:9f:26:01:0f:55:31:fc:da: 35:a9:dd:33:eb:6e:cc:be:9f:77:ee:bf:0f:6b:5a:49:a3:b8: 3b:e9:54:2f:2d:1d:a2:e3:89:e3:d0:1b:b7:d0:74:7b:42:da: f8:dd:18:89:a1:5f:78:17:5d:af:49:14:b3:af:04:49:68:62: d7:e2:00:17:78:34:0f:e9:54:d1:2e:e2:2d:66:5c:25:b1:63: 6e:56:07:b1:c8:43:78:1d:cf:2b:e5:b6:40:ca:d6:25:d1:e4: ca:58:f5:7c:99:28:62:2e:a9:ca:92:0b:b5:71:70:25:b8:e3: 11:66:3f:de:86:46:b8:33:26:f9:e5:eb:20:a6:5d:d0:44:5d: e0:79:b9:df:18:9f:e1:e8:e5:f7:d6:8e:dd:ef:31:fb:cc:98: 2f:35:f9:f8:0f:6c:90:8b:67:31:5d:07:9b:bf:04:87:22:b8: 79:9c:59:42:83:a9:ba:4c:20:00:49:be:19:c8:1f:8c:a5:c0: 9e:41:4f:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB+AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNCMDkxMTAvBgNVBAUTKDUzMjk3MDBCNEREREFEOUUzRkNEQzMyNzNGNEQxOEQz RTMwNDVEQzAwHhcNMjQwNDA0MTgyNjE1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlZjBjNy00ZDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydDZBQN/RsAC5U8cti5Pot+hDEILoCihrL0eOkRZFGxwviVpYluynAmV7fJi VlXxC/f5BURTeL2OIOFcep5OpIuYZPDoKq5q7oK5iDV4nLMRbn+ZVUdnirCcchY5 V9y6hhfBjMwVhCdSd4vuJixevQsyzkVXrXGZaCfQ/00i/UBY1fvxp6NVvJI/eiiW NtG5F61jfD7XfERuU9KBZ/c6QdzvyqP3CnGrSXmx4v+Psc3IXABE5r7vIFw4blrD XVVU71n0X37XqGWXWZLwRJilVVaAmW59DGAHgnyK3ieHvMtEaxb1zsRNfPottD31 8L+AIPb94jN79bPPtUGvovGJiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJuAnX9s o3vf3NXRYmvN5ALw47stMB8GA1UdIwQYMBaAFFMpcAtN3a2eP83DJz9NGNPjBF3A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0IwOS8zQjM2N0JDRTMz QjcxMUU5QUQwRjU4N0FDNEY5QUUwMi9VeWx3QzAzZHJaNF96Y01uUDAwWTAtTUVY Y0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1V5bHdDMDNkclo0X3pjTW5QMDBZMC1NRVhjQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNCMDkvM0IzNjdCQ0UzM0I3MTFFOUFEMEY1ODdBQzRGOUFFMDIvRDlCNTZDOEE3 QUIyMTFFQjk5REFGRTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnMckwDQYJKoZIhvcNAQELBQADggEBAJU4xyMEaDCtHqOE eMq46fAJfdxSVz+qCq81fy1bR4Dzn3VOean2D1g0uZhh2jHEPNWNoABMIawD8iWE ICRPpq6fJgEPVTH82jWp3TPrbsy+n3fuvw9rWkmjuDvpVC8tHaLjiePQG7fQdHtC 2vjdGImhX3gXXa9JFLOvBEloYtfiABd4NA/pVNEu4i1mXCWxY25WB7HIQ3gdzyvl tkDK1iXR5MpY9XyZKGIuqcqSC7VxcCW44xFmP96GRrgzJvnl6yCmXdBEXeB5ud8Y n+Ho5ffWjt3vMfvMmC81+fgPbJCLZzFdB5u/BIciuHmcWUKDqbpMIABJvhnIH4yl wJ5BT0o= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org