$ rpki-client -vvf rpki.apnic.net/member_repository/A9143FE9/F9E65E20443811EBAD443F74C4F9AE02/A55E5F567BA911EDB41A851EC4F9AE02.roa File: A55E5F567BA911EDB41A851EC4F9AE02.roa (raw, json) Hash identifier: peH3/6Rs1iQ+KrfR1ucwTqKfgCegv2TUpU4DS9hii68= Subject key identifier: 23:D9:41:CD:87:2E:4A:54:F0:82:17:EC:2F:65:FA:8F:31:FC:89:13 Certificate issuer: /CN=A9143FE9/serialNumber=1520F2B34ABDDCAE94FA922EF4757CD36140F254 Certificate serial: 0611 Authority key identifier: 15:20:F2:B3:4A:BD:DC:AE:94:FA:92:2E:F4:75:7C:D3:61:40:F2:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSDys0q93K6U-pIu9HV802FA8lQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9143FE9/F9E65E20443811EBAD443F74C4F9AE02/A55E5F567BA911EDB41A851EC4F9AE02.roa Signing time: Fri 26 Jan 2024 23:21:57 +0000 ROA not before: Fri 26 Jan 2024 23:21:57 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149013 IP address blocks: 103.160.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9143FE9/F9E65E20443811EBAD443F74C4F9AE02/FSDys0q93K6U-pIu9HV802FA8lQ.crl rsync://rpki.apnic.net/member_repository/A9143FE9/F9E65E20443811EBAD443F74C4F9AE02/FSDys0q93K6U-pIu9HV802FA8lQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSDys0q93K6U-pIu9HV802FA8lQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1553 (0x611) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9143FE9/serialNumber=1520F2B34ABDDCAE94FA922EF4757CD36140F254 Validity Not Before: Jan 26 23:21:57 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b43e94-28ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:89:14:80:bc:eb:79:7a:08:9b:7d:e3:11:eb: 69:23:c2:f9:01:1a:bf:db:b1:8c:dc:5c:31:22:4e: e7:1f:1d:04:ea:2d:cb:55:79:d1:0b:5d:6e:e9:a4: e0:cc:94:ea:78:77:9f:74:01:4d:61:21:a7:81:e9: 91:a3:61:4d:45:e0:57:fe:c6:14:a7:eb:0f:37:b6: 99:01:62:29:e2:ed:62:fa:a5:c5:d8:f0:71:98:b6: 7f:9d:35:c6:40:01:4d:aa:7b:f6:95:40:21:a1:e6: 3f:e3:a9:02:55:b6:67:c8:63:fa:08:7a:49:58:23: 48:c6:0b:e9:ee:dd:51:11:63:c9:0b:5f:a3:c8:5e: 6b:d4:46:07:4c:b8:b5:b5:60:a0:99:b8:02:95:05: b0:24:8e:99:23:f1:0d:04:75:d3:e1:b2:92:07:b9: 15:16:ae:8c:b7:e4:b0:42:59:d3:72:6f:3e:34:4d: 8d:80:79:f6:c8:87:e3:13:f5:14:d1:ae:0b:d3:41: 6e:b7:d6:b5:cb:26:2f:5f:f4:2f:e8:c0:b9:24:b4: f0:93:6b:70:2a:6c:43:c7:d9:3f:48:5e:50:54:e6: 58:70:2a:a4:4c:bd:55:7f:1f:87:58:bf:e7:01:08: d7:62:39:b0:22:07:04:47:d2:5b:84:f4:f4:e8:37: 40:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D9:41:CD:87:2E:4A:54:F0:82:17:EC:2F:65:FA:8F:31:FC:89:13 X509v3 Authority Key Identifier: keyid:15:20:F2:B3:4A:BD:DC:AE:94:FA:92:2E:F4:75:7C:D3:61:40:F2:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9143FE9/F9E65E20443811EBAD443F74C4F9AE02/FSDys0q93K6U-pIu9HV802FA8lQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FSDys0q93K6U-pIu9HV802FA8lQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9143FE9/F9E65E20443811EBAD443F74C4F9AE02/A55E5F567BA911EDB41A851EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.145.0/24 Signature Algorithm: sha256WithRSAEncryption 02:c0:fa:bc:38:a8:85:f8:dd:23:12:2c:0b:a6:c1:4b:c1:c3: 1e:7b:dd:f8:11:b2:05:c2:e2:5f:d8:19:62:4c:0c:81:7e:3a: c2:01:58:a4:48:b0:4f:2c:9b:ac:1f:10:c3:f2:12:26:2b:e1: 31:7d:d6:2a:71:53:e9:bf:c9:17:3f:41:34:9a:10:99:cd:12: ff:f0:e7:0e:04:8f:84:88:ea:2a:8f:51:d4:af:02:45:2d:28: ae:af:d0:e4:87:d6:dc:a2:7e:b2:b1:89:47:4e:06:31:ae:28: 39:fb:78:27:af:50:a1:1f:c0:78:a4:dc:e3:fe:33:db:8f:ed: c6:42:22:2c:e5:e0:6e:82:47:94:c5:09:7d:b2:ea:f5:a6:d8: cd:80:22:40:cd:2b:5a:ca:17:54:d1:a4:88:32:09:60:02:99: 89:c5:1e:2d:e6:76:15:72:44:85:1e:64:24:7a:d1:f7:ad:5f: 64:0a:74:2b:b1:1a:e3:0c:e8:21:09:db:b9:56:f9:c0:9d:55: 31:9a:a6:c2:7c:b0:05:f9:57:b5:9e:cb:5a:f1:93:4a:5b:38: 8d:e4:3f:e3:13:44:82:0d:e1:1d:1d:04:b8:d7:da:26:c1:2c: 54:45:c0:1a:ea:6e:95:b4:0a:4f:a5:dc:0b:cb:fc:62:10:3e: ad:57:fc:dc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBhEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDNGRTkxMTAvBgNVBAUTKDE1MjBGMkIzNEFCRERDQUU5NEZBOTIyRUY0NzU3Q0Qz NjE0MEYyNTQwHhcNMjQwMTI2MjMyMTU3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI0M2U5NC0yOGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqokUgLzreXoIm33jEetpI8L5ARq/27GM3FwxIk7nHx0E6i3LVXnRC11u6aTg zJTqeHefdAFNYSGngemRo2FNReBX/sYUp+sPN7aZAWIp4u1i+qXF2PBxmLZ/nTXG QAFNqnv2lUAhoeY/46kCVbZnyGP6CHpJWCNIxgvp7t1REWPJC1+jyF5r1EYHTLi1 tWCgmbgClQWwJI6ZI/ENBHXT4bKSB7kVFq6Mt+SwQlnTcm8+NE2NgHn2yIfjE/UU 0a4L00Fut9a1yyYvX/Qv6MC5JLTwk2twKmxDx9k/SF5QVOZYcCqkTL1Vfx+HWL/n AQjXYjmwIgcER9JbhPT06DdAHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCPZQc2H LkpU8IIX7C9l+o8x/IkTMB8GA1UdIwQYMBaAFBUg8rNKvdyulPqSLvR1fNNhQPJU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0M0ZFOS9GOUU2NUUyMDQ0 MzgxMUVCQUQ0NDNGNzRDNEY5QUUwMi9GU0R5czBxOTNLNlUtcEl1OUhWODAyRkE4 bFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZTRHlzMHE5M0s2VS1wSXU5SFY4MDJGQThsUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDNGRTkvRjlFNjVFMjA0NDM4MTFFQkFENDQzRjc0QzRGOUFFMDIvQTU1RTVGNTY3 QkE5MTFFREI0MUE4NTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnoJEwDQYJKoZIhvcNAQELBQADggEBAALA+rw4qIX43SMS LAumwUvBwx573fgRsgXC4l/YGWJMDIF+OsIBWKRIsE8sm6wfEMPyEiYr4TF91ipx U+m/yRc/QTSaEJnNEv/w5w4Ej4SI6iqPUdSvAkUtKK6v0OSH1tyifrKxiUdOBjGu KDn7eCevUKEfwHik3OP+M9uP7cZCIizl4G6CR5TFCX2y6vWm2M2AIkDNK1rKF1TR pIgyCWACmYnFHi3mdhVyRIUeZCR60fetX2QKdCuxGuMM6CEJ27lW+cCdVTGapsJ8 sAX5V7Wey1rxk0pbOI3kP+MTRIIN4R0dBLjX2ibBLFRFwBrqbpW0Ck+l3AvL/GIQ Pq1X/Nw= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:12 2024 by rpki-client on console-ams.rpki-client.org