$ rpki-client -vvf rpki.apnic.net/member_repository/A9144BAD/D5D74346047811EBA7BD3A48C4F9AE02/D3D1C19E0F2111EBBC6E5028C4F9AE02.roa File: D3D1C19E0F2111EBBC6E5028C4F9AE02.roa (raw, json) Hash identifier: MXW87fZ4qznNog7Mqv1dybumPTtWHlhfVDxRXuxWlk8= Subject key identifier: 40:26:89:D6:89:CD:EC:67:64:BC:40:02:82:AA:AB:8D:6D:9B:C0:45 Certificate issuer: /CN=A9144BAD/serialNumber=032AC2241D18CFBBC1C33CADF5E8F655412D4A8B Certificate serial: 073E Authority key identifier: 03:2A:C2:24:1D:18:CF:BB:C1:C3:3C:AD:F5:E8:F6:55:41:2D:4A:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AyrCJB0Yz7vBwzyt9ej2VUEtSos.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144BAD/D5D74346047811EBA7BD3A48C4F9AE02/D3D1C19E0F2111EBBC6E5028C4F9AE02.roa Signing time: Mon 04 Nov 2024 21:11:15 +0000 ROA not before: Mon 04 Nov 2024 21:11:15 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 132857 IP address blocks: 103.156.230.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144BAD/D5D74346047811EBA7BD3A48C4F9AE02/AyrCJB0Yz7vBwzyt9ej2VUEtSos.crl rsync://rpki.apnic.net/member_repository/A9144BAD/D5D74346047811EBA7BD3A48C4F9AE02/AyrCJB0Yz7vBwzyt9ej2VUEtSos.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AyrCJB0Yz7vBwzyt9ej2VUEtSos.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1854 (0x73e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144BAD/serialNumber=032AC2241D18CFBBC1C33CADF5E8F655412D4A8B Validity Not Before: Nov 4 21:11:15 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67293872-dc5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e8:07:d9:74:5b:14:e7:bc:c8:75:e2:7a:47: d2:11:d2:15:cf:ee:06:db:d7:fe:f3:b0:40:9b:ea: 85:5f:f9:ad:fa:25:ac:17:74:79:30:32:8c:7f:0f: c4:36:df:4a:8c:f9:cc:53:43:e1:15:64:b5:b3:d4: 40:a7:ed:46:4e:7a:21:de:73:cd:cb:25:93:29:c8: 1e:76:2a:45:e9:8f:92:7d:43:75:8c:db:a8:d7:6e: 2e:b6:b7:88:58:a6:3a:15:86:ef:c9:01:52:bf:1c: 36:f8:d9:75:db:1a:11:d0:dc:b9:bb:69:b5:35:9c: b1:3b:04:18:fb:01:51:a4:78:3d:61:d1:72:f0:b5: 4e:4c:da:3e:d2:45:68:cc:e3:ab:88:01:ef:96:18: e9:61:d5:28:6b:5b:31:ac:00:35:e8:25:58:8d:c5: 9c:89:89:61:4b:ee:75:3d:f3:d8:58:9e:29:3d:ec: 8e:fa:fa:18:d6:2a:42:30:80:b8:ce:5c:16:29:b3: d5:43:82:8a:4e:43:6e:50:46:73:5f:2f:e3:0e:ce: 6a:a5:81:fd:ee:62:76:c1:cb:82:65:90:e9:6a:ef: ac:d9:58:63:95:fc:f9:f5:de:43:2e:6f:9f:5e:a8: 84:ea:c7:05:de:96:93:d1:6f:35:fd:69:3d:99:d6: 76:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:26:89:D6:89:CD:EC:67:64:BC:40:02:82:AA:AB:8D:6D:9B:C0:45 X509v3 Authority Key Identifier: keyid:03:2A:C2:24:1D:18:CF:BB:C1:C3:3C:AD:F5:E8:F6:55:41:2D:4A:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144BAD/D5D74346047811EBA7BD3A48C4F9AE02/AyrCJB0Yz7vBwzyt9ej2VUEtSos.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AyrCJB0Yz7vBwzyt9ej2VUEtSos.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144BAD/D5D74346047811EBA7BD3A48C4F9AE02/D3D1C19E0F2111EBBC6E5028C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.230.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:a4:71:96:a0:fb:bb:aa:96:97:bc:f3:ca:e5:88:4a:d3:11: 5e:60:cd:e0:04:27:15:c9:2f:19:f7:51:4c:36:01:03:84:c3: 0a:70:9b:71:55:3b:2b:16:b9:0b:03:b6:02:4e:84:b8:41:f1: 75:07:58:c1:5a:b0:df:f0:de:b6:1c:35:e6:ec:f6:b4:6c:2a: 5d:50:d6:75:34:48:6a:a3:33:18:36:90:4a:6c:2f:4e:f5:dc: 99:3b:bc:b7:0d:6f:f7:19:b7:b5:2a:eb:c2:b2:b0:98:f3:6e: e8:d8:6c:e6:61:f7:82:ad:b9:88:eb:03:33:bc:1f:ac:2c:6f: 36:a3:99:d9:92:54:67:c8:d4:92:3f:e3:b7:d4:34:7c:30:4f: 7e:3d:e8:49:62:00:5c:74:c1:f5:a4:7f:da:76:31:70:bb:85: a3:2c:a1:d8:80:d2:b6:0b:b1:c4:46:3e:fd:7a:cd:c9:a9:08: b9:38:a6:56:d9:cb:85:f8:1e:8b:90:29:21:d8:2d:d4:b0:cc: 9e:c9:de:76:2f:42:c7:6a:25:34:84:f6:e0:86:99:02:61:a5: 3c:8a:b6:e9:4e:9f:00:62:50:3a:40:65:b4:67:52:c3:3c:83: f0:64:1f:0c:bd:d8:c3:ed:6f:c8:5a:bd:e9:66:ca:5b:77:a0: 28:d7:f3:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBz4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRCQUQxMTAvBgNVBAUTKDAzMkFDMjI0MUQxOENGQkJDMUMzM0NBREY1RThGNjU1 NDEyRDRBOEIwHhcNMjQxMTA0MjExMTE1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5Mzg3Mi1kYzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+gH2XRbFOe8yHXiekfSEdIVz+4G29f+87BAm+qFX/mt+iWsF3R5MDKMfw/E Nt9KjPnMU0PhFWS1s9RAp+1GTnoh3nPNyyWTKcgedipF6Y+SfUN1jNuo124utreI WKY6FYbvyQFSvxw2+Nl12xoR0Ny5u2m1NZyxOwQY+wFRpHg9YdFy8LVOTNo+0kVo zOOriAHvlhjpYdUoa1sxrAA16CVYjcWciYlhS+51PfPYWJ4pPeyO+voY1ipCMIC4 zlwWKbPVQ4KKTkNuUEZzXy/jDs5qpYH97mJ2wcuCZZDpau+s2Vhjlfz59d5DLm+f XqiE6scF3paT0W81/Wk9mdZ2XQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEAmidaJ zexnZLxAAoKqq41tm8BFMB8GA1UdIwQYMBaAFAMqwiQdGM+7wcM8rfXo9lVBLUqL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEJBRC9ENUQ3NDM0NjA0 NzgxMUVCQTdCRDNBNDhDNEY5QUUwMi9BeXJDSkIwWXo3dkJ3enl0OWVqMlZVRXRT b3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F5ckNKQjBZejd2Qnd6eXQ5ZWoyVlVFdFNvcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRCQUQvRDVENzQzNDYwNDc4MTFFQkE3QkQzQTQ4QzRGOUFFMDIvRDNEMUMxOUUw RjIxMTFFQkJDNkU1MDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnnOYwDQYJKoZIhvcNAQELBQADggEBAEykcZag+7uqlpe8 88rliErTEV5gzeAEJxXJLxn3UUw2AQOEwwpwm3FVOysWuQsDtgJOhLhB8XUHWMFa sN/w3rYcNebs9rRsKl1Q1nU0SGqjMxg2kEpsL0713Jk7vLcNb/cZt7Uq68KysJjz bujYbOZh94KtuYjrAzO8H6wsbzajmdmSVGfI1JI/47fUNHwwT3496EliAFx0wfWk f9p2MXC7haMsodiA0rYLscRGPv16zcmpCLk4plbZy4X4HouQKSHYLdSwzJ7J3nYv QsdqJTSE9uCGmQJhpTyKtulOnwBiUDpAZbRnUsM8g/BkHwy92MPtb8havelmylt3 oCjX85A= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org