$ rpki-client -vvf rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/9CCB30B0C5F411EB8A6F1525C4F9AE02.roa File: 9CCB30B0C5F411EB8A6F1525C4F9AE02.roa (raw, json) Hash identifier: 3Rc3j+d1O8Ewr6XgYdHpoNd/omQ6+BrlDickanhKcdQ= Subject key identifier: 56:E3:AC:A1:B7:3E:52:23:60:5A:DA:C8:CC:4B:68:9B:87:56:5E:FF Certificate issuer: /CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Certificate serial: 0526 Authority key identifier: 58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/9CCB30B0C5F411EB8A6F1525C4F9AE02.roa Signing time: Fri 19 Jul 2024 00:42:19 +0000 ROA not before: Fri 19 Jul 2024 00:42:19 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 138346 IP address blocks: 103.166.252.0/24 maxlen: 24 103.166.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1318 (0x526) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144EC5/serialNumber=5807E7151D5AC7B74BF22C99092BD2E92EA60628 Validity Not Before: Jul 19 00:42:19 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6699b66b-3032 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:54:40:6b:1e:90:96:21:bb:fb:25:bd:c2:b1: 11:ff:be:5b:35:dd:9d:32:19:6e:48:cf:a5:2f:83: f8:87:3b:de:b1:7a:07:86:4a:6e:b2:f6:1e:6e:59: 59:22:24:55:6a:47:b2:0d:d8:6e:6d:d3:19:04:01: f0:07:41:d2:d6:a4:88:29:55:9a:e2:cc:32:91:a8: 96:aa:aa:75:65:75:30:76:08:6a:23:4a:93:ea:ef: 65:1e:11:32:b8:f8:53:39:f6:50:2b:41:35:01:01: 9d:78:f5:be:60:df:8e:48:da:8c:c4:22:75:f9:65: 13:dc:c7:69:a9:5e:ed:4d:7a:be:81:fd:6a:45:cc: b1:67:04:33:c2:e3:13:26:21:1a:65:f9:b7:52:30: 44:cc:71:50:1d:7e:5c:b8:3d:05:1a:2e:a9:71:39: 56:50:d3:68:01:51:d2:fa:d4:46:40:e3:79:37:e2: d2:5a:d6:ef:13:e4:81:46:6b:3c:c1:6b:2d:c4:92: 5f:87:d2:8b:05:b7:c8:a0:ba:d4:9d:a0:86:ca:ce: 89:a9:85:22:da:1a:fb:ae:a1:16:68:44:03:63:b6: a6:af:c3:65:62:c1:98:d2:2b:78:7e:0e:ff:8c:3a: f3:91:c0:60:22:72:13:ab:c1:3c:43:06:41:b2:3b: 8d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:E3:AC:A1:B7:3E:52:23:60:5A:DA:C8:CC:4B:68:9B:87:56:5E:FF X509v3 Authority Key Identifier: keyid:58:07:E7:15:1D:5A:C7:B7:4B:F2:2C:99:09:2B:D2:E9:2E:A6:06:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/WAfnFR1ax7dL8iyZCSvS6S6mBig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAfnFR1ax7dL8iyZCSvS6S6mBig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144EC5/439E3C28C51111EB91640C87C4F9AE02/9CCB30B0C5F411EB8A6F1525C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.252.0/23 Signature Algorithm: sha256WithRSAEncryption 99:78:d0:16:f6:99:c3:78:d2:c9:7b:cd:3d:eb:09:9e:b9:9d: 73:61:68:19:ff:93:94:c5:f8:1b:59:ce:c0:fd:34:7a:c1:01: 49:81:66:66:cc:59:ec:a4:df:d0:f0:97:34:70:86:2b:26:d9: f6:a0:f5:6d:b3:35:05:06:2d:37:89:80:f2:55:cb:8b:60:af: 3c:8c:a3:75:58:80:de:66:21:b7:f3:e1:e6:bd:31:61:1e:29: c1:07:91:8b:64:e7:f0:3f:e3:7a:2d:b0:1e:3d:b4:04:46:96: 16:ff:12:67:ff:13:b0:69:8b:5d:2f:79:6d:fb:84:4c:ac:2e: bd:bf:f9:14:7d:7f:48:06:a4:40:be:a3:c7:c0:3c:08:53:f2: bc:58:e1:17:2d:c1:fe:00:db:c2:f3:40:93:bb:c4:51:c1:24: ea:ca:a9:f0:20:32:fb:90:a8:52:d0:81:51:a4:1b:86:7b:31: 25:14:4e:91:c9:a3:5d:fc:93:90:3b:ea:2a:21:98:76:f7:01: 7e:43:f7:38:6c:ab:75:ac:9e:2d:33:3a:80:75:b7:e1:6c:68: b1:37:8d:20:03:ed:bb:a1:e3:4f:ed:3b:ff:cb:e4:9f:84:ea: f0:30:31:33:f8:f2:54:10:cd:57:d2:c4:73:e8:2b:02:40:6e: 4a:cd:c8:7c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDRFQzUxMTAvBgNVBAUTKDU4MDdFNzE1MUQ1QUM3Qjc0QkYyMkM5OTA5MkJEMkU5 MkVBNjA2MjgwHhcNMjQwNzE5MDA0MjE5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk5YjY2Yi0zMDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4VRAax6QliG7+yW9wrER/75bNd2dMhluSM+lL4P4hzvesXoHhkpusvYebllZ IiRVakeyDdhubdMZBAHwB0HS1qSIKVWa4swykaiWqqp1ZXUwdghqI0qT6u9lHhEy uPhTOfZQK0E1AQGdePW+YN+OSNqMxCJ1+WUT3MdpqV7tTXq+gf1qRcyxZwQzwuMT JiEaZfm3UjBEzHFQHX5cuD0FGi6pcTlWUNNoAVHS+tRGQON5N+LSWtbvE+SBRms8 wWstxJJfh9KLBbfIoLrUnaCGys6JqYUi2hr7rqEWaEQDY7amr8NlYsGY0it4fg7/ jDrzkcBgInITq8E8QwZBsjuNCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFbjrKG3 PlIjYFrayMxLaJuHVl7/MB8GA1UdIwQYMBaAFFgH5xUdWse3S/IsmQkr0ukupgYo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NEVDNS80MzlFM0MyOEM1 MTExMUVCOTE2NDBDODdDNEY5QUUwMi9XQWZuRlIxYXg3ZEw4aXlaQ1N2UzZTNm1C aWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBZm5GUjFheDdkTDhpeVpDU3ZTNlM2bUJpZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDRFQzUvNDM5RTNDMjhDNTExMTFFQjkxNjQwQzg3QzRGOUFFMDIvOUNDQjMwQjBD NUY0MTFFQjhBNkYxNTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpvwwDQYJKoZIhvcNAQELBQADggEBAJl40Bb2mcN40sl7 zT3rCZ65nXNhaBn/k5TF+BtZzsD9NHrBAUmBZmbMWeyk39DwlzRwhism2fag9W2z NQUGLTeJgPJVy4tgrzyMo3VYgN5mIbfz4ea9MWEeKcEHkYtk5/A/43otsB49tARG lhb/Emf/E7Bpi10veW37hEysLr2/+RR9f0gGpEC+o8fAPAhT8rxY4Rctwf4A28Lz QJO7xFHBJOrKqfAgMvuQqFLQgVGkG4Z7MSUUTpHJo138k5A76iohmHb3AX5D9zhs q3Wsni0zOoB1t+FsaLE3jSAD7buh40/tO//L5J+E6vAwMTP48lQQzVfSxHPoKwJA bkrNyHw= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org