$ rpki-client -vvf rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/1090CE74EBC211EEB58D4343C4F9AE02.roa File: 1090CE74EBC211EEB58D4343C4F9AE02.roa (raw, json) Hash identifier: pnsMEvt+kVRF1R9JPvM+r1kNzZ+Ues8Fgk9/ddl8t/c= Subject key identifier: 34:4F:63:DD:7E:FF:54:B4:B2:35:82:3C:9B:2E:20:5B:1D:DB:F4:31 Certificate issuer: /CN=A9146514/serialNumber=4A4D7F58EFBD48B8636DB6A0BF7C2DE50F043621 Certificate serial: 20 Authority key identifier: 4A:4D:7F:58:EF:BD:48:B8:63:6D:B6:A0:BF:7C:2D:E5:0F:04:36:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/1090CE74EBC211EEB58D4343C4F9AE02.roa Signing time: Tue 21 May 2024 08:42:34 +0000 ROA not before: Tue 21 May 2024 08:42:34 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132240 IP address blocks: 103.8.72.0/23 maxlen: 23 103.8.72.0/24 maxlen: 24 103.16.172.0/23 maxlen: 23 103.16.172.0/24 maxlen: 24 103.229.98.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.crl rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146514/serialNumber=4A4D7F58EFBD48B8636DB6A0BF7C2DE50F043621 Validity Not Before: May 21 08:42:34 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664c5e7a-2064 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:05:fe:8e:48:5f:b1:5b:68:9b:16:4f:7f:63: d6:2c:a0:bc:18:66:eb:d6:39:b0:66:e2:b5:8f:d0: f2:5b:fe:f3:3f:0b:d6:91:bf:58:53:e4:8c:17:80: a6:a1:22:b6:0e:3c:25:34:30:6a:f9:e7:ff:a4:af: ae:88:f5:7d:d7:83:c4:4f:b6:64:34:b4:0e:5c:14: 3a:02:64:2e:71:1c:16:64:fe:95:93:11:a9:0f:53: 1b:a6:88:e5:8b:a7:8b:63:82:b6:b7:99:53:52:e4: 6e:1d:2c:01:59:ea:35:34:33:9b:c0:f8:18:d8:1a: ac:66:ca:86:0c:40:cc:01:47:6e:d1:cf:2f:11:5e: 69:64:24:c3:aa:d8:44:32:d6:eb:3f:93:c7:ee:84: 9d:38:01:ca:62:2d:7a:ba:c2:04:ce:de:1d:4c:74: 0e:ed:70:fd:a7:90:d5:db:d4:c5:b8:f2:6a:39:cf: a7:8e:45:c1:c1:ee:1f:03:3b:2f:be:01:51:fd:6e: c4:54:bd:6f:75:09:33:f3:6c:aa:03:f5:63:cf:ea: f1:4f:2f:7e:70:cd:40:99:d9:84:22:04:7d:99:a1: b0:63:3d:59:80:92:34:83:a2:01:5a:78:a3:7d:05: 31:81:a3:25:a3:22:b7:bd:0c:ff:b5:0c:1e:67:de: 12:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:4F:63:DD:7E:FF:54:B4:B2:35:82:3C:9B:2E:20:5B:1D:DB:F4:31 X509v3 Authority Key Identifier: keyid:4A:4D:7F:58:EF:BD:48:B8:63:6D:B6:A0:BF:7C:2D:E5:0F:04:36:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sk1_WO-9SLhjbbagv3wt5Q8ENiE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146514/B773A164EBC011EE9BB3F43FC4F9AE02/1090CE74EBC211EEB58D4343C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.72.0/23 103.16.172.0/23 103.229.98.0/23 Signature Algorithm: sha256WithRSAEncryption 56:b6:57:a4:13:96:9f:75:01:eb:48:b0:87:17:5f:50:34:0e: 7d:44:31:19:ac:40:ab:a5:44:f1:f3:14:82:ec:1c:11:19:07: c9:71:6b:10:a6:b3:46:7e:8b:44:20:5f:3d:36:5c:de:ea:91: 57:ac:e9:0d:e9:f0:5b:fc:f2:ac:39:ec:6b:c6:11:dd:87:59: 8b:b1:e0:98:db:dc:21:cc:12:95:76:7b:86:3e:67:df:1e:0e: 6e:20:b5:ba:ab:8d:ff:f8:2c:4b:f5:b5:aa:78:36:0d:23:fd: 38:19:29:ec:13:ff:02:b8:2e:d1:2b:4b:a7:44:90:eb:5a:96: 1d:c6:08:98:b1:39:d3:80:c8:d8:ad:1f:b2:88:b8:39:91:60: 1d:39:d3:31:9c:bf:9f:aa:e3:bb:1e:ec:97:a9:83:38:44:dc: cc:d4:77:02:e4:59:72:16:22:b1:dd:26:74:a0:59:9a:e9:a5: c9:ac:53:e0:9f:c2:9d:0f:8b:6c:1a:9d:00:e6:2c:55:75:45: 27:03:69:7d:4a:bd:e7:63:b0:cf:de:7c:27:82:65:ab:d2:b8: 37:73:83:1b:83:60:3d:24:1e:bd:03:b9:81:53:2b:e1:da:e1: f4:6e:bf:c8:1e:9e:5b:7a:80:7a:5f:7f:8b:3e:19:01:fd:0a: 9f:4a:f6:e5 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NjUxNDExMC8GA1UEBRMoNEE0RDdGNThFRkJENDhCODYzNkRCNkEwQkY3QzJERTUw RjA0MzYyMTAeFw0yNDA1MjEwODQyMzRaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NGM1ZTdhLTIwNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZBf6OSF+xW2ibFk9/Y9YsoLwYZuvWObBm4rWP0PJb/vM/C9aRv1hT5IwXgKah IrYOPCU0MGr55/+kr66I9X3Xg8RPtmQ0tA5cFDoCZC5xHBZk/pWTEakPUxumiOWL p4tjgra3mVNS5G4dLAFZ6jU0M5vA+BjYGqxmyoYMQMwBR27Rzy8RXmlkJMOq2EQy 1us/k8fuhJ04AcpiLXq6wgTO3h1MdA7tcP2nkNXb1MW48mo5z6eORcHB7h8DOy++ AVH9bsRUvW91CTPzbKoD9WPP6vFPL35wzUCZ2YQiBH2ZobBjPVmAkjSDogFaeKN9 BTGBoyWjIre9DP+1DB5n3hLLAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUNE9j3X7/ VLSyNYI8my4gWx3b9DEwHwYDVR0jBBgwFoAUSk1/WO+9SLhjbbagv3wt5Q8ENiEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2NTE0L0I3NzNBMTY0RUJD MDExRUU5QkIzRjQzRkM0RjlBRTAyL1NrMV9XTy05U0xoamJiYWd2M3d0NVE4RU5p RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU2sxX1dPLTlTTGhqYmJhZ3Yzd3Q1UThFTmlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NjUxNC9CNzczQTE2NEVCQzAxMUVFOUJCM0Y0M0ZDNEY5QUUwMi8xMDkwQ0U3NEVC QzIxMUVFQjU4RDQzNDNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAWcISAMEAWcQrAMEAWflYjANBgkqhkiG9w0BAQsFAAOCAQEA VrZXpBOWn3UB60iwhxdfUDQOfUQxGaxAq6VE8fMUguwcERkHyXFrEKazRn6LRCBf PTZc3uqRV6zpDenwW/zyrDnsa8YR3YdZi7HgmNvcIcwSlXZ7hj5n3x4ObiC1uquN //gsS/W1qng2DSP9OBkp7BP/Argu0StLp0SQ61qWHcYImLE504DI2K0fsoi4OZFg HTnTMZy/n6rjux7sl6mDOETczNR3AuRZchYisd0mdKBZmumlyaxT4J/CnQ+LbBqd AOYsVXVFJwNpfUq952Owz958J4Jlq9K4N3ODG4NgPSQevQO5gVMr4drh9G6/yB6e W3qAel9/iz4ZAf0Kn0r25Q== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:24 2024 by rpki-client on console-fra.rpki-client.org