$ rpki-client -vvf rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/D411F96C532E11EFB0B63E60C4F9AE02.roa File: D411F96C532E11EFB0B63E60C4F9AE02.roa (raw, json) Hash identifier: A7cl33/zLiHVgWJ56Etkw7nyJvndv/4HjDbWIFXfJfc= Subject key identifier: 5A:8B:CB:45:F5:69:A7:9D:3D:03:FF:18:93:CA:F0:55:7A:80:DB:73 Certificate issuer: /CN=A9146944/serialNumber=ED1F958CB604B576E82214B4CF3CC0FE620EF9F4 Certificate serial: 0952 Authority key identifier: ED:1F:95:8C:B6:04:B5:76:E8:22:14:B4:CF:3C:C0:FE:62:0E:F9:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7R-VjLYEtXboIhS0zzzA_mIO-fQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/D411F96C532E11EFB0B63E60C4F9AE02.roa Signing time: Mon 05 Aug 2024 13:30:06 +0000 ROA not before: Mon 05 Aug 2024 13:30:06 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9825 IP address blocks: 103.209.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/7R-VjLYEtXboIhS0zzzA_mIO-fQ.crl rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/7R-VjLYEtXboIhS0zzzA_mIO-fQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7R-VjLYEtXboIhS0zzzA_mIO-fQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2386 (0x952) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146944/serialNumber=ED1F958CB604B576E82214B4CF3CC0FE620EF9F4 Validity Not Before: Aug 5 13:30:06 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66b0d3de-0aaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3c:76:06:d2:47:1f:9d:99:6a:2d:59:d1:92: 57:eb:06:0f:a1:7a:f3:23:6b:4f:4d:9e:50:0d:98: 86:68:86:26:9a:ce:c5:90:2a:29:45:37:4b:68:93: 20:ae:ba:ca:80:1d:29:dc:a2:20:a0:ff:de:4c:f1: ee:e5:e9:da:13:8e:a5:c7:5e:27:6d:bf:20:3c:eb: af:e0:9a:fa:b5:cc:1b:3c:7a:4f:25:50:37:7b:bd: de:09:5f:71:c4:02:06:5a:bb:ff:6d:7c:99:4c:d6: 76:81:e9:ba:f6:5e:56:1d:88:08:9d:ab:6e:ec:98: bc:5c:7f:44:d0:41:86:a8:31:25:19:a4:5b:22:0d: 6b:9c:57:a2:e4:ee:17:aa:d8:1a:c1:3f:9a:76:27: 44:ff:5c:67:ac:cb:ab:e0:67:af:70:de:17:94:07: 7f:21:d5:c4:13:0e:7e:93:89:d8:9e:f1:ee:0e:09: 04:b5:32:38:c3:ff:fe:79:4b:ac:c3:97:6a:93:5d: c9:05:e7:7d:8d:df:25:64:de:9d:fe:4f:53:7a:9e: d6:ce:b0:43:86:93:12:13:31:82:52:7f:72:68:33: e7:22:38:f7:79:a4:9d:d1:ed:79:62:87:2c:7c:f9: 85:9a:81:aa:a9:8d:a6:84:be:97:d5:d5:fe:de:60: 38:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:8B:CB:45:F5:69:A7:9D:3D:03:FF:18:93:CA:F0:55:7A:80:DB:73 X509v3 Authority Key Identifier: keyid:ED:1F:95:8C:B6:04:B5:76:E8:22:14:B4:CF:3C:C0:FE:62:0E:F9:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/7R-VjLYEtXboIhS0zzzA_mIO-fQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7R-VjLYEtXboIhS0zzzA_mIO-fQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146944/43BD1C6E8E9511EAA9D73A2EC4F9AE02/D411F96C532E11EFB0B63E60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.198.0/24 Signature Algorithm: sha256WithRSAEncryption 56:40:f0:71:e4:0c:61:3b:3c:0c:ae:bc:15:5a:4f:66:27:81: c6:cc:eb:3d:84:75:4a:c8:07:e4:7a:a4:6c:a4:32:76:26:40: c0:44:76:84:c8:ff:fb:28:03:1f:a4:ee:47:af:00:0f:c5:46: a4:e3:2a:2d:cd:92:9d:97:0b:d8:03:66:a1:67:5a:1f:6b:8b: 19:56:2c:a3:f8:b8:d1:00:7b:06:6b:0a:97:72:49:fc:c3:53: 2e:c9:0b:ba:e6:77:d3:c9:d7:13:8d:a3:cd:4b:9c:01:80:d0: 73:b6:6f:4a:0d:4f:49:b1:6b:13:f2:9f:2f:5c:85:94:f3:0b: 4e:8f:f1:a7:30:88:c4:73:24:ce:b6:d0:37:b1:7d:97:c7:ff: 01:b3:7d:00:06:71:3b:f0:dd:23:bd:a9:1d:15:4b:c3:65:3c: 5c:d2:7b:e7:4b:90:b6:03:ce:41:2a:74:2f:d5:29:94:0b:80: 48:21:43:f9:5c:de:80:4d:09:6f:f0:8f:1a:72:24:94:25:92: 9f:b0:97:d2:69:1d:37:9a:d7:1d:d1:c6:47:d4:4d:32:00:98: 30:47:6a:1e:68:56:e3:e0:01:6e:20:63:97:d3:56:52:ec:57: 35:d7:67:7e:7c:51:f4:6a:15:4b:9b:92:c9:70:fa:d9:15:d2: 25:de:d3:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCVIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDY5NDQxMTAvBgNVBAUTKEVEMUY5NThDQjYwNEI1NzZFODIyMTRCNENGM0NDMEZF NjIwRUY5RjQwHhcNMjQwODA1MTMzMDA2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIwZDNkZS0wYWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjx2BtJHH52Zai1Z0ZJX6wYPoXrzI2tPTZ5QDZiGaIYmms7FkCopRTdLaJMg rrrKgB0p3KIgoP/eTPHu5enaE46lx14nbb8gPOuv4Jr6tcwbPHpPJVA3e73eCV9x xAIGWrv/bXyZTNZ2gem69l5WHYgInatu7Ji8XH9E0EGGqDElGaRbIg1rnFei5O4X qtgawT+adidE/1xnrMur4GevcN4XlAd/IdXEEw5+k4nYnvHuDgkEtTI4w//+eUus w5dqk13JBed9jd8lZN6d/k9Tep7WzrBDhpMSEzGCUn9yaDPnIjj3eaSd0e15Yocs fPmFmoGqqY2mhL6X1dX+3mA4eQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFqLy0X1 aaedPQP/GJPK8FV6gNtzMB8GA1UdIwQYMBaAFO0flYy2BLV26CIUtM88wP5iDvn0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Njk0NC80M0JEMUM2RThF OTUxMUVBQTlENzNBMkVDNEY5QUUwMi83Ui1WakxZRXRYYm9JaFMwenp6QV9tSU8t ZlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdSLVZqTFlFdFhib0loUzB6enpBX21JTy1mUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDY5NDQvNDNCRDFDNkU4RTk1MTFFQUE5RDczQTJFQzRGOUFFMDIvRDQxMUY5NkM1 MzJFMTFFRkIwQjYzRTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn0cYwDQYJKoZIhvcNAQELBQADggEBAFZA8HHkDGE7PAyu vBVaT2YngcbM6z2EdUrIB+R6pGykMnYmQMBEdoTI//soAx+k7kevAA/FRqTjKi3N kp2XC9gDZqFnWh9rixlWLKP4uNEAewZrCpdySfzDUy7JC7rmd9PJ1xONo81LnAGA 0HO2b0oNT0mxaxPyny9chZTzC06P8acwiMRzJM620DexfZfH/wGzfQAGcTvw3SO9 qR0VS8NlPFzSe+dLkLYDzkEqdC/VKZQLgEghQ/lc3oBNCW/wjxpyJJQlkp+wl9Jp HTea1x3RxkfUTTIAmDBHah5oVuPgAW4gY5fTVlLsVzXXZ358UfRqFUubkslw+tkV 0iXe0+U= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org