$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/9E7A9830049911E89DF5A065C4F9AE02.roa File: 9E7A9830049911E89DF5A065C4F9AE02.roa (raw, json) Hash identifier: +Hb+NiJ9R+0o3y3C5pGdfyqayEUbh+XeiaUDvnEWILw= Subject key identifier: C7:A9:1D:A6:B0:30:35:CA:58:EC:6D:D2:91:03:AC:28:06:41:2E:03 Certificate issuer: /CN=A9146B28/serialNumber=471606785B32F4DF3EC943F2A787DBA212696E1F Certificate serial: 2531 Authority key identifier: 47:16:06:78:5B:32:F4:DF:3E:C9:43:F2:A7:87:DB:A2:12:69:6E:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/9E7A9830049911E89DF5A065C4F9AE02.roa Signing time: Tue 08 Oct 2024 16:03:19 +0000 ROA not before: Tue 08 Oct 2024 16:03:19 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133588 IP address blocks: 103.237.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.crl rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:39:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9521 (0x2531) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B28/serialNumber=471606785B32F4DF3EC943F2A787DBA212696E1F Validity Not Before: Oct 8 16:03:19 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670557c7-da16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:de:ff:ff:4a:96:f0:82:46:d1:2c:31:98:22: 10:68:70:b7:12:29:5c:c7:8b:88:53:73:a7:26:b8: 2c:ab:b3:a3:18:f7:0d:c7:6b:77:7b:0c:ec:06:25: 07:a1:89:f9:d3:a9:0a:1d:96:59:0f:b2:75:e0:d8: 17:28:20:db:cd:40:e3:26:7e:f6:78:60:c3:0e:13: db:5c:14:4e:7f:d1:46:ef:e1:91:2c:5d:b8:5d:28: 0b:8a:d6:a4:ae:51:75:9b:11:d0:3e:89:87:d9:16: 13:14:da:4b:83:63:db:2f:bb:83:2d:d2:7e:cc:ac: 9e:3e:75:3c:ca:d0:ee:a1:9f:1f:0a:c9:ed:1a:9a: 98:56:64:08:9f:0e:28:0d:2c:72:32:7e:ac:da:f0: e0:6b:92:43:bf:18:c8:16:08:6a:89:94:0b:20:92: 90:e5:d8:34:b5:bd:1c:b8:f8:e6:4b:7c:4d:c6:cc: 09:24:a1:95:b9:be:88:19:51:7d:7d:08:b8:73:e4: d1:35:a4:33:b4:3f:70:0c:34:8c:9e:55:99:6f:91: a5:46:d5:b3:f3:5c:6d:b6:5b:7f:64:85:5f:8b:44: 26:ab:24:7f:96:d5:97:99:b7:b9:57:dc:0e:a3:cd: 65:c9:39:92:83:23:00:85:0d:5d:01:c4:13:83:af: 26:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A9:1D:A6:B0:30:35:CA:58:EC:6D:D2:91:03:AC:28:06:41:2E:03 X509v3 Authority Key Identifier: keyid:47:16:06:78:5B:32:F4:DF:3E:C9:43:F2:A7:87:DB:A2:12:69:6E:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/9E7A9830049911E89DF5A065C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.237.53.0/24 Signature Algorithm: sha256WithRSAEncryption ca:67:af:11:21:84:e4:4e:c2:02:b8:11:66:29:6b:fa:99:ea: 9e:5f:9a:09:4b:d7:1a:81:fb:a7:51:af:71:1e:d4:3f:54:11: 7e:cf:02:e1:4a:00:3c:b6:02:e0:cf:ba:35:fa:c5:37:a0:91: c0:97:b0:ce:25:43:a8:e0:ea:d8:f4:ae:d2:59:7e:79:85:9c: fc:6d:5c:cb:9a:45:62:51:f2:46:f4:51:bc:cc:f0:ac:01:25: 4f:2d:9f:0c:61:bf:e2:52:d6:01:80:fb:15:bd:66:68:0c:e1: fb:fb:58:07:ab:06:61:e8:75:44:fc:64:a1:aa:13:04:35:2c: 29:af:5e:c4:0e:b1:ec:e6:41:ce:7d:e2:a6:cd:73:5e:a1:59: 8c:87:c8:12:18:7a:1f:cb:43:65:43:59:2e:1d:51:66:94:3f: 2e:3d:f8:bd:af:95:3e:57:48:a5:77:cb:c1:09:7c:f3:13:69: 1e:a3:fd:da:96:df:e8:56:48:ef:6c:37:b2:e7:6a:69:10:cb: 33:52:35:dd:40:38:e3:88:e9:fc:cc:2a:4d:33:13:77:7d:c3: 53:51:35:54:b4:b9:4c:e7:69:7a:ed:ef:dd:6b:1d:06:41:44: dd:17:d4:53:fd:6f:c0:96:06:99:14:cc:92:38:7f:c2:be:70: b1:e4:3b:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJTEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjgxMTAvBgNVBAUTKDQ3MTYwNjc4NUIzMkY0REYzRUM5NDNGMkE3ODdEQkEy MTI2OTZFMUYwHhcNMjQxMDA4MTYwMzE5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1NTdjNy1kYTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzt7//0qW8IJG0SwxmCIQaHC3Eilcx4uIU3OnJrgsq7OjGPcNx2t3ewzsBiUH oYn506kKHZZZD7J14NgXKCDbzUDjJn72eGDDDhPbXBROf9FG7+GRLF24XSgLitak rlF1mxHQPomH2RYTFNpLg2PbL7uDLdJ+zKyePnU8ytDuoZ8fCsntGpqYVmQInw4o DSxyMn6s2vDga5JDvxjIFghqiZQLIJKQ5dg0tb0cuPjmS3xNxswJJKGVub6IGVF9 fQi4c+TRNaQztD9wDDSMnlWZb5GlRtWz81xttlt/ZIVfi0QmqyR/ltWXmbe5V9wO o81lyTmSgyMAhQ1dAcQTg68mKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMepHaaw MDXKWOxt0pEDrCgGQS4DMB8GA1UdIwQYMBaAFEcWBnhbMvTfPslD8qeH26ISaW4f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyOC9GQUVGOENCRTEz NDMxMUU1OTZGNTQwMUVDNEY5QUUwMi9SeFlHZUZzeTlOOC15VVB5cDRmYm9oSnBi aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J4WUdlRnN5OU44LXlVUHlwNGZib2hKcGJoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCMjgvRkFFRjhDQkUxMzQzMTFFNTk2RjU0MDFFQzRGOUFFMDIvOUU3QTk4MzAw NDk5MTFFODlERjVBMDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn7TUwDQYJKoZIhvcNAQELBQADggEBAMpnrxEhhOROwgK4 EWYpa/qZ6p5fmglL1xqB+6dRr3Ee1D9UEX7PAuFKADy2AuDPujX6xTegkcCXsM4l Q6jg6tj0rtJZfnmFnPxtXMuaRWJR8kb0UbzM8KwBJU8tnwxhv+JS1gGA+xW9ZmgM 4fv7WAerBmHodUT8ZKGqEwQ1LCmvXsQOsezmQc594qbNc16hWYyHyBIYeh/LQ2VD WS4dUWaUPy49+L2vlT5XSKV3y8EJfPMTaR6j/dqW3+hWSO9sN7LnamkQyzNSNd1A OOOI6fzMKk0zE3d9w1NRNVS0uUznaXrt791rHQZBRN0X1FP9b8CWBpkUzJI4f8K+ cLHkO9U= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:02 2024 by rpki-client on console-fra.rpki-client.org