$ rpki-client -vvf rpki.apnic.net/member_repository/A9147493/DA43434605FC11EB9B34A583C4F9AE02/C3A97C9405FD11EBA6C82784C4F9AE02.roa File: C3A97C9405FD11EBA6C82784C4F9AE02.roa (raw, json) Hash identifier: 15RN1wkLoRgyN9kMvXETnVOe9SQQOWeOre0ydQBRUx4= Subject key identifier: 90:12:57:55:B0:40:D8:AB:5A:0B:BB:F6:82:A3:5B:4E:C6:37:73:D3 Certificate issuer: /CN=A9147493/serialNumber=8F9F8A45F7891E2F159F3CCBC8278887D75FBD27 Certificate serial: 0723 Authority key identifier: 8F:9F:8A:45:F7:89:1E:2F:15:9F:3C:CB:C8:27:88:87:D7:5F:BD:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5-KRfeJHi8VnzzLyCeIh9dfvSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147493/DA43434605FC11EB9B34A583C4F9AE02/C3A97C9405FD11EBA6C82784C4F9AE02.roa Signing time: Tue 24 Sep 2024 21:40:39 +0000 ROA not before: Tue 24 Sep 2024 21:40:39 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139655 IP address blocks: 103.143.48.0/24 maxlen: 24 103.143.49.0/24 maxlen: 24 2001:df1:6f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147493/DA43434605FC11EB9B34A583C4F9AE02/j5-KRfeJHi8VnzzLyCeIh9dfvSc.crl rsync://rpki.apnic.net/member_repository/A9147493/DA43434605FC11EB9B34A583C4F9AE02/j5-KRfeJHi8VnzzLyCeIh9dfvSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5-KRfeJHi8VnzzLyCeIh9dfvSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1827 (0x723) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147493/serialNumber=8F9F8A45F7891E2F159F3CCBC8278887D75FBD27 Validity Not Before: Sep 24 21:40:39 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f331d6-113f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e0:47:e2:b1:a0:5b:54:48:6e:23:69:82:a1: a0:06:1e:1b:7b:c3:d7:e6:34:dc:57:78:1b:de:fe: 23:2b:48:32:53:84:93:82:8f:1a:74:ef:7e:ed:6e: bd:72:52:94:ed:55:03:68:70:b9:cc:cf:15:d4:84: c8:34:aa:82:f8:cf:d9:c1:e6:f3:fa:50:f4:40:d5: 8e:de:48:bd:06:39:b1:80:bd:ee:bb:2c:d3:52:bf: 61:d5:15:da:58:c4:db:64:3e:bc:fe:7d:3b:83:80: 75:3b:66:a4:6c:f1:9a:96:7b:6d:6c:a9:ad:4a:f2: e1:33:b7:4d:4f:61:d1:f8:3c:df:58:71:03:5e:34: db:d5:8a:b4:44:1f:aa:c6:40:c8:5f:35:48:57:e2: 59:11:72:3a:08:27:73:65:f8:66:8f:b7:37:af:77: 4c:2a:86:e3:d7:4d:85:72:20:3d:4c:05:5c:4e:fc: a5:ae:db:9c:00:24:73:df:63:43:23:bf:3c:b2:f2: b7:98:cd:9a:6e:cc:f4:0a:7c:94:7c:39:78:cd:f6: 02:b7:b2:ae:11:b7:40:f3:00:24:87:d4:ce:4c:6f: 4b:b1:64:cc:c7:ec:5b:a9:21:5d:0e:96:49:7a:82: ff:a6:9b:e0:b6:ee:a4:e0:53:73:b3:76:96:f4:08: 28:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:12:57:55:B0:40:D8:AB:5A:0B:BB:F6:82:A3:5B:4E:C6:37:73:D3 X509v3 Authority Key Identifier: keyid:8F:9F:8A:45:F7:89:1E:2F:15:9F:3C:CB:C8:27:88:87:D7:5F:BD:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147493/DA43434605FC11EB9B34A583C4F9AE02/j5-KRfeJHi8VnzzLyCeIh9dfvSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5-KRfeJHi8VnzzLyCeIh9dfvSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147493/DA43434605FC11EB9B34A583C4F9AE02/C3A97C9405FD11EBA6C82784C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.48.0/23 IPv6: 2001:df1:6f80::/48 Signature Algorithm: sha256WithRSAEncryption 20:87:8b:40:63:0d:ba:84:f3:9c:b5:b9:de:d5:5b:14:c3:46: 0b:af:d5:60:18:63:08:7c:93:46:13:f4:07:6a:bf:2b:23:50: f9:5a:ea:68:cc:ae:f5:33:32:a1:c9:02:7b:50:65:8c:37:51: aa:1f:39:63:88:10:49:5e:e6:6e:b5:34:b3:5e:ef:41:d3:df: 6c:c1:be:62:3e:10:9a:c4:c6:2d:b9:4e:71:1e:01:9c:b6:de: 79:dd:2a:dc:83:e5:e7:54:51:c8:b9:62:29:db:55:13:43:af: af:50:5d:60:d0:10:60:f0:f6:cc:0e:b0:91:c8:0b:6d:80:b2: eb:d6:9b:7d:98:61:58:3e:26:80:42:82:e5:60:32:1f:6a:b3: b4:b9:2c:dd:ad:63:0b:47:00:c6:92:a5:07:f0:03:51:4e:5d: 61:ae:42:30:3a:c2:7f:af:1c:ef:72:f8:97:b9:22:3b:3b:02: 79:d3:7a:9b:12:d0:2f:98:a5:8a:a3:64:de:96:d7:da:0c:e0: ce:28:65:db:d2:47:0b:1b:2a:eb:90:42:fd:9a:b3:83:0c:a8: 94:3a:e0:5f:10:73:67:aa:45:7a:98:6b:9e:68:38:ed:1e:ae: 0c:7f:a5:4c:ae:07:a4:4d:e0:51:b5:7f:0a:6e:ed:41:48:00: d4:62:7f:61 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICByMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc0OTMxMTAvBgNVBAUTKDhGOUY4QTQ1Rjc4OTFFMkYxNTlGM0NDQkM4Mjc4ODg3 RDc1RkJEMjcwHhcNMjQwOTI0MjE0MDM5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzMzFkNi0xMTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeBH4rGgW1RIbiNpgqGgBh4be8PX5jTcV3gb3v4jK0gyU4STgo8adO9+7W69 clKU7VUDaHC5zM8V1ITINKqC+M/Zwebz+lD0QNWO3ki9BjmxgL3uuyzTUr9h1RXa WMTbZD68/n07g4B1O2akbPGalnttbKmtSvLhM7dNT2HR+DzfWHEDXjTb1Yq0RB+q xkDIXzVIV+JZEXI6CCdzZfhmj7c3r3dMKobj102FciA9TAVcTvylrtucACRz32ND I788svK3mM2absz0CnyUfDl4zfYCt7KuEbdA8wAkh9TOTG9LsWTMx+xbqSFdDpZJ eoL/ppvgtu6k4FNzs3aW9AgotwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJASV1Ww QNirWgu79oKjW07GN3PTMB8GA1UdIwQYMBaAFI+fikX3iR4vFZ88y8gniIfXX70n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzQ5My9EQTQzNDM0NjA1 RkMxMUVCOUIzNEE1ODNDNEY5QUUwMi9qNS1LUmZlSkhpOFZuenpMeUNlSWg5ZGZ2 U2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2o1LUtSZmVKSGk4Vm56ekx5Q2VJaDlkZnZTYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc0OTMvREE0MzQzNDYwNUZDMTFFQjlCMzRBNTgzQzRGOUFFMDIvQzNBOTdDOTQw NUZEMTFFQkE2QzgyNzg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjzAwDwQCAAIwCQMHACABDfFvgDANBgkqhkiG9w0BAQsF AAOCAQEAIIeLQGMNuoTznLW53tVbFMNGC6/VYBhjCHyTRhP0B2q/KyNQ+VrqaMyu 9TMyockCe1BljDdRqh85Y4gQSV7mbrU0s17vQdPfbMG+Yj4QmsTGLblOcR4BnLbe ed0q3IPl51RRyLliKdtVE0Ovr1BdYNAQYPD2zA6wkcgLbYCy69abfZhhWD4mgEKC 5WAyH2qztLks3a1jC0cAxpKlB/ADUU5dYa5CMDrCf68c73L4l7kiOzsCedN6mxLQ L5iliqNk3pbX2gzgzihl29JHCxsq65BC/ZqzgwyolDrgXxBzZ6pFephrnmg47R6u DH+lTK4HpE3gUbV/Cm7tQUgA1GJ/YQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:25 2024 by rpki-client on console-ams.rpki-client.org