$ rpki-client -vvf rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/948A2714980211EB82357D6CC4F9AE02.roa File: 948A2714980211EB82357D6CC4F9AE02.roa (raw, json) Hash identifier: nUrfHwU2ledrvSpXzdKHdIfP/lVdp7uA8FU8ZIbWtPQ= Subject key identifier: B4:3F:BF:B6:EB:15:E5:EE:A3:B6:F8:32:EF:59:03:DE:E8:F4:82:70 Certificate issuer: /CN=A9149BFB/serialNumber=F6E712FC5C69E72F69396E5E1142CC7F78C68FD1 Certificate serial: 05CB Authority key identifier: F6:E7:12:FC:5C:69:E7:2F:69:39:6E:5E:11:42:CC:7F:78:C6:8F:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ucS_Fxp5y9pOW5eEULMf3jGj9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/948A2714980211EB82357D6CC4F9AE02.roa Signing time: Tue 22 Oct 2024 23:02:29 +0000 ROA not before: Tue 22 Oct 2024 23:02:29 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 9723 IP address blocks: 203.10.6.0/24 maxlen: 24 203.10.7.0/24 maxlen: 24 203.10.8.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/9ucS_Fxp5y9pOW5eEULMf3jGj9E.crl rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/9ucS_Fxp5y9pOW5eEULMf3jGj9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ucS_Fxp5y9pOW5eEULMf3jGj9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1483 (0x5cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149BFB/serialNumber=F6E712FC5C69E72F69396E5E1142CC7F78C68FD1 Validity Not Before: Oct 22 23:02:29 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67182f04-4ce6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e6:89:e5:cb:9e:78:40:69:18:b1:32:6e:63: 0b:8e:b6:80:c0:e2:fa:58:6f:74:20:b2:5d:0e:f9: a4:f3:8c:95:2f:fb:69:89:54:2a:fd:f1:53:79:88: ab:e5:20:7b:a0:ef:ed:ec:8a:4b:11:f6:a8:25:b4: e5:93:65:08:ff:31:53:c4:c6:1f:3e:ec:92:f3:d3: fc:2a:ca:b0:84:ed:a7:22:63:24:69:ae:e0:2c:5f: 40:54:48:e4:5d:2f:33:f3:fe:b3:b9:53:3d:aa:22: 26:40:dd:cd:1a:cd:f6:05:70:08:ba:a3:13:bc:f8: e5:8f:b1:cd:8e:b0:e8:1c:67:e6:f9:69:59:e3:85: d6:a1:a3:5c:f8:8e:a5:5f:b1:85:94:28:22:c5:41: 4f:53:52:c4:10:5b:43:27:0f:54:35:8e:48:3f:6e: cf:b3:a9:22:d1:07:b9:95:69:62:b5:3d:68:6e:03: fd:9f:8a:0d:c4:e7:40:b8:06:9f:18:52:1a:4f:79: 82:ba:69:15:52:7b:76:08:86:34:05:fb:46:90:43: c0:4b:5e:a2:fa:c0:16:ce:88:65:a7:fb:a2:d2:24: d4:c7:e8:ea:5f:e7:a4:a8:62:3b:31:14:56:4e:d3: 6d:a4:5c:a0:35:ab:08:23:b7:5e:d3:00:45:cd:98: a8:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:3F:BF:B6:EB:15:E5:EE:A3:B6:F8:32:EF:59:03:DE:E8:F4:82:70 X509v3 Authority Key Identifier: keyid:F6:E7:12:FC:5C:69:E7:2F:69:39:6E:5E:11:42:CC:7F:78:C6:8F:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/9ucS_Fxp5y9pOW5eEULMf3jGj9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ucS_Fxp5y9pOW5eEULMf3jGj9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149BFB/DE2DE646980011EB8071DD68C4F9AE02/948A2714980211EB82357D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.10.6.0-203.10.8.255 Signature Algorithm: sha256WithRSAEncryption 84:94:30:bc:53:65:10:f4:c7:0b:f6:21:cd:58:be:99:c2:98: 8a:a8:c7:09:64:a6:b0:a6:4a:20:0b:40:9c:2f:bf:9b:a9:2a: f5:40:38:e5:96:fb:5f:2c:e9:06:32:f7:87:f5:f8:64:c4:35: 44:6d:57:df:5e:8d:ee:53:a4:79:e7:4e:5d:35:94:0e:81:e0: fd:93:9d:ac:20:3a:af:c6:0e:f2:99:ba:b4:cc:64:f5:81:48: fb:94:e6:1e:0a:cc:c4:12:77:1c:1c:56:ce:db:0f:51:cd:be: 9a:b5:13:d4:6d:74:43:13:6c:c8:6d:a2:c6:b0:bc:58:f5:57: a4:7c:9c:c6:25:d4:66:ef:01:7f:9a:5e:43:d1:9b:7a:a5:14: 27:ff:b7:8d:76:6c:ac:d9:0c:12:5e:2d:93:45:85:5e:8e:38: 5c:ea:18:2d:c2:af:06:8f:b6:b5:41:58:f4:68:b3:75:92:0e: aa:24:76:ee:b0:87:14:19:fa:3c:4c:fe:ac:90:64:8b:25:bc: 28:cf:a9:4c:33:f0:ee:e5:da:38:c7:4a:98:9c:f3:57:92:5c: f3:50:52:1d:80:c8:eb:a4:3e:ad:18:c9:2c:f4:46:78:3a:a5: 00:67:f9:6b:c4:d0:aa:64:63:28:1a:ce:c4:45:2b:7e:66:72: 55:80:d7:0a -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBcswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlCRkIxMTAvBgNVBAUTKEY2RTcxMkZDNUM2OUU3MkY2OTM5NkU1RTExNDJDQzdG NzhDNjhGRDEwHhcNMjQxMDIyMjMwMjI5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MmYwNC00Y2U2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+aJ5cueeEBpGLEybmMLjraAwOL6WG90ILJdDvmk84yVL/tpiVQq/fFTeYir 5SB7oO/t7IpLEfaoJbTlk2UI/zFTxMYfPuyS89P8KsqwhO2nImMkaa7gLF9AVEjk XS8z8/6zuVM9qiImQN3NGs32BXAIuqMTvPjlj7HNjrDoHGfm+WlZ44XWoaNc+I6l X7GFlCgixUFPU1LEEFtDJw9UNY5IP27Ps6ki0Qe5lWlitT1obgP9n4oNxOdAuAaf GFIaT3mCumkVUnt2CIY0BftGkEPAS16i+sAWzohlp/ui0iTUx+jqX+ekqGI7MRRW TtNtpFygNasII7de0wBFzZioPQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFLQ/v7br FeXuo7b4Mu9ZA97o9IJwMB8GA1UdIwQYMBaAFPbnEvxcaecvaTluXhFCzH94xo/R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUJGQi9ERTJERTY0Njk4 MDAxMUVCODA3MURENjhDNEY5QUUwMi85dWNTX0Z4cDV5OXBPVzVlRVVMTWYzakdq OUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzl1Y1NfRnhwNXk5cE9XNWVFVUxNZjNqR2o5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlCRkIvREUyREU2NDY5ODAwMTFFQjgwNzFERDY4QzRGOUFFMDIvOTQ4QTI3MTQ5 ODAyMTFFQjgyMzU3RDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAcsKBgMEAMsKCDANBgkqhkiG9w0BAQsFAAOCAQEAhJQw vFNlEPTHC/YhzVi+mcKYiqjHCWSmsKZKIAtAnC+/m6kq9UA45Zb7XyzpBjL3h/X4 ZMQ1RG1X316N7lOkeedOXTWUDoHg/ZOdrCA6r8YO8pm6tMxk9YFI+5TmHgrMxBJ3 HBxWztsPUc2+mrUT1G10QxNsyG2ixrC8WPVXpHycxiXUZu8Bf5peQ9GbeqUUJ/+3 jXZsrNkMEl4tk0WFXo44XOoYLcKvBo+2tUFY9GizdZIOqiR27rCHFBn6PEz+rJBk iyW8KM+pTDPw7uXaOMdKmJzzV5Jc81BSHYDI66Q+rRjJLPRGeDqlAGf5a8TQqmRj KBrOxEUrfmZyVYDXCg== -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:20 2024 by rpki-client on console-fra.rpki-client.org