$ rpki-client -vvf rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/0357A064679D11EABD681D0FC4F9AE02.roa File: 0357A064679D11EABD681D0FC4F9AE02.roa (raw, json) Hash identifier: nyOJoLIDGp7/wafl1yH4CbKrruUiB3iOpUkQ72n7ZjM= Subject key identifier: F2:E0:48:6F:D0:9A:7F:CC:2F:19:7C:9C:35:EF:20:48:EB:16:B8:02 Certificate issuer: /CN=A9149DF2/serialNumber=50EFE1DF72915ED3361DB559B5B6B83EAE3EF3C0 Certificate serial: 09EB Authority key identifier: 50:EF:E1:DF:72:91:5E:D3:36:1D:B5:59:B5:B6:B8:3E:AE:3E:F3:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UO_h33KRXtM2HbVZtba4Pq4-88A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/0357A064679D11EABD681D0FC4F9AE02.roa Signing time: Sat 16 Nov 2024 19:48:26 +0000 ROA not before: Sat 16 Nov 2024 19:48:26 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 136014 IP address blocks: 103.80.0.0/22 maxlen: 24 2400:47c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/UO_h33KRXtM2HbVZtba4Pq4-88A.crl rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/UO_h33KRXtM2HbVZtba4Pq4-88A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UO_h33KRXtM2HbVZtba4Pq4-88A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:40:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2539 (0x9eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149DF2/serialNumber=50EFE1DF72915ED3361DB559B5B6B83EAE3EF3C0 Validity Not Before: Nov 16 19:48:26 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6738f709-e073 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:bf:f7:fd:ca:cf:d1:1b:ee:b3:2a:bf:98:7e: c6:ac:fd:c9:06:a7:b4:95:1d:ba:4c:93:cb:e5:e5: 28:0a:f4:a4:db:3d:23:0b:53:22:91:4b:0a:75:53: 35:2d:b3:76:6a:ee:b3:2b:35:ef:75:e5:e6:36:4f: a0:9f:8d:9e:fc:a0:67:9b:a8:8f:bc:ca:11:65:5e: e4:23:1c:ba:fc:49:69:c9:35:01:38:6c:78:77:30: 00:11:52:a0:c8:0a:83:9c:9c:62:9b:8d:de:9f:db: b7:53:2e:d2:0e:da:fb:a0:70:7c:41:a7:54:cf:d7: b7:07:09:1d:16:f2:84:fe:05:78:81:ed:9e:58:c6: 1a:0c:0a:28:a1:e0:bd:f4:2f:c9:b7:27:58:34:c8: 65:13:d7:6e:68:09:90:bd:cb:b0:7e:04:c9:a8:66: 42:f4:53:69:16:33:ad:63:91:ae:d5:10:25:52:4c: ad:26:c9:22:d8:0e:51:b1:4e:f0:24:3b:a6:fa:02: 71:ca:11:15:0e:25:3c:b5:5f:f8:08:8a:7e:51:ba: a7:ef:45:12:74:b1:60:0c:6c:a9:97:8d:89:fc:3f: 13:61:5e:c1:46:8d:e6:a8:e9:50:de:87:2e:71:a7: f7:7c:7d:e4:95:c1:05:a5:96:87:19:6f:8f:d0:da: 12:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:E0:48:6F:D0:9A:7F:CC:2F:19:7C:9C:35:EF:20:48:EB:16:B8:02 X509v3 Authority Key Identifier: keyid:50:EF:E1:DF:72:91:5E:D3:36:1D:B5:59:B5:B6:B8:3E:AE:3E:F3:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/UO_h33KRXtM2HbVZtba4Pq4-88A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UO_h33KRXtM2HbVZtba4Pq4-88A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149DF2/9998F1C4679B11EA99AA420AC4F9AE02/0357A064679D11EABD681D0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.0.0/22 IPv6: 2400:47c0::/32 Signature Algorithm: sha256WithRSAEncryption 9f:95:ec:6e:ea:e1:a4:31:c5:db:ff:75:42:67:bd:5e:f2:79: 06:64:1f:72:de:ee:82:c4:89:ed:a2:d6:fe:eb:52:3c:24:0b: ae:85:69:8f:43:ca:2b:a3:e9:77:c7:fe:6b:ce:57:88:84:7f: 25:08:43:cd:7a:df:c2:e7:07:7e:44:ed:26:cf:95:dd:f9:3a: 4f:5f:4c:4f:eb:2d:b0:12:d2:d9:cb:fd:63:06:ef:61:c5:3b: cb:bb:4c:4d:01:9c:22:e9:1c:49:b2:af:b7:af:f9:c9:40:14: 10:83:1f:8f:b3:ad:19:2e:8c:4e:be:cf:28:97:ef:02:fe:cf: c1:b6:d1:d0:4a:1d:5a:cd:09:99:8e:e5:3b:d3:89:a8:91:da: 64:fb:7c:b0:8d:cb:66:dc:98:e3:10:6d:d0:77:b7:8d:04:b0: ad:d0:db:f8:c9:23:c5:62:72:15:e9:9a:dc:cf:9f:6b:6e:d5: 4f:f6:44:7f:e7:61:5f:26:6c:6f:1d:33:6e:10:79:2c:4f:cc: 92:53:2c:1c:52:e7:4b:30:42:0e:9a:c4:76:b7:16:af:b4:3c: 0c:d5:2d:de:a2:de:73:46:6c:bb:e5:5a:9b:0f:15:fc:93:50: 68:85:e7:53:ca:fd:c2:b6:9b:49:eb:97:08:66:7c:89:f0:97: 14:98:6c:7e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCeswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlERjIxMTAvBgNVBAUTKDUwRUZFMURGNzI5MTVFRDMzNjFEQjU1OUI1QjZCODNF QUUzRUYzQzAwHhcNMjQxMTE2MTk0ODI2WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM4ZjcwOS1lMDczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA07/3/crP0Rvusyq/mH7GrP3JBqe0lR26TJPL5eUoCvSk2z0jC1MikUsKdVM1 LbN2au6zKzXvdeXmNk+gn42e/KBnm6iPvMoRZV7kIxy6/ElpyTUBOGx4dzAAEVKg yAqDnJxim43en9u3Uy7SDtr7oHB8QadUz9e3BwkdFvKE/gV4ge2eWMYaDAoooeC9 9C/JtydYNMhlE9duaAmQvcuwfgTJqGZC9FNpFjOtY5Gu1RAlUkytJski2A5RsU7w JDum+gJxyhEVDiU8tV/4CIp+Ubqn70USdLFgDGypl42J/D8TYV7BRo3mqOlQ3ocu caf3fH3klcEFpZaHGW+P0NoSYwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPLgSG/Q mn/MLxl8nDXvIEjrFrgCMB8GA1UdIwQYMBaAFFDv4d9ykV7TNh21WbW2uD6uPvPA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OURGMi85OTk4RjFDNDY3 OUIxMUVBOTlBQTQyMEFDNEY5QUUwMi9VT19oMzNLUlh0TTJIYlZadGJhNFBxNC04 OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VPX2gzM0tSWHRNMkhiVlp0YmE0UHE0LTg4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlERjIvOTk5OEYxQzQ2NzlCMTFFQTk5QUE0MjBBQzRGOUFFMDIvMDM1N0EwNjQ2 NzlEMTFFQUJENjgxRDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnUAAwDQQCAAIwBwMFACQAR8AwDQYJKoZIhvcNAQELBQAD ggEBAJ+V7G7q4aQxxdv/dUJnvV7yeQZkH3Le7oLEie2i1v7rUjwkC66FaY9Dyiuj 6XfH/mvOV4iEfyUIQ81638LnB35E7SbPld35Ok9fTE/rLbAS0tnL/WMG72HFO8u7 TE0BnCLpHEmyr7ev+clAFBCDH4+zrRkujE6+zyiX7wL+z8G20dBKHVrNCZmO5TvT iaiR2mT7fLCNy2bcmOMQbdB3t40EsK3Q2/jJI8VichXpmtzPn2tu1U/2RH/nYV8m bG8dM24QeSxPzJJTLBxS50swQg6axHa3Fq+0PAzVLd6i3nNGbLvlWpsPFfyTUGiF 51PK/cK2m0nrlwhmfInwlxSYbH4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:26 2024 by rpki-client on console-ams.rpki-client.org