$ rpki-client -vvf rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/A799F54AF1F111EE9D899046C4F9AE02.roa File: A799F54AF1F111EE9D899046C4F9AE02.roa (raw, json) Hash identifier: s9Hq2WKNBLpIHUUpKntveP4U+1sM2OLROzstT7r+cr8= Subject key identifier: 9C:35:70:0A:C3:9C:35:B1:B9:CE:4A:FD:F9:C1:22:F8:19:5E:FA:C3 Certificate issuer: /CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Certificate serial: BA Authority key identifier: 05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/A799F54AF1F111EE9D899046C4F9AE02.roa Signing time: Sun 05 May 2024 06:39:40 +0000 ROA not before: Sun 05 May 2024 06:39:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 133542 IP address blocks: 103.114.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 05:49:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9151A79/serialNumber=052985F2BE28C79E74EFF4DB4C7142284547735C Validity Not Before: May 5 06:39:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663729ac-1021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:f5:74:85:70:2a:10:30:45:db:e1:62:6a:52: ca:ba:e5:f2:0a:40:28:5a:87:88:7e:d1:89:20:7c: e9:d0:bc:92:cd:2b:31:23:70:a5:42:03:96:5b:8a: a0:5f:73:d8:a9:cb:df:8c:4f:57:2e:e6:04:bb:09: 9e:56:4d:74:e8:a5:e2:4f:06:18:83:b5:f0:cc:43: ba:1f:a1:2b:9f:17:49:6d:25:b7:a3:63:d2:01:a0: ab:55:33:dc:64:e8:92:75:1c:67:0e:cd:d4:f9:7e: 52:91:db:c8:5c:d5:63:26:f3:02:78:cb:dc:5a:8b: 9f:4e:f4:2b:be:23:31:9a:a3:6c:06:3b:d6:34:5e: bc:14:85:a0:c9:bf:fb:79:97:a0:76:e3:ed:77:65: 06:d0:38:ad:f0:c4:65:49:8a:2c:60:f4:2e:de:c1: f3:f0:9e:a5:4c:25:d5:59:62:39:01:6b:64:64:23: 54:1e:75:98:e5:5a:57:8b:81:4b:e9:a8:cf:1f:25: f2:3a:44:84:f9:e2:01:8d:17:53:75:5a:cc:7c:71: c3:0b:da:69:52:79:49:4a:b8:fb:c3:d5:26:cc:e6: 5d:6a:5e:36:34:94:bb:d9:3d:e9:26:d2:5d:77:33: 88:7d:c0:a9:95:fe:65:96:26:db:c7:c0:79:30:f3: 34:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:35:70:0A:C3:9C:35:B1:B9:CE:4A:FD:F9:C1:22:F8:19:5E:FA:C3 X509v3 Authority Key Identifier: keyid:05:29:85:F2:BE:28:C7:9E:74:EF:F4:DB:4C:71:42:28:45:47:73:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/BSmF8r4ox5507_TbTHFCKEVHc1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BSmF8r4ox5507_TbTHFCKEVHc1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9151A79/D4CA15C0F94711ED88C18746C4F9AE02/A799F54AF1F111EE9D899046C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.254.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:ed:46:09:9a:48:b6:bb:d2:e4:14:07:d5:3b:61:fc:39:32: e7:f6:65:c8:7d:68:7c:4b:ee:fd:bb:8b:5d:bb:a1:c6:e8:c1: 8b:3f:9d:1b:d4:60:92:1b:e7:7b:81:6c:28:a7:aa:1c:76:a8: f0:f8:4e:4b:0b:e2:f2:4b:3d:17:29:16:b2:e7:fa:11:cd:1e: 9f:6c:93:e0:90:8c:82:bd:79:63:df:db:25:98:8f:7d:30:0e: 71:0d:49:8d:6c:99:9d:be:92:1d:d8:9d:4d:90:0c:b2:94:aa: 4c:e2:2f:d5:d1:b3:7d:c5:5c:c5:32:be:95:16:90:1f:b6:c3: 16:ad:a1:93:fe:d8:b0:00:97:0d:ac:40:98:97:11:e5:37:04: f3:ae:dd:3a:ab:f9:13:b1:e6:a5:cd:5c:93:a0:59:f8:b9:72: 05:23:96:36:ee:7a:c2:22:8b:7d:38:9c:82:ae:64:7d:7f:8a: 7c:cf:97:ef:6c:2a:55:ef:df:9b:e2:28:95:74:8a:09:9b:27: f7:71:0d:88:a0:f1:9d:7b:99:ce:24:77:19:92:f4:6c:04:f7: fa:f2:6f:15:4b:43:a9:26:69:51:17:1b:57:a4:2d:2a:db:24: e5:41:15:b6:69:fc:bc:e1:06:a0:ea:dd:f3:a2:a8:61:81:74: 4f:6e:28:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTFBNzkxMTAvBgNVBAUTKDA1Mjk4NUYyQkUyOEM3OUU3NEVGRjREQjRDNzE0MjI4 NDU0NzczNUMwHhcNMjQwNTA1MDYzOTQwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM3MjlhYy0xMDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6vV0hXAqEDBF2+FialLKuuXyCkAoWoeIftGJIHzp0LySzSsxI3ClQgOWW4qg X3PYqcvfjE9XLuYEuwmeVk106KXiTwYYg7XwzEO6H6ErnxdJbSW3o2PSAaCrVTPc ZOiSdRxnDs3U+X5SkdvIXNVjJvMCeMvcWoufTvQrviMxmqNsBjvWNF68FIWgyb/7 eZegduPtd2UG0Dit8MRlSYosYPQu3sHz8J6lTCXVWWI5AWtkZCNUHnWY5VpXi4FL 6ajPHyXyOkSE+eIBjRdTdVrMfHHDC9ppUnlJSrj7w9UmzOZdal42NJS72T3pJtJd dzOIfcCplf5llibbx8B5MPM0YwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJw1cArD nDWxuc5K/fnBIvgZXvrDMB8GA1UdIwQYMBaAFAUphfK+KMeedO/020xxQihFR3Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MUE3OS9ENENBMTVDMEY5 NDcxMUVEODhDMTg3NDZDNEY5QUUwMi9CU21GOHI0b3g1NTA3X1RiVEhGQ0tFVkhj MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JTbUY4cjRveDU1MDdfVGJUSEZDS0VWSGMxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTFBNzkvRDRDQTE1QzBGOTQ3MTFFRDg4QzE4NzQ2QzRGOUFFMDIvQTc5OUY1NEFG MUYxMTFFRTlEODk5MDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABncv4wDQYJKoZIhvcNAQELBQADggEBAG3tRgmaSLa70uQU B9U7Yfw5Muf2Zch9aHxL7v27i127ocbowYs/nRvUYJIb53uBbCinqhx2qPD4TksL 4vJLPRcpFrLn+hHNHp9sk+CQjIK9eWPf2yWYj30wDnENSY1smZ2+kh3YnU2QDLKU qkziL9XRs33FXMUyvpUWkB+2wxatoZP+2LAAlw2sQJiXEeU3BPOu3Tqr+ROx5qXN XJOgWfi5cgUjljbuesIii304nIKuZH1/inzPl+9sKlXv35viKJV0igmbJ/dxDYig 8Z17mc4kdxmS9GwE9/rybxVLQ6kmaVEXG1ekLSrbJOVBFbZp/LzhBqDq3fOiqGGB dE9uKEE= -----END CERTIFICATE-----Generated at Tue May 7 07:01:20 2024 by rpki-client on console-fra.rpki-client.org