$ rpki-client -vvf rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/94EA7370050111EA9BDD372BC4F9AE02.roa File: 94EA7370050111EA9BDD372BC4F9AE02.roa (raw, json) Hash identifier: dMPlbwZZJ9a9ifwF8f+1OVtKYmpgj8cV+d0a3+m/kqY= Subject key identifier: 05:CD:95:A1:F3:31:8C:70:7C:3C:9F:DC:DF:D3:E9:48:66:2E:22:87 Certificate issuer: /CN=A9152E29/serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Certificate serial: 0BC6 Authority key identifier: 67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/94EA7370050111EA9BDD372BC4F9AE02.roa Signing time: Wed 18 Sep 2024 18:37:30 +0000 ROA not before: Wed 18 Sep 2024 18:37:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7474 IP address blocks: 103.77.128.0/24 maxlen: 24 202.129.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3014 (0xbc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152E29/serialNumber=67BAA589CEBCF7C3F27D53D98EAC4C104CC09135 Validity Not Before: Sep 18 18:37:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eb1dea-6c73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:5d:5d:a2:06:95:ac:71:d2:4a:e1:04:22:af: 6d:21:f9:8a:5f:ed:01:e5:e4:3d:54:b2:bd:aa:09: e7:53:2a:82:a6:14:b0:8e:f4:f4:38:2c:0b:7b:6a: ca:91:78:fd:21:fc:63:e2:65:98:76:71:78:13:7d: 09:14:0d:ce:93:a2:ef:e5:08:24:cb:08:7d:ac:0f: 2d:a1:eb:00:27:1e:9f:95:59:50:b1:34:ce:4b:7c: 9b:0f:bf:74:79:84:b1:1c:04:e5:1f:b6:1a:4c:ff: 53:18:cd:b0:af:1b:07:6a:3c:80:81:2d:e3:06:ae: 66:d7:5a:1b:6f:a5:33:05:0b:d5:67:30:99:5f:82: c2:e6:8b:31:5d:27:5b:89:9e:08:d8:2b:51:33:20: 5c:29:5c:d4:36:08:fd:01:7d:11:ac:ec:b8:7f:5b: 8f:bc:79:77:0a:3f:de:62:d0:07:b5:3d:8d:92:26: ee:d4:a8:87:8a:b8:a5:4d:6f:cf:81:8c:7e:5a:02: 81:a3:59:d6:ba:45:ec:c4:75:3c:51:00:ee:f0:e6: fa:a2:9a:82:aa:b1:8b:39:07:d1:44:f9:f6:5e:1c: 5b:66:55:3d:dc:f7:62:44:79:e2:68:b9:ca:45:de: 3d:d9:f5:7b:4b:19:81:b3:23:ba:8b:9e:67:6b:0b: bf:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:CD:95:A1:F3:31:8C:70:7C:3C:9F:DC:DF:D3:E9:48:66:2E:22:87 X509v3 Authority Key Identifier: keyid:67:BA:A5:89:CE:BC:F7:C3:F2:7D:53:D9:8E:AC:4C:10:4C:C0:91:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/Z7qlic6898PyfVPZjqxMEEzAkTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z7qlic6898PyfVPZjqxMEEzAkTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152E29/AD33401C04FF11EAB58CB823C4F9AE02/94EA7370050111EA9BDD372BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.128.0/24 202.129.218.0/24 Signature Algorithm: sha256WithRSAEncryption 20:a9:51:e8:a0:df:6f:88:b8:b8:c7:12:5f:57:71:b6:92:8f: 1a:4d:6b:fa:21:59:ee:14:7f:54:1c:cb:e4:2a:ba:7a:b7:35: ed:99:06:9f:01:29:a1:38:6d:55:1b:09:a8:c6:bb:d0:23:9f: b3:7b:61:34:83:31:35:3b:94:b1:c2:20:b1:30:2f:7d:13:f5: c4:c5:ca:66:20:fd:dc:f0:50:eb:80:be:df:e8:d2:ba:d5:43: 95:56:e2:6b:a6:13:75:b1:97:6e:84:54:83:2a:79:b2:31:af: 99:af:0d:b6:17:0f:0e:f6:f8:d7:bd:ca:85:a9:fa:6f:18:05: e3:98:bb:fb:71:0b:35:7a:cc:19:ff:66:4b:24:4c:69:e2:b3: e1:ec:cc:47:e7:10:a7:c6:fa:96:fa:fa:17:cc:03:8e:8e:41: b1:11:17:60:99:3c:6e:c2:11:98:01:a2:df:d2:79:2d:0b:d8: d9:a3:38:c8:81:80:4f:07:ae:3a:cf:bd:c1:31:24:b3:4c:01: 78:1f:12:7a:04:1b:5d:bb:fd:56:a3:fd:c9:a2:c8:c1:17:9b: 55:c0:86:b7:e7:fa:71:00:a7:db:09:df:c1:b1:be:b5:9a:ca: b1:18:65:bb:99:44:a3:c1:aa:5b:09:5f:a5:48:c6:15:f3:4d: 8e:7d:8e:47 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC8YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJFMjkxMTAvBgNVBAUTKDY3QkFBNTg5Q0VCQ0Y3QzNGMjdENTNEOThFQUM0QzEw NENDMDkxMzUwHhcNMjQwOTE4MTgzNzMwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViMWRlYS02YzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtl1dogaVrHHSSuEEIq9tIfmKX+0B5eQ9VLK9qgnnUyqCphSwjvT0OCwLe2rK kXj9Ifxj4mWYdnF4E30JFA3Ok6Lv5Qgkywh9rA8toesAJx6flVlQsTTOS3ybD790 eYSxHATlH7YaTP9TGM2wrxsHajyAgS3jBq5m11obb6UzBQvVZzCZX4LC5osxXSdb iZ4I2CtRMyBcKVzUNgj9AX0RrOy4f1uPvHl3Cj/eYtAHtT2Nkibu1KiHirilTW/P gYx+WgKBo1nWukXsxHU8UQDu8Ob6opqCqrGLOQfRRPn2XhxbZlU93PdiRHniaLnK Rd492fV7SxmBsyO6i55nawu/fQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAXNlaHz MYxwfDyf3N/T6UhmLiKHMB8GA1UdIwQYMBaAFGe6pYnOvPfD8n1T2Y6sTBBMwJE1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkUyOS9BRDMzNDAxQzA0 RkYxMUVBQjU4Q0I4MjNDNEY5QUUwMi9aN3FsaWM2ODk4UHlmVlBaanF4TUVFekFr VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o3cWxpYzY4OThQeWZWUFpqcXhNRUV6QWtUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJFMjkvQUQzMzQwMUMwNEZGMTFFQUI1OENCODIzQzRGOUFFMDIvOTRFQTczNzAw NTAxMTFFQTlCREQzNzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnTYADBADKgdowDQYJKoZIhvcNAQELBQADggEBACCpUeig 32+IuLjHEl9XcbaSjxpNa/ohWe4Uf1Qcy+Qqunq3Ne2ZBp8BKaE4bVUbCajGu9Aj n7N7YTSDMTU7lLHCILEwL30T9cTFymYg/dzwUOuAvt/o0rrVQ5VW4mumE3Wxl26E VIMqebIxr5mvDbYXDw72+Ne9yoWp+m8YBeOYu/txCzV6zBn/ZkskTGnis+HszEfn EKfG+pb6+hfMA46OQbERF2CZPG7CEZgBot/SeS0L2NmjOMiBgE8HrjrPvcExJLNM AXgfEnoEG127/Vaj/cmiyMEXm1XAhrfn+nEAp9sJ38GxvrWayrEYZbuZRKPBqlsJ X6VIxhXzTY59jkc= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:23 2024 by rpki-client on console-fra.rpki-client.org