$ rpki-client -vvf rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/DB020E9C010D11EAA82AD83CC4F9AE02.roa File: DB020E9C010D11EAA82AD83CC4F9AE02.roa (raw, json) Hash identifier: +B4wRbVeWeDezTIkkroNJ7PsGuvGeraooCbcmlsSOW8= Subject key identifier: 84:14:1A:29:B1:37:D9:4F:02:61:45:A9:F4:5D:F4:19:83:92:54:C6 Certificate issuer: /CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Certificate serial: 0B57 Authority key identifier: 54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/DB020E9C010D11EAA82AD83CC4F9AE02.roa Signing time: Thu 28 Dec 2023 19:16:35 +0000 ROA not before: Thu 28 Dec 2023 19:16:35 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136039 IP address blocks: 43.229.124.0/22 maxlen: 24 103.80.108.0/22 maxlen: 24 2400:50c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:19:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2903 (0xb57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9153C27/serialNumber=5458C45629C104AAA7A58728686F8D1E2872A92A Validity Not Before: Dec 28 19:16:35 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658dc993-9b53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9a:e9:5c:ee:5b:de:5c:0e:ff:3f:a1:55:3b: 5d:6d:02:33:74:37:03:ea:0c:01:86:fc:c8:db:bb: 0c:df:c3:78:0c:84:fc:60:93:63:57:29:0c:71:d4: 6d:c9:e0:cf:9f:0f:82:b6:70:78:d4:69:e7:8a:cc: ac:76:98:6f:cb:0b:27:19:65:41:3b:78:f1:ab:2c: 13:3f:38:39:76:43:1d:9d:40:d9:e3:7a:72:22:4f: 0f:b1:29:34:65:85:ea:17:68:8e:25:f4:49:bf:ea: fe:56:28:8f:d1:c1:22:17:76:bb:b9:46:07:cd:be: d4:09:38:20:fe:7e:18:a3:76:11:43:ba:39:73:ec: 20:eb:d7:d4:5a:7d:27:51:1b:3c:31:7d:7a:8a:7b: 50:73:5f:28:3e:f6:c8:ba:6b:86:05:0f:80:6e:8f: 7f:21:ef:22:76:07:9f:98:23:9c:da:bb:0a:6f:27: 5f:90:a9:ec:dc:0b:16:ef:b5:e9:e9:b1:93:94:7a: 14:66:cc:18:1a:13:95:50:8e:ef:b3:dc:87:c4:7d: 4c:ff:40:06:26:f7:d8:15:18:17:74:c2:01:bd:55: c0:07:79:eb:b7:ce:9f:c4:d5:28:e7:82:b7:2e:c4: 96:1b:20:cc:db:0a:dd:6e:5b:da:6a:32:2e:95:b9: 40:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:14:1A:29:B1:37:D9:4F:02:61:45:A9:F4:5D:F4:19:83:92:54:C6 X509v3 Authority Key Identifier: keyid:54:58:C4:56:29:C1:04:AA:A7:A5:87:28:68:6F:8D:1E:28:72:A9:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/VFjEVinBBKqnpYcoaG-NHihyqSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VFjEVinBBKqnpYcoaG-NHihyqSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9153C27/65BB489C004A11EA980F2A7CC4F9AE02/DB020E9C010D11EAA82AD83CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.124.0/22 103.80.108.0/22 IPv6: 2400:50c0::/32 Signature Algorithm: sha256WithRSAEncryption 7d:82:20:08:da:d9:14:db:62:03:90:ae:4e:d4:65:2d:91:a3: fe:87:6c:d1:38:66:ee:f3:54:1e:92:3b:21:e3:73:70:7c:e2: 47:17:2d:bc:e0:47:28:5d:b6:2c:dd:46:ad:82:a8:e0:1d:d3: 72:9e:48:6a:4f:4e:95:64:f9:9a:0e:92:4c:18:08:f8:e6:0c: a3:e1:3d:52:d3:e5:de:20:56:fb:6c:6a:10:ef:21:21:da:86: 88:7c:d7:80:82:91:ac:b3:32:e8:9f:80:1d:d4:8e:3e:c0:8d: 14:39:9d:8d:37:ae:f9:51:fe:ce:7e:af:25:3d:f5:a3:ae:8b: 51:8c:36:fd:5c:d5:fd:dc:30:38:1d:62:f2:fe:87:29:52:84: a2:bd:ce:59:23:d3:06:84:82:53:d8:86:61:4e:85:bc:d1:a3: 91:7e:78:0e:67:2e:92:75:87:c9:69:15:e1:2b:6d:46:49:3d: 2a:a7:82:c8:99:1b:4f:62:e0:89:a9:ee:c5:d5:a0:e4:c2:ba: c6:85:28:42:84:8a:96:96:64:1a:6e:7c:2a:70:40:cd:7e:fb: 12:52:e1:a9:15:a6:84:39:95:35:51:f8:b9:5a:fb:2c:fe:4f: 0c:f2:dd:e4:8b:09:a2:30:e3:61:41:da:ae:06:44:51:13:54: 6c:40:1e:a2 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTNDMjcxMTAvBgNVBAUTKDU0NThDNDU2MjlDMTA0QUFBN0E1ODcyODY4NkY4RDFF Mjg3MkE5MkEwHhcNMjMxMjI4MTkxNjM1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzk5My05YjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoprpXO5b3lwO/z+hVTtdbQIzdDcD6gwBhvzI27sM38N4DIT8YJNjVykMcdRt yeDPnw+CtnB41GnnisysdphvywsnGWVBO3jxqywTPzg5dkMdnUDZ43pyIk8PsSk0 ZYXqF2iOJfRJv+r+ViiP0cEiF3a7uUYHzb7UCTgg/n4Yo3YRQ7o5c+wg69fUWn0n URs8MX16intQc18oPvbIumuGBQ+Abo9/Ie8idgefmCOc2rsKbydfkKns3AsW77Xp 6bGTlHoUZswYGhOVUI7vs9yHxH1M/0AGJvfYFRgXdMIBvVXAB3nrt86fxNUo54K3 LsSWGyDM2wrdblvaajIulblAxQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFIQUGimx N9lPAmFFqfRd9BmDklTGMB8GA1UdIwQYMBaAFFRYxFYpwQSqp6WHKGhvjR4ocqkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1M0MyNy82NUJCNDg5QzAw NEExMUVBOTgwRjJBN0NDNEY5QUUwMi9WRmpFVmluQkJLcW5wWWNvYUctTkhpaHlx U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZGakVWaW5CQktxbnBZY29hRy1OSGloeXFTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTNDMjcvNjVCQjQ4OUMwMDRBMTFFQTk4MEYyQTdDQzRGOUFFMDIvREIwMjBFOUMw MTBEMTFFQUE4MkFEODNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr5XwDBAJnUGwwDQQCAAIwBwMFACQAUMAwDQYJKoZIhvcN AQELBQADggEBAH2CIAja2RTbYgOQrk7UZS2Ro/6HbNE4Zu7zVB6SOyHjc3B84kcX LbzgRyhdtizdRq2CqOAd03KeSGpPTpVk+ZoOkkwYCPjmDKPhPVLT5d4gVvtsahDv ISHahoh814CCkayzMuifgB3Ujj7AjRQ5nY03rvlR/s5+ryU99aOui1GMNv1c1f3c MDgdYvL+hylShKK9zlkj0waEglPYhmFOhbzRo5F+eA5nLpJ1h8lpFeErbUZJPSqn gsiZG09i4Imp7sXVoOTCusaFKEKEipaWZBpufCpwQM1++xJS4akVpoQ5lTVR+Lla +yz+Twzy3eSLCaIw42FB2q4GRFETVGxAHqI= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:02 2024 by rpki-client on console-ams.rpki-client.org