$ rpki-client -vvf rpki.apnic.net/member_repository/A9154B9F/F78DB5DC273211ECAAE3F93AC4F9AE02/76987158273511ECB7FB443DC4F9AE02.roa File: 76987158273511ECB7FB443DC4F9AE02.roa (raw, json) Hash identifier: W3CoFW/9z7UlujIbTWP3AOKXFMu+6O4kA5ioHKglL9o= Subject key identifier: C8:BE:84:B6:75:F3:9B:BF:91:BE:B4:E6:0D:0B:40:F2:0F:4D:3E:52 Certificate issuer: /CN=A9154B9F/serialNumber=A5073A4984E597101330B9E7A058F389CE9329AE Certificate serial: 0463 Authority key identifier: A5:07:3A:49:84:E5:97:10:13:30:B9:E7:A0:58:F3:89:CE:93:29:AE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pQc6SYTllxATMLnnoFjzic6TKa4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154B9F/F78DB5DC273211ECAAE3F93AC4F9AE02/76987158273511ECB7FB443DC4F9AE02.roa Signing time: Thu 14 Nov 2024 23:43:02 +0000 ROA not before: Thu 14 Nov 2024 23:43:02 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 147184 IP address blocks: 103.174.68.0/23 maxlen: 23 103.174.68.0/24 maxlen: 24 103.174.69.0/24 maxlen: 24 2407:fe40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154B9F/F78DB5DC273211ECAAE3F93AC4F9AE02/pQc6SYTllxATMLnnoFjzic6TKa4.crl rsync://rpki.apnic.net/member_repository/A9154B9F/F78DB5DC273211ECAAE3F93AC4F9AE02/pQc6SYTllxATMLnnoFjzic6TKa4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pQc6SYTllxATMLnnoFjzic6TKa4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154B9F/serialNumber=A5073A4984E597101330B9E7A058F389CE9329AE Validity Not Before: Nov 14 23:43:02 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67368b06-42ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:36:f4:ff:23:bb:e1:dd:31:cb:97:8a:2c:75: 91:93:c0:03:85:f0:d8:42:f3:3c:ee:b1:a1:dd:10: 95:0d:a7:13:71:cf:6b:79:48:88:04:8b:7c:d8:3c: 74:63:b8:c6:2c:ee:30:4f:bd:15:fe:98:b3:c1:dd: b9:0d:cf:dd:35:57:6d:7f:85:13:00:08:2d:02:d5: b6:45:74:1c:ec:7f:5a:8f:5d:43:01:9a:e1:90:82: bf:19:a4:b6:4f:dd:35:b7:a3:fc:cb:03:bb:37:42: 17:be:d9:23:f4:1a:92:52:56:f1:db:52:8a:8b:2d: 41:4d:86:ab:e3:09:f6:ce:de:7f:e9:10:4e:ef:ac: ab:7c:ca:92:cd:49:b4:d3:1a:1b:ab:c6:02:4c:39: 02:26:5c:66:6d:9f:a5:f2:b3:b6:5f:45:62:28:ef: 5a:eb:78:94:dc:2f:40:43:11:c4:64:27:fb:31:ce: a8:d0:d1:ad:ec:00:d1:cd:26:93:bd:51:0b:0e:bc: bc:8b:ce:07:88:d6:54:5d:c0:84:6d:e7:9b:54:db: cf:25:48:25:fc:e5:c7:a8:33:0e:87:09:59:91:6d: 49:48:f6:a7:4b:71:f6:96:84:1f:f8:60:4a:6c:68: ce:13:22:b9:1a:58:14:56:bb:95:75:3a:86:e3:b7: 4d:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:BE:84:B6:75:F3:9B:BF:91:BE:B4:E6:0D:0B:40:F2:0F:4D:3E:52 X509v3 Authority Key Identifier: keyid:A5:07:3A:49:84:E5:97:10:13:30:B9:E7:A0:58:F3:89:CE:93:29:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154B9F/F78DB5DC273211ECAAE3F93AC4F9AE02/pQc6SYTllxATMLnnoFjzic6TKa4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pQc6SYTllxATMLnnoFjzic6TKa4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154B9F/F78DB5DC273211ECAAE3F93AC4F9AE02/76987158273511ECB7FB443DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.68.0/23 IPv6: 2407:fe40::/32 Signature Algorithm: sha256WithRSAEncryption 9c:8a:f9:9b:c9:83:55:74:52:12:06:cf:5e:b1:c9:d8:d7:25: da:b1:b7:ba:78:7b:78:4d:e5:89:49:3c:dd:65:03:61:be:c3: 18:84:3a:8c:4d:8d:4c:55:77:11:4b:45:1d:42:d6:f7:df:66: 59:57:56:9b:72:07:5a:6d:c8:c9:13:82:3d:f4:73:78:1e:8e: a3:72:89:0a:f5:0b:1c:4e:c3:96:42:39:ed:53:9b:a2:ec:1c: e4:54:9d:bc:0b:c6:a2:e7:9f:01:67:d8:64:50:68:51:a5:01: 30:4f:a0:f4:30:da:81:0d:0b:27:b7:96:7d:ab:a1:ee:e9:5e: 47:fa:a0:43:15:37:c7:d3:5b:e3:7e:42:56:ad:6c:e2:7f:fb: b9:1d:48:62:1a:74:3d:93:dc:c8:e8:63:fa:3c:90:f0:ca:56: b0:15:a3:38:c6:7d:68:b0:f8:7e:94:bc:fb:89:35:7f:bf:20: 01:af:91:83:cf:b7:60:a9:ed:69:b9:1e:46:02:8d:ae:01:e8: e2:85:46:7c:96:64:57:1b:8c:e3:a7:72:b4:f4:16:83:27:e5: 74:9c:ad:3e:77:84:2b:78:2e:79:e2:fb:31:2a:a8:81:7c:64: 87:23:fa:c5:d0:08:94:09:ac:ae:05:a5:14:2d:26:cd:62:b2: ab:1a:2a:76 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTRCOUYxMTAvBgNVBAUTKEE1MDczQTQ5ODRFNTk3MTAxMzMwQjlFN0EwNThGMzg5 Q0U5MzI5QUUwHhcNMjQxMTE0MjM0MzAyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2OGIwNi00MmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsTb0/yO74d0xy5eKLHWRk8ADhfDYQvM87rGh3RCVDacTcc9reUiIBIt82Dx0 Y7jGLO4wT70V/pizwd25Dc/dNVdtf4UTAAgtAtW2RXQc7H9aj11DAZrhkIK/GaS2 T901t6P8ywO7N0IXvtkj9BqSUlbx21KKiy1BTYar4wn2zt5/6RBO76yrfMqSzUm0 0xobq8YCTDkCJlxmbZ+l8rO2X0ViKO9a63iU3C9AQxHEZCf7Mc6o0NGt7ADRzSaT vVELDry8i84HiNZUXcCEbeebVNvPJUgl/OXHqDMOhwlZkW1JSPanS3H2loQf+GBK bGjOEyK5GlgUVruVdTqG47dN+QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMi+hLZ1 85u/kb605g0LQPIPTT5SMB8GA1UdIwQYMBaAFKUHOkmE5ZcQEzC556BY84nOkymu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NEI5Ri9GNzhEQjVEQzI3 MzIxMUVDQUFFM0Y5M0FDNEY5QUUwMi9wUWM2U1lUbGx4QVRNTG5ub0ZqemljNlRL YTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BRYzZTWVRsbHhBVE1Mbm5vRmp6aWM2VEthNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTRCOUYvRjc4REI1REMyNzMyMTFFQ0FBRTNGOTNBQzRGOUFFMDIvNzY5ODcxNTgy NzM1MTFFQ0I3RkI0NDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnrkQwDQQCAAIwBwMFACQH/kAwDQYJKoZIhvcNAQELBQAD ggEBAJyK+ZvJg1V0UhIGz16xydjXJdqxt7p4e3hN5YlJPN1lA2G+wxiEOoxNjUxV dxFLRR1C1vffZllXVptyB1ptyMkTgj30c3gejqNyiQr1CxxOw5ZCOe1Tm6LsHORU nbwLxqLnnwFn2GRQaFGlATBPoPQw2oENCye3ln2roe7pXkf6oEMVN8fTW+N+Qlat bOJ/+7kdSGIadD2T3MjoY/o8kPDKVrAVozjGfWiw+H6UvPuJNX+/IAGvkYPPt2Cp 7Wm5HkYCja4B6OKFRnyWZFcbjOOncrT0FoMn5XScrT53hCt4Lnni+zEqqIF8ZIcj +sXQCJQJrK4FpRQtJs1isqsaKnY= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:34 2024 by rpki-client on console-fra.rpki-client.org