$ rpki-client -vvf rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/695DB5289D9D11EC958A216AC4F9AE02.roa File: 695DB5289D9D11EC958A216AC4F9AE02.roa (raw, json) Hash identifier: SaFx1B9LN0ZyNkvHhJEWt5kJgn2PgssQSYvBTUpmMDU= Subject key identifier: 51:EC:A3:1C:70:7B:BD:0C:EE:F7:D4:7E:6E:40:74:55:B8:2B:FA:53 Certificate issuer: /CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Certificate serial: 02C7 Authority key identifier: F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/695DB5289D9D11EC958A216AC4F9AE02.roa Signing time: Wed 03 Apr 2024 04:05:39 +0000 ROA not before: Wed 03 Apr 2024 04:05:39 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9297 IP address blocks: 103.182.168.0/23 maxlen: 23 2001:df0:7ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 711 (0x2c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156DB4/serialNumber=F2D126F142086A26E3C584A70AB3E527B3038182 Validity Not Before: Apr 3 04:05:39 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660cd593-ceb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7c:5d:55:69:4d:8a:e2:5b:a8:15:b6:62:ab: 5e:fd:7a:5e:71:0f:5a:13:bc:7e:ea:e4:95:5c:52: bc:30:98:52:36:74:40:e8:2e:24:3c:f8:2b:e4:1a: 96:6f:fd:44:b4:86:66:6b:11:bc:a3:45:46:e0:21: 9a:17:f5:9d:ab:d2:63:21:7f:5e:aa:20:d8:4b:b5: 02:b5:67:24:15:22:14:5e:11:31:49:36:b7:81:b3: 4c:81:04:61:07:a1:e9:01:f4:6a:99:2d:f1:23:f0: d7:0a:94:a7:25:d4:59:d8:80:d1:03:cc:04:f2:4f: 98:a4:d9:47:94:77:d4:f3:e8:35:e9:f2:31:2b:d5: 78:2b:99:8f:1b:6e:76:f4:20:50:9e:d1:54:34:8e: 3b:c4:bd:92:80:fa:f4:71:cd:f6:2f:37:97:71:0d: c2:2e:28:f8:43:28:d3:a7:74:3d:d4:43:9c:3f:61: 30:0a:57:d6:5d:10:29:19:48:46:25:d4:bc:50:25: 6b:e9:b1:fc:87:dc:c3:56:14:a9:f4:51:e9:c7:0a: 6e:55:83:9a:50:92:c9:fd:43:53:a2:96:a0:b5:ac: 96:57:64:91:a1:5c:6b:ba:a3:7a:db:17:fb:f0:ef: 48:56:f1:25:8e:07:f3:26:dc:4d:e6:e8:d0:02:f3: 49:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:EC:A3:1C:70:7B:BD:0C:EE:F7:D4:7E:6E:40:74:55:B8:2B:FA:53 X509v3 Authority Key Identifier: keyid:F2:D1:26:F1:42:08:6A:26:E3:C5:84:A7:0A:B3:E5:27:B3:03:81:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/8tEm8UIIaibjxYSnCrPlJ7MDgYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8tEm8UIIaibjxYSnCrPlJ7MDgYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156DB4/E84DB98A9D9A11ECBA928F45C4F9AE02/695DB5289D9D11EC958A216AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.168.0/23 IPv6: 2001:df0:7ec0::/48 Signature Algorithm: sha256WithRSAEncryption 6e:1b:94:4d:1e:4a:e5:04:51:ff:38:d6:d4:b4:83:5e:15:ac: c1:e1:17:97:ba:3b:84:f1:49:9a:d3:85:6b:44:93:7b:f8:f6: 9e:7c:4e:85:e3:52:af:0f:5e:23:fd:95:19:42:e5:d8:02:23: 45:c4:46:d7:ac:f7:c5:06:9e:cd:de:44:4b:64:62:6a:d5:a4: b2:92:9b:51:2c:96:7a:c1:5d:5d:8c:45:43:9c:56:4e:cd:8e: 38:bc:e4:03:7b:31:55:80:00:3e:43:5a:06:52:e6:61:92:a2: cd:57:c7:f8:e9:6f:62:42:fa:0c:81:51:e3:f7:10:00:09:22: 52:94:57:14:11:20:36:41:50:bd:3f:bc:26:3a:99:df:aa:c7: 5b:1e:b0:a2:dc:57:f7:14:80:11:e1:3d:06:07:1e:78:d3:dc: 59:1c:8d:c8:14:38:3b:87:f0:c7:36:9e:44:cd:e9:16:d6:67: 4c:8a:81:bd:52:bd:f0:71:82:8c:20:aa:86:69:e7:4c:c9:43: a3:ce:4d:ae:7d:39:87:3a:1d:29:81:30:11:d7:60:85:7c:04: f0:42:ce:9c:8a:2c:7d:57:e8:d4:96:d5:2c:2b:a8:9d:bc:77: d3:1d:e8:16:5f:2c:5a:5a:83:3e:78:d9:81:38:d2:7e:b6:93: 21:f7:5c:4b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAscwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTZEQjQxMTAvBgNVBAUTKEYyRDEyNkYxNDIwODZBMjZFM0M1ODRBNzBBQjNFNTI3 QjMwMzgxODIwHhcNMjQwNDAzMDQwNTM5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjZDU5My1jZWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nxdVWlNiuJbqBW2Yqte/XpecQ9aE7x+6uSVXFK8MJhSNnRA6C4kPPgr5BqW b/1EtIZmaxG8o0VG4CGaF/Wdq9JjIX9eqiDYS7UCtWckFSIUXhExSTa3gbNMgQRh B6HpAfRqmS3xI/DXCpSnJdRZ2IDRA8wE8k+YpNlHlHfU8+g16fIxK9V4K5mPG252 9CBQntFUNI47xL2SgPr0cc32LzeXcQ3CLij4QyjTp3Q91EOcP2EwClfWXRApGUhG JdS8UCVr6bH8h9zDVhSp9FHpxwpuVYOaUJLJ/UNTopagtayWV2SRoVxruqN62xf7 8O9IVvEljgfzJtxN5ujQAvNJiwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFHsoxxw e70M7vfUfm5AdFW4K/pTMB8GA1UdIwQYMBaAFPLRJvFCCGom48WEpwqz5SezA4GC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NkRCNC9FODREQjk4QTlE OUExMUVDQkE5MjhGNDVDNEY5QUUwMi84dEVtOFVJSWFpYmp4WVNuQ3JQbEo3TURn WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzh0RW04VUlJYWlianhZU25DclBsSjdNRGdZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTZEQjQvRTg0REI5OEE5RDlBMTFFQ0JBOTI4RjQ1QzRGOUFFMDIvNjk1REI1Mjg5 RDlEMTFFQzk1OEEyMTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntqgwDwQCAAIwCQMHACABDfB+wDANBgkqhkiG9w0BAQsF AAOCAQEAbhuUTR5K5QRR/zjW1LSDXhWsweEXl7o7hPFJmtOFa0STe/j2nnxOheNS rw9eI/2VGULl2AIjRcRG16z3xQaezd5ES2RiatWkspKbUSyWesFdXYxFQ5xWTs2O OLzkA3sxVYAAPkNaBlLmYZKizVfH+OlvYkL6DIFR4/cQAAkiUpRXFBEgNkFQvT+8 JjqZ36rHWx6wotxX9xSAEeE9BgceeNPcWRyNyBQ4O4fwxzaeRM3pFtZnTIqBvVK9 8HGCjCCqhmnnTMlDo85Nrn05hzodKYEwEddghXwE8ELOnIosfVfo1JbVLCuonbx3 0x3oFl8sWlqDPnjZgTjSfraTIfdcSw== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:22 2024 by rpki-client on console-ams.rpki-client.org