$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/1DC10D94AD5311EBA93CEB69C4F9AE02.roa File: 1DC10D94AD5311EBA93CEB69C4F9AE02.roa (raw, json) Hash identifier: lLU3brsFcJmxfza+HPsqiH2/FCfohQp/aB2RU3YA2bQ= Subject key identifier: 4F:72:1A:70:F5:D5:F2:43:70:B8:95:F7:26:22:A9:4F:6D:E8:44:3B Certificate issuer: /CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Certificate serial: 075C Authority key identifier: 9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/1DC10D94AD5311EBA93CEB69C4F9AE02.roa Signing time: Mon 30 Sep 2024 21:40:41 +0000 ROA not before: Mon 30 Sep 2024 21:40:41 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132825 IP address blocks: 103.155.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1884 (0x75c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Validity Not Before: Sep 30 21:40:41 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fb1ad8-fcb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:17:3e:14:d5:ef:d7:17:c5:96:55:6f:21:90: 99:a4:05:39:9b:82:23:fb:e9:6d:b9:69:d1:9d:3a: 90:32:af:cc:e7:f0:14:b2:8f:fe:3d:11:40:a2:c7: 57:10:fd:10:a8:22:48:84:9c:e3:f2:fa:0e:fa:4c: b8:ea:cc:b2:f1:3a:d9:bc:bd:83:23:90:e2:26:8e: f3:12:36:a8:71:cd:75:06:2b:ad:8c:07:26:72:d7: 02:3f:15:e5:81:22:73:43:64:df:f1:d4:5f:10:cf: 81:2f:31:bf:b6:e9:f2:35:df:11:10:21:26:b8:98: f2:53:9e:f0:02:43:6a:92:2b:c9:d1:35:e7:4f:15: 57:1b:08:8f:14:91:a1:2a:b0:28:22:e8:75:59:71: 6d:a7:bd:6d:d5:7f:ce:4e:be:ac:aa:1d:4c:5a:db: 20:de:da:ae:d2:be:14:07:0f:44:b5:10:a6:ce:28: 92:10:4b:90:ba:11:6a:da:b4:60:87:82:99:78:b7: 41:cf:df:18:c9:d5:a5:43:81:e0:d9:5b:45:c6:4b: a4:2b:39:2c:52:18:73:56:78:0a:80:ff:3c:a1:a8: 16:0d:d6:13:78:b9:e8:da:da:8a:e6:10:31:a0:7a: 52:53:27:bf:73:ef:00:75:ce:f2:5d:6c:c5:2d:a4: 3a:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:72:1A:70:F5:D5:F2:43:70:B8:95:F7:26:22:A9:4F:6D:E8:44:3B X509v3 Authority Key Identifier: keyid:9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/1DC10D94AD5311EBA93CEB69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.120.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:48:bd:31:68:1d:b5:5e:b5:f6:f3:75:70:44:1e:5b:11:ad: 4d:77:2c:52:4c:84:ae:7a:91:1f:f9:1f:35:95:4b:26:c8:8d: fc:4c:fa:e3:e4:a9:e3:07:a0:97:53:73:9d:54:3c:1c:0a:dc: a0:d2:fc:19:34:af:1a:b3:b9:1d:d4:3e:81:a4:61:3d:af:87: dc:bb:07:55:b4:f9:92:b8:ab:c2:86:d6:61:1b:e6:e4:8e:58: d1:d4:79:f2:6a:3b:33:65:e0:99:31:33:b3:0f:5a:df:6f:35: 88:38:46:ee:1a:77:32:83:ad:b5:04:47:b5:7a:cc:c2:16:af: 62:c2:1c:61:53:8a:98:4f:a5:94:32:18:e1:35:ab:fc:08:7e: cf:3e:95:83:cc:e8:78:90:10:dd:41:22:96:a0:11:4a:0f:8f: 32:3e:88:a3:c7:75:b5:ae:b3:3a:a5:f0:64:79:b0:8f:a2:21: d1:e6:e6:2d:f6:a5:95:53:50:8c:12:e6:89:a6:0c:0f:2f:72: 0e:85:a7:1f:69:98:43:a5:d1:52:a5:99:77:02:f1:f9:5d:e8: a4:80:eb:e4:a8:de:20:cb:62:3d:ef:98:52:7c:9d:09:eb:af: df:42:8c:c8:4f:9c:9e:48:16:5a:c8:a9:8c:ff:03:3c:92:e8: f5:e6:70:e7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCRjcxMTAvBgNVBAUTKDlCNDYwMUI2QjBCNzhGQjhGRTlFMzkzMzRBODFCNUE1 REQ1OTU2MjkwHhcNMjQwOTMwMjE0MDQxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiMWFkOC1mY2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBc+FNXv1xfFllVvIZCZpAU5m4Ij++ltuWnRnTqQMq/M5/AUso/+PRFAosdX EP0QqCJIhJzj8voO+ky46syy8TrZvL2DI5DiJo7zEjaocc11BiutjAcmctcCPxXl gSJzQ2Tf8dRfEM+BLzG/tunyNd8RECEmuJjyU57wAkNqkivJ0TXnTxVXGwiPFJGh KrAoIuh1WXFtp71t1X/OTr6sqh1MWtsg3tqu0r4UBw9EtRCmziiSEEuQuhFq2rRg h4KZeLdBz98YydWlQ4Hg2VtFxkukKzksUhhzVngKgP88oagWDdYTeLno2tqK5hAx oHpSUye/c+8Adc7yXWzFLaQ6+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFE9yGnD1 1fJDcLiV9yYiqU9t6EQ7MB8GA1UdIwQYMBaAFJtGAbawt4+4/p45M0qBtaXdWVYp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JGNy9BRDJBQzcyRUZC RUExMUVBQTBBQzMzMUFDNEY5QUUwMi9tMFlCdHJDM2o3ai1uamt6U29HMXBkMVpW aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20wWUJ0ckMzajdqLW5qa3pTb0cxcGQxWlZpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCRjcvQUQyQUM3MkVGQkVBMTFFQUEwQUMzMzFBQzRGOUFFMDIvMURDMTBEOTRB RDUzMTFFQkE5M0NFQjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm3gwDQYJKoZIhvcNAQELBQADggEBAH1IvTFoHbVetfbz dXBEHlsRrU13LFJMhK56kR/5HzWVSybIjfxM+uPkqeMHoJdTc51UPBwK3KDS/Bk0 rxqzuR3UPoGkYT2vh9y7B1W0+ZK4q8KG1mEb5uSOWNHUefJqOzNl4JkxM7MPWt9v NYg4Ru4adzKDrbUER7V6zMIWr2LCHGFTiphPpZQyGOE1q/wIfs8+lYPM6HiQEN1B IpagEUoPjzI+iKPHdbWuszql8GR5sI+iIdHm5i32pZVTUIwS5ommDA8vcg6Fpx9p mEOl0VKlmXcC8fld6KSA6+So3iDLYj3vmFJ8nQnrr99CjMhPnJ5IFlrIqYz/AzyS 6PXmcOc= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:39 2024 by rpki-client on console-fra.rpki-client.org