$ rpki-client -vvf rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/20BC506CAD5311EBA93CEB69C4F9AE02.roa File: 20BC506CAD5311EBA93CEB69C4F9AE02.roa (raw, json) Hash identifier: FAebLgMlFuIn+Jv3/Kno5dJ1sOWIko5p1IcZ8bmbDwE= Subject key identifier: 64:26:90:29:10:E8:42:92:FA:E8:D4:0A:91:90:67:C3:D0:0B:5E:E8 Certificate issuer: /CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Certificate serial: 0762 Authority key identifier: 9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/20BC506CAD5311EBA93CEB69C4F9AE02.roa Signing time: Mon 30 Sep 2024 21:40:45 +0000 ROA not before: Mon 30 Sep 2024 21:40:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 18013 IP address blocks: 103.155.120.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1890 (0x762) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157BF7/serialNumber=9B4601B6B0B78FB8FE9E39334A81B5A5DD595629 Validity Not Before: Sep 30 21:40:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fb1add-d505 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7b:f5:b6:4a:7c:a6:ac:3f:76:c2:0e:0c:c5: 58:93:3d:c7:fa:1f:0b:44:0b:f9:8d:8d:a3:27:f6: a6:23:55:f1:5d:21:3d:42:62:5b:d9:af:86:2a:cd: 7c:f1:e2:6b:2f:7b:6d:4c:81:0c:51:8f:3e:98:0e: 9c:1f:39:f4:e9:c4:d8:06:76:0a:f3:2e:9c:6b:44: 6a:59:8d:6c:7d:b4:60:e8:05:8a:14:1d:60:ee:17: 9b:33:ea:e8:80:87:9b:c7:e0:33:c8:50:22:bb:c7: 7e:1b:ed:5a:ff:88:9c:dc:b1:6a:f3:bd:c2:7b:84: 3c:c4:17:f8:57:58:a5:db:6b:50:74:84:57:89:c7: db:a0:bb:49:99:56:fd:3b:73:b8:ac:dd:38:02:7f: bd:ae:11:6f:77:9a:e8:39:99:cc:b3:a0:63:6c:86: 95:ae:0a:7f:fa:0d:eb:31:73:ea:83:99:81:03:f0: 95:44:35:25:6e:3a:ca:0f:ab:5f:e5:f8:2a:8c:f8: 43:02:3b:1d:83:d3:de:7c:30:85:58:2a:5e:36:e8: 55:1f:0e:03:2d:fe:38:bd:e3:4a:8b:24:99:29:03: b7:7a:00:90:50:ce:92:22:33:58:7e:dc:9e:ba:76: c7:1c:26:16:88:e7:bd:37:cf:72:1b:5b:de:bf:d2: 83:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:26:90:29:10:E8:42:92:FA:E8:D4:0A:91:90:67:C3:D0:0B:5E:E8 X509v3 Authority Key Identifier: keyid:9B:46:01:B6:B0:B7:8F:B8:FE:9E:39:33:4A:81:B5:A5:DD:59:56:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/m0YBtrC3j7j-njkzSoG1pd1ZVik.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m0YBtrC3j7j-njkzSoG1pd1ZVik.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157BF7/AD2AC72EFBEA11EAA0AC331AC4F9AE02/20BC506CAD5311EBA93CEB69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.120.0/23 Signature Algorithm: sha256WithRSAEncryption 57:86:7b:aa:b6:36:40:e0:e9:17:23:a5:b4:27:25:02:f8:85: f8:a8:f1:b2:d6:d6:1b:2c:55:f7:ef:9f:d0:96:89:6e:7e:bb: 36:dc:33:69:60:68:e3:51:9c:ca:97:fe:d8:24:58:f0:75:dd: 89:cf:fc:06:50:cf:0c:7b:95:7c:7c:ae:64:68:21:5e:1f:8d: 53:bf:9e:fe:6e:78:a3:fe:4c:33:12:3d:09:cd:95:3b:52:f9: 3b:36:7c:c8:d4:d1:f9:28:bb:cb:df:de:7b:7c:4d:c4:e0:9f: 61:36:fa:a3:0c:3f:59:4c:9a:57:b1:0f:4b:6c:11:5e:08:31: 27:e1:22:45:8c:c5:b1:e1:81:37:fd:55:2f:2c:ef:62:06:14: 2c:21:da:46:bb:3b:44:7a:6c:df:78:f4:88:55:a5:14:a9:eb: 58:91:71:da:47:14:ed:aa:9b:50:f5:ca:00:f8:6c:82:f0:3c: 45:ec:76:25:07:7e:54:bf:4d:a5:b3:ed:c8:50:35:08:3b:3f: d6:64:71:60:8a:51:66:13:f6:bd:82:2f:51:fb:24:59:73:48: 7e:e8:51:71:73:ba:8e:4f:16:e0:0d:f5:4e:cd:55:b4:fb:69: b5:e4:c7:ba:97:9a:9d:0e:af:d3:3c:cd:e2:84:09:d9:1b:51: 49:cd:56:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB2IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdCRjcxMTAvBgNVBAUTKDlCNDYwMUI2QjBCNzhGQjhGRTlFMzkzMzRBODFCNUE1 REQ1OTU2MjkwHhcNMjQwOTMwMjE0MDQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiMWFkZC1kNTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuXv1tkp8pqw/dsIODMVYkz3H+h8LRAv5jY2jJ/amI1XxXSE9QmJb2a+GKs18 8eJrL3ttTIEMUY8+mA6cHzn06cTYBnYK8y6ca0RqWY1sfbRg6AWKFB1g7hebM+ro gIebx+AzyFAiu8d+G+1a/4ic3LFq873Ce4Q8xBf4V1il22tQdIRXicfboLtJmVb9 O3O4rN04An+9rhFvd5roOZnMs6BjbIaVrgp/+g3rMXPqg5mBA/CVRDUlbjrKD6tf 5fgqjPhDAjsdg9PefDCFWCpeNuhVHw4DLf44veNKiySZKQO3egCQUM6SIjNYftye unbHHCYWiOe9N89yG1vev9KDvQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGQmkCkQ 6EKS+ujUCpGQZ8PQC17oMB8GA1UdIwQYMBaAFJtGAbawt4+4/p45M0qBtaXdWVYp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0JGNy9BRDJBQzcyRUZC RUExMUVBQTBBQzMzMUFDNEY5QUUwMi9tMFlCdHJDM2o3ai1uamt6U29HMXBkMVpW aWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL20wWUJ0ckMzajdqLW5qa3pTb0cxcGQxWlZpay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdCRjcvQUQyQUM3MkVGQkVBMTFFQUEwQUMzMzFBQzRGOUFFMDIvMjBCQzUwNkNB RDUzMTFFQkE5M0NFQjY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnm3gwDQYJKoZIhvcNAQELBQADggEBAFeGe6q2NkDg6Rcj pbQnJQL4hfio8bLW1hssVffvn9CWiW5+uzbcM2lgaONRnMqX/tgkWPB13YnP/AZQ zwx7lXx8rmRoIV4fjVO/nv5ueKP+TDMSPQnNlTtS+Ts2fMjU0fkou8vf3nt8TcTg n2E2+qMMP1lMmlexD0tsEV4IMSfhIkWMxbHhgTf9VS8s72IGFCwh2ka7O0R6bN94 9IhVpRSp61iRcdpHFO2qm1D1ygD4bILwPEXsdiUHflS/TaWz7chQNQg7P9ZkcWCK UWYT9r2CL1H7JFlzSH7oUXFzuo5PFuAN9U7NVbT7abXkx7qXmp0Or9M8zeKECdkb UUnNVhw= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:39 2024 by rpki-client on console-fra.rpki-client.org