$ rpki-client -vvf rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/B8F865A2147B11E7B5BEC457C4F9AE02.roa File: B8F865A2147B11E7B5BEC457C4F9AE02.roa (raw, json) Hash identifier: vUCWQOdb7qjvOhdcg4SHMXTM8oTjFBVRvGp114pmqGg= Subject key identifier: 15:73:7F:D2:D7:7D:D1:C1:22:2E:4A:02:F3:3C:C5:FD:CF:FF:63:D1 Certificate issuer: /CN=A9157E6E/serialNumber=626994D19762BE0F9884FA4EF0DCA66C3F5302A8 Certificate serial: 1A9B Authority key identifier: 62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmmU0Zdivg-YhPpO8NymbD9TAqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/B8F865A2147B11E7B5BEC457C4F9AE02.roa Signing time: Thu 02 May 2024 17:04:38 +0000 ROA not before: Thu 02 May 2024 17:04:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 18172 IP address blocks: 103.87.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.crl rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmmU0Zdivg-YhPpO8NymbD9TAqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6811 (0x1a9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9157E6E/serialNumber=626994D19762BE0F9884FA4EF0DCA66C3F5302A8 Validity Not Before: May 2 17:04:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6633c7a6-dd96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ad:bb:35:f3:49:0a:d0:48:26:7a:cc:02:f6: a3:0a:e8:c9:54:6a:b6:6e:7e:f6:12:ea:ba:80:29: 66:71:4c:2f:23:98:c3:30:0c:e8:5c:78:f9:ee:85: 5b:a1:ce:77:04:eb:9c:0c:e0:62:a9:1d:02:62:3a: c5:09:f2:8e:bf:03:52:33:53:6c:72:97:7d:8d:43: 58:15:79:e2:b9:f0:a9:b7:3f:1d:38:c8:29:1c:c2: c9:a8:d4:4e:27:c0:5a:6f:17:10:44:56:7c:8c:51: f4:90:28:da:09:ed:a0:c9:05:19:5b:ba:b3:83:6e: ef:7e:f6:07:35:0c:87:34:48:ee:6d:0b:2b:54:3e: a1:a9:03:00:0e:12:cf:c9:f1:38:fd:c4:94:9f:c0: 4b:f1:d7:70:86:81:a8:76:b5:ea:73:15:f2:47:c2: 04:d4:c4:e5:fe:3c:df:18:fd:17:2a:2d:6e:8f:03: 74:70:de:e9:0f:b9:41:52:a3:2a:8f:c2:96:11:3c: 02:ca:dd:bd:44:70:04:9a:cb:d3:b2:aa:1a:a5:cb: 8f:1f:7e:eb:45:36:46:c2:fa:e0:80:5e:72:5d:68: 22:8f:03:c6:b3:8a:b4:c4:3c:17:5b:de:d6:8d:9c: 3f:9b:af:4d:31:74:25:ca:e2:f9:7f:b6:7f:ce:6b: e1:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:73:7F:D2:D7:7D:D1:C1:22:2E:4A:02:F3:3C:C5:FD:CF:FF:63:D1 X509v3 Authority Key Identifier: keyid:62:69:94:D1:97:62:BE:0F:98:84:FA:4E:F0:DC:A6:6C:3F:53:02:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/YmmU0Zdivg-YhPpO8NymbD9TAqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YmmU0Zdivg-YhPpO8NymbD9TAqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9157E6E/830C69700DEB11E79771B666C4F9AE02/B8F865A2147B11E7B5BEC457C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.255.0/24 Signature Algorithm: sha256WithRSAEncryption 42:e4:69:c4:df:d9:61:23:5a:30:52:99:af:4e:11:bf:f0:9c: 26:65:44:e6:9f:43:d3:4e:2c:e9:83:a7:38:cc:c4:bd:3e:48: 1a:72:02:d3:b0:56:87:2b:38:dd:da:ad:4c:75:7c:1b:e8:8a: 9f:70:d2:e8:99:aa:89:38:fd:4d:07:dc:5d:56:0e:4e:1f:4e: f5:6b:80:02:c8:8d:23:7f:a9:8b:27:51:51:10:4b:bd:47:74: 66:ec:1a:56:b9:be:28:a1:07:51:06:90:85:58:ac:51:c6:ef: 20:81:a7:84:a0:c6:cc:75:18:e8:0a:e5:d1:8c:e8:f9:89:a0: cc:9a:35:12:20:b4:a0:35:a7:fa:e0:77:22:1a:ae:a0:e2:91: 06:c4:f6:1b:73:73:1b:c2:b3:21:b2:4e:60:32:e4:b5:3c:af: c4:57:49:6a:e7:59:13:c5:ce:1b:35:4f:e4:7c:3a:0a:45:7c: 2f:d1:03:1a:35:a9:20:3b:60:c7:30:6f:16:c0:61:b9:5e:b6: 9c:4a:c0:57:4e:94:fe:64:44:9b:a8:f9:9a:17:68:17:06:b0: 95:99:a8:10:7d:b9:56:ba:db:55:ac:3b:f4:e8:5b:e6:b1:18: c4:98:2b:2f:18:b1:b9:ef:87:78:bb:6b:3c:74:b2:bf:a0:75: 0d:06:b1:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGpswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTdFNkUxMTAvBgNVBAUTKDYyNjk5NEQxOTc2MkJFMEY5ODg0RkE0RUYwRENBNjZD M0Y1MzAyQTgwHhcNMjQwNTAyMTcwNDM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzYzdhNi1kZDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0a27NfNJCtBIJnrMAvajCujJVGq2bn72Euq6gClmcUwvI5jDMAzoXHj57oVb oc53BOucDOBiqR0CYjrFCfKOvwNSM1Nscpd9jUNYFXniufCptz8dOMgpHMLJqNRO J8BabxcQRFZ8jFH0kCjaCe2gyQUZW7qzg27vfvYHNQyHNEjubQsrVD6hqQMADhLP yfE4/cSUn8BL8ddwhoGodrXqcxXyR8IE1MTl/jzfGP0XKi1ujwN0cN7pD7lBUqMq j8KWETwCyt29RHAEmsvTsqoapcuPH37rRTZGwvrggF5yXWgijwPGs4q0xDwXW97W jZw/m69NMXQlyuL5f7Z/zmvhjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBVzf9LX fdHBIi5KAvM8xf3P/2PRMB8GA1UdIwQYMBaAFGJplNGXYr4PmIT6TvDcpmw/UwKo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1N0U2RS84MzBDNjk3MDBE RUIxMUU3OTc3MUI2NjZDNEY5QUUwMi9ZbW1VMFpkaXZnLVloUHBPOE55bWJEOVRB cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ltbVUwWmRpdmctWWhQcE84TnltYkQ5VEFxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTdFNkUvODMwQzY5NzAwREVCMTFFNzk3NzFCNjY2QzRGOUFFMDIvQjhGODY1QTIx NDdCMTFFN0I1QkVDNDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnV/8wDQYJKoZIhvcNAQELBQADggEBAELkacTf2WEjWjBS ma9OEb/wnCZlROafQ9NOLOmDpzjMxL0+SBpyAtOwVocrON3arUx1fBvoip9w0uiZ qok4/U0H3F1WDk4fTvVrgALIjSN/qYsnUVEQS71HdGbsGla5viihB1EGkIVYrFHG 7yCBp4Sgxsx1GOgK5dGM6PmJoMyaNRIgtKA1p/rgdyIarqDikQbE9htzcxvCsyGy TmAy5LU8r8RXSWrnWRPFzhs1T+R8OgpFfC/RAxo1qSA7YMcwbxbAYbletpxKwFdO lP5kRJuo+ZoXaBcGsJWZqBB9uVa621WsO/ToW+axGMSYKy8Ysbnvh3i7azx0sr+g dQ0GsU4= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:46 2024 by rpki-client on console-fra.rpki-client.org