$ rpki-client -vvf rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/9888A21221DA11EBAA441F75C4F9AE02.roa File: 9888A21221DA11EBAA441F75C4F9AE02.roa (raw, json) Hash identifier: RAfuxCLxadJyM2jgh/vWy7QSPrv8CVZxF/58o1+dcJ4= Subject key identifier: 78:E4:B0:00:36:68:C1:75:1C:CB:C0:F4:75:0B:E4:A1:80:CA:AB:87 Certificate issuer: /CN=A915BFDA/serialNumber=5AC7615C459B7881037D75E5651A4CEC36F7EF91 Certificate serial: 0B2F Authority key identifier: 5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/9888A21221DA11EBAA441F75C4F9AE02.roa Signing time: Sat 20 Jan 2024 19:27:31 +0000 ROA not before: Sat 20 Jan 2024 19:27:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 18013 IP address blocks: 103.145.38.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.crl rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:37:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2863 (0xb2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BFDA/serialNumber=5AC7615C459B7881037D75E5651A4CEC36F7EF91 Validity Not Before: Jan 20 19:27:31 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65ac1ea3-2a86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:bb:4d:f4:95:97:aa:ea:ee:cc:5f:a3:4e:22: b1:f1:fa:7e:a3:27:a5:14:c0:28:51:f7:30:a1:ad: 04:ed:40:b4:2c:b8:ca:13:d4:40:d4:7a:c5:d6:e2: 40:57:00:6b:97:13:b4:37:5f:95:f0:af:17:17:90: 24:62:44:7f:c8:0d:63:6d:ad:f8:49:d8:d3:14:96: 0f:d6:66:a9:30:04:71:ad:03:5d:de:de:8b:22:78: be:65:20:33:71:6a:90:4d:d5:38:2a:73:cb:c0:0a: 9b:b4:8b:30:e8:d0:ea:31:79:e5:e9:8d:c6:c0:61: 6a:3c:9f:66:00:18:3b:33:34:14:73:e1:d0:cd:77: 66:61:fd:f0:86:59:a4:7c:be:4b:84:ab:06:ff:64: a3:94:1f:e0:7c:c1:2e:02:0a:df:8f:b8:a4:77:e5: 22:a0:ff:f6:15:3f:f9:ac:d6:8d:dd:9f:6e:2f:51: 0b:a2:5c:5c:c3:7b:5c:06:cd:6a:9f:0b:16:23:75: 2c:2e:db:ab:54:9c:42:82:25:8f:cd:97:5d:5f:83: 7a:b8:af:81:0c:62:cd:31:41:3f:49:41:4a:1f:dc: 9a:55:c2:d9:74:2e:b7:3a:2a:93:44:0f:b8:56:77: 5a:a8:25:b2:22:3b:22:03:f6:5f:5d:6d:2b:2f:3f: a5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:E4:B0:00:36:68:C1:75:1C:CB:C0:F4:75:0B:E4:A1:80:CA:AB:87 X509v3 Authority Key Identifier: keyid:5A:C7:61:5C:45:9B:78:81:03:7D:75:E5:65:1A:4C:EC:36:F7:EF:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/WsdhXEWbeIEDfXXlZRpM7Db375E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WsdhXEWbeIEDfXXlZRpM7Db375E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BFDA/68127E200F4B11EAADA37977C4F9AE02/9888A21221DA11EBAA441F75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.38.0/23 Signature Algorithm: sha256WithRSAEncryption 64:bd:16:c1:68:ca:bd:52:9a:56:8b:fd:cc:4b:a5:a2:4c:a0: 81:8e:99:d5:82:be:4e:f8:9e:96:d1:9e:00:27:4d:81:3e:ed: 2f:57:e9:72:07:2d:16:65:6c:57:1e:cd:3c:67:88:39:1a:45: fe:30:b3:54:c8:e6:51:22:27:5d:9f:fd:a5:34:23:07:4d:bd: 5b:07:03:e2:d5:49:13:96:08:93:1e:cb:74:0c:bd:42:11:54: c8:3d:cb:53:67:44:c1:db:86:94:bb:59:41:2f:5a:b9:cf:6e: ac:d0:94:06:9f:29:98:67:2a:cf:d2:6a:81:fa:d6:96:f7:d2: 97:94:69:9c:41:33:32:bf:20:32:2e:82:5d:0f:c3:32:86:a0: d0:24:f0:d6:bf:65:c5:7d:cc:f8:cd:6e:bf:e4:02:87:5f:71: e7:68:71:05:7d:36:ec:9d:79:91:74:b4:19:cf:89:16:b7:40: b9:d5:71:1f:01:91:4d:94:b7:a3:dc:fd:95:32:51:17:bb:f2: 16:fd:a9:09:2b:61:a3:97:80:60:8e:f4:20:d8:f3:67:ca:71: 0c:6a:dd:14:f8:80:e9:4a:e2:7f:9f:59:d4:b8:49:4a:a1:9e: 4b:c8:1e:59:39:6b:8a:5f:eb:c0:b7:d3:ce:15:03:c5:09:19: f4:ef:f1:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJGREExMTAvBgNVBAUTKDVBQzc2MTVDNDU5Qjc4ODEwMzdENzVFNTY1MUE0Q0VD MzZGN0VGOTEwHhcNMjQwMTIwMTkyNzMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFjMWVhMy0yYTg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA57tN9JWXquruzF+jTiKx8fp+oyelFMAoUfcwoa0E7UC0LLjKE9RA1HrF1uJA VwBrlxO0N1+V8K8XF5AkYkR/yA1jba34SdjTFJYP1mapMARxrQNd3t6LIni+ZSAz cWqQTdU4KnPLwAqbtIsw6NDqMXnl6Y3GwGFqPJ9mABg7MzQUc+HQzXdmYf3whlmk fL5LhKsG/2SjlB/gfMEuAgrfj7ikd+UioP/2FT/5rNaN3Z9uL1ELolxcw3tcBs1q nwsWI3UsLturVJxCgiWPzZddX4N6uK+BDGLNMUE/SUFKH9yaVcLZdC63OiqTRA+4 VndaqCWyIjsiA/ZfXW0rLz+liQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHjksAA2 aMF1HMvA9HUL5KGAyquHMB8GA1UdIwQYMBaAFFrHYVxFm3iBA3115WUaTOw29++R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkZEQS82ODEyN0UyMDBG NEIxMUVBQURBMzc5NzdDNEY5QUUwMi9Xc2RoWEVXYmVJRURmWFhsWlJwTTdEYjM3 NUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dzZGhYRVdiZUlFRGZYWGxaUnBNN0RiMzc1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJGREEvNjgxMjdFMjAwRjRCMTFFQUFEQTM3OTc3QzRGOUFFMDIvOTg4OEEyMTIy MURBMTFFQkFBNDQxRjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnkSYwDQYJKoZIhvcNAQELBQADggEBAGS9FsFoyr1SmlaL /cxLpaJMoIGOmdWCvk74npbRngAnTYE+7S9X6XIHLRZlbFcezTxniDkaRf4ws1TI 5lEiJ12f/aU0IwdNvVsHA+LVSROWCJMey3QMvUIRVMg9y1NnRMHbhpS7WUEvWrnP bqzQlAafKZhnKs/SaoH61pb30peUaZxBMzK/IDIugl0PwzKGoNAk8Na/ZcV9zPjN br/kAodfcedocQV9NuydeZF0tBnPiRa3QLnVcR8BkU2Ut6Pc/ZUyURe78hb9qQkr YaOXgGCO9CDY82fKcQxq3RT4gOlK4n+fWdS4SUqhnkvIHlk5a4pf68C3084VA8UJ GfTv8e8= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:49 2024 by rpki-client on console-ams.rpki-client.org