$ rpki-client -vvf rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/2C09A102C12F11EEB2C81E5DC4F9AE02.roa File: 2C09A102C12F11EEB2C81E5DC4F9AE02.roa (raw, json) Hash identifier: VunimzjW6vZXbumttf/a7UXIXmgEJ7GvCGzp4M0HdAI= Subject key identifier: CB:46:49:F1:97:96:F2:54:DA:FC:4D:21:3B:11:B6:98:C5:AA:54:28 Certificate issuer: /CN=A915C449/serialNumber=484EBF33750B21CAF028D0CE219B9461D1FBAA66 Certificate serial: 056C Authority key identifier: 48:4E:BF:33:75:0B:21:CA:F0:28:D0:CE:21:9B:94:61:D1:FB:AA:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SE6_M3ULIcrwKNDOIZuUYdH7qmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/2C09A102C12F11EEB2C81E5DC4F9AE02.roa Signing time: Thu 11 Apr 2024 01:03:31 +0000 ROA not before: Thu 11 Apr 2024 01:03:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151338 IP address blocks: 103.165.84.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/SE6_M3ULIcrwKNDOIZuUYdH7qmY.crl rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/SE6_M3ULIcrwKNDOIZuUYdH7qmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SE6_M3ULIcrwKNDOIZuUYdH7qmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1388 (0x56c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C449/serialNumber=484EBF33750B21CAF028D0CE219B9461D1FBAA66 Validity Not Before: Apr 11 01:03:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661736e2-d1ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5c:69:a8:83:e6:f6:69:55:d3:bc:3e:46:5f: 7a:37:29:cf:89:89:71:12:11:01:ea:63:81:f3:ba: ff:b9:95:06:fd:68:e2:7b:99:b0:53:57:ce:4d:6f: 8a:f4:c6:f8:e4:0d:75:a1:7f:92:97:9f:b2:c6:0e: 78:04:11:0c:82:d8:4e:6a:06:07:04:7c:51:ec:d7: cc:51:24:3a:30:8f:9d:fb:f2:4c:57:7a:51:f9:0f: dd:37:19:bf:b2:40:c2:12:cc:8e:e9:fe:3a:e2:01: 49:92:09:70:1a:1a:06:9f:af:65:57:2d:98:e3:aa: be:e5:80:65:4f:8f:63:7f:27:1c:30:8b:fd:28:96: ae:a3:b4:dd:0d:9d:b4:83:7c:84:76:64:1c:a3:0a: 6c:3e:1a:c4:76:0d:9f:58:83:bc:55:2e:42:6a:82: a2:f6:27:1b:24:34:90:b8:e5:6d:ee:9f:ae:7f:48: a6:bb:d9:a0:ac:3e:40:b2:10:de:91:81:32:d6:fc: 7f:58:06:1f:d4:62:1c:3d:c9:1e:fc:54:84:e9:63: da:e7:fb:a1:54:ea:5b:da:2a:df:e0:fb:92:37:b5: f1:fc:91:90:34:9c:19:28:d3:27:25:54:2e:99:c1: 0b:11:12:0a:b7:e8:26:ef:58:64:98:c2:e5:be:4f: f2:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:46:49:F1:97:96:F2:54:DA:FC:4D:21:3B:11:B6:98:C5:AA:54:28 X509v3 Authority Key Identifier: keyid:48:4E:BF:33:75:0B:21:CA:F0:28:D0:CE:21:9B:94:61:D1:FB:AA:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/SE6_M3ULIcrwKNDOIZuUYdH7qmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SE6_M3ULIcrwKNDOIZuUYdH7qmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C449/58EA48EA9DD611EB92CF3714C4F9AE02/2C09A102C12F11EEB2C81E5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.84.0/23 Signature Algorithm: sha256WithRSAEncryption b9:94:38:9f:c6:97:cd:8e:80:20:82:ea:a6:b7:88:f3:e7:56: 4c:aa:f4:87:92:b5:c3:44:e7:96:dd:1b:d6:b6:5c:4d:45:b7: ff:ca:5f:0b:57:c2:c7:6e:59:cd:a1:ff:ad:78:cb:ac:90:35: 58:d0:2d:6d:63:61:f9:d2:02:71:48:c8:3f:10:23:6a:86:15: 21:d1:d3:93:70:4d:8e:96:28:c7:4a:2c:c9:6b:e4:68:cb:b9: a1:85:06:af:6e:9b:86:ee:a3:4e:47:be:e9:b5:61:81:b2:c7: 0b:9d:b1:0b:1a:7e:db:7e:b6:b2:a9:9c:2d:a1:11:76:ab:16: 15:8b:fe:ff:ff:50:5b:64:3f:1f:56:77:49:f4:28:23:93:a3: 4f:c0:81:a8:61:cc:71:7e:16:1f:96:fc:cd:c4:97:16:cf:c1: 48:2c:75:0f:1b:39:21:9e:ab:11:4c:ca:5f:fb:22:ea:a9:f8: c9:16:0b:81:1e:fc:bb:ca:3f:8d:e2:f0:a1:b4:25:a7:82:d4: f6:11:42:66:5e:c3:a8:dd:b0:cb:c1:ca:f7:04:f7:c3:f4:05: 45:55:6c:68:54:50:f4:6f:21:55:19:2d:6b:d8:b6:7b:35:21: ae:47:a5:0e:66:d5:a4:cc:21:6e:81:b9:1c:10:95:09:a6:32: 86:79:9f:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBWwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM0NDkxMTAvBgNVBAUTKDQ4NEVCRjMzNzUwQjIxQ0FGMDI4RDBDRTIxOUI5NDYx RDFGQkFBNjYwHhcNMjQwNDExMDEwMzMxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3MzZlMi1kMWVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VxpqIPm9mlV07w+Rl96NynPiYlxEhEB6mOB87r/uZUG/Wjie5mwU1fOTW+K 9Mb45A11oX+Sl5+yxg54BBEMgthOagYHBHxR7NfMUSQ6MI+d+/JMV3pR+Q/dNxm/ skDCEsyO6f464gFJkglwGhoGn69lVy2Y46q+5YBlT49jfyccMIv9KJauo7TdDZ20 g3yEdmQcowpsPhrEdg2fWIO8VS5CaoKi9icbJDSQuOVt7p+uf0imu9mgrD5AshDe kYEy1vx/WAYf1GIcPcke/FSE6WPa5/uhVOpb2irf4PuSN7Xx/JGQNJwZKNMnJVQu mcELERIKt+gm71hkmMLlvk/yOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMtGSfGX lvJU2vxNITsRtpjFqlQoMB8GA1UdIwQYMBaAFEhOvzN1CyHK8CjQziGblGHR+6pm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzQ0OS81OEVBNDhFQTlE RDYxMUVCOTJDRjM3MTRDNEY5QUUwMi9TRTZfTTNVTEljcndLTkRPSVp1VVlkSDdx bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NFNl9NM1VMSWNyd0tORE9JWnVVWWRIN3FtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM0NDkvNThFQTQ4RUE5REQ2MTFFQjkyQ0YzNzE0QzRGOUFFMDIvMkMwOUExMDJD MTJGMTFFRUIyQzgxRTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpVQwDQYJKoZIhvcNAQELBQADggEBALmUOJ/Gl82OgCCC 6qa3iPPnVkyq9IeStcNE55bdG9a2XE1Ft//KXwtXwsduWc2h/614y6yQNVjQLW1j YfnSAnFIyD8QI2qGFSHR05NwTY6WKMdKLMlr5GjLuaGFBq9um4buo05Hvum1YYGy xwudsQsaftt+trKpnC2hEXarFhWL/v//UFtkPx9Wd0n0KCOTo0/AgahhzHF+Fh+W /M3ElxbPwUgsdQ8bOSGeqxFMyl/7Iuqp+MkWC4Ee/LvKP43i8KG0JaeC1PYRQmZe w6jdsMvByvcE98P0BUVVbGhUUPRvIVUZLWvYtns1Ia5HpQ5m1aTMIW6BuRwQlQmm MoZ5n44= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:20 2024 by rpki-client on console-fra.rpki-client.org