$ rpki-client -vvf rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/EF29C95E69C311EF82BCE77AC4F9AE02.roa File: EF29C95E69C311EF82BCE77AC4F9AE02.roa (raw, json) Hash identifier: b6XLk77YmW0zXiOErVi5OmWJQw5FWv6IwcAZrV/V3KA= Subject key identifier: F7:D7:63:EB:71:2B:FD:10:F6:3A:A1:7D:9A:FF:4D:7F:11:6E:D3:40 Certificate issuer: /CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Certificate serial: 0A77 Authority key identifier: CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/EF29C95E69C311EF82BCE77AC4F9AE02.roa Signing time: Sat 02 Nov 2024 19:58:05 +0000 ROA not before: Sat 02 Nov 2024 19:58:05 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 209242 IP address blocks: 103.143.32.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:27:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2679 (0xa77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168BA2/serialNumber=CA62E438F98D8518D2F2A5D9F6765651E5ADA60E Validity Not Before: Nov 2 19:58:05 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726844d-46f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:3e:18:60:f5:52:0f:ec:1e:7e:9a:c4:4b:90: 4a:c6:db:07:01:92:f4:f7:14:07:52:65:22:29:44: 7f:3a:06:42:38:06:bd:c2:b5:12:ea:e5:93:c0:90: 53:23:10:e4:79:fc:46:3f:00:b9:03:76:67:84:71: b3:bc:70:4b:de:6f:26:ee:cf:d8:10:2e:6a:72:e9: a8:f7:bb:6c:57:67:04:10:03:17:63:a6:0e:18:37: cf:fe:76:4d:b9:c6:60:d7:72:43:e8:8d:e0:53:83: 86:9b:2d:f8:78:3f:a5:4f:0f:05:75:39:bc:3d:af: 9d:23:ee:e7:d6:91:ee:71:6a:5e:ea:8f:82:a7:32: f9:44:dd:05:3e:3b:e8:52:fc:20:65:1c:c4:fa:cb: 65:44:7f:2d:74:54:c4:aa:f2:c5:d8:64:42:8f:70: 07:4d:4a:ec:d0:fd:ca:67:70:09:5f:8f:14:af:5e: 83:ce:e1:bd:46:b7:63:41:86:59:ef:e9:8a:fe:7e: 78:b2:4b:81:1a:0a:1f:e8:9e:71:bb:51:d6:2f:bf: 89:b3:ef:97:3c:78:67:80:3a:79:9b:c4:3a:fd:58: 91:10:a2:2c:2b:c9:01:bc:a0:b9:25:80:1c:26:93: 70:1b:e8:5d:69:9c:86:44:b9:51:d6:31:66:70:b2: ef:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D7:63:EB:71:2B:FD:10:F6:3A:A1:7D:9A:FF:4D:7F:11:6E:D3:40 X509v3 Authority Key Identifier: keyid:CA:62:E4:38:F9:8D:85:18:D2:F2:A5:D9:F6:76:56:51:E5:AD:A6:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ymLkOPmNhRjS8qXZ9nZWUeWtpg4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168BA2/99DF386254C411EA84F4E72DC4F9AE02/EF29C95E69C311EF82BCE77AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.32.0/23 Signature Algorithm: sha256WithRSAEncryption d8:4c:d7:c3:59:09:8c:f6:2e:4a:12:b6:04:76:91:3e:75:7b: 40:89:e3:c7:89:87:91:cc:38:56:d8:4b:88:0e:52:01:c5:f4: ea:68:a1:2d:67:64:89:f8:28:fa:32:65:7b:38:9f:1b:a6:6d: 93:d2:40:84:9f:18:0e:6c:87:2e:ce:81:8a:33:96:e4:5a:03: 30:be:ee:ee:65:95:e4:71:2a:94:4d:71:e3:e5:52:23:8a:66: bb:29:a5:6d:06:f3:8a:7f:40:66:d1:56:a6:0a:cc:48:30:48: 72:cf:df:9b:b8:93:72:04:fd:a8:2c:50:0d:30:e3:83:7b:5c: 08:88:d0:ac:be:3e:5c:04:73:93:84:64:5c:0a:78:39:51:b8: 41:39:8b:1b:49:88:d6:fa:d8:1f:54:a6:02:da:53:b0:ba:21: df:2a:12:bf:93:2f:6d:4f:fd:f3:cf:f2:2a:2e:47:af:8e:4a: 1a:a5:a2:b5:bc:8f:69:af:71:99:65:b8:b4:2d:68:1e:09:9f: 3c:0d:a3:4a:f9:47:d9:39:45:65:01:66:20:3a:82:54:1e:02: dd:24:de:9d:bb:0a:82:b2:0d:3c:ce:35:c1:6d:6d:20:57:62: 5e:20:1f:10:41:32:83:78:e0:5d:d9:a2:39:bf:e5:ad:90:9c: 68:41:86:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCQTIxMTAvBgNVBAUTKENBNjJFNDM4Rjk4RDg1MThEMkYyQTVEOUY2NzY1NjUx RTVBREE2MEUwHhcNMjQxMTAyMTk1ODA1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2ODQ0ZC00NmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6j4YYPVSD+wefprES5BKxtsHAZL09xQHUmUiKUR/OgZCOAa9wrUS6uWTwJBT IxDkefxGPwC5A3ZnhHGzvHBL3m8m7s/YEC5qcumo97tsV2cEEAMXY6YOGDfP/nZN ucZg13JD6I3gU4OGmy34eD+lTw8FdTm8Pa+dI+7n1pHucWpe6o+CpzL5RN0FPjvo UvwgZRzE+stlRH8tdFTEqvLF2GRCj3AHTUrs0P3KZ3AJX48Ur16DzuG9RrdjQYZZ 7+mK/n54skuBGgof6J5xu1HWL7+Js++XPHhngDp5m8Q6/ViREKIsK8kBvKC5JYAc JpNwG+hdaZyGRLlR1jFmcLLvLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPfXY+tx K/0Q9jqhfZr/TX8RbtNAMB8GA1UdIwQYMBaAFMpi5Dj5jYUY0vKl2fZ2VlHlraYO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEJBMi85OURGMzg2MjU0 QzQxMUVBODRGNEU3MkRDNEY5QUUwMi95bUxrT1BtTmhSalM4cVhaOW5aV1VlV3Rw ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ltTGtPUG1OaFJqUzhxWFo5blpXVWVXdHBnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCQTIvOTlERjM4NjI1NEM0MTFFQTg0RjRFNzJEQzRGOUFFMDIvRUYyOUM5NUU2 OUMzMTFFRjgyQkNFNzdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjyAwDQYJKoZIhvcNAQELBQADggEBANhM18NZCYz2LkoS tgR2kT51e0CJ48eJh5HMOFbYS4gOUgHF9OpooS1nZIn4KPoyZXs4nxumbZPSQISf GA5shy7OgYozluRaAzC+7u5lleRxKpRNcePlUiOKZrsppW0G84p/QGbRVqYKzEgw SHLP35u4k3IE/agsUA0w44N7XAiI0Ky+PlwEc5OEZFwKeDlRuEE5ixtJiNb62B9U pgLaU7C6Id8qEr+TL21P/fPP8iouR6+OShqlorW8j2mvcZlluLQtaB4JnzwNo0r5 R9k5RWUBZiA6glQeAt0k3p27CoKyDTzONcFtbSBXYl4gHxBBMoN44F3Zojm/5a2Q nGhBhpA= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org