$ rpki-client -vvf rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/A64A2A9437E411EC9BA3E20AC4F9AE02.roa File: A64A2A9437E411EC9BA3E20AC4F9AE02.roa (raw, json) Hash identifier: iScwIGnCk3Nr+9NgBEDkU3UMHy6opWhBkp7ncUEo7Og= Subject key identifier: C7:C5:99:CF:C4:21:DC:9D:57:BF:E8:58:45:F9:26:96:DD:12:D2:D3 Certificate issuer: /CN=A9169E9B/serialNumber=97495816D6DB49DFEDEAC4C17429126FE3DF97FB Certificate serial: 0A86 Authority key identifier: 97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/A64A2A9437E411EC9BA3E20AC4F9AE02.roa Signing time: Thu 02 Nov 2023 20:07:41 +0000 ROA not before: Thu 02 Nov 2023 20:07:41 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 58715 IP address blocks: 103.129.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2694 (0xa86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169E9B/serialNumber=97495816D6DB49DFEDEAC4C17429126FE3DF97FB Validity Not Before: Nov 2 20:07:41 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6544018d-1182 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:33:82:6e:5c:31:3d:37:a0:c1:7c:1e:52:78: 25:ac:1f:6a:63:a9:bb:eb:b6:d8:d3:96:c7:ce:bb: 59:df:a7:be:82:9a:0f:47:87:c2:81:da:a1:6a:58: 12:79:30:17:71:da:75:d8:02:e1:6e:af:0e:2b:78: 8b:85:c0:12:15:58:4f:a5:32:06:6c:ed:e5:03:04: cb:d2:f5:64:44:f6:d9:13:28:bd:fa:9d:04:7c:cb: d1:47:32:cd:ca:86:5c:ef:89:d4:a4:ba:60:ba:6f: 99:91:ba:36:4c:83:5d:9b:dc:35:6f:f0:ab:63:8d: 17:54:60:45:e7:ef:12:b1:31:04:6b:b9:af:93:1d: bb:8c:aa:b1:2f:bb:5b:b1:75:61:0d:40:1b:df:6c: b2:4a:c2:5f:b8:56:dd:29:f8:5b:1e:86:e5:38:56: 0b:3a:99:6b:f2:c5:ba:3c:79:cd:55:83:2f:8b:13: 58:69:8e:a0:f9:de:c9:82:62:d0:0d:e6:62:62:d7: de:93:b2:f2:fd:f1:6b:cf:fb:ef:e5:6f:f9:c9:0e: 4e:f4:0c:3e:40:c1:f4:97:75:a2:b6:64:04:19:96: d9:2c:67:95:38:57:ee:bb:e3:4f:87:ba:c3:43:38: cc:78:cb:36:6c:7c:84:7e:0f:ae:f7:f9:82:d3:e7: 24:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C5:99:CF:C4:21:DC:9D:57:BF:E8:58:45:F9:26:96:DD:12:D2:D3 X509v3 Authority Key Identifier: keyid:97:49:58:16:D6:DB:49:DF:ED:EA:C4:C1:74:29:12:6F:E3:DF:97:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l0lYFtbbSd_t6sTBdCkSb-Pfl_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169E9B/7A53A61825A311EAA47F0527C4F9AE02/A64A2A9437E411EC9BA3E20AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.115.0/24 Signature Algorithm: sha256WithRSAEncryption 07:50:08:98:46:b0:fc:ad:d2:da:e4:5f:9a:10:ee:b7:60:08: 77:d0:e8:ec:a4:7d:64:b5:4c:71:32:6d:a7:2b:89:2c:81:1d: b8:ce:9d:b4:4e:3a:19:bb:10:44:bc:ff:b8:ce:b6:01:cb:17: 64:7b:e7:88:d5:aa:b0:c4:58:a8:57:41:24:25:6e:4b:2e:c7: e7:d1:7c:7a:58:2f:8f:da:22:ff:5f:8a:7a:bc:1c:69:38:f3: 69:43:38:87:06:72:e9:00:bf:c7:c8:9e:dd:7a:81:bc:df:1e: a1:07:54:19:46:93:5b:5a:f2:4d:7d:e1:19:62:24:d3:aa:f9: 92:39:4f:11:bc:02:3a:9f:69:16:3c:a3:37:fe:75:31:53:15: ad:55:9b:a9:ea:b0:b0:01:5c:4d:a5:b4:9a:e4:44:cb:d6:a6: 4f:69:d4:7b:b4:d3:ed:35:08:68:08:d5:b6:1d:5f:0a:68:6d: ff:b7:55:4c:05:4c:a0:0b:bb:3d:7a:3d:dd:c9:a9:85:c8:9a: 6a:10:10:e4:ce:bc:e1:35:cf:f7:92:f3:cf:f7:c2:f8:00:0a: 68:13:77:c5:53:91:2c:75:e8:14:fb:5b:80:92:a6:e6:65:88: 04:cb:3f:00:b0:c4:c1:16:89:72:9f:98:60:31:e0:0c:1d:94: ff:16:7c:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCoYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjlFOUIxMTAvBgNVBAUTKDk3NDk1ODE2RDZEQjQ5REZFREVBQzRDMTc0MjkxMjZG RTNERjk3RkIwHhcNMjMxMTAyMjAwNzQxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MDE4ZC0xMTgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoDOCblwxPTegwXweUnglrB9qY6m767bY05bHzrtZ36e+gpoPR4fCgdqhalgS eTAXcdp12ALhbq8OK3iLhcASFVhPpTIGbO3lAwTL0vVkRPbZEyi9+p0EfMvRRzLN yoZc74nUpLpgum+Zkbo2TINdm9w1b/CrY40XVGBF5+8SsTEEa7mvkx27jKqxL7tb sXVhDUAb32yySsJfuFbdKfhbHoblOFYLOplr8sW6PHnNVYMvixNYaY6g+d7JgmLQ DeZiYtfek7Ly/fFrz/vv5W/5yQ5O9Aw+QMH0l3WitmQEGZbZLGeVOFfuu+NPh7rD QzjMeMs2bHyEfg+u9/mC0+ckHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMfFmc/E IdydV7/oWEX5JpbdEtLTMB8GA1UdIwQYMBaAFJdJWBbW20nf7erEwXQpEm/j35f7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OUU5Qi83QTUzQTYxODI1 QTMxMUVBQTQ3RjA1MjdDNEY5QUUwMi9sMGxZRnRiYlNkX3Q2c1RCZENrU2ItUGZs X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2wwbFlGdGJiU2RfdDZzVEJkQ2tTYi1QZmxfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjlFOUIvN0E1M0E2MTgyNUEzMTFFQUE0N0YwNTI3QzRGOUFFMDIvQTY0QTJBOTQz N0U0MTFFQzlCQTNFMjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABngXMwDQYJKoZIhvcNAQELBQADggEBAAdQCJhGsPyt0trk X5oQ7rdgCHfQ6OykfWS1THEybacriSyBHbjOnbROOhm7EES8/7jOtgHLF2R754jV qrDEWKhXQSQlbksux+fRfHpYL4/aIv9finq8HGk482lDOIcGcukAv8fInt16gbzf HqEHVBlGk1ta8k194RliJNOq+ZI5TxG8AjqfaRY8ozf+dTFTFa1Vm6nqsLABXE2l tJrkRMvWpk9p1Hu00+01CGgI1bYdXwpobf+3VUwFTKALuz16Pd3JqYXImmoQEOTO vOE1z/eS88/3wvgACmgTd8VTkSx16BT7W4CSpuZliATLPwCwxMEWiXKfmGAx4Awd lP8WfKg= -----END CERTIFICATE-----Generated at Fri May 10 23:04:07 2024 by rpki-client on console-ams.rpki-client.org