$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/9BC1D2907EDF11EE86C6A27BC4F9AE02.roa File: 9BC1D2907EDF11EE86C6A27BC4F9AE02.roa (raw, json) Hash identifier: aBVN2JXXEh8Q6gT/6fY3ErLQwRzmiGLd4BoBMHyur8U= Subject key identifier: 1C:BE:BE:02:74:77:61:D2:9E:A4:B6:44:03:9E:91:F7:9A:98:F9:8D Certificate issuer: /CN=A9171D3C/serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Certificate serial: CB Authority key identifier: 4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/9BC1D2907EDF11EE86C6A27BC4F9AE02.roa Signing time: Thu 23 May 2024 06:40:36 +0000 ROA not before: Thu 23 May 2024 06:40:36 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 150142 IP address blocks: 103.213.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 02:57:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3C/serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Validity Not Before: May 23 06:40:36 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=664ee4e4-06e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ca:da:91:31:86:8e:bf:84:d9:25:f5:86:7b: 61:53:c0:41:a2:ba:8d:27:89:b1:38:88:f5:d8:a8: c1:2a:32:74:52:ae:3b:47:72:ed:b6:bc:e6:3c:8d: 75:3d:e0:29:be:f8:18:d3:a3:ea:4d:c6:24:3a:bb: 86:8f:4b:28:a0:79:63:b5:84:0c:b4:b4:76:cb:cb: 9a:9f:c7:a4:4b:3b:94:75:fd:cc:37:0d:3c:d3:d4: bf:62:e0:52:fb:68:f0:e5:fe:ee:cd:e7:b6:d7:94: b1:34:b4:e8:5f:c3:52:40:ef:59:a9:f9:de:a0:73: bc:57:54:1a:0c:d5:90:08:97:e4:09:40:b7:b0:fd: c8:66:41:81:05:b9:d2:f5:4a:b6:e5:5b:be:05:29: cc:71:06:27:75:6f:4a:50:bd:3e:e6:52:f3:44:a2: 2f:ba:b4:b7:8a:a3:fd:6a:09:7a:75:56:8b:ca:56: 6d:b8:b7:c2:25:70:22:a9:51:48:e0:5c:f7:7b:77: 3d:87:d6:49:ce:9c:e5:46:b8:c9:67:7f:c8:cc:8b: ce:4c:90:b7:42:e4:e9:f8:a5:3d:68:0e:e8:87:50: 7f:95:01:a7:b5:e6:68:83:d7:0a:0a:6a:f3:cb:e3: 82:64:e7:e6:cf:59:fe:86:78:4f:f3:1d:23:b5:82: 03:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BE:BE:02:74:77:61:D2:9E:A4:B6:44:03:9E:91:F7:9A:98:F9:8D X509v3 Authority Key Identifier: keyid:4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/9BC1D2907EDF11EE86C6A27BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.38.0/24 Signature Algorithm: sha256WithRSAEncryption 96:4b:2b:30:14:0a:ec:2b:a0:9a:38:1c:a3:12:57:39:e6:b3: 4e:36:ec:a8:65:aa:7a:4f:32:a8:f7:c6:9e:5b:be:98:ee:aa: 03:b5:35:50:f9:da:a6:8e:37:f7:29:bc:82:75:48:ac:b0:de: 8b:f4:9d:ca:85:d3:07:ed:c9:bb:3f:74:92:47:f3:33:a9:7e: a4:75:f1:87:6e:68:18:5b:22:b5:c1:7a:df:13:c0:18:02:a4: 8f:6e:24:c1:e0:e7:ec:f0:67:25:5a:cd:99:7c:4e:32:5d:f4: 0c:73:a0:d4:27:51:b0:be:ea:5a:63:f6:81:00:1b:eb:d0:f1: 4c:70:6d:b1:9b:d6:db:2b:8f:3e:9a:c3:12:a6:c7:37:39:9e: 65:1c:2b:e3:a1:eb:d0:fb:a4:f8:7f:9e:38:e2:39:92:b4:f1: e4:aa:3b:34:f1:3e:2e:2b:fb:1e:e9:c7:01:78:ca:f8:04:45: 80:de:31:35:b0:39:a2:0e:e2:46:17:94:6e:d1:f5:c5:69:0c: be:9b:d2:cb:11:e7:35:1e:b2:0d:ec:16:7a:de:83:ff:98:c7: d0:22:a1:18:93:90:b6:2f:59:0a:fc:d8:8a:dd:7a:2f:d8:87: 0e:b8:cd:a9:d7:3b:e9:9a:6d:95:f9:d3:52:d5:1b:5a:4b:68: ca:87:a1:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEM0MxMTAvBgNVBAUTKDRERUUwODM2RkEwRjdFRTkyQzJFNkE2QzE5ODAxNkRF OENGOEJGMTYwHhcNMjQwNTIzMDY0MDM2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlZTRlNC0wNmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtcrakTGGjr+E2SX1hnthU8BBorqNJ4mxOIj12KjBKjJ0Uq47R3LttrzmPI11 PeApvvgY06PqTcYkOruGj0sooHljtYQMtLR2y8uan8ekSzuUdf3MNw0809S/YuBS +2jw5f7uzee215SxNLToX8NSQO9ZqfneoHO8V1QaDNWQCJfkCUC3sP3IZkGBBbnS 9Uq25Vu+BSnMcQYndW9KUL0+5lLzRKIvurS3iqP9agl6dVaLylZtuLfCJXAiqVFI 4Fz3e3c9h9ZJzpzlRrjJZ3/IzIvOTJC3QuTp+KU9aA7oh1B/lQGnteZog9cKCmrz y+OCZOfmz1n+hnhP8x0jtYID8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBy+vgJ0 d2HSnqS2RAOekfeamPmNMB8GA1UdIwQYMBaAFE3uCDb6D37pLC5qbBmAFt6M+L8W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzQy8xMjcxNTdGMjA1 NkExMUVFQjg4NzAwMTNDNEY5QUUwMi9UZTRJTnZvUGZ1a3NMbXBzR1lBVzNvejR2 eFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RlNElOdm9QZnVrc0xtcHNHWUFXM296NHZ4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEM0MvMTI3MTU3RjIwNTZBMTFFRUI4ODcwMDEzQzRGOUFFMDIvOUJDMUQyOTA3 RURGMTFFRTg2QzZBMjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1SYwDQYJKoZIhvcNAQELBQADggEBAJZLKzAUCuwroJo4 HKMSVznms0427KhlqnpPMqj3xp5bvpjuqgO1NVD52qaON/cpvIJ1SKyw3ov0ncqF 0wftybs/dJJH8zOpfqR18YduaBhbIrXBet8TwBgCpI9uJMHg5+zwZyVazZl8TjJd 9AxzoNQnUbC+6lpj9oEAG+vQ8UxwbbGb1tsrjz6awxKmxzc5nmUcK+Oh69D7pPh/ njjiOZK08eSqOzTxPi4r+x7pxwF4yvgERYDeMTWwOaIO4kYXlG7R9cVpDL6b0ssR 5zUesg3sFnreg/+Yx9AioRiTkLYvWQr82Irdei/Yhw64zanXO+mabZX501LVG1pL aMqHoW4= -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:33 2024 by rpki-client on console-fra.rpki-client.org