$ rpki-client -vvf rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/8D013D48B6BD11EEB6F43F4CC4F9AE02.roa File: 8D013D48B6BD11EEB6F43F4CC4F9AE02.roa (raw, json) Hash identifier: 9GO3C9V25OtteOw/nfxFM0HH3LdeEcdPNGN7kiYXrI8= Subject key identifier: A5:BE:DD:3F:2C:1D:C3:DE:8F:42:63:B7:CD:1B:C8:24:86:78:1E:A2 Certificate issuer: /CN=A9172951/serialNumber=CEF9C57E84B2EA5A6FA3D0E456330FB7A546F088 Certificate serial: 05D0 Authority key identifier: CE:F9:C5:7E:84:B2:EA:5A:6F:A3:D0:E4:56:33:0F:B7:A5:46:F0:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/8D013D48B6BD11EEB6F43F4CC4F9AE02.roa Signing time: Sat 02 Nov 2024 22:41:55 +0000 ROA not before: Sat 02 Nov 2024 22:41:55 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 142552 IP address blocks: 103.157.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.crl rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1488 (0x5d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172951/serialNumber=CEF9C57E84B2EA5A6FA3D0E456330FB7A546F088 Validity Not Before: Nov 2 22:41:55 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726aab2-2afd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:d6:89:52:89:f7:19:08:a9:b5:1c:6f:c1:16: bd:d1:ec:ca:0e:b1:7d:77:66:57:4d:a8:50:e6:d8: d1:c5:5c:83:67:19:fc:fa:55:93:21:24:77:fd:d2: 2c:1d:ca:54:95:2d:79:c8:94:36:01:6b:65:5b:73: fd:08:57:7e:14:59:64:6a:6d:f4:89:7d:e9:ea:e3: 89:1b:df:36:43:3a:12:13:63:75:bc:a2:c4:61:21: 92:4c:22:e1:ca:98:e4:ae:c5:d2:65:80:f2:0d:4b: fb:9e:fe:96:69:ef:44:53:b6:e9:4c:67:b9:f5:7d: d4:ff:81:3b:44:d6:ae:c3:39:44:e4:45:6a:bc:06: 07:cf:60:73:e7:e9:6f:12:1d:83:5b:b3:0f:03:57: c7:bf:07:30:42:f9:70:15:24:b9:de:11:93:f8:da: c6:82:a9:e2:f1:c8:ad:68:73:e6:a2:89:6d:69:e7: 68:6b:15:65:d7:7e:b0:39:fd:e8:a9:d1:40:a2:75: 69:34:c1:e1:b1:17:b3:a3:6b:b4:3c:d6:94:4a:84: c4:db:8b:7f:03:98:fc:f9:42:85:e9:c2:96:e2:c5: 77:b7:ca:38:dc:c3:b4:8f:62:10:be:a7:0a:ac:61: 01:89:99:a2:81:f8:01:26:34:27:0d:e1:6f:b2:bb: 83:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:BE:DD:3F:2C:1D:C3:DE:8F:42:63:B7:CD:1B:C8:24:86:78:1E:A2 X509v3 Authority Key Identifier: keyid:CE:F9:C5:7E:84:B2:EA:5A:6F:A3:D0:E4:56:33:0F:B7:A5:46:F0:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zvnFfoSy6lpvo9DkVjMPt6VG8Ig.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172951/9A097D8A960311EBB85DB340C4F9AE02/8D013D48B6BD11EEB6F43F4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.211.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:a9:da:6f:90:b7:87:5c:71:8a:4d:3f:6c:2b:7e:59:18:a6: 80:22:90:59:36:d7:6c:74:62:52:17:d9:83:b3:6c:03:f3:6f: c3:85:ca:1b:1f:06:cf:14:c8:a2:30:de:3c:bf:87:44:8a:6d: c9:59:d2:40:96:f7:4a:5f:5b:df:6f:b6:16:22:8b:32:05:5e: 13:2b:a5:ab:70:ba:86:67:8c:bf:12:78:0c:13:e0:49:0e:42: 25:1c:5a:80:f8:38:17:33:7b:7f:fa:f1:8f:19:65:60:b2:58: 8a:6f:3f:0f:10:b2:ac:5c:c5:b6:28:88:5c:0b:63:c4:9e:2a: a0:2f:dd:88:41:ab:ca:cc:62:65:c7:25:e1:73:25:df:a2:d5: 67:16:0f:0d:c4:33:d8:5d:ad:91:90:8b:fe:00:ba:d5:36:69: 0e:d3:bb:a1:63:0c:fc:76:65:f4:f5:93:9b:70:ce:24:ab:74: 91:6f:49:0d:4b:2a:42:af:14:79:7a:60:d1:8e:11:4a:03:4e: 91:72:f0:b8:fe:e7:a5:d2:24:b0:68:8e:97:7d:c8:b3:62:9e: 28:eb:36:d0:47:2c:e1:5c:fb:80:ae:5b:20:0d:f7:63:bd:88: 81:e2:87:bf:11:f2:4f:79:50:de:98:b4:75:31:93:95:f2:c1: 7f:02:9c:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI5NTExMTAvBgNVBAUTKENFRjlDNTdFODRCMkVBNUE2RkEzRDBFNDU2MzMwRkI3 QTU0NkYwODgwHhcNMjQxMTAyMjI0MTU1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YWFiMi0yYWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAydaJUon3GQiptRxvwRa90ezKDrF9d2ZXTahQ5tjRxVyDZxn8+lWTISR3/dIs HcpUlS15yJQ2AWtlW3P9CFd+FFlkam30iX3p6uOJG982QzoSE2N1vKLEYSGSTCLh ypjkrsXSZYDyDUv7nv6Wae9EU7bpTGe59X3U/4E7RNauwzlE5EVqvAYHz2Bz5+lv Eh2DW7MPA1fHvwcwQvlwFSS53hGT+NrGgqni8citaHPmooltaedoaxVl136wOf3o qdFAonVpNMHhsRezo2u0PNaUSoTE24t/A5j8+UKF6cKW4sV3t8o43MO0j2IQvqcK rGEBiZmigfgBJjQnDeFvsruDmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKW+3T8s HcPej0Jjt80byCSGeB6iMB8GA1UdIwQYMBaAFM75xX6Esupab6PQ5FYzD7elRvCI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Mjk1MS85QTA5N0Q4QTk2 MDMxMUVCQjg1REIzNDBDNEY5QUUwMi96dm5GZm9TeTZscHZvOURrVmpNUHQ2Vkc4 SWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p2bkZmb1N5Nmxwdm85RGtWak1QdDZWRzhJZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI5NTEvOUEwOTdEOEE5NjAzMTFFQkI4NURCMzQwQzRGOUFFMDIvOEQwMTNENDhC NkJEMTFFRUI2RjQzRjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnndMwDQYJKoZIhvcNAQELBQADggEBAF2p2m+Qt4dccYpN P2wrflkYpoAikFk212x0YlIX2YOzbAPzb8OFyhsfBs8UyKIw3jy/h0SKbclZ0kCW 90pfW99vthYiizIFXhMrpatwuoZnjL8SeAwT4EkOQiUcWoD4OBcze3/68Y8ZZWCy WIpvPw8QsqxcxbYoiFwLY8SeKqAv3YhBq8rMYmXHJeFzJd+i1WcWDw3EM9hdrZGQ i/4AutU2aQ7Tu6FjDPx2ZfT1k5twziSrdJFvSQ1LKkKvFHl6YNGOEUoDTpFy8Lj+ 56XSJLBojpd9yLNinijrNtBHLOFc+4CuWyAN92O9iIHih78R8k95UN6YtHUxk5Xy wX8CnOY= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:28 2024 by rpki-client on console-fra.rpki-client.org