$ rpki-client -vvf rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/879AF91C9A8C11EF98A18D7FC4F9AE02.roa File: 879AF91C9A8C11EF98A18D7FC4F9AE02.roa (raw, json) Hash identifier: LWV1KeEebkqoxDRj/MN5Z6I+5780TArhWaO+yA4BHQg= Subject key identifier: 34:ED:A3:8C:69:39:BD:ED:04:81:50:7A:39:26:4F:55:1C:73:6D:8F Certificate issuer: /CN=A9172EF8/serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Certificate serial: 07A3 Authority key identifier: E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/879AF91C9A8C11EF98A18D7FC4F9AE02.roa Signing time: Mon 04 Nov 2024 09:09:43 +0000 ROA not before: Mon 04 Nov 2024 09:09:43 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 140995 IP address blocks: 103.154.158.0/24 maxlen: 24 2001:df4:8f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1955 (0x7a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172EF8/serialNumber=E8DDECEC16FE3485D5B61A65A61EECD75A981B43 Validity Not Before: Nov 4 09:09:43 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67288f57-8e14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:35:b2:54:2b:81:08:61:88:ec:8e:cd:ab:3a: d1:0c:3e:b3:e6:5d:1e:39:76:5a:0d:f5:2c:5f:98: 4f:bd:60:64:f2:bc:49:9e:35:ef:e5:45:a9:9a:dc: 95:da:c4:56:1f:30:e7:e3:6a:e3:9a:51:fb:44:7c: 97:ab:ac:5d:72:dd:e6:88:ec:ee:20:45:43:e2:23: d2:43:f3:56:be:5c:f3:69:09:05:cc:90:7d:db:ba: ae:14:58:33:d5:3c:41:11:76:e9:ab:6b:6b:ea:b4: ea:0a:81:21:44:51:3f:64:ed:fc:f9:a5:c7:30:e0: 66:5a:32:28:cb:cd:85:dd:88:67:92:63:3a:2f:54: 80:75:17:ca:4c:c0:ad:e7:69:12:51:e7:75:bf:3e: 3f:57:65:0d:64:4a:6e:d6:84:c7:48:c6:aa:97:03: 73:1d:bd:6d:ec:70:63:e2:22:f1:c8:f0:a9:a2:19: 17:bd:a9:b9:89:6d:2e:85:7e:cf:44:39:a1:20:35: f2:9b:65:43:ad:0e:c7:3a:e9:16:62:15:d9:69:d9: 04:ad:ee:94:bc:2c:dd:db:a6:ad:fb:aa:ce:c8:2a: 40:d6:11:98:3d:5a:40:9b:5e:2f:bf:13:e4:25:0a: 12:2b:3a:29:e3:8b:b7:94:ee:e6:4c:2f:a6:2f:e1: 63:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:ED:A3:8C:69:39:BD:ED:04:81:50:7A:39:26:4F:55:1C:73:6D:8F X509v3 Authority Key Identifier: keyid:E8:DD:EC:EC:16:FE:34:85:D5:B6:1A:65:A6:1E:EC:D7:5A:98:1B:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/6N3s7Bb-NIXVthplph7s11qYG0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N3s7Bb-NIXVthplph7s11qYG0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172EF8/77F98C38DD8C11EABDF0E682C4F9AE02/879AF91C9A8C11EF98A18D7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.158.0/24 IPv6: 2001:df4:8f80::/48 Signature Algorithm: sha256WithRSAEncryption 10:9f:c6:49:e9:69:e3:f5:9e:c7:ea:3d:92:08:8b:4f:fd:7e: e9:d8:b1:f0:af:92:d3:55:10:8a:7f:5c:90:f0:c3:d7:79:b6: 55:69:18:4f:da:14:84:47:a3:16:39:ca:fa:8e:5e:7c:05:39: cb:99:d3:6e:28:d0:fd:44:56:e1:cc:61:c0:1f:b5:50:3c:c6: 65:9e:2c:d1:9f:79:91:ab:79:1d:9a:6e:d8:f0:f3:ba:fd:7d: 16:a1:aa:a3:52:59:2d:df:47:11:ab:b8:7f:aa:65:d8:cc:0d: c8:a5:bc:05:ac:7c:e7:1b:b9:b2:0e:29:45:ea:5d:14:bd:3a: 5d:32:f3:9a:f0:40:3f:3a:3f:67:30:eb:fe:79:15:84:65:f3: 1d:e6:56:bf:52:f6:c0:84:9c:17:3c:69:ba:b8:f8:d0:cd:6c: 47:43:f3:0f:e2:c2:49:ff:8b:98:5d:51:db:99:2c:3a:69:c8: f6:f1:e8:c3:e7:f4:39:77:f8:34:1f:f1:d8:0b:33:65:7f:1b: 77:73:4d:56:c9:ed:ba:6f:c0:d8:db:0e:bd:04:e6:7c:fd:4d: 59:87:89:b2:d6:cd:8a:93:d6:9c:59:e0:22:67:ac:9e:8a:0d: 44:79:82:6d:fd:34:4f:46:05:d1:fe:d2:c2:43:39:79:2d:49: b0:3b:7e:5d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJFRjgxMTAvBgNVBAUTKEU4RERFQ0VDMTZGRTM0ODVENUI2MUE2NUE2MUVFQ0Q3 NUE5ODFCNDMwHhcNMjQxMTA0MDkwOTQzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI4OGY1Ny04ZTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDWyVCuBCGGI7I7NqzrRDD6z5l0eOXZaDfUsX5hPvWBk8rxJnjXv5UWpmtyV 2sRWHzDn42rjmlH7RHyXq6xdct3miOzuIEVD4iPSQ/NWvlzzaQkFzJB927quFFgz 1TxBEXbpq2tr6rTqCoEhRFE/ZO38+aXHMOBmWjIoy82F3YhnkmM6L1SAdRfKTMCt 52kSUed1vz4/V2UNZEpu1oTHSMaqlwNzHb1t7HBj4iLxyPCpohkXvam5iW0uhX7P RDmhIDXym2VDrQ7HOukWYhXZadkEre6UvCzd26at+6rOyCpA1hGYPVpAm14vvxPk JQoSKzop44u3lO7mTC+mL+FjLwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDTto4xp Ob3tBIFQejkmT1Ucc22PMB8GA1UdIwQYMBaAFOjd7OwW/jSF1bYaZaYe7NdamBtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkVGOC83N0Y5OEMzOERE OEMxMUVBQkRGMEU2ODJDNEY5QUUwMi82TjNzN0JiLU5JWFZ0aHBscGg3czExcVlH ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOM3M3QmItTklYVnRocGxwaDdzMTFxWUcwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJFRjgvNzdGOThDMzhERDhDMTFFQUJERjBFNjgyQzRGOUFFMDIvODc5QUY5MUM5 QThDMTFFRjk4QTE4RDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnmp4wDwQCAAIwCQMHACABDfSPgDANBgkqhkiG9w0BAQsF AAOCAQEAEJ/GSelp4/Wex+o9kgiLT/1+6dix8K+S01UQin9ckPDD13m2VWkYT9oU hEejFjnK+o5efAU5y5nTbijQ/URW4cxhwB+1UDzGZZ4s0Z95kat5HZpu2PDzuv19 FqGqo1JZLd9HEau4f6pl2MwNyKW8Bax85xu5sg4pRepdFL06XTLzmvBAPzo/ZzDr /nkVhGXzHeZWv1L2wIScFzxpurj40M1sR0PzD+LCSf+LmF1R25ksOmnI9vHow+f0 OXf4NB/x2AszZX8bd3NNVsntum/A2NsOvQTmfP1NWYeJstbNipPWnFngImesnooN RHmCbf00T0YF0f7SwkM5eS1JsDt+XQ== -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:04 2024 by rpki-client on console-ams.rpki-client.org