$ rpki-client -vvf rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/C9FDEC12E82411EE81065223C4F9AE02.roa File: C9FDEC12E82411EE81065223C4F9AE02.roa (raw, json) Hash identifier: w8SNcu2W86NVWJqOd27to5fWU6al9qmk5VnBP7mMOjs= Subject key identifier: 0D:7E:24:04:AB:8C:E3:4B:13:30:82:1F:91:43:16:D9:E9:6F:E4:C8 Certificate issuer: /CN=A9173B29/serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Certificate serial: 5F Authority key identifier: C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/C9FDEC12E82411EE81065223C4F9AE02.roa Signing time: Tue 03 Sep 2024 07:49:20 +0000 ROA not before: Tue 03 Sep 2024 07:49:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 18013 IP address blocks: 103.142.246.0/24 maxlen: 24 103.142.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:49:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 95 (0x5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173B29/serialNumber=C55187B00B1A73375F8456885F6A107EE1D935CF Validity Not Before: Sep 3 07:49:20 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d6bf80-d95d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:20:55:85:2d:71:5f:21:9f:9d:5b:49:8f:21: 45:82:4e:4e:21:b8:e6:29:14:d0:cd:3e:e3:ca:d4: 4b:e2:85:a4:04:d7:46:83:70:88:4e:64:2a:6f:c1: 3d:97:41:75:63:ff:50:06:a5:08:49:4d:80:5c:dc: fd:c1:9b:7b:6f:a8:d8:3b:c0:8a:f7:15:75:5d:10: e5:d8:bb:12:1e:1a:7c:ac:21:d3:4b:ef:d7:c0:c2: 90:66:ff:fa:16:1b:8d:62:4b:88:1c:eb:28:bd:54: fc:e6:91:9a:00:fe:7c:1b:3f:a7:68:87:e0:ea:d5: e3:9d:af:56:22:44:01:70:ae:80:e8:c9:0a:94:04: 79:02:63:b7:64:f0:de:60:e6:a0:74:9d:00:2c:fb: 32:d0:11:71:da:09:72:3d:59:f9:64:23:26:0f:ca: 4f:ab:a1:17:aa:7b:b0:d9:c9:ab:ac:f2:c6:4c:97: 0a:a4:0d:0f:50:1f:44:50:5c:16:b8:e6:79:d7:a4: 0d:62:da:30:0c:9c:6c:a9:63:9c:51:02:18:f8:9d: cf:e6:21:be:e5:10:1e:59:3b:f4:d7:aa:fa:62:30: 46:da:33:d5:ff:16:af:54:3c:a1:5e:e7:42:13:5e: f1:34:ac:cc:db:1b:9d:13:01:e1:e7:95:b4:db:29: 33:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:7E:24:04:AB:8C:E3:4B:13:30:82:1F:91:43:16:D9:E9:6F:E4:C8 X509v3 Authority Key Identifier: keyid:C5:51:87:B0:0B:1A:73:37:5F:84:56:88:5F:6A:10:7E:E1:D9:35:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/xVGHsAsaczdfhFaIX2oQfuHZNc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xVGHsAsaczdfhFaIX2oQfuHZNc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173B29/617E9448E82411EEAFB7DA7DC4F9AE02/C9FDEC12E82411EE81065223C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.246.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:91:f5:ce:8e:cb:3a:0f:ce:e7:53:90:01:10:fa:33:9c:13: 23:22:1b:2a:23:fb:e2:77:fc:c4:db:48:2e:6e:f2:c5:c6:ad: 8c:8f:50:00:66:b5:bb:f0:16:5b:3d:d4:c8:a0:a4:48:f8:08: e9:1c:c9:a7:2b:6e:5b:34:59:86:63:2a:dc:97:8a:57:bb:d4: 72:a6:bd:31:30:03:0d:c2:28:f9:06:31:fa:b1:72:d8:d4:81: e3:e7:28:77:2e:8b:c1:09:6c:e3:ec:cf:29:40:52:b1:42:af: b7:bf:d6:79:21:3d:ac:c1:f5:db:f9:ce:02:dd:d2:07:48:e3: 1f:1e:ae:b4:a8:85:8d:e8:15:a9:ec:89:d6:d2:0b:44:f3:ea: d1:7a:ae:43:f8:fb:81:f8:dd:66:f9:0b:14:13:05:4c:6d:c1: 9e:0e:4c:99:47:ad:85:03:96:76:15:cd:d1:ca:67:de:4d:d6: 2d:80:51:f5:67:c5:d4:55:70:28:b4:ec:01:0a:e1:f5:e3:be: 10:34:05:f9:73:76:a2:c5:7b:e2:94:4c:e6:13:a1:03:48:79: 1c:93:6d:7f:a3:3e:21:b0:93:2b:4f:29:07:12:bc:c4:36:53: ee:a1:19:c2:0b:30:d6:df:b6:2d:b2:33:f3:39:b9:9c:42:cf: c1:be:96:c5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0IyOTExMC8GA1UEBRMoQzU1MTg3QjAwQjFBNzMzNzVGODQ1Njg4NUY2QTEwN0VF MUQ5MzVDRjAeFw0yNDA5MDMwNzQ5MjBaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDZiZjgwLWQ5NWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/IFWFLXFfIZ+dW0mPIUWCTk4huOYpFNDNPuPK1EvihaQE10aDcIhOZCpvwT2X QXVj/1AGpQhJTYBc3P3Bm3tvqNg7wIr3FXVdEOXYuxIeGnysIdNL79fAwpBm//oW G41iS4gc6yi9VPzmkZoA/nwbP6doh+Dq1eOdr1YiRAFwroDoyQqUBHkCY7dk8N5g 5qB0nQAs+zLQEXHaCXI9WflkIyYPyk+roReqe7DZyaus8sZMlwqkDQ9QH0RQXBa4 5nnXpA1i2jAMnGypY5xRAhj4nc/mIb7lEB5ZO/TXqvpiMEbaM9X/Fq9UPKFe50IT XvE0rMzbG50TAeHnlbTbKTPzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUDX4kBKuM 40sTMIIfkUMW2elv5MgwHwYDVR0jBBgwFoAUxVGHsAsaczdfhFaIX2oQfuHZNc8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczQjI5LzYxN0U5NDQ4RTgy NDExRUVBRkI3REE3REM0RjlBRTAyL3hWR0hzQXNhY3pkZmhGYUlYMm9RZnVIWk5j OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveFZHSHNBc2FjemRmaEZhSVgyb1FmdUhaTmM4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0IyOS82MTdFOTQ0OEU4MjQxMUVFQUZCN0RBN0RDNEY5QUUwMi9DOUZERUMxMkU4 MjQxMUVFODEwNjUyMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeO9jANBgkqhkiG9w0BAQsFAAOCAQEAH5H1zo7LOg/O51OQ ARD6M5wTIyIbKiP74nf8xNtILm7yxcatjI9QAGa1u/AWWz3UyKCkSPgI6RzJpytu WzRZhmMq3JeKV7vUcqa9MTADDcIo+QYx+rFy2NSB4+cody6LwQls4+zPKUBSsUKv t7/WeSE9rMH12/nOAt3SB0jjHx6utKiFjegVqeyJ1tILRPPq0XquQ/j7gfjdZvkL FBMFTG3Bng5MmUethQOWdhXN0cpn3k3WLYBR9WfF1FVwKLTsAQrh9eO+EDQF+XN2 osV74pRM5hOhA0h5HJNtf6M+IbCTK08pBxK8xDZT7qEZwgsw1t+2LbIz8zm5nELP wb6WxQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org