$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/2A9AFB320BC911EBBA11562FC4F9AE02.roa File: 2A9AFB320BC911EBBA11562FC4F9AE02.roa (raw, json) Hash identifier: 8Ead/6roCcIWAO/F6fTJ08XA18GUuGo77XaTq8IG4j8= Subject key identifier: EB:63:F7:AD:7C:D8:69:B3:A5:FB:3A:2A:34:AC:CC:BA:1C:5D:D0:2E Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0B90 Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/2A9AFB320BC911EBBA11562FC4F9AE02.roa Signing time: Sun 18 Aug 2024 19:17:12 +0000 ROA not before: Sun 18 Aug 2024 19:17:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 134404 IP address blocks: 103.192.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2960 (0xb90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Aug 18 19:17:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c248b8-43bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9f:08:10:4e:c0:1e:85:14:7e:87:11:97:e3: d5:27:ad:80:ad:53:bc:46:f2:24:c4:2a:a0:53:de: 8a:62:e0:16:a2:9d:2f:9a:01:02:ae:32:11:4a:55: ef:63:fb:59:11:81:9b:fc:f3:ea:bc:48:e1:3e:4f: 03:b0:62:d6:80:2d:90:c5:46:f2:54:2a:b7:84:fd: fb:3d:38:db:a9:2f:c4:18:8f:b9:e2:c4:d1:45:7a: 9f:0f:86:fa:0c:da:ab:b0:3e:7b:1c:17:74:fd:fc: 5c:53:eb:07:a7:5d:ab:fc:e4:d9:a2:f3:bd:cd:57: bc:8e:2d:b7:80:32:0e:e4:2b:6d:11:ca:93:6a:21: d1:cb:6e:b1:50:d0:70:1c:e4:f8:df:ff:98:85:57: 7b:cb:4d:41:aa:04:87:3b:40:60:3d:7e:b0:a6:f1: 69:d4:ed:c4:99:f8:6b:f8:9d:46:04:7d:c1:e1:d0: 08:3f:c8:81:81:36:8c:2b:c1:87:70:7a:a7:9e:90: 3e:0c:25:7d:9e:00:b8:63:72:5a:89:0c:a7:98:e2: 1d:4b:e1:8a:0a:52:c2:cf:f5:39:36:2c:29:e4:a1: b5:8f:13:9f:8b:f9:56:73:99:11:14:e2:06:ae:9e: bc:60:be:e0:81:c0:51:96:94:94:9b:dd:27:32:59: ce:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:63:F7:AD:7C:D8:69:B3:A5:FB:3A:2A:34:AC:CC:BA:1C:5D:D0:2E X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/2A9AFB320BC911EBBA11562FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.192.156.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:05:78:e3:39:bb:31:40:c5:0f:b0:48:26:2d:b0:2a:98:a7: bd:32:ec:b9:65:0f:da:96:ce:cc:4f:89:69:4f:08:8e:2f:a0: 29:12:b7:64:2f:28:c8:1d:14:19:41:1a:b6:a3:a6:ac:43:ac: fc:c6:db:f6:a7:0e:44:67:43:4a:20:bd:41:c3:eb:53:e1:61: 5a:a0:2a:14:ed:51:d7:05:c8:29:c7:b9:f0:ea:bd:3c:bc:c9: c9:89:9f:b1:fe:04:c7:78:c2:b5:da:81:c0:9e:5f:11:d8:2b: e9:85:9b:e2:e5:2c:a7:58:0e:45:f8:9a:99:8e:93:2d:56:c5: 26:50:34:12:d6:5b:28:82:b1:a2:71:d8:fe:ef:1f:3d:2e:0e: eb:1e:7d:29:20:b9:4a:09:d8:e4:99:e6:3e:3c:3e:37:20:ba: 8c:32:b5:31:f9:1a:69:2b:11:f6:43:72:c9:27:ed:2a:99:7b: fd:cc:b4:40:ee:cf:34:76:c7:87:ef:1c:98:54:eb:bf:2e:3c: c5:5d:05:3e:d3:43:4b:40:b2:94:fe:9b:f1:46:8b:1d:ed:80: e6:af:d2:4e:05:73:6b:35:d6:23:45:2f:de:89:d2:c8:3f:4a: b7:99:98:ef:3c:e0:10:94:86:21:d0:e6:44:92:e2:35:f8:dc: cb:52:2f:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjQwODE4MTkxNzEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmMyNDhiOC00M2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwp8IEE7AHoUUfocRl+PVJ62ArVO8RvIkxCqgU96KYuAWop0vmgECrjIRSlXv Y/tZEYGb/PPqvEjhPk8DsGLWgC2QxUbyVCq3hP37PTjbqS/EGI+54sTRRXqfD4b6 DNqrsD57HBd0/fxcU+sHp12r/OTZovO9zVe8ji23gDIO5CttEcqTaiHRy26xUNBw HOT43/+YhVd7y01BqgSHO0BgPX6wpvFp1O3Emfhr+J1GBH3B4dAIP8iBgTaMK8GH cHqnnpA+DCV9ngC4Y3JaiQynmOIdS+GKClLCz/U5Niwp5KG1jxOfi/lWc5kRFOIG rp68YL7ggcBRlpSUm90nMlnOVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOtj9618 2Gmzpfs6KjSszLocXdAuMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNCQzkvQzVDODNDQUUxM0EwMTFFQTkzRUVFRjY1QzRGOUFFMDIvMkE5QUZCMzIw QkM5MTFFQkJBMTE1NjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnwJwwDQYJKoZIhvcNAQELBQADggEBAGsFeOM5uzFAxQ+w SCYtsCqYp70y7LllD9qWzsxPiWlPCI4voCkSt2QvKMgdFBlBGrajpqxDrPzG2/an DkRnQ0ogvUHD61PhYVqgKhTtUdcFyCnHufDqvTy8ycmJn7H+BMd4wrXagcCeXxHY K+mFm+LlLKdYDkX4mpmOky1WxSZQNBLWWyiCsaJx2P7vHz0uDusefSkguUoJ2OSZ 5j48PjcguowytTH5GmkrEfZDcskn7SqZe/3MtEDuzzR2x4fvHJhU678uPMVdBT7T Q0tAspT+m/FGix3tgOav0k4Fc2s11iNFL96J0sg/SreZmO884BCUhiHQ5kSS4jX4 3MtSL14= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org