$ rpki-client -vvf rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/EF14DD34B6E211EAB3BA9536C4F9AE02.roa File: EF14DD34B6E211EAB3BA9536C4F9AE02.roa (raw, json) Hash identifier: dn3kZoWooSddDB41uptssOk+YJNXq/e4qX48GOTMtT4= Subject key identifier: ED:F4:53:71:B1:9F:E7:08:89:65:6B:B4:F7:A3:8B:8C:4D:FD:E7:45 Certificate issuer: /CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Certificate serial: 0B91 Authority key identifier: 4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/EF14DD34B6E211EAB3BA9536C4F9AE02.roa Signing time: Sun 18 Aug 2024 19:17:13 +0000 ROA not before: Sun 18 Aug 2024 19:17:13 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136224 IP address blocks: 103.192.156.0/22 maxlen: 22 103.192.156.0/23 maxlen: 23 103.192.156.0/24 maxlen: 24 103.192.157.0/24 maxlen: 24 103.192.158.0/23 maxlen: 23 103.192.158.0/24 maxlen: 24 103.192.159.0/24 maxlen: 24 202.91.40.0/22 maxlen: 22 202.91.40.0/23 maxlen: 23 202.91.40.0/24 maxlen: 24 202.91.41.0/24 maxlen: 24 202.91.42.0/23 maxlen: 23 202.91.42.0/24 maxlen: 24 202.91.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:43:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2961 (0xb91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173BC9/serialNumber=4A152333C405F56642C2FD03B1C0F1E51F7B64D6 Validity Not Before: Aug 18 19:17:13 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c248b9-33e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:85:aa:30:19:38:46:55:9a:32:1c:dc:60:19: 52:41:a6:3b:82:d2:a3:46:64:d7:a9:a8:09:8b:49: f8:04:a7:6a:ec:56:87:36:dd:08:bf:66:00:9a:33: c2:aa:09:5d:fc:11:13:65:9f:25:7c:a0:e9:b7:1d: a1:a2:0f:7c:e5:b8:5a:90:cc:7e:06:24:e4:00:99: 1c:07:49:33:cd:63:08:c2:27:0c:2c:d7:49:b4:9b: 89:19:78:79:47:74:f8:71:1b:ac:7f:1d:4e:fa:86: 51:88:79:9f:ff:53:43:dd:f9:89:95:91:77:54:bf: c3:02:54:49:96:4d:53:11:3c:2e:2a:1a:d3:57:25: 41:ae:eb:1a:ed:e9:37:34:6e:29:98:2c:e6:92:eb: 8e:e0:72:e3:26:4a:04:8d:f5:5f:62:50:a3:1d:c1: e8:2b:8a:b8:0e:0e:cd:35:2c:2b:9b:c6:49:93:91: 7f:ad:c1:71:54:0b:13:2d:8f:85:56:7f:fd:ad:a3: d2:1b:cb:c7:6d:83:8e:ad:9c:64:74:48:55:fa:4f: e8:a6:ed:f7:40:18:86:71:39:ad:71:9c:a9:06:d3: 83:ce:ce:b0:15:23:cb:6e:8e:61:f2:41:99:6e:37: 0c:d0:47:c3:38:2e:0e:5e:1b:8c:9e:27:86:2b:78: 47:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:F4:53:71:B1:9F:E7:08:89:65:6B:B4:F7:A3:8B:8C:4D:FD:E7:45 X509v3 Authority Key Identifier: keyid:4A:15:23:33:C4:05:F5:66:42:C2:FD:03:B1:C0:F1:E5:1F:7B:64:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/ShUjM8QF9WZCwv0DscDx5R97ZNY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShUjM8QF9WZCwv0DscDx5R97ZNY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173BC9/C5C83CAE13A011EA93EEEF65C4F9AE02/EF14DD34B6E211EAB3BA9536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.192.156.0/22 202.91.40.0/22 Signature Algorithm: sha256WithRSAEncryption 25:2a:65:e3:c9:22:b2:ab:49:2d:03:5e:da:47:34:14:de:19: 73:72:e5:7e:e9:53:49:bf:17:ea:8d:9a:81:02:e3:82:e8:f8: b0:c5:b3:1a:71:5d:65:52:e3:18:8d:4a:4e:6e:f8:8c:c5:ac: ca:27:e5:d1:8f:a1:19:e8:ed:82:54:cf:15:7c:ee:fa:33:c7: bf:d9:45:6e:3b:b8:2a:9f:fa:92:cd:a4:8a:41:5f:60:e3:2f: f6:95:92:7a:27:86:8d:95:90:ae:10:ae:35:87:1f:57:3c:06: cc:47:b4:ec:28:2a:da:b8:8f:95:b1:db:e7:0d:4e:42:dc:5f: 0e:dd:1f:c3:13:68:57:10:1f:78:d0:57:f3:6c:d3:41:41:c2: e8:7f:82:88:30:77:b9:76:fa:2d:b9:42:4e:e6:2b:98:7f:b4: a2:89:d5:ea:c8:44:2e:1e:26:ab:37:d6:ad:85:92:c2:a3:3c: 1b:02:e7:49:a4:8b:6a:b8:a2:22:09:d1:31:b4:6e:bc:65:53: 50:22:c6:cd:bc:95:a4:35:10:27:8a:c4:a9:7e:7e:52:d0:64: d8:3c:ac:30:88:ed:c4:bb:f6:b5:c6:be:b2:6e:43:f0:6d:53: b1:67:1a:aa:e2:66:70:db:17:e0:24:e8:f4:59:23:34:50:07: 19:35:b8:29 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNCQzkxMTAvBgNVBAUTKDRBMTUyMzMzQzQwNUY1NjY0MkMyRkQwM0IxQzBGMUU1 MUY3QjY0RDYwHhcNMjQwODE4MTkxNzEzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmMyNDhiOS0zM2UzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYWqMBk4RlWaMhzcYBlSQaY7gtKjRmTXqagJi0n4BKdq7FaHNt0Iv2YAmjPC qgld/BETZZ8lfKDptx2hog985bhakMx+BiTkAJkcB0kzzWMIwicMLNdJtJuJGXh5 R3T4cRusfx1O+oZRiHmf/1ND3fmJlZF3VL/DAlRJlk1TETwuKhrTVyVBrusa7ek3 NG4pmCzmkuuO4HLjJkoEjfVfYlCjHcHoK4q4Dg7NNSwrm8ZJk5F/rcFxVAsTLY+F Vn/9raPSG8vHbYOOrZxkdEhV+k/opu33QBiGcTmtcZypBtODzs6wFSPLbo5h8kGZ bjcM0EfDOC4OXhuMnieGK3hHtQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO30U3Gx n+cIiWVrtPeji4xN/edFMB8GA1UdIwQYMBaAFEoVIzPEBfVmQsL9A7HA8eUfe2TW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0JDOS9DNUM4M0NBRTEz QTAxMUVBOTNFRUVGNjVDNEY5QUUwMi9TaFVqTThRRjlXWkN3djBEc2NEeDVSOTda TlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoVWpNOFFGOVdaQ3d2MERzY0R4NVI5N1pOWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNCQzkvQzVDODNDQUUxM0EwMTFFQTkzRUVFRjY1QzRGOUFFMDIvRUYxNEREMzRC NkUyMTFFQUIzQkE5NTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnwJwDBALKWygwDQYJKoZIhvcNAQELBQADggEBACUqZePJ IrKrSS0DXtpHNBTeGXNy5X7pU0m/F+qNmoEC44Lo+LDFsxpxXWVS4xiNSk5u+IzF rMon5dGPoRno7YJUzxV87vozx7/ZRW47uCqf+pLNpIpBX2DjL/aVknonho2VkK4Q rjWHH1c8BsxHtOwoKtq4j5Wx2+cNTkLcXw7dH8MTaFcQH3jQV/Ns00FBwuh/gogw d7l2+i25Qk7mK5h/tKKJ1erIRC4eJqs31q2FksKjPBsC50mki2q4oiIJ0TG0brxl U1Aixs28laQ1ECeKxKl+flLQZNg8rDCI7cS79rXGvrJuQ/BtU7FnGqriZnDbF+Ak 6PRZIzRQBxk1uCk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org