$ rpki-client -vvf rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/E21E5A44EB5611EA85A6FA39C4F9AE02.roa File: E21E5A44EB5611EA85A6FA39C4F9AE02.roa (raw, json) Hash identifier: ZX23RhuYqkzoLKfZ4oAAbrq1ioRUR074gyPzJolxmF4= Subject key identifier: 4B:E0:CE:6D:D7:09:BA:3B:F3:63:78:F0:8E:18:49:E4:77:6D:AB:62 Certificate issuer: /CN=A9174CB0/serialNumber=87BF57FBBCE0645E291D4946E5C7227624371ACE Certificate serial: 076F Authority key identifier: 87:BF:57:FB:BC:E0:64:5E:29:1D:49:46:E5:C7:22:76:24:37:1A:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h79X-7zgZF4pHUlG5ccidiQ3Gs4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/E21E5A44EB5611EA85A6FA39C4F9AE02.roa Signing time: Fri 04 Oct 2024 21:30:20 +0000 ROA not before: Fri 04 Oct 2024 21:30:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141024 IP address blocks: 103.155.20.0/23 maxlen: 23 103.155.20.0/24 maxlen: 24 103.155.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/h79X-7zgZF4pHUlG5ccidiQ3Gs4.crl rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/h79X-7zgZF4pHUlG5ccidiQ3Gs4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h79X-7zgZF4pHUlG5ccidiQ3Gs4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1903 (0x76f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174CB0/serialNumber=87BF57FBBCE0645E291D4946E5C7227624371ACE Validity Not Before: Oct 4 21:30:20 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67005e6c-38c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:25:83:19:e7:2a:17:a9:35:bb:6e:a2:81:73: b7:7a:83:92:4b:74:dd:d2:98:c3:ce:0d:ad:f0:ca: d5:fe:f7:30:49:1a:f7:f5:99:e8:09:de:64:e2:be: ab:e3:2c:3d:6c:06:af:5c:b9:eb:33:2f:d4:d3:5b: 88:85:8d:91:30:3c:6e:8e:92:10:7b:f5:bf:a2:a7: eb:22:f1:13:92:c1:25:ac:28:a9:2b:49:af:62:04: 73:21:5d:7e:ec:9e:cb:be:f5:e0:e5:43:c5:99:d9: fa:d3:8c:d3:1a:68:c6:bc:4f:8e:3d:c0:a3:7a:c9: ea:54:12:d0:88:83:ed:04:bd:b2:a2:1b:63:ff:3b: ce:ee:24:41:54:20:0f:41:86:04:14:4b:b1:59:ca: 1a:d4:b1:49:25:8c:00:3f:54:80:81:d1:ec:f3:08: 1d:b7:46:d7:3e:c4:8e:12:a7:b7:6f:39:44:0b:6c: bc:2c:59:b3:31:7d:27:45:db:02:e2:eb:3f:be:70: e7:f7:36:73:1d:f1:d7:18:96:f9:6e:2d:18:0a:9b: 1f:26:0c:c9:f6:54:bd:1c:d2:fc:65:84:82:0d:d5: 35:72:69:95:9a:6d:fd:6d:bb:a9:91:15:22:f5:d7: 4b:0d:65:2e:c1:bb:c3:d8:28:b8:02:87:37:af:b7: 21:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:E0:CE:6D:D7:09:BA:3B:F3:63:78:F0:8E:18:49:E4:77:6D:AB:62 X509v3 Authority Key Identifier: keyid:87:BF:57:FB:BC:E0:64:5E:29:1D:49:46:E5:C7:22:76:24:37:1A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/h79X-7zgZF4pHUlG5ccidiQ3Gs4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h79X-7zgZF4pHUlG5ccidiQ3Gs4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174CB0/CCAC1454EB5511EABDE24E36C4F9AE02/E21E5A44EB5611EA85A6FA39C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.20.0/23 Signature Algorithm: sha256WithRSAEncryption ee:00:24:fa:b1:02:e7:cc:c2:8b:2e:17:08:dc:71:43:9f:01: 56:e1:a5:34:03:81:51:50:82:ee:7f:ef:e7:94:7d:67:f7:0c: 47:87:dc:be:5b:5e:7c:fd:28:10:28:98:a3:a5:fc:68:09:56: dd:60:09:fa:0a:a4:2e:4e:c8:a8:36:68:ff:ec:90:ee:30:9e: f0:ab:bf:d1:a9:95:a4:31:35:a1:28:9f:9d:8b:61:38:f9:58: 8a:69:1d:53:7b:c7:f4:d4:32:d6:43:f9:6f:69:b0:0c:6d:4a: a9:dd:a7:cd:78:aa:aa:e5:1a:9a:be:db:1a:0b:d8:fd:cd:6b: 26:c4:02:1f:33:ca:de:85:f9:b1:49:de:3f:a1:0d:64:ac:9b: d9:f3:fb:71:45:3a:3b:52:a6:5b:26:17:b5:77:1e:f3:3f:9c: 3e:ff:82:30:ef:95:9e:1f:bc:df:fd:81:5b:d8:e6:ec:2b:27: 4f:98:0a:f9:81:19:a8:95:02:b0:28:21:ae:83:cf:bf:08:86: ea:ec:d6:b2:53:62:44:cf:cc:7b:02:36:05:54:83:38:18:59: 24:3b:0f:52:18:bf:94:5e:43:e1:11:d7:0d:da:3d:53:fb:b6: a6:2d:f4:aa:23:ff:96:32:ae:8e:35:93:0d:dc:fe:68:56:31: ff:9f:52:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB28wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRDQjAxMTAvBgNVBAUTKDg3QkY1N0ZCQkNFMDY0NUUyOTFENDk0NkU1QzcyMjc2 MjQzNzFBQ0UwHhcNMjQxMDA0MjEzMDIwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwNWU2Yy0zOGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSWDGecqF6k1u26igXO3eoOSS3Td0pjDzg2t8MrV/vcwSRr39ZnoCd5k4r6r 4yw9bAavXLnrMy/U01uIhY2RMDxujpIQe/W/oqfrIvETksElrCipK0mvYgRzIV1+ 7J7LvvXg5UPFmdn604zTGmjGvE+OPcCjesnqVBLQiIPtBL2yohtj/zvO7iRBVCAP QYYEFEuxWcoa1LFJJYwAP1SAgdHs8wgdt0bXPsSOEqe3bzlEC2y8LFmzMX0nRdsC 4us/vnDn9zZzHfHXGJb5bi0YCpsfJgzJ9lS9HNL8ZYSCDdU1cmmVmm39bbupkRUi 9ddLDWUuwbvD2Ci4Aoc3r7chOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEvgzm3X Cbo782N48I4YSeR3batiMB8GA1UdIwQYMBaAFIe/V/u84GReKR1JRuXHInYkNxrO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NENCMC9DQ0FDMTQ1NEVC NTUxMUVBQkRFMjRFMzZDNEY5QUUwMi9oNzlYLTd6Z1pGNHBIVWxHNWNjaWRpUTNH czQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3OVgtN3pnWkY0cEhVbEc1Y2NpZGlRM0dzNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRDQjAvQ0NBQzE0NTRFQjU1MTFFQUJERTI0RTM2QzRGOUFFMDIvRTIxRTVBNDRF QjU2MTFFQTg1QTZGQTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnmxQwDQYJKoZIhvcNAQELBQADggEBAO4AJPqxAufMwosu FwjccUOfAVbhpTQDgVFQgu5/7+eUfWf3DEeH3L5bXnz9KBAomKOl/GgJVt1gCfoK pC5OyKg2aP/skO4wnvCrv9GplaQxNaEon52LYTj5WIppHVN7x/TUMtZD+W9psAxt Sqndp814qqrlGpq+2xoL2P3NaybEAh8zyt6F+bFJ3j+hDWSsm9nz+3FFOjtSplsm F7V3HvM/nD7/gjDvlZ4fvN/9gVvY5uwrJ0+YCvmBGaiVArAoIa6Dz78Ihurs1rJT YkTPzHsCNgVUgzgYWSQ7D1IYv5ReQ+ER1w3aPVP7tqYt9Koj/5Yyro41kw3c/mhW Mf+fUmM= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:30 2024 by rpki-client on console-ams.rpki-client.org