$ rpki-client -vvf rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/430342A4C02B11EA85244830C4F9AE02.roa File: 430342A4C02B11EA85244830C4F9AE02.roa (raw, json) Hash identifier: 0DoL/2IpHaxAw9TImjiB81cUOFzWeL1Jqh3GctUyL3w= Subject key identifier: 64:B7:C2:10:51:81:2C:C8:67:0D:A1:6E:90:34:7F:0A:7E:C0:71:21 Certificate issuer: /CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Certificate serial: 0BA6 Authority key identifier: 48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/430342A4C02B11EA85244830C4F9AE02.roa Signing time: Tue 06 Feb 2024 19:37:22 +0000 ROA not before: Tue 06 Feb 2024 19:37:22 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 13444 IP address blocks: 103.133.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 19:32:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2982 (0xba6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174EB5/serialNumber=48E99851C189FA921B86664E30BC57C20ED1A8C4 Validity Not Before: Feb 6 19:37:22 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c28a72-ac03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:df:46:01:3a:a5:f4:44:e3:0e:02:10:99:7c: 31:ee:10:e1:2b:2b:64:31:87:ca:04:a0:e5:f8:80: 95:78:18:c6:88:fc:ee:df:00:1e:ba:0d:21:5e:6e: 5e:12:3e:24:93:bb:c7:ef:a1:13:41:a1:f2:b9:06: 6e:64:c0:18:ba:0f:db:66:8d:6f:f3:a4:b6:60:67: bb:0c:2b:50:b8:e4:9b:70:25:c2:5e:15:2c:0d:61: cd:34:34:29:44:99:e1:1b:5d:b9:80:c1:48:51:db: 29:d4:cd:df:6f:ad:44:1c:1a:91:4b:50:1f:5d:17: 0a:86:57:f3:35:93:26:0c:e4:c8:66:55:ab:51:dc: 49:11:c8:6a:19:a1:a1:9d:57:b1:66:e3:28:be:b8: c9:1f:eb:9b:6e:9d:59:1c:e4:1d:19:08:e8:32:52: 33:75:20:6d:ef:d2:e0:61:97:9f:54:e9:00:4a:1c: e3:df:3d:2a:31:0e:5d:3a:9c:fa:65:10:b1:1d:fb: 4d:1d:6c:22:ef:ae:1b:06:d0:73:89:7a:ec:07:c6: da:6c:fb:c9:5a:65:4d:24:e5:23:ee:de:1d:f2:b2: 71:bc:81:2e:34:ce:5d:e5:66:da:01:15:f3:49:c0: 99:9a:35:66:c5:2b:5b:95:a4:d3:f0:53:81:2b:d6: 22:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B7:C2:10:51:81:2C:C8:67:0D:A1:6E:90:34:7F:0A:7E:C0:71:21 X509v3 Authority Key Identifier: keyid:48:E9:98:51:C1:89:FA:92:1B:86:66:4E:30:BC:57:C2:0E:D1:A8:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SOmYUcGJ-pIbhmZOMLxXwg7RqMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174EB5/AFEA29C2061911EA854A3516C4F9AE02/430342A4C02B11EA85244830C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.93.0/24 Signature Algorithm: sha256WithRSAEncryption 73:81:18:6e:8f:6b:fb:58:af:12:4e:f1:f0:49:9c:41:d3:c8: 16:10:94:df:ec:c6:43:d7:59:19:17:e6:c8:7a:79:7b:c2:2a: fc:36:c9:84:72:ef:bd:55:6f:95:11:07:d9:7b:d8:10:38:c4: 0b:33:4b:3e:6f:dd:f8:c5:44:45:7a:30:e7:64:f6:c9:81:23: f2:3c:5e:a3:41:66:a9:8b:2c:71:18:94:49:de:25:8f:ef:60: f9:de:7e:30:db:14:67:7d:c9:14:3b:88:a2:06:9b:8e:59:ba: 8b:c7:7b:3b:3c:75:e1:21:90:43:45:61:54:73:ec:0f:1f:dd: cc:8b:e9:41:01:70:ee:19:f7:ef:1a:87:a2:06:3a:bb:4b:c5: 3b:9f:c6:77:39:b9:49:67:46:24:57:cd:f7:1f:1d:28:a4:6c: c6:b8:f0:0e:39:d2:6a:33:13:56:3e:7f:14:86:3f:0b:19:21: 24:22:31:55:44:5d:a5:86:71:71:36:0c:51:27:cf:ea:28:ca: c6:4a:c1:7d:68:53:d7:1c:f4:d7:9c:04:56:76:c6:8b:8d:62: 5d:d9:88:86:46:b2:50:d3:b5:af:65:79:cd:59:a9:11:de:a4: d5:c6:cf:45:53:98:96:db:90:e3:04:ac:39:10:c3:17:48:54: 2c:97:3a:58 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRFQjUxMTAvBgNVBAUTKDQ4RTk5ODUxQzE4OUZBOTIxQjg2NjY0RTMwQkM1N0My MEVEMUE4QzQwHhcNMjQwMjA2MTkzNzIyWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyOGE3Mi1hYzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsd9GATql9ETjDgIQmXwx7hDhKytkMYfKBKDl+ICVeBjGiPzu3wAeug0hXm5e Ej4kk7vH76ETQaHyuQZuZMAYug/bZo1v86S2YGe7DCtQuOSbcCXCXhUsDWHNNDQp RJnhG125gMFIUdsp1M3fb61EHBqRS1AfXRcKhlfzNZMmDOTIZlWrUdxJEchqGaGh nVexZuMovrjJH+ubbp1ZHOQdGQjoMlIzdSBt79LgYZefVOkAShzj3z0qMQ5dOpz6 ZRCxHftNHWwi764bBtBziXrsB8babPvJWmVNJOUj7t4d8rJxvIEuNM5d5WbaARXz ScCZmjVmxStblaTT8FOBK9Yi9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGS3whBR gSzIZw2hbpA0fwp+wHEhMB8GA1UdIwQYMBaAFEjpmFHBifqSG4ZmTjC8V8IO0ajE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEVCNS9BRkVBMjlDMjA2 MTkxMUVBODU0QTM1MTZDNEY5QUUwMi9TT21ZVWNHSi1wSWJobVpPTUx4WHdnN1Jx TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NPbVlVY0dKLXBJYmhtWk9NTHhYd2c3UnFNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRFQjUvQUZFQTI5QzIwNjE5MTFFQTg1NEEzNTE2QzRGOUFFMDIvNDMwMzQyQTRD MDJCMTFFQTg1MjQ0ODMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhV0wDQYJKoZIhvcNAQELBQADggEBAHOBGG6Pa/tYrxJO 8fBJnEHTyBYQlN/sxkPXWRkX5sh6eXvCKvw2yYRy771Vb5URB9l72BA4xAszSz5v 3fjFREV6MOdk9smBI/I8XqNBZqmLLHEYlEneJY/vYPnefjDbFGd9yRQ7iKIGm45Z uovHezs8deEhkENFYVRz7A8f3cyL6UEBcO4Z9+8ah6IGOrtLxTufxnc5uUlnRiRX zfcfHSikbMa48A450mozE1Y+fxSGPwsZISQiMVVEXaWGcXE2DFEnz+ooysZKwX1o U9cc9NecBFZ2xouNYl3ZiIZGslDTta9lec1ZqRHepNXGz0VTmJbbkOMErDkQwxdI VCyXOlg= -----END CERTIFICATE-----Generated at Thu May 2 22:28:51 2024 by rpki-client on console-ams.rpki-client.org