$ rpki-client -vvf rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/899A5138691611EFBED13942C4F9AE02.roa File: 899A5138691611EFBED13942C4F9AE02.roa (raw, json) Hash identifier: x1ayzpnW5YFxaRN24Av9ElsmrFSke9qosmrhE25drSQ= Subject key identifier: 15:08:62:4B:DB:D0:E6:D0:9D:84:D1:82:BC:4C:A5:C4:66:5E:78:CD Certificate issuer: /CN=A9175155/serialNumber=80084A34FD4F3B932C092182407B8905D9406500 Certificate serial: 059D Authority key identifier: 80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/899A5138691611EFBED13942C4F9AE02.roa Signing time: Mon 02 Sep 2024 10:31:39 +0000 ROA not before: Mon 02 Sep 2024 10:31:39 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137967 IP address blocks: 103.136.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Mar 2025 22:41:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1437 (0x59d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175155 Validity Not Before: Sep 2 10:31:39 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66d5940b-820c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:dc:68:4c:dc:5e:c0:0a:51:0b:c3:49:ea:80: ae:0c:6c:14:be:36:27:22:30:35:7a:5e:e9:e5:e2: e6:48:59:28:87:c2:48:a2:09:03:fb:5e:f9:70:ae: 78:b9:de:1e:bb:13:99:6c:ff:ca:c8:c6:a8:fc:dc: 88:36:e5:0b:8a:8d:82:7b:ff:34:52:ad:9b:44:6a: 7f:df:26:fd:05:3c:db:a9:ca:00:08:b1:54:eb:9c: f8:79:44:97:b1:35:8a:f9:09:5f:78:ab:90:e1:a0: b9:53:60:28:6c:94:d0:0a:2d:22:95:56:90:5d:94: 13:b3:4d:17:bc:98:40:40:07:41:60:2f:85:b0:d8: fc:58:c4:b1:ba:54:dc:fa:46:ee:9c:be:44:6f:85: 52:86:1f:7a:e1:7d:65:3f:09:de:82:75:07:86:fc: 5c:13:b3:00:36:a5:a7:8a:2c:67:fc:c4:2c:58:9f: ea:41:bf:11:47:3e:88:e5:32:a2:97:a1:16:e9:ba: 00:38:89:1e:7c:20:3f:82:ce:20:89:41:a2:7a:e7: 25:e5:ad:8e:a9:5a:c7:ed:4f:5a:20:98:f7:56:14: a8:29:38:40:55:ab:c9:8f:42:81:1f:4b:8a:f8:e8: 4e:8e:0d:06:ad:23:47:d3:cc:1b:68:03:3d:95:70: 5a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:08:62:4B:DB:D0:E6:D0:9D:84:D1:82:BC:4C:A5:C4:66:5E:78:CD X509v3 Authority Key Identifier: keyid:80:08:4A:34:FD:4F:3B:93:2C:09:21:82:40:7B:89:05:D9:40:65:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/gAhKNP1PO5MsCSGCQHuJBdlAZQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gAhKNP1PO5MsCSGCQHuJBdlAZQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175155/3744B3C4B02811EB9D27891AC4F9AE02/899A5138691611EFBED13942C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.3.0/24 Signature Algorithm: sha256WithRSAEncryption 57:10:df:5e:5f:b8:1a:3b:ca:4f:c0:40:97:17:83:21:38:8c: 2a:d7:15:45:f9:7b:4c:c4:d6:07:ed:69:8e:f6:2c:60:be:8a: a0:75:ec:d3:e1:73:84:2a:b9:4c:df:dc:67:20:8c:ce:38:04: a3:44:7b:cb:cc:49:5d:96:74:6f:ee:a7:66:3a:f9:98:be:ce: d1:af:5b:0c:c5:04:fd:19:8e:69:e1:15:41:47:20:7c:99:83: 0b:93:fa:3a:9d:33:8b:6a:66:3f:81:b6:19:32:17:25:6a:16: d8:1a:59:06:d8:f2:e7:a9:7f:8c:74:ce:9c:de:e7:3c:9c:65: a2:3c:28:81:f6:00:5c:ae:6a:f7:96:c2:5d:f4:38:a4:c5:f4: 04:c7:d5:f8:4c:45:58:2e:3f:ab:e4:91:b7:06:36:ea:2b:f5: c6:b2:79:82:21:f8:b3:bf:cb:9a:46:e6:7b:ce:3c:df:49:fc: 18:71:2b:d1:f4:67:cd:ea:64:cf:30:9a:ad:a2:d4:f7:59:e7: 04:eb:af:f2:cc:31:45:a9:f5:3e:8a:2d:d4:44:58:af:db:57: aa:62:a5:ad:e2:32:03:90:64:af:5b:48:ad:90:8d:c1:a8:93: 9b:cc:fc:56:fa:f1:01:69:0f:99:2b:d9:ff:9b:43:ef:94:d1: 89:ff:20:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUxNTUxMTAvBgNVBAUTKDgwMDg0QTM0RkQ0RjNCOTMyQzA5MjE4MjQwN0I4OTA1 RDk0MDY1MDAwHhcNMjQwOTAyMTAzMTM5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1OTQwYi04MjBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4txoTNxewApRC8NJ6oCuDGwUvjYnIjA1el7p5eLmSFkoh8JIogkD+175cK54 ud4euxOZbP/KyMao/NyINuULio2Ce/80Uq2bRGp/3yb9BTzbqcoACLFU65z4eUSX sTWK+QlfeKuQ4aC5U2AobJTQCi0ilVaQXZQTs00XvJhAQAdBYC+FsNj8WMSxulTc +kbunL5Eb4VShh964X1lPwnegnUHhvxcE7MANqWniixn/MQsWJ/qQb8RRz6I5TKi l6EW6boAOIkefCA/gs4giUGieucl5a2OqVrH7U9aIJj3VhSoKThAVavJj0KBH0uK +OhOjg0GrSNH08wbaAM9lXBaPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBUIYkvb 0ObQnYTRgrxMpcRmXnjNMB8GA1UdIwQYMBaAFIAISjT9TzuTLAkhgkB7iQXZQGUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTE1NS8zNzQ0QjNDNEIw MjgxMUVCOUQyNzg5MUFDNEY5QUUwMi9nQWhLTlAxUE81TXNDU0dDUUh1SkJkbEFa UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dBaEtOUDFQTzVNc0NTR0NRSHVKQmRsQVpRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUxNTUvMzc0NEIzQzRCMDI4MTFFQjlEMjc4OTFBQzRGOUFFMDIvODk5QTUxMzg2 OTE2MTFFRkJFRDEzOTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniAMwDQYJKoZIhvcNAQELBQADggEBAFcQ315fuBo7yk/A QJcXgyE4jCrXFUX5e0zE1gftaY72LGC+iqB17NPhc4QquUzf3GcgjM44BKNEe8vM SV2WdG/up2Y6+Zi+ztGvWwzFBP0ZjmnhFUFHIHyZgwuT+jqdM4tqZj+BthkyFyVq FtgaWQbY8uepf4x0zpze5zycZaI8KIH2AFyuaveWwl30OKTF9ATH1fhMRVguP6vk kbcGNuor9cayeYIh+LO/y5pG5nvOPN9J/BhxK9H0Z83qZM8wmq2i1PdZ5wTrr/LM MUWp9T6KLdREWK/bV6pipa3iMgOQZK9bSK2QjcGok5vM/Fb68QFpD5kr2f+bQ++U 0Yn/ILw= -----END CERTIFICATE-----Generated at Thu Mar 13 21:49:26 2025 by rpki-client