$ rpki-client -vvf rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/14EC8116B10B11E58EB48F13C4F9AE02.roa File: 14EC8116B10B11E58EB48F13C4F9AE02.roa (raw, json) Hash identifier: 5qHL59lcbLYTAOl+0OwQssvldpkSxAn75zMYI2/TSOw= Subject key identifier: 54:B9:EE:E6:94:9A:00:70:1A:8B:32:B4:68:64:4F:8B:93:84:18:AF Certificate issuer: /CN=A9175529/serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Certificate serial: 26BB Authority key identifier: CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/14EC8116B10B11E58EB48F13C4F9AE02.roa Signing time: Sat 16 Dec 2023 16:02:25 +0000 ROA not before: Sat 16 Dec 2023 16:02:25 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132124 IP address blocks: 43.224.124.0/22 maxlen: 22 103.11.32.0/22 maxlen: 22 2402:cb00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:38:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9915 (0x26bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175529/serialNumber=CEE6930F48D774D643D55CFFE98B1E63A4D63534 Validity Not Before: Dec 16 16:02:25 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657dca11-391c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b4:12:d5:2c:2d:d5:73:7f:9d:30:df:0d:fc: 85:7b:47:12:2d:0a:a8:cb:1b:ad:a0:30:7f:a8:d1: 55:ab:42:95:d4:25:57:aa:4a:a9:6f:64:56:a6:1f: 39:8a:b7:3a:12:b0:0d:65:aa:e3:4d:0d:cf:c1:9b: 4c:38:8d:e3:7b:97:51:87:39:27:9d:10:89:a7:ad: 9c:a8:12:9e:95:0d:97:26:61:5e:08:b8:68:69:35: ce:55:44:50:62:b0:ef:19:a3:e8:71:7d:eb:e2:a1: 20:4a:20:ab:ca:9b:47:33:4a:a5:aa:3e:7f:4a:0d: ea:a4:4e:b3:ad:a5:4c:41:48:db:9a:86:a9:92:04: b9:6a:88:e6:73:be:0e:75:60:06:ac:2b:01:60:fc: 79:49:d7:7c:a0:43:ba:be:eb:b3:e3:44:db:12:7f: cb:e3:1f:dd:72:ff:44:b7:9a:b7:5f:48:45:ff:4f: ac:b9:19:3e:2a:a5:fc:12:1a:a0:37:30:2d:f9:47: 45:4c:ac:da:90:65:69:58:3a:2e:86:0c:91:26:1d: e3:c2:e9:fc:1b:12:48:61:89:26:41:54:83:00:e6: ba:f1:d5:c0:c9:1d:a2:ba:aa:cd:d4:3e:1d:57:53: 76:64:b9:e8:30:0c:1c:40:2e:4c:95:13:92:f3:b6: 8a:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:B9:EE:E6:94:9A:00:70:1A:8B:32:B4:68:64:4F:8B:93:84:18:AF X509v3 Authority Key Identifier: keyid:CE:E6:93:0F:48:D7:74:D6:43:D5:5C:FF:E9:8B:1E:63:A4:D6:35:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuaTD0jXdNZD1Vz_6YseY6TWNTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175529/0B660040A20711E4BD9EC144C4F9AE02/14EC8116B10B11E58EB48F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.124.0/22 103.11.32.0/22 IPv6: 2402:cb00::/32 Signature Algorithm: sha256WithRSAEncryption 49:11:9d:54:6e:cd:70:e9:cd:cd:38:7a:8f:a0:a7:45:16:77: 19:82:5b:12:1f:57:38:1a:84:c2:e1:ea:93:c0:be:c1:50:8b: 8d:64:af:53:18:73:cc:64:02:3a:90:dc:be:c3:d2:79:88:73: b1:7b:d6:dc:e3:44:2f:4f:42:b2:dc:aa:1a:bd:a0:a8:ec:ab: 56:3d:d1:50:da:c4:36:63:a4:eb:0a:bb:a9:a8:06:e2:87:94: c1:0b:93:d3:10:91:ec:a3:d3:8f:d2:57:33:7a:1d:b0:d6:bd: a3:75:b4:ae:4b:e2:80:8e:5e:1f:fb:f8:87:13:35:6e:a1:60: 50:96:ac:7c:1a:f1:bc:dd:d5:53:1e:09:93:3f:8f:97:6f:e8: 1b:ce:dc:cd:0f:68:23:76:4a:4b:d7:17:27:82:78:22:f8:8a: d1:8d:35:e2:33:33:2a:15:23:42:17:43:8d:58:95:85:4a:b6: 0a:46:2c:4a:67:9b:8c:60:f7:9c:8f:9b:c3:69:aa:71:1f:c8: 2a:0a:80:5a:cc:b8:49:bf:f4:9e:6c:30:27:5f:5c:85:d2:2b: c2:79:ed:ba:e4:1b:7d:0c:9d:ea:b7:fb:e5:b7:82:3a:a9:ce: b7:55:9e:32:e8:23:95:30:2c:3e:b8:5f:34:85:92:c0:ab:ad: 83:7c:ba:33 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICJrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU1MjkxMTAvBgNVBAUTKENFRTY5MzBGNDhENzc0RDY0M0Q1NUNGRkU5OEIxRTYz QTRENjM1MzQwHhcNMjMxMjE2MTYwMjI1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdkY2ExMS0zOTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbQS1Swt1XN/nTDfDfyFe0cSLQqoyxutoDB/qNFVq0KV1CVXqkqpb2RWph85 irc6ErANZarjTQ3PwZtMOI3je5dRhzknnRCJp62cqBKelQ2XJmFeCLhoaTXOVURQ YrDvGaPocX3r4qEgSiCryptHM0qlqj5/Sg3qpE6zraVMQUjbmoapkgS5aojmc74O dWAGrCsBYPx5Sdd8oEO6vuuz40TbEn/L4x/dcv9Et5q3X0hF/0+suRk+KqX8Ehqg NzAt+UdFTKzakGVpWDouhgyRJh3jwun8GxJIYYkmQVSDAOa68dXAyR2iuqrN1D4d V1N2ZLnoMAwcQC5MlROS87aKHwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFFS57uaU mgBwGosytGhkT4uThBivMB8GA1UdIwQYMBaAFM7mkw9I13TWQ9Vc/+mLHmOk1jU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTUyOS8wQjY2MDA0MEEy MDcxMUU0QkQ5RUMxNDRDNEY5QUUwMi96dWFURDBqWGROWkQxVnpfNllzZVk2VFdO VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1YVREMGpYZE5aRDFWel82WXNlWTZUV05UUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU1MjkvMEI2NjAwNDBBMjA3MTFFNEJEOUVDMTQ0QzRGOUFFMDIvMTRFQzgxMTZC MTBCMTFFNThFQjQ4RjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr4HwDBAJnCyAwDQQCAAIwBwMFACQCywAwDQYJKoZIhvcN AQELBQADggEBAEkRnVRuzXDpzc04eo+gp0UWdxmCWxIfVzgahMLh6pPAvsFQi41k r1MYc8xkAjqQ3L7D0nmIc7F71tzjRC9PQrLcqhq9oKjsq1Y90VDaxDZjpOsKu6mo BuKHlMELk9MQkeyj04/SVzN6HbDWvaN1tK5L4oCOXh/7+IcTNW6hYFCWrHwa8bzd 1VMeCZM/j5dv6BvO3M0PaCN2SkvXFyeCeCL4itGNNeIzMyoVI0IXQ41YlYVKtgpG LEpnm4xg95yPm8NpqnEfyCoKgFrMuEm/9J5sMCdfXIXSK8J57brkG30Mneq3++W3 gjqpzrdVnjLoI5UwLD64XzSFksCrrYN8ujM= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:49 2024 by rpki-client on console-fra.rpki-client.org