$ rpki-client -vvf rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/C9819D5E705711EFBDEF9265C4F9AE02.roa File: C9819D5E705711EFBDEF9265C4F9AE02.roa (raw, json) Hash identifier: 1McoUaNADtVmxnwjUYo0/yr8ZNju9sl8ZAS30i7LT7Y= Subject key identifier: 23:16:AC:23:B9:8A:BB:ED:D7:0F:F9:99:9D:1D:46:C0:6F:38:69:90 Certificate issuer: /CN=A91776C9/serialNumber=9B94CE6E35550A7425BB44162DF37CBFBE053C25 Certificate serial: E0 Authority key identifier: 9B:94:CE:6E:35:55:0A:74:25:BB:44:16:2D:F3:7C:BF:BE:05:3C:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5TObjVVCnQlu0QWLfN8v74FPCU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/C9819D5E705711EFBDEF9265C4F9AE02.roa Signing time: Wed 11 Sep 2024 16:06:22 +0000 ROA not before: Wed 11 Sep 2024 16:06:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17823 IP address blocks: 103.155.66.0/24 maxlen: 24 2001:df4:b880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/m5TObjVVCnQlu0QWLfN8v74FPCU.crl rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/m5TObjVVCnQlu0QWLfN8v74FPCU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5TObjVVCnQlu0QWLfN8v74FPCU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91776C9/serialNumber=9B94CE6E35550A7425BB44162DF37CBFBE053C25 Validity Not Before: Sep 11 16:06:22 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e1bffe-a81c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:09:de:a5:60:63:f2:31:14:a3:3a:4f:7f:09: 65:43:50:8b:5f:66:ba:09:b9:33:7b:e3:c2:b3:09: 10:11:93:df:59:10:8f:9d:16:6c:c4:d7:b7:bd:02: 16:b3:bc:0f:a1:e2:c5:ef:50:75:e8:b1:20:42:b6: ba:71:01:5d:f0:89:91:84:24:5c:14:f6:9a:c5:81: 63:82:58:ec:1c:5d:ec:da:87:a2:9e:07:52:43:5c: fe:b8:9b:0a:0b:85:cb:f9:49:90:a8:e6:20:b7:35: da:f7:e1:37:01:3e:32:64:fb:06:bf:a6:03:ea:25: e8:1e:97:23:42:0b:f8:e7:07:fa:c7:cf:25:a2:ea: b9:52:9e:89:6b:92:cf:5a:1f:da:b3:ff:aa:4d:bf: 80:ee:b2:bc:7a:10:17:70:df:d1:19:3e:72:43:4b: b7:29:75:23:be:58:44:82:ca:51:a6:87:93:20:88: 82:37:73:b2:36:4d:3f:2e:1c:f2:72:51:c5:01:2e: 9f:67:d7:95:a1:ee:8c:cc:65:ca:06:79:a6:a4:e9: 6d:68:79:85:d6:8b:3f:38:ab:b0:fa:cb:28:5b:99: fd:22:01:80:4b:2f:f6:c3:0c:6b:59:1c:4a:7f:11: 37:45:55:8e:66:4a:cf:c5:2f:bc:7c:19:a0:3c:7a: 84:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:16:AC:23:B9:8A:BB:ED:D7:0F:F9:99:9D:1D:46:C0:6F:38:69:90 X509v3 Authority Key Identifier: keyid:9B:94:CE:6E:35:55:0A:74:25:BB:44:16:2D:F3:7C:BF:BE:05:3C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/m5TObjVVCnQlu0QWLfN8v74FPCU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5TObjVVCnQlu0QWLfN8v74FPCU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/C9819D5E705711EFBDEF9265C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.66.0/24 IPv6: 2001:df4:b880::/48 Signature Algorithm: sha256WithRSAEncryption 0d:ac:cb:f0:96:85:de:dd:4a:15:47:e7:d9:54:4b:75:bb:63: 1e:1e:d1:79:fe:93:b0:f7:cb:5b:57:00:cf:75:2b:99:c7:8e: 5f:6a:0a:8e:30:04:ce:bb:28:bc:25:ce:91:76:d2:0a:6c:37: 66:83:3c:2d:49:a5:ee:76:8a:6e:b1:f6:ec:4c:1c:42:4b:98: d1:16:a2:25:90:66:c1:9f:ea:03:67:07:dd:07:c4:03:9f:b1: 92:18:26:c1:da:20:c7:1c:9a:ed:2e:27:b8:07:44:f7:0f:71: 23:79:d4:cb:d5:26:3a:d7:11:14:74:ac:fe:b3:ba:22:a1:19: 27:3d:c9:fb:1b:12:d8:03:04:75:7e:d1:07:72:8d:78:71:6e: 9d:b8:d8:2e:ab:b1:bd:25:23:cc:d6:20:aa:4f:3b:f0:2e:5e: b8:9a:0c:8d:8b:05:07:15:61:55:86:e0:d1:b1:b4:35:ef:40: 65:ed:46:4a:ba:d1:e6:dc:43:6d:b2:c6:aa:bb:3c:62:7c:58: 0e:bc:89:4e:a7:82:70:34:ad:fc:3c:fe:f1:20:e2:35:db:d5: 0e:93:ca:07:f6:2d:f4:cd:6c:b2:a3:ce:40:dc:3c:e5:3d:31: bc:18:85:21:e5:78:87:43:bc:fc:c7:fc:e5:0d:66:12:ff:0a: 12:89:d2:cb -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzc2QzkxMTAvBgNVBAUTKDlCOTRDRTZFMzU1NTBBNzQyNUJCNDQxNjJERjM3Q0JG QkUwNTNDMjUwHhcNMjQwOTExMTYwNjIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUxYmZmZS1hODFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAnepWBj8jEUozpPfwllQ1CLX2a6Cbkze+PCswkQEZPfWRCPnRZsxNe3vQIW s7wPoeLF71B16LEgQra6cQFd8ImRhCRcFPaaxYFjgljsHF3s2oeingdSQ1z+uJsK C4XL+UmQqOYgtzXa9+E3AT4yZPsGv6YD6iXoHpcjQgv45wf6x88louq5Up6Ja5LP Wh/as/+qTb+A7rK8ehAXcN/RGT5yQ0u3KXUjvlhEgspRpoeTIIiCN3OyNk0/Lhzy clHFAS6fZ9eVoe6MzGXKBnmmpOltaHmF1os/OKuw+ssoW5n9IgGASy/2wwxrWRxK fxE3RVWOZkrPxS+8fBmgPHqE+QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCMWrCO5 irvt1w/5mZ0dRsBvOGmQMB8GA1UdIwQYMBaAFJuUzm41VQp0JbtEFi3zfL++BTwl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NzZDOS8xOEMzQzc2ODJB OUQxMUVFQUFCNUM5NTNDNEY5QUUwMi9tNVRPYmpWVkNuUWx1MFFXTGZOOHY3NEZQ Q1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201VE9ialZWQ25RbHUwUVdMZk44djc0RlBDVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzc2QzkvMThDM0M3NjgyQTlEMTFFRUFBQjVDOTUzQzRGOUFFMDIvQzk4MTlENUU3 MDU3MTFFRkJERUY5MjY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnm0IwDwQCAAIwCQMHACABDfS4gDANBgkqhkiG9w0BAQsF AAOCAQEADazL8JaF3t1KFUfn2VRLdbtjHh7Ref6TsPfLW1cAz3UrmceOX2oKjjAE zrsovCXOkXbSCmw3ZoM8LUml7naKbrH27EwcQkuY0RaiJZBmwZ/qA2cH3QfEA5+x khgmwdogxxya7S4nuAdE9w9xI3nUy9UmOtcRFHSs/rO6IqEZJz3J+xsS2AMEdX7R B3KNeHFunbjYLquxvSUjzNYgqk878C5euJoMjYsFBxVhVYbg0bG0Ne9AZe1GSrrR 5txDbbLGqrs8YnxYDryJTqeCcDSt/Dz+8SDiNdvVDpPKB/Yt9M1ssqPOQNw85T0x vBiFIeV4h0O8/Mf85Q1mEv8KEonSyw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org