$ rpki-client -vvf rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/9EA2D73236D311EF89295180C4F9AE02.roa File: 9EA2D73236D311EF89295180C4F9AE02.roa (raw, json) Hash identifier: f2ke3ZBYV1Ribvo8r5rmx6HoUBDp7E1lgqZwRkmtN9g= Subject key identifier: 8D:5E:4C:0F:3E:82:9E:BF:C8:40:56:A9:3A:3B:93:94:B3:DA:6A:85 Certificate issuer: /CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Certificate serial: 0610 Authority key identifier: 54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/9EA2D73236D311EF89295180C4F9AE02.roa Signing time: Sat 02 Nov 2024 22:21:34 +0000 ROA not before: Sat 02 Nov 2024 22:21:33 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151952 IP address blocks: 103.143.185.0/24 maxlen: 24 103.168.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1552 (0x610) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91790C3/serialNumber=5487B63F44D691D435688AFE3C8AC27BFD9112AD Validity Not Before: Nov 2 22:21:33 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726a5ed-2076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fd:dc:a5:d8:ad:4d:e3:c6:df:25:d5:18:86: 46:4c:5f:67:0f:fb:93:0e:da:df:f9:87:0c:1f:ba: cb:c0:8d:44:fb:f3:2a:3f:cb:fe:f8:13:08:1b:f6: ca:11:5c:e9:24:11:99:f3:bf:52:dc:1b:3b:90:00: 64:d5:24:89:8b:42:13:69:7e:18:5f:89:52:0f:96: 45:31:96:93:37:ab:99:e1:fd:bb:95:47:ba:41:83: 5a:f2:d9:6d:2e:a7:fc:6c:c5:91:24:f8:1d:93:d2: 08:c5:65:6f:3b:53:f1:38:db:0e:d3:a9:43:e1:7f: 9c:d0:66:2a:ae:8f:88:20:f1:4a:cc:9b:73:75:17: 73:8e:3b:69:f3:f6:71:ec:03:c8:c0:6b:f2:82:67: 59:fd:93:e2:63:83:69:cc:22:d0:b6:2a:66:5b:2a: 69:00:5d:76:d4:d8:fd:e9:70:5f:df:67:a6:91:58: ad:05:3b:31:91:d2:02:68:87:8f:a9:75:a3:f6:b8: a9:f8:7f:9f:01:0d:04:f6:1d:56:06:c6:2c:89:7a: 77:d8:be:cc:64:64:6a:8c:ac:0b:4d:7a:9d:50:62: ff:4e:33:6a:a2:d8:d3:2e:59:57:55:8a:d6:7e:3b: 7b:ef:bb:91:62:4f:6c:27:d3:53:04:4f:88:d6:79: 95:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:5E:4C:0F:3E:82:9E:BF:C8:40:56:A9:3A:3B:93:94:B3:DA:6A:85 X509v3 Authority Key Identifier: keyid:54:87:B6:3F:44:D6:91:D4:35:68:8A:FE:3C:8A:C2:7B:FD:91:12:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/VIe2P0TWkdQ1aIr-PIrCe_2REq0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VIe2P0TWkdQ1aIr-PIrCe_2REq0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91790C3/855305E282C011EBBACE2A7BC4F9AE02/9EA2D73236D311EF89295180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.185.0/24 103.168.45.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:6e:74:e1:54:7b:50:ec:b8:19:ae:20:93:9a:b8:c5:9d:12: 2f:07:18:d0:21:72:55:4d:6e:ee:df:b9:b5:26:83:0e:65:2b: d8:e4:fb:4d:d0:b6:cd:20:e8:f0:b6:fd:d1:23:4e:4d:5f:00: a6:61:fb:57:85:f8:60:f5:c0:65:5d:1c:d9:44:32:77:48:21: c8:79:56:21:86:dd:cc:3a:da:b5:55:fc:c3:40:e7:dd:7e:99: 6e:8c:c9:eb:4d:8c:6e:8b:9c:b1:9a:22:e6:06:08:99:39:0a: c0:f2:8c:f4:87:d6:4f:33:ad:c8:96:8c:e8:f1:9c:52:0c:14: b7:45:0e:d6:88:e6:1d:37:69:3a:80:dc:7f:70:1b:c6:9e:95: d7:23:29:40:e5:34:13:3e:21:6a:c0:7c:1f:df:c7:d5:e3:0d: 15:bf:72:da:ae:91:a7:c4:74:75:8d:7b:58:4f:58:a2:b7:25: 56:96:bd:4c:ee:49:63:b8:b6:1c:d9:35:dd:0a:03:cf:59:86: 6a:4e:d9:02:c6:ed:d3:0f:af:1f:20:34:f2:83:54:c3:1f:9e: b0:9b:1d:c1:b1:03:c3:1a:e7:7e:fe:5a:6b:a9:25:69:d1:c0: 23:ce:db:bb:b0:dd:23:f9:38:3b:70:ca:da:7c:c7:d0:6e:fa: 16:65:53:27 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBhAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzkwQzMxMTAvBgNVBAUTKDU0ODdCNjNGNDRENjkxRDQzNTY4OEFGRTNDOEFDMjdC RkQ5MTEyQUQwHhcNMjQxMTAyMjIyMTMzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YTVlZC0yMDc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1f3cpditTePG3yXVGIZGTF9nD/uTDtrf+YcMH7rLwI1E+/MqP8v++BMIG/bK EVzpJBGZ879S3Bs7kABk1SSJi0ITaX4YX4lSD5ZFMZaTN6uZ4f27lUe6QYNa8tlt Lqf8bMWRJPgdk9IIxWVvO1PxONsO06lD4X+c0GYqro+IIPFKzJtzdRdzjjtp8/Zx 7APIwGvygmdZ/ZPiY4NpzCLQtipmWyppAF121Nj96XBf32emkVitBTsxkdICaIeP qXWj9rip+H+fAQ0E9h1WBsYsiXp32L7MZGRqjKwLTXqdUGL/TjNqotjTLllXVYrW fjt777uRYk9sJ9NTBE+I1nmVBQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI1eTA8+ gp6/yEBWqTo7k5Sz2mqFMB8GA1UdIwQYMBaAFFSHtj9E1pHUNWiK/jyKwnv9kRKt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTBDMy84NTUzMDVFMjgy QzAxMUVCQkFDRTJBN0JDNEY5QUUwMi9WSWUyUDBUV2tkUTFhSXItUElyQ2VfMlJF cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZJZTJQMFRXa2RRMWFJci1QSXJDZV8yUkVxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzkwQzMvODU1MzA1RTI4MkMwMTFFQkJBQ0UyQTdCQzRGOUFFMDIvOUVBMkQ3MzIz NkQzMTFFRjg5Mjk1MTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnj7kDBABnqC0wDQYJKoZIhvcNAQELBQADggEBADpudOFU e1DsuBmuIJOauMWdEi8HGNAhclVNbu7fubUmgw5lK9jk+03Qts0g6PC2/dEjTk1f AKZh+1eF+GD1wGVdHNlEMndIIch5ViGG3cw62rVV/MNA591+mW6MyetNjG6LnLGa IuYGCJk5CsDyjPSH1k8zrciWjOjxnFIMFLdFDtaI5h03aTqA3H9wG8aeldcjKUDl NBM+IWrAfB/fx9XjDRW/ctqukafEdHWNe1hPWKK3JVaWvUzuSWO4thzZNd0KA89Z hmpO2QLG7dMPrx8gNPKDVMMfnrCbHcGxA8Ma537+WmupJWnRwCPO27uw3SP5ODtw ytp8x9Bu+hZlUyc= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org