$ rpki-client -vvf rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9F555EDC433611EB89B8BE60C4F9AE02.roa File: 9F555EDC433611EB89B8BE60C4F9AE02.roa (raw, json) Hash identifier: Ul+h5yFKxdc27JWdtAgjP/Idl7HvtMFjlARFh9uJLQs= Subject key identifier: 27:EA:77:18:D2:C4:22:6B:16:62:3D:F1:0B:D5:F6:2A:A9:71:4E:DA Certificate issuer: /CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Certificate serial: 079C Authority key identifier: 1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9F555EDC433611EB89B8BE60C4F9AE02.roa Signing time: Wed 04 Sep 2024 21:49:37 +0000 ROA not before: Wed 04 Sep 2024 21:49:37 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7545 IP address blocks: 103.154.28.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1948 (0x79c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C933/serialNumber=1A1A2DB6227049860D1CB6FB381D035F7CDDFE79 Validity Not Before: Sep 4 21:49:37 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d8d5f0-e84e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c8:9e:f7:43:06:33:8f:c4:83:34:c3:6f:ea: d2:7e:40:63:2f:25:f9:a9:96:19:40:14:5d:f2:14: d8:bb:c2:33:c7:4a:39:6e:75:9c:69:ed:3e:df:eb: fc:4e:ed:fd:57:19:13:a6:8c:83:8a:6f:74:45:4d: c4:73:83:a1:96:7f:5d:84:25:90:a9:31:f1:83:cc: ad:08:aa:ea:bc:3c:ff:92:df:6d:27:c6:a5:a8:f9: 97:d8:2c:14:03:c4:d2:03:d6:dc:89:03:dd:d6:a4: df:ef:7c:f3:9a:26:2b:0e:9e:a8:08:a9:f2:25:a3: b5:0f:22:54:b3:15:93:ae:ce:c4:4e:97:f1:41:ec: 81:0c:19:b7:f9:6a:6c:9d:59:fc:6a:1f:41:a6:90: 13:f5:93:f6:ee:df:49:db:72:fe:08:81:79:62:97: bb:d4:30:2e:0f:07:f5:c3:63:34:c1:1d:83:5f:37: 3e:ce:97:fc:61:ef:f1:35:82:cd:44:10:e5:23:b4: 0a:43:a2:48:e2:8c:58:fe:49:16:1b:21:f9:ba:c8: 72:d9:ff:a9:52:89:b8:db:4a:59:30:1f:1d:8c:8b: af:6a:1b:65:21:c1:71:cf:cf:2f:0b:4c:47:cf:41: 6e:f0:74:36:29:ad:b0:82:57:bc:71:2f:11:9f:90: f0:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:EA:77:18:D2:C4:22:6B:16:62:3D:F1:0B:D5:F6:2A:A9:71:4E:DA X509v3 Authority Key Identifier: keyid:1A:1A:2D:B6:22:70:49:86:0D:1C:B6:FB:38:1D:03:5F:7C:DD:FE:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/GhottiJwSYYNHLb7OB0DX3zd_nk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GhottiJwSYYNHLb7OB0DX3zd_nk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C933/FD9521B2DC5711EA83E8EC67C4F9AE02/9F555EDC433611EB89B8BE60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.28.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:d5:71:80:92:fb:7a:ed:a1:b7:1b:72:e8:fa:69:98:80:88: 24:bd:45:c4:bb:a3:f7:85:06:93:7f:21:8f:ae:63:ec:89:05: aa:e2:3f:bf:6f:ac:b1:b4:08:cc:d5:8d:a8:01:99:62:a8:6d: e8:5a:c8:90:27:78:31:9f:90:e8:73:55:b3:12:3e:d0:67:e7: 91:ff:8c:7b:72:9a:bf:1f:3a:e1:d6:e5:2a:23:a1:3f:b5:15: 7c:a3:d3:d5:5b:ed:f4:ea:31:b3:6b:77:81:f4:52:6f:3b:d8: dc:ba:27:a8:5e:e5:e1:a4:8d:49:b5:74:8b:36:1f:06:27:a6: 4a:e0:83:af:67:bf:a7:af:f3:1d:64:34:4d:c0:d2:0c:cf:4b: 45:30:a3:76:6e:2d:03:86:b6:24:e3:dd:45:35:be:a7:fe:b1: 32:a3:b6:50:61:d1:55:1a:48:86:62:dc:38:88:cd:8e:3c:8e: ed:89:7b:05:3c:3e:05:7d:5e:0a:a8:19:fc:85:05:52:6f:31: 8e:95:9a:39:6e:9f:71:c5:70:5a:3a:e5:3f:33:cd:f0:f6:1a: 85:a5:2f:6e:31:de:c5:e5:26:df:95:41:ae:f9:04:58:2e:aa: ad:9d:71:69:2c:48:38:19:dd:9f:cd:30:46:c5:86:fb:a8:77: c6:ce:76:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB5wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M5MzMxMTAvBgNVBAUTKDFBMUEyREI2MjI3MDQ5ODYwRDFDQjZGQjM4MUQwMzVG N0NEREZFNzkwHhcNMjQwOTA0MjE0OTM3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4ZDVmMC1lODRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsie90MGM4/EgzTDb+rSfkBjLyX5qZYZQBRd8hTYu8Izx0o5bnWcae0+3+v8 Tu39VxkTpoyDim90RU3Ec4Ohln9dhCWQqTHxg8ytCKrqvDz/kt9tJ8alqPmX2CwU A8TSA9bciQPd1qTf73zzmiYrDp6oCKnyJaO1DyJUsxWTrs7ETpfxQeyBDBm3+Wps nVn8ah9BppAT9ZP27t9J23L+CIF5Ype71DAuDwf1w2M0wR2DXzc+zpf8Ye/xNYLN RBDlI7QKQ6JI4oxY/kkWGyH5ushy2f+pUom420pZMB8djIuvahtlIcFxz88vC0xH z0Fu8HQ2Ka2wgle8cS8Rn5DwcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCfqdxjS xCJrFmI98QvV9iqpcU7aMB8GA1UdIwQYMBaAFBoaLbYicEmGDRy2+zgdA1983f55 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzkzMy9GRDk1MjFCMkRD NTcxMUVBODNFOEVDNjdDNEY5QUUwMi9HaG90dGlKd1NZWU5ITGI3T0IwRFgzemRf bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dob3R0aUp3U1lZTkhMYjdPQjBEWDN6ZF9uay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M5MzMvRkQ5NTIxQjJEQzU3MTFFQTgzRThFQzY3QzRGOUFFMDIvOUY1NTVFREM0 MzM2MTFFQjg5QjhCRTYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnmhwwDQYJKoZIhvcNAQELBQADggEBAAzVcYCS+3rtobcb cuj6aZiAiCS9RcS7o/eFBpN/IY+uY+yJBariP79vrLG0CMzVjagBmWKobehayJAn eDGfkOhzVbMSPtBn55H/jHtymr8fOuHW5SojoT+1FXyj09Vb7fTqMbNrd4H0Um87 2Ny6J6he5eGkjUm1dIs2HwYnpkrgg69nv6ev8x1kNE3A0gzPS0Uwo3ZuLQOGtiTj 3UU1vqf+sTKjtlBh0VUaSIZi3DiIzY48ju2JewU8PgV9XgqoGfyFBVJvMY6Vmjlu n3HFcFo65T8zzfD2GoWlL24x3sXlJt+VQa75BFguqq2dcWksSDgZ3Z/NMEbFhvuo d8bOdlk= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:45 2024 by rpki-client on console-ams.rpki-client.org