$ rpki-client -vvf rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/A155911C4BCA11EEBC8C8B82C4F9AE02.roa File: A155911C4BCA11EEBC8C8B82C4F9AE02.roa (raw, json) Hash identifier: hWNFLgRLV5rq9DJdXOOCkETTtq81cKwNe+EsCM4by08= Subject key identifier: CC:5A:E1:DE:E8:17:85:84:9A:5C:5C:0F:2E:5D:05:3F:B0:32:01:D0 Certificate issuer: /CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Certificate serial: CA Authority key identifier: 94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/A155911C4BCA11EEBC8C8B82C4F9AE02.roa Signing time: Fri 13 Sep 2024 08:18:17 +0000 ROA not before: Fri 13 Sep 2024 08:18:17 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 150288 IP address blocks: 103.126.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DD85/serialNumber=94437EDDCC8D06989E09500543C91BDF0D3F48E5 Validity Not Before: Sep 13 08:18:17 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e3f549-9ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:5f:68:7e:d5:3f:11:64:8d:51:c3:be:80:50: db:5b:fc:80:74:77:75:fd:a0:e5:62:04:60:6a:8d: 6a:d8:7d:61:86:f4:14:a0:7f:ab:35:63:62:bd:c9: 62:2b:8a:da:0e:76:ff:c2:39:ba:b2:1b:e3:7d:4a: c3:0c:ac:24:16:36:fa:56:f6:9f:6b:f8:d4:be:b5: e7:c4:e8:85:ab:95:53:fd:c2:60:fa:b7:5f:75:60: ee:cc:b7:c3:bd:5b:32:cb:e4:c0:df:32:3a:9c:2f: 09:9e:28:45:41:96:2f:21:28:8d:5d:bf:c7:5e:d4: e5:2b:c7:aa:aa:a9:ce:bb:0a:93:20:f8:c9:9f:84: 80:73:d2:51:b5:77:99:42:db:06:6b:a1:7a:be:80: fa:77:12:6d:6e:2c:ac:5d:64:9c:fa:99:4a:df:de: 74:8a:ba:a5:d8:27:cf:08:a5:95:18:ee:f9:2a:52: 65:15:79:7f:3c:87:f3:30:dc:c8:8c:96:60:76:44: ad:7e:6a:a7:4a:f7:c1:2c:0c:7c:0b:72:55:6e:64: 87:6a:1f:59:16:70:f5:79:26:a9:c6:c0:0b:c5:22: e0:02:d1:c1:17:2f:91:ba:a4:ab:6d:03:0d:0b:95: 63:a3:12:7c:c3:de:c1:bb:a9:f6:bc:e7:c8:0f:9e: aa:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:5A:E1:DE:E8:17:85:84:9A:5C:5C:0F:2E:5D:05:3F:B0:32:01:D0 X509v3 Authority Key Identifier: keyid:94:43:7E:DD:CC:8D:06:98:9E:09:50:05:43:C9:1B:DF:0D:3F:48:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/lEN-3cyNBpieCVAFQ8kb3w0_SOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lEN-3cyNBpieCVAFQ8kb3w0_SOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DD85/846F4A684BC311EE8C657319C4F9AE02/A155911C4BCA11EEBC8C8B82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.142.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:e1:64:63:0a:4e:47:0f:e3:e8:a7:05:90:6b:bb:da:49:4f: d3:ae:f0:2c:55:51:24:af:ef:a2:ab:ca:60:f3:ba:32:16:ae: cd:7c:c9:c2:02:9a:c2:7b:dc:3f:96:79:0a:61:38:b6:8b:d0: f3:e1:46:3f:69:ae:0c:80:81:1b:90:a8:41:4f:30:69:4e:1a: 61:a3:16:82:77:5c:11:5d:f2:31:af:ed:56:32:ce:92:f3:75: 45:7f:28:96:fc:cb:13:82:90:1d:2d:53:a6:dd:c5:19:0f:a2: 48:83:e3:50:25:70:21:05:3a:b9:13:69:04:a3:18:2e:84:d0: 99:41:6f:12:1c:ed:57:b9:3b:d7:b9:4d:80:b2:bd:03:01:20: 72:2f:04:86:3c:8c:7d:c6:43:7f:df:b0:db:39:12:40:ba:2a: 01:0f:44:34:66:02:f7:96:33:4b:b9:1d:d4:af:fe:f2:2a:e4: 70:4b:5f:f9:a4:d8:c9:75:ab:1b:45:f8:4f:c2:23:aa:98:5d: 43:ad:c9:7c:40:72:bc:e2:58:f1:43:7e:28:de:ed:bd:b5:f8: 56:bf:c2:e7:2e:46:7a:11:37:39:a1:1a:20:1d:a9:7c:64:88: 47:7d:17:28:5a:c7:29:dd:c3:28:0e:7d:19:1f:e4:ca:74:7d: 11:2d:6e:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0REODUxMTAvBgNVBAUTKDk0NDM3RUREQ0M4RDA2OTg5RTA5NTAwNTQzQzkxQkRG MEQzRjQ4RTUwHhcNMjQwOTEzMDgxODE3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzZjU0OS05ZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7F9oftU/EWSNUcO+gFDbW/yAdHd1/aDlYgRgao1q2H1hhvQUoH+rNWNivcli K4raDnb/wjm6shvjfUrDDKwkFjb6Vvafa/jUvrXnxOiFq5VT/cJg+rdfdWDuzLfD vVsyy+TA3zI6nC8JnihFQZYvISiNXb/HXtTlK8eqqqnOuwqTIPjJn4SAc9JRtXeZ QtsGa6F6voD6dxJtbiysXWSc+plK3950irql2CfPCKWVGO75KlJlFXl/PIfzMNzI jJZgdkStfmqnSvfBLAx8C3JVbmSHah9ZFnD1eSapxsALxSLgAtHBFy+RuqSrbQMN C5VjoxJ8w97Bu6n2vOfID56qCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMxa4d7o F4WEmlxcDy5dBT+wMgHQMB8GA1UdIwQYMBaAFJRDft3MjQaYnglQBUPJG98NP0jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REQ4NS84NDZGNEE2ODRC QzMxMUVFOEM2NTczMTlDNEY5QUUwMi9sRU4tM2N5TkJwaWVDVkFGUThrYjN3MF9T T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xFTi0zY3lOQnBpZUNWQUZROGtiM3cwX1NPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0REODUvODQ2RjRBNjg0QkMzMTFFRThDNjU3MzE5QzRGOUFFMDIvQTE1NTkxMUM0 QkNBMTFFRUJDOEM4QjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnfo4wDQYJKoZIhvcNAQELBQADggEBAHrhZGMKTkcP4+in BZBru9pJT9Ou8CxVUSSv76KrymDzujIWrs18ycICmsJ73D+WeQphOLaL0PPhRj9p rgyAgRuQqEFPMGlOGmGjFoJ3XBFd8jGv7VYyzpLzdUV/KJb8yxOCkB0tU6bdxRkP okiD41AlcCEFOrkTaQSjGC6E0JlBbxIc7Ve5O9e5TYCyvQMBIHIvBIY8jH3GQ3/f sNs5EkC6KgEPRDRmAveWM0u5HdSv/vIq5HBLX/mk2Ml1qxtF+E/CI6qYXUOtyXxA crziWPFDfije7b21+Fa/wucuRnoRNzmhGiAdqXxkiEd9FyhaxyndwygOfRkf5Mp0 fREtbrg= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org