$ rpki-client -vvf rpki.apnic.net/member_repository/A9181437/DEB0FBC6489A11EC81A2D514C4F9AE02/86B5983C582111EC8035E069C4F9AE02.roa File: 86B5983C582111EC8035E069C4F9AE02.roa (raw, json) Hash identifier: 5qouoEpyG0nTRTbnrJ/NyoF0RuPOG8nKIaos2vt4g2E= Subject key identifier: 5E:E4:BE:9B:3A:06:30:33:E7:43:78:29:15:DF:11:74:02:D8:4F:6E Certificate issuer: /CN=A9181437/serialNumber=AF0BE0B24A119D3B3E93FD0CD3B3415A2C0D01B8 Certificate serial: 0403 Authority key identifier: AF:0B:E0:B2:4A:11:9D:3B:3E:93:FD:0C:D3:B3:41:5A:2C:0D:01:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwvgskoRnTs-k_0M07NBWiwNAbg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9181437/DEB0FBC6489A11EC81A2D514C4F9AE02/86B5983C582111EC8035E069C4F9AE02.roa Signing time: Sat 05 Oct 2024 00:35:29 +0000 ROA not before: Sat 05 Oct 2024 00:35:29 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 142645 IP address blocks: 103.171.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9181437/DEB0FBC6489A11EC81A2D514C4F9AE02/rwvgskoRnTs-k_0M07NBWiwNAbg.crl rsync://rpki.apnic.net/member_repository/A9181437/DEB0FBC6489A11EC81A2D514C4F9AE02/rwvgskoRnTs-k_0M07NBWiwNAbg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwvgskoRnTs-k_0M07NBWiwNAbg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1027 (0x403) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9181437/serialNumber=AF0BE0B24A119D3B3E93FD0CD3B3415A2C0D01B8 Validity Not Before: Oct 5 00:35:29 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670089d1-a0b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:75:2e:f1:ef:29:cb:f8:a9:4c:b9:4d:08:90: c6:84:13:8e:1e:8c:74:9f:b6:fe:2f:31:f1:41:32: 9c:b0:51:73:85:44:d0:4e:de:ba:23:b0:2b:2c:f3: fb:d0:7f:84:b2:9d:16:66:85:74:d3:f3:fe:01:28: a8:5f:ed:da:ea:a1:0f:31:f7:1e:dd:25:ce:0d:04: 69:e6:f0:c9:eb:70:3b:c7:c9:2f:cd:33:ef:43:34: 0c:8f:f4:b0:a2:45:ee:47:83:81:8a:be:fe:dc:a1: 16:75:c1:18:01:fa:8a:6d:77:d0:35:73:c6:ac:3a: a4:17:13:83:d9:3b:a1:4d:12:ee:b8:be:13:3a:1f: b8:24:5c:45:68:1e:a1:3a:61:7e:12:ea:3a:18:98: 52:20:85:a8:40:94:82:fe:00:d5:4e:fd:ad:b7:a6: 0d:71:c6:e1:3c:2d:a9:89:2d:d6:31:5d:e3:46:87: c0:b0:0b:90:41:65:25:66:ec:fa:df:e3:be:65:bb: 4a:68:fb:eb:6a:c6:d5:c4:5c:83:db:b1:0c:fa:91: bd:c2:b8:04:4b:a8:f5:10:f5:23:27:11:31:bb:80: f1:45:2a:fb:3d:90:fe:b4:de:c3:b3:4e:98:be:c7: 55:1c:73:f2:df:d7:5a:7b:d0:8b:fb:77:34:58:4c: d6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E4:BE:9B:3A:06:30:33:E7:43:78:29:15:DF:11:74:02:D8:4F:6E X509v3 Authority Key Identifier: keyid:AF:0B:E0:B2:4A:11:9D:3B:3E:93:FD:0C:D3:B3:41:5A:2C:0D:01:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9181437/DEB0FBC6489A11EC81A2D514C4F9AE02/rwvgskoRnTs-k_0M07NBWiwNAbg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwvgskoRnTs-k_0M07NBWiwNAbg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9181437/DEB0FBC6489A11EC81A2D514C4F9AE02/86B5983C582111EC8035E069C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.171.176.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:45:47:3a:93:a6:b1:bf:0b:27:81:76:4a:39:b9:23:00:4d: 91:a1:ac:ab:89:78:57:ae:dd:ad:02:91:d7:d1:d5:ce:bf:1c: 42:c7:39:b0:b1:47:e3:1d:46:fa:d8:44:1c:a8:b9:cc:dd:7e: de:b1:73:85:04:d0:c7:2f:5b:5a:5c:97:a0:f5:97:4c:66:b3: b8:eb:b7:ff:bc:2f:5c:9d:52:f9:c7:57:b9:2f:95:17:c0:71: 30:2f:68:3c:c6:a4:67:ed:0e:36:63:4e:90:b6:90:ce:eb:37: 60:0c:1d:6d:91:c5:46:ad:37:f2:89:57:cc:99:be:1a:3f:18: d3:d5:36:52:5b:bb:d5:fa:82:7d:2d:3e:1c:1a:58:5f:d4:01: 63:f0:6f:9d:9b:c4:e6:ef:ac:24:1e:26:a1:f7:cc:2e:b7:a1: 18:6a:30:9f:0a:01:d7:16:4b:d5:dc:23:4a:11:a2:62:5f:2b: 9e:74:6d:a5:a2:ba:e4:cc:c6:7d:bc:f6:94:b2:ef:6e:74:37: 9b:1b:3d:3b:b7:1f:6c:18:95:67:d0:53:e7:84:c1:a9:46:82: f8:7a:89:4f:64:aa:1a:20:c2:6c:ed:27:cf:97:60:c2:9d:b7: 4f:8a:83:f0:82:68:b0:3c:5c:8a:36:e1:f9:3d:9d:35:c1:eb: e7:b6:61:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBAMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODE0MzcxMTAvBgNVBAUTKEFGMEJFMEIyNEExMTlEM0IzRTkzRkQwQ0QzQjM0MTVB MkMwRDAxQjgwHhcNMjQxMDA1MDAzNTI5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwODlkMS1hMGI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqnUu8e8py/ipTLlNCJDGhBOOHox0n7b+LzHxQTKcsFFzhUTQTt66I7ArLPP7 0H+Esp0WZoV00/P+ASioX+3a6qEPMfce3SXODQRp5vDJ63A7x8kvzTPvQzQMj/Sw okXuR4OBir7+3KEWdcEYAfqKbXfQNXPGrDqkFxOD2TuhTRLuuL4TOh+4JFxFaB6h OmF+Euo6GJhSIIWoQJSC/gDVTv2tt6YNccbhPC2piS3WMV3jRofAsAuQQWUlZuz6 3+O+ZbtKaPvrasbVxFyD27EM+pG9wrgES6j1EPUjJxExu4DxRSr7PZD+tN7Ds06Y vsdVHHPy39dae9CL+3c0WEzWOQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF7kvps6 BjAz50N4KRXfEXQC2E9uMB8GA1UdIwQYMBaAFK8L4LJKEZ07PpP9DNOzQVosDQG4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTQzNy9ERUIwRkJDNjQ4 OUExMUVDODFBMkQ1MTRDNEY5QUUwMi9yd3Znc2tvUm5Ucy1rXzBNMDdOQldpd05B YmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3dmdza29SblRzLWtfME0wN05CV2l3TkFiZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODE0MzcvREVCMEZCQzY0ODlBMTFFQzgxQTJENTE0QzRGOUFFMDIvODZCNTk4M0M1 ODIxMTFFQzgwMzVFMDY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnq7AwDQYJKoZIhvcNAQELBQADggEBADxFRzqTprG/CyeB dko5uSMATZGhrKuJeFeu3a0CkdfR1c6/HELHObCxR+MdRvrYRByouczdft6xc4UE 0McvW1pcl6D1l0xms7jrt/+8L1ydUvnHV7kvlRfAcTAvaDzGpGftDjZjTpC2kM7r N2AMHW2RxUatN/KJV8yZvho/GNPVNlJbu9X6gn0tPhwaWF/UAWPwb52bxObvrCQe JqH3zC63oRhqMJ8KAdcWS9XcI0oRomJfK550baWiuuTMxn289pSy7250N5sbPTu3 H2wYlWfQU+eEwalGgvh6iU9kqhogwmztJ8+XYMKdt0+Kg/CCaLA8XIo24fk9nTXB 6+e2YSU= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:55 2024 by rpki-client on console-fra.rpki-client.org