$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/BA4B6EF2FFC611EEBEC2A923C4F9AE02.roa File: BA4B6EF2FFC611EEBEC2A923C4F9AE02.roa (raw, json) Hash identifier: yrkSxV/0xOMsR3s22LS0pDdoQHJ5ZSDkNDxtDDB9vqw= Subject key identifier: 26:F9:97:4A:08:32:64:2B:3A:4B:BF:F4:8A:C8:44:E6:A2:5C:F2:2B Certificate issuer: /CN=A9188F6D/serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B Certificate serial: 0CB7 Authority key identifier: FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/BA4B6EF2FFC611EEBEC2A923C4F9AE02.roa Signing time: Sun 03 Nov 2024 13:32:44 +0000 ROA not before: Sun 03 Nov 2024 13:32:44 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137453 IP address blocks: 103.109.93.0/24 maxlen: 24 103.109.94.0/24 maxlen: 24 144.48.151.0/24 maxlen: 24 2404:4c0:a::/48 maxlen: 48 2404:4c0:b::/48 maxlen: 48 2404:4c0:c::/48 maxlen: 48 2404:4c0:d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3255 (0xcb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F6D/serialNumber=FD06B1508557F65F68CCBA3C203ECAAD075DD19B Validity Not Before: Nov 3 13:32:44 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=67277b7b-3e7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:df:02:94:0a:6a:7a:28:92:b0:51:58:d3:81: 5b:33:4b:7a:b6:3d:57:7f:51:6e:bb:9a:f6:21:6e: 83:29:3b:3b:10:75:02:1f:dc:76:34:d6:18:67:01: 64:cf:e9:17:a5:33:cf:94:a7:7e:bf:2a:56:d4:65: 8a:c5:25:4a:a2:8c:b7:3f:4a:9d:14:09:8c:0f:a4: 79:52:61:58:91:cb:9c:ca:41:51:5f:81:79:25:30: e4:7e:90:90:e6:56:00:f9:85:2a:03:c3:3e:7f:e2: 17:23:7d:3e:1a:86:fe:2b:41:d1:1a:82:58:22:11: 4a:dc:9b:04:38:21:bf:0f:d1:d2:07:11:fa:4d:0a: 35:89:d2:01:82:c4:5f:77:cb:dc:af:c9:21:d7:7e: 79:f3:61:98:b6:c8:9b:3d:2a:05:87:a9:d9:11:50: d6:5d:56:96:7c:f2:23:a5:17:8b:45:45:e0:d6:58: 5b:dd:80:5c:a6:0f:f6:4f:30:33:e7:5f:b1:ee:89: 12:93:85:58:90:68:27:8c:ae:de:d1:de:d2:1e:b1: 2d:bf:ae:14:74:ff:55:1a:c1:22:33:b7:8d:46:3f: 55:db:96:7c:32:9b:4e:89:0a:6c:1d:83:e8:69:ee: f3:0f:21:4e:a0:35:8a:0a:86:e4:8d:c1:a2:57:37: 38:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:F9:97:4A:08:32:64:2B:3A:4B:BF:F4:8A:C8:44:E6:A2:5C:F2:2B X509v3 Authority Key Identifier: keyid:FD:06:B1:50:85:57:F6:5F:68:CC:BA:3C:20:3E:CA:AD:07:5D:D1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_QaxUIVX9l9ozLo8ID7KrQdd0Zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F6D/9A5B1A9EF66A11E9BF50697AC4F9AE02/BA4B6EF2FFC611EEBEC2A923C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.109.93.0-103.109.94.255 144.48.151.0/24 IPv6: 2404:4c0:a::-2404:4c0:d:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 92:9d:a0:09:b1:e1:ca:80:07:58:cd:88:5f:1c:7f:48:7d:ab: 11:3b:99:9f:35:84:d0:ee:07:d0:50:4c:9a:21:eb:31:07:b6: 87:36:4c:c6:9f:4a:e3:18:fb:30:1e:36:ec:ae:0c:2e:21:13: fb:01:09:88:86:a3:4c:22:3a:43:0a:45:cd:46:9f:f8:d4:86: 92:8a:61:a4:0b:40:2d:dd:65:4f:e4:d1:48:84:0f:5b:3a:52: d7:09:af:00:25:f3:fe:dd:68:79:a7:81:65:1c:9f:29:b4:e7: 80:a5:cd:b7:fc:a9:f6:97:17:3e:b6:83:c7:af:34:80:d1:78: ff:b2:30:5b:6b:d1:5d:d0:a3:3d:96:b2:63:1c:90:d2:15:b5: e9:9b:14:76:67:3c:0d:35:6d:9c:d5:d0:65:ab:b4:a9:da:60: 8e:5f:e8:fa:99:32:51:76:32:5c:35:d0:23:cb:62:1d:39:e6: 4c:09:eb:4d:da:f4:78:23:1a:1e:35:de:f6:75:a1:b6:9c:c9: 0e:10:e0:f0:d0:59:a5:98:e6:92:f5:1a:f7:9f:c8:83:5a:07: d9:2e:37:a9:87:85:73:9b:35:92:c2:16:64:1c:3b:7b:9f:83: 10:9f:ca:a0:67:c4:0f:f1:66:85:e4:3b:08:39:c6:32:64:ad: 9e:0b:d7:c2 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICDLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODhGNkQxMTAvBgNVBAUTKEZEMDZCMTUwODU1N0Y2NUY2OENDQkEzQzIwM0VDQUFE MDc1REQxOUIwHhcNMjQxMTAzMTMzMjQ0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI3N2I3Yi0zZTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvt8ClApqeiiSsFFY04FbM0t6tj1Xf1Fuu5r2IW6DKTs7EHUCH9x2NNYYZwFk z+kXpTPPlKd+vypW1GWKxSVKooy3P0qdFAmMD6R5UmFYkcucykFRX4F5JTDkfpCQ 5lYA+YUqA8M+f+IXI30+Gob+K0HRGoJYIhFK3JsEOCG/D9HSBxH6TQo1idIBgsRf d8vcr8kh135582GYtsibPSoFh6nZEVDWXVaWfPIjpReLRUXg1lhb3YBcpg/2TzAz 51+x7okSk4VYkGgnjK7e0d7SHrEtv64UdP9VGsEiM7eNRj9V25Z8MptOiQpsHYPo ae7zDyFOoDWKCobkjcGiVzc4BQIDAQABo4ICvzCCArswHQYDVR0OBBYEFCb5l0oI MmQrOku/9IrIROaiXPIrMB8GA1UdIwQYMBaAFP0GsVCFV/ZfaMy6PCA+yq0HXdGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OEY2RC85QTVCMUE5RUY2 NkExMUU5QkY1MDY5N0FDNEY5QUUwMi9fUWF4VUlWWDlsOW96TG84SUQ3S3JRZGQw WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19RYXhVSVZYOWw5b3pMbzhJRDdLclFkZDBacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODhGNkQvOUE1QjFBOUVGNjZBMTFFOUJGNTA2OTdBQzRGOUFFMDIvQkE0QjZFRjJG RkM2MTFFRUJFQzJBOTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MBoEAgABMBQwDAMEAGdtXQMEAGdtXgMEAJAwlzAaBAIAAjAUMBIDBwEkBATA AAoDBwEkBATAAAwwDQYJKoZIhvcNAQELBQADggEBAJKdoAmx4cqAB1jNiF8cf0h9 qxE7mZ81hNDuB9BQTJoh6zEHtoc2TMafSuMY+zAeNuyuDC4hE/sBCYiGo0wiOkMK Rc1Gn/jUhpKKYaQLQC3dZU/k0UiED1s6UtcJrwAl8/7daHmngWUcnym054Clzbf8 qfaXFz62g8evNIDReP+yMFtr0V3Qoz2WsmMckNIVtembFHZnPA01bZzV0GWrtKna YI5f6PqZMlF2Mlw10CPLYh055kwJ603a9HgjGh413vZ1obacyQ4Q4PDQWaWY5pL1 GvefyINaB9kuN6mHhXObNZLCFmQcO3ufgxCfyqBnxA/xZoXkOwg5xjJkrZ4L18I= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org