$ rpki-client -vvf rpki.apnic.net/member_repository/A9189F23/A5D598D61D9B11E29305918908B02CD2/BE39F43074B811EB9AECDC67C4F9AE02.roa File: BE39F43074B811EB9AECDC67C4F9AE02.roa (raw, json) Hash identifier: oZT/L2S4faCDEPiDwhTgLOmYDRKzJhogn0jWo2DknFA= Subject key identifier: 53:96:4A:24:F8:EB:4B:99:5E:43:C2:66:E6:7C:98:E5:DA:B6:FB:8E Certificate issuer: /CN=A9189F23/serialNumber=D03386109510CFDC26F7557AFF99A131ECB59424 Certificate serial: 33B0 Authority key identifier: D0:33:86:10:95:10:CF:DC:26:F7:55:7A:FF:99:A1:31:EC:B5:94:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DOGEJUQz9wm91V6_5mhMey1lCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9189F23/A5D598D61D9B11E29305918908B02CD2/BE39F43074B811EB9AECDC67C4F9AE02.roa Signing time: Sat 06 Jan 2024 15:10:51 +0000 ROA not before: Sat 06 Jan 2024 15:10:51 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134963 IP address blocks: 103.11.72.0/24 maxlen: 24 103.11.73.0/24 maxlen: 24 103.251.198.0/24 maxlen: 24 103.251.199.0/24 maxlen: 24 202.94.87.0/24 maxlen: 24 203.170.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9189F23/A5D598D61D9B11E29305918908B02CD2/0DOGEJUQz9wm91V6_5mhMey1lCQ.crl rsync://rpki.apnic.net/member_repository/A9189F23/A5D598D61D9B11E29305918908B02CD2/0DOGEJUQz9wm91V6_5mhMey1lCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DOGEJUQz9wm91V6_5mhMey1lCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 14:58:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13232 (0x33b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9189F23/serialNumber=D03386109510CFDC26F7557AFF99A131ECB59424 Validity Not Before: Jan 6 15:10:51 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65996d7b-11a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:bc:a0:a5:b3:50:48:bc:30:e9:81:cb:82:58: f2:fa:66:e4:d6:82:ee:b5:ff:ec:29:b3:9e:fb:c4: 7d:7b:9d:49:34:33:b1:4d:a9:22:11:24:3c:ef:40: 30:ea:80:35:6b:0f:6f:0b:e4:f8:75:65:b6:56:9d: 7a:45:2d:45:55:53:36:53:c5:78:04:fc:7d:e4:8d: 29:f6:fd:27:ea:db:4d:e0:ad:b1:83:fb:32:48:cc: 8e:98:d3:09:5d:b9:66:1b:c1:fa:ce:a7:ec:9e:56: df:13:2c:4b:05:e4:b0:d4:cc:7b:ff:d7:a9:22:d5: cb:48:fb:f8:e6:fb:b7:fb:3a:22:d5:01:28:64:11: de:28:9c:60:ac:88:2a:df:c8:bb:84:f3:9f:00:1c: 8e:9c:45:81:e1:1f:07:b1:22:37:dc:89:54:0a:e3: f8:44:40:4e:3a:d6:bd:86:ed:8d:5e:98:47:6e:ca: d7:bd:9c:ce:cb:ac:41:cd:35:b0:de:9f:df:b8:94: 3e:95:62:d1:c8:d3:44:2a:71:0d:4f:ba:a7:3f:25: 99:6f:c8:81:68:2a:0c:4b:81:d4:d1:5b:45:70:88: b2:0f:fc:f4:6e:e2:fd:17:e0:1a:d1:e2:e6:47:ec: 9c:aa:ef:05:1d:60:76:7e:25:2e:b9:f3:3b:7b:6a: 01:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:96:4A:24:F8:EB:4B:99:5E:43:C2:66:E6:7C:98:E5:DA:B6:FB:8E X509v3 Authority Key Identifier: keyid:D0:33:86:10:95:10:CF:DC:26:F7:55:7A:FF:99:A1:31:EC:B5:94:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9189F23/A5D598D61D9B11E29305918908B02CD2/0DOGEJUQz9wm91V6_5mhMey1lCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0DOGEJUQz9wm91V6_5mhMey1lCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9189F23/A5D598D61D9B11E29305918908B02CD2/BE39F43074B811EB9AECDC67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.72.0/23 103.251.198.0/23 202.94.87.0/24 203.170.49.0/24 Signature Algorithm: sha256WithRSAEncryption 19:99:5e:7a:cd:63:1e:f9:2f:09:d2:27:63:3b:74:8d:06:64: 8d:70:05:4b:ec:19:71:fa:e9:e8:48:96:45:81:12:bf:8e:bd: a6:65:f1:35:20:50:95:d8:a2:d5:35:f8:09:33:9a:8d:8b:84: 8a:3d:df:c3:66:d1:79:39:16:03:27:31:13:23:41:88:5b:49: 5b:53:ff:28:58:1c:34:1a:14:0b:79:8f:54:83:27:cf:83:ae: 39:6a:7f:1e:ae:08:64:6e:c3:ea:11:8e:15:8e:d8:d9:7a:20: a5:7e:c8:51:2d:66:65:1f:f7:aa:aa:02:ee:63:f8:d5:15:29: 62:49:ed:c5:fd:52:75:04:3b:1e:aa:8a:8b:de:3a:49:29:11: 5b:59:70:6e:d0:30:17:10:d2:1d:7a:7b:aa:bc:3d:ce:34:b2: 6b:09:ee:0f:77:f9:62:a2:49:21:ae:d8:29:07:2e:c1:ea:e5: d2:10:e5:87:60:eb:06:c3:a4:5c:d2:b9:14:df:10:3a:63:bf: 8e:88:d6:dc:4a:3d:f2:54:27:dc:87:6d:48:d9:02:7a:bf:2b: 68:8a:43:fa:15:12:90:62:89:6b:68:66:d2:4c:1a:ae:19:56: 17:0c:62:ec:8c:8f:1c:ad:86:24:4a:69:40:e2:05:bc:26:77: b7:1a:82:0f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICM7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODlGMjMxMTAvBgNVBAUTKEQwMzM4NjEwOTUxMENGREMyNkY3NTU3QUZGOTlBMTMx RUNCNTk0MjQwHhcNMjQwMTA2MTUxMDUxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk5NmQ3Yi0xMWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqbygpbNQSLww6YHLgljy+mbk1oLutf/sKbOe+8R9e51JNDOxTakiESQ870Aw 6oA1aw9vC+T4dWW2Vp16RS1FVVM2U8V4BPx95I0p9v0n6ttN4K2xg/sySMyOmNMJ XblmG8H6zqfsnlbfEyxLBeSw1Mx7/9epItXLSPv45vu3+zoi1QEoZBHeKJxgrIgq 38i7hPOfAByOnEWB4R8HsSI33IlUCuP4REBOOta9hu2NXphHbsrXvZzOy6xBzTWw 3p/fuJQ+lWLRyNNEKnENT7qnPyWZb8iBaCoMS4HU0VtFcIiyD/z0buL9F+Aa0eLm R+ycqu8FHWB2fiUuufM7e2oB5wIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFFOWSiT4 60uZXkPCZuZ8mOXatvuOMB8GA1UdIwQYMBaAFNAzhhCVEM/cJvdVev+ZoTHstZQk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OUYyMy9BNUQ1OThENjFE OUIxMUUyOTMwNTkxODkwOEIwMkNEMi8wRE9HRUpVUXo5d205MVY2XzVtaE1leTFs Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBET0dFSlVRejl3bTkxVjZfNW1oTWV5MWxDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODlGMjMvQTVENTk4RDYxRDlCMTFFMjkzMDU5MTg5MDhCMDJDRDIvQkUzOUY0MzA3 NEI4MTFFQjlBRUNEQzY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAFnC0gDBAFn+8YDBADKXlcDBADLqjEwDQYJKoZIhvcNAQEL BQADggEBABmZXnrNYx75LwnSJ2M7dI0GZI1wBUvsGXH66ehIlkWBEr+OvaZl8TUg UJXYotU1+Akzmo2LhIo938Nm0Xk5FgMnMRMjQYhbSVtT/yhYHDQaFAt5j1SDJ8+D rjlqfx6uCGRuw+oRjhWO2Nl6IKV+yFEtZmUf96qqAu5j+NUVKWJJ7cX9UnUEOx6q ioveOkkpEVtZcG7QMBcQ0h16e6q8Pc40smsJ7g93+WKiSSGu2CkHLsHq5dIQ5Ydg 6wbDpFzSuRTfEDpjv46I1txKPfJUJ9yHbUjZAnq/K2iKQ/oVEpBiiWtoZtJMGq4Z VhcMYuyMjxythiRKaUDiBbwmd7cagg8= -----END CERTIFICATE-----Generated at Tue Nov 26 17:19:25 2024 by rpki-client on console-fra.rpki-client.org