$ rpki-client -vvf rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/32357EA676C611EEA45B7909C4F9AE02.roa File: 32357EA676C611EEA45B7909C4F9AE02.roa (raw, json) Hash identifier: zqBSUeOYWEL+Dp+1Lu3LHEvs0ar9HNyhixirIt0bPhw= Subject key identifier: EF:35:52:8D:5A:22:97:32:08:B0:4C:A4:EE:05:D4:09:02:47:78:75 Certificate issuer: /CN=A9194CBD/serialNumber=4F6735631600236C80598A1E33213BBD681ECE57 Certificate serial: B6 Authority key identifier: 4F:67:35:63:16:00:23:6C:80:59:8A:1E:33:21:3B:BD:68:1E:CE:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T2c1YxYAI2yAWYoeMyE7vWgezlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/32357EA676C611EEA45B7909C4F9AE02.roa Signing time: Thu 03 Oct 2024 05:08:52 +0000 ROA not before: Thu 03 Oct 2024 05:08:52 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151839 IP address blocks: 103.159.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/T2c1YxYAI2yAWYoeMyE7vWgezlc.crl rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/T2c1YxYAI2yAWYoeMyE7vWgezlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T2c1YxYAI2yAWYoeMyE7vWgezlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194CBD/serialNumber=4F6735631600236C80598A1E33213BBD681ECE57 Validity Not Before: Oct 3 05:08:52 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fe26e4-ce2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4b:00:16:1d:d6:30:33:e5:7d:64:34:52:f6: f5:f7:bd:53:e1:e1:31:5a:ac:04:42:a3:be:ca:d8: 36:22:9a:15:4e:a1:63:6a:f2:79:02:fd:4b:da:f4: 83:96:b7:98:de:28:a1:aa:fa:f6:2f:69:e7:9b:68: 9a:8c:b3:b3:c9:2a:75:2c:e7:33:2e:08:f9:9b:f2: 0c:45:b2:dd:8a:3b:62:5c:69:94:8d:b6:6b:6e:46: 87:13:e5:b5:ab:56:4e:8d:e6:99:2e:88:31:27:1a: 4a:6e:8f:50:ff:c0:85:15:d5:31:22:0b:3c:38:5e: fd:9c:f9:57:95:95:9d:38:52:f0:7c:32:f0:ba:5a: 67:df:3f:6c:9c:c4:b5:b5:9f:96:98:eb:8d:d7:2a: 2a:70:ad:8c:ff:4f:2c:cf:ff:f0:01:ae:9d:32:dd: 56:42:47:c3:9a:ab:8e:58:bc:35:00:1d:44:d2:4a: 3c:54:78:70:f4:32:e4:69:6e:34:a7:39:78:9a:ff: 86:a6:ca:23:f8:cf:fb:b5:99:a9:69:14:f3:66:36: 7b:4c:ee:cd:36:48:ce:41:57:f5:dc:7c:c0:3f:32: 33:d4:d4:ca:86:e0:40:7d:d6:3c:c4:22:b7:5d:4f: db:a0:a3:04:d0:75:e4:e5:dd:5e:b6:bb:c5:ba:6f: 67:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:35:52:8D:5A:22:97:32:08:B0:4C:A4:EE:05:D4:09:02:47:78:75 X509v3 Authority Key Identifier: keyid:4F:67:35:63:16:00:23:6C:80:59:8A:1E:33:21:3B:BD:68:1E:CE:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/T2c1YxYAI2yAWYoeMyE7vWgezlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T2c1YxYAI2yAWYoeMyE7vWgezlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194CBD/580BE3AE6E2411EE91D88037C4F9AE02/32357EA676C611EEA45B7909C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.86.0/23 Signature Algorithm: sha256WithRSAEncryption 68:ec:bb:28:f9:0a:8c:ce:2d:01:90:a2:da:15:11:2c:88:6a: ab:69:f4:d4:bf:aa:e8:41:e8:5e:2a:32:de:4e:37:b7:9b:12: 53:62:41:64:61:5a:09:35:18:49:ce:0f:3f:1d:04:c3:e9:92: 63:03:5a:94:c6:fb:80:d2:56:1a:0b:08:10:cb:0e:49:9e:ca: 74:91:81:1c:94:58:25:d9:6a:77:e5:34:38:9f:fe:2a:db:1e: 19:c0:38:20:3c:a4:dc:bf:86:2b:45:da:35:ce:0f:f4:37:e2: 0c:89:af:f4:75:0a:51:58:d2:38:2b:5c:21:c1:22:fa:30:b0: e5:c1:d2:af:70:c3:9c:11:21:1d:92:2b:72:1d:00:24:a0:b1: 4e:92:02:53:86:fe:f2:08:f4:76:98:73:b4:0e:c2:c8:a6:dd: bb:a3:9e:39:c5:65:61:f3:be:dd:41:44:a7:48:09:5e:15:d1: da:12:41:57:c1:bb:cc:f9:11:5f:5f:12:12:af:ac:05:4d:1c: 31:98:b7:96:fa:e1:cf:48:94:d3:9d:a4:19:9c:fa:15:00:01: fc:82:cf:c3:03:c6:a9:24:16:9d:82:6f:9a:a6:29:df:91:87: 20:01:cf:54:cb:90:90:66:bf:ff:c3:fd:69:af:7d:05:39:e3: c5:32:ab:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDQkQxMTAvBgNVBAUTKDRGNjczNTYzMTYwMDIzNkM4MDU5OEExRTMzMjEzQkJE NjgxRUNFNTcwHhcNMjQxMDAzMDUwODUyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZlMjZlNC1jZTJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqksAFh3WMDPlfWQ0Uvb1971T4eExWqwEQqO+ytg2IpoVTqFjavJ5Av1L2vSD lreY3iihqvr2L2nnm2iajLOzySp1LOczLgj5m/IMRbLdijtiXGmUjbZrbkaHE+W1 q1ZOjeaZLogxJxpKbo9Q/8CFFdUxIgs8OF79nPlXlZWdOFLwfDLwulpn3z9snMS1 tZ+WmOuN1yoqcK2M/08sz//wAa6dMt1WQkfDmquOWLw1AB1E0ko8VHhw9DLkaW40 pzl4mv+Gpsoj+M/7tZmpaRTzZjZ7TO7NNkjOQVf13HzAPzIz1NTKhuBAfdY8xCK3 XU/boKME0HXk5d1etrvFum9nGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFO81Uo1a IpcyCLBMpO4F1AkCR3h1MB8GA1UdIwQYMBaAFE9nNWMWACNsgFmKHjMhO71oHs5X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NENCRC81ODBCRTNBRTZF MjQxMUVFOTFEODgwMzdDNEY5QUUwMi9UMmMxWXhZQUkyeUFXWW9lTXlFN3ZXZ2V6 bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1QyYzFZeFlBSTJ5QVdZb2VNeUU3dldnZXpsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRDQkQvNTgwQkUzQUU2RTI0MTFFRTkxRDg4MDM3QzRGOUFFMDIvMzIzNTdFQTY3 NkM2MTFFRUE0NUI3OTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnn1YwDQYJKoZIhvcNAQELBQADggEBAGjsuyj5CozOLQGQ otoVESyIaqtp9NS/quhB6F4qMt5ON7ebElNiQWRhWgk1GEnODz8dBMPpkmMDWpTG +4DSVhoLCBDLDkmeynSRgRyUWCXZanflNDif/irbHhnAOCA8pNy/hitF2jXOD/Q3 4gyJr/R1ClFY0jgrXCHBIvowsOXB0q9ww5wRIR2SK3IdACSgsU6SAlOG/vII9HaY c7QOwsim3bujnjnFZWHzvt1BRKdICV4V0doSQVfBu8z5EV9fEhKvrAVNHDGYt5b6 4c9IlNOdpBmc+hUAAfyCz8MDxqkkFp2Cb5qmKd+RhyABz1TLkJBmv//D/WmvfQU5 48Uyq+Y= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:53 2024 by rpki-client on console-fra.rpki-client.org