$ rpki-client -vvf rpki.apnic.net/member_repository/A9194E51/89F86F0A5B3B11E9869AA641C4F9AE02/373ADDFC1CC411EF90865B7DC4F9AE02.roa File: 373ADDFC1CC411EF90865B7DC4F9AE02.roa (raw, json) Hash identifier: GryE/+FxiRjKeGwDK7BlbBdP1O9DyZS3bdT2XE57rZA= Subject key identifier: 21:4C:9E:41:4C:42:E4:21:02:A8:6F:EB:3E:CC:62:7E:C5:D4:10:0B Certificate issuer: /CN=A9194E51/serialNumber=66FDDB43E54942E3492F10650E5323926C45C484 Certificate serial: 0EED Authority key identifier: 66:FD:DB:43:E5:49:42:E3:49:2F:10:65:0E:53:23:92:6C:45:C4:84 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zv3bQ-VJQuNJLxBlDlMjkmxFxIQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194E51/89F86F0A5B3B11E9869AA641C4F9AE02/373ADDFC1CC411EF90865B7DC4F9AE02.roa Signing time: Tue 28 May 2024 07:30:54 +0000 ROA not before: Tue 28 May 2024 07:30:54 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45447 IP address blocks: 103.131.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194E51/89F86F0A5B3B11E9869AA641C4F9AE02/Zv3bQ-VJQuNJLxBlDlMjkmxFxIQ.crl rsync://rpki.apnic.net/member_repository/A9194E51/89F86F0A5B3B11E9869AA641C4F9AE02/Zv3bQ-VJQuNJLxBlDlMjkmxFxIQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zv3bQ-VJQuNJLxBlDlMjkmxFxIQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3821 (0xeed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194E51/serialNumber=66FDDB43E54942E3492F10650E5323926C45C484 Validity Not Before: May 28 07:30:54 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6655882e-595f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1b:b1:7c:e6:d5:c2:9e:1a:38:d0:a9:28:bb: f9:d8:98:19:cb:5a:e2:eb:a5:ea:49:59:7e:5b:83: bf:a8:01:c2:68:d9:96:9a:48:6a:ac:63:c1:9a:9d: 79:06:f3:0c:65:db:7b:ee:ad:a6:af:10:fe:7a:d5: c8:77:e8:d8:0c:e1:fd:34:02:a2:34:a2:82:14:48: e0:29:5e:62:c8:1a:8e:48:ac:23:f3:8a:19:e6:6f: 36:6a:a9:50:82:8a:b0:b2:e7:ce:fd:1d:53:7d:10: 48:d1:b1:97:50:ea:4a:f0:0e:7f:40:e1:dd:7b:1f: 99:da:13:e2:84:d5:af:ea:cc:13:22:f4:be:2f:55: 3b:72:ea:8c:99:37:a1:fb:e3:a5:ea:df:b7:be:90: fd:02:b3:88:11:8d:9b:f6:f8:ac:e9:ab:01:04:7a: 93:0f:16:60:bb:be:1a:de:89:00:c8:d8:fb:74:55: fe:c6:14:6e:a6:96:63:af:88:39:b6:23:ff:b1:04: a4:41:0b:56:9b:2d:7d:b3:97:74:d8:0f:19:92:d8: f2:81:98:50:97:9f:d3:9d:d3:40:35:bf:fd:60:0a: c1:de:2e:27:f2:c8:6d:4b:4d:af:76:58:ea:e9:a0: 3e:8b:82:fe:82:4d:3e:70:9c:c8:d4:a8:61:55:1f: 51:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:4C:9E:41:4C:42:E4:21:02:A8:6F:EB:3E:CC:62:7E:C5:D4:10:0B X509v3 Authority Key Identifier: keyid:66:FD:DB:43:E5:49:42:E3:49:2F:10:65:0E:53:23:92:6C:45:C4:84 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194E51/89F86F0A5B3B11E9869AA641C4F9AE02/Zv3bQ-VJQuNJLxBlDlMjkmxFxIQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zv3bQ-VJQuNJLxBlDlMjkmxFxIQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194E51/89F86F0A5B3B11E9869AA641C4F9AE02/373ADDFC1CC411EF90865B7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.232.0/22 Signature Algorithm: sha256WithRSAEncryption 74:56:6a:41:a9:4a:8a:71:90:35:18:9d:3a:9b:a3:64:e8:20: 80:9d:14:f1:8b:9b:b8:35:b8:dd:0c:b8:dd:8b:70:e8:70:ef: 1e:a3:f1:3b:aa:fa:49:a2:7c:a7:02:47:b2:d9:f0:00:a0:36: 51:68:ae:4e:5c:7d:a7:ed:52:1d:7c:53:84:af:9f:15:cb:36: 05:c8:d5:66:65:d4:1c:97:c5:d5:00:d5:7c:3c:af:79:d0:51: 25:53:53:1f:46:f7:c4:2e:99:e7:e6:c6:21:a8:9a:56:4d:13: 99:51:0a:fb:95:12:11:28:4f:b9:58:2a:02:f5:da:54:ea:52: 59:cc:d4:1b:7e:96:9b:63:06:33:fc:0c:23:d5:c9:50:ea:85: 20:41:2e:4d:1b:e6:9f:cd:bf:1e:20:1d:6a:72:9e:3c:9e:3a: 4c:93:93:9b:73:d2:89:9a:39:86:3a:9b:bf:6d:ff:71:9d:f6: 86:6c:3f:29:95:61:68:28:7a:c9:f0:6e:da:37:e2:0c:95:47: ec:3d:e3:cf:8b:c1:53:4e:13:23:1c:43:8d:70:7a:8d:ff:3e: 2b:0b:ab:bd:db:c2:9a:77:47:bf:95:b7:57:e0:13:f4:77:77: 42:a9:aa:73:f7:a7:43:23:9d:d8:f4:01:ca:30:8f:6c:63:cb: e8:12:02:42 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRFNTExMTAvBgNVBAUTKDY2RkREQjQzRTU0OTQyRTM0OTJGMTA2NTBFNTMyMzky NkM0NUM0ODQwHhcNMjQwNTI4MDczMDU0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU1ODgyZS01OTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRuxfObVwp4aONCpKLv52JgZy1ri66XqSVl+W4O/qAHCaNmWmkhqrGPBmp15 BvMMZdt77q2mrxD+etXId+jYDOH9NAKiNKKCFEjgKV5iyBqOSKwj84oZ5m82aqlQ goqwsufO/R1TfRBI0bGXUOpK8A5/QOHdex+Z2hPihNWv6swTIvS+L1U7cuqMmTeh ++Ol6t+3vpD9ArOIEY2b9vis6asBBHqTDxZgu74a3okAyNj7dFX+xhRuppZjr4g5 tiP/sQSkQQtWmy19s5d02A8ZktjygZhQl5/TndNANb/9YArB3i4n8shtS02vdljq 6aA+i4L+gk0+cJzI1KhhVR9RJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCFMnkFM QuQhAqhv6z7MYn7F1BALMB8GA1UdIwQYMBaAFGb920PlSULjSS8QZQ5TI5JsRcSE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEU1MS84OUY4NkYwQTVC M0IxMUU5ODY5QUE2NDFDNEY5QUUwMi9adjNiUS1WSlF1TkpMeEJsRGxNamtteEZ4 SVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2M2JRLVZKUXVOSkx4QmxEbE1qa214RnhJUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRFNTEvODlGODZGMEE1QjNCMTFFOTg2OUFBNjQxQzRGOUFFMDIvMzczQURERkMx Q0M0MTFFRjkwODY1QjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJng+gwDQYJKoZIhvcNAQELBQADggEBAHRWakGpSopxkDUY nTqbo2ToIICdFPGLm7g1uN0MuN2LcOhw7x6j8Tuq+kmifKcCR7LZ8ACgNlFork5c faftUh18U4SvnxXLNgXI1WZl1ByXxdUA1Xw8r3nQUSVTUx9G98QumefmxiGomlZN E5lRCvuVEhEoT7lYKgL12lTqUlnM1Bt+lptjBjP8DCPVyVDqhSBBLk0b5p/Nvx4g HWpynjyeOkyTk5tz0omaOYY6m79t/3Gd9oZsPymVYWgoesnwbto34gyVR+w948+L wVNOEyMcQ41weo3/PisLq73bwpp3R7+Vt1fgE/R3d0KpqnP3p0Mjndj0Acowj2xj y+gSAkI= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:01 2024 by rpki-client on console-ams.rpki-client.org