$ rpki-client -vvf rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/5AFB85086EC411ECB8E7492BC4F9AE02.roa File: 5AFB85086EC411ECB8E7492BC4F9AE02.roa (raw, json) Hash identifier: oUra7O+qGlxXyvA9M/ITxDdx10bLDrqiVyv7cNbRzSo= Subject key identifier: 94:2B:F9:D2:A9:B3:21:9B:C7:30:3D:4F:9D:A0:2E:2D:5C:2D:1E:6A Certificate issuer: /CN=A9195A3D/serialNumber=B8225F1EB8676647C359DBC110BFEEDEB44FD5E8 Certificate serial: 0391 Authority key identifier: B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/5AFB85086EC411ECB8E7492BC4F9AE02.roa Signing time: Fri 27 Sep 2024 00:54:25 +0000 ROA not before: Fri 27 Sep 2024 00:54:25 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141004 IP address blocks: 103.154.184.0/23 maxlen: 23 2001:df5:4580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 913 (0x391) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195A3D Validity Not Before: Sep 27 00:54:25 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f60241-e3bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:3e:4b:dc:42:44:57:06:e3:b8:fc:48:c9: 0f:37:61:75:a0:6c:6f:05:89:69:22:4c:67:15:0a: 7d:df:14:7e:ff:92:83:0b:70:af:59:91:8e:21:39: 32:62:fa:a2:5b:41:9a:db:43:16:e2:60:71:c3:ed: 2a:16:34:cc:ed:68:f3:e5:0e:11:42:a8:51:e6:b6: 16:83:83:1f:9e:d5:a7:c9:cc:85:20:b5:5c:a6:80: 45:37:d3:49:a3:2f:94:a8:0e:7e:9a:7a:b1:cc:c5: 10:b5:41:da:95:90:82:51:d8:ea:ef:c8:17:d2:50: d1:67:ff:fb:26:e9:94:fb:66:70:0d:45:36:2b:0b: af:a9:b1:7b:8d:bf:e7:44:c9:71:af:83:68:28:5b: 95:38:0d:43:b2:05:13:3a:ec:56:53:c0:8f:5a:72: 8a:cf:84:70:c5:88:40:93:3b:71:71:4e:e5:7a:86: 38:9d:f4:82:69:23:68:cb:62:c2:bf:86:1a:ae:fa: 15:8b:a4:c5:49:0f:20:76:ec:c5:a3:5d:5b:f2:ae: f9:fb:8b:f4:30:a9:d6:6e:d8:51:58:98:1c:82:b7: a7:2a:46:79:8c:f2:bb:01:dd:25:47:bb:c7:b5:ec: 9c:23:04:4b:09:87:4c:9c:ad:f7:95:18:62:6d:ec: 4f:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:2B:F9:D2:A9:B3:21:9B:C7:30:3D:4F:9D:A0:2E:2D:5C:2D:1E:6A X509v3 Authority Key Identifier: keyid:B8:22:5F:1E:B8:67:66:47:C3:59:DB:C1:10:BF:EE:DE:B4:4F:D5:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/uCJfHrhnZkfDWdvBEL_u3rRP1eg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uCJfHrhnZkfDWdvBEL_u3rRP1eg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195A3D/69EFCDD26EC211EC878A102BC4F9AE02/5AFB85086EC411ECB8E7492BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.154.184.0/23 IPv6: 2001:df5:4580::/48 Signature Algorithm: sha256WithRSAEncryption 89:fa:f0:f7:33:1a:c2:46:92:35:3b:0a:a0:7c:00:12:fc:e2: d7:93:52:3b:56:64:9f:fd:75:51:eb:26:2d:e0:ff:bc:0e:f6: 44:ec:e2:8a:a8:70:ad:51:d1:26:cd:e6:8d:ba:ba:ba:74:ce: f0:a3:1e:e5:b6:ea:7b:bf:60:60:d7:1d:ac:51:c4:cd:8c:a2: 60:c4:d1:ba:25:95:f7:07:95:a5:f7:90:ba:c2:5f:e0:e6:2b: ee:49:71:44:5b:ac:91:75:2a:06:04:7c:b8:a8:b6:40:7a:d8: 52:8b:c4:34:74:58:86:3f:01:27:12:0f:8b:40:d5:fe:9b:a2: 6f:c7:81:5c:22:6b:99:7f:e1:c6:ac:e6:7c:0c:66:2c:36:48: 63:64:a8:a2:ff:b2:f1:08:26:31:00:36:54:f0:8c:5e:2a:3d: a4:ad:b0:44:2d:da:12:92:21:67:ae:ca:07:62:a8:b9:67:ef: 12:c5:76:c6:7e:81:08:a5:85:71:eb:c4:da:64:da:79:ab:80: f2:ed:28:19:45:69:61:fe:f4:2e:a4:5e:2b:aa:c8:bd:01:a8: 67:e3:fc:50:7c:ed:b6:35:9b:da:2e:83:5d:ef:2f:16:94:d7: 98:f1:fc:fc:78:33:d0:10:69:3d:12:3d:55:69:aa:64:56:47: 4c:99:a8:c7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVBM0QxMTAvBgNVBAUTKEI4MjI1RjFFQjg2NzY2NDdDMzU5REJDMTEwQkZFRURF QjQ0RkQ1RTgwHhcNMjQwOTI3MDA1NDI1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY2MDI0MS1lM2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuL8+S9xCRFcG47j8SMkPN2F1oGxvBYlpIkxnFQp93xR+/5KDC3CvWZGOITky YvqiW0Ga20MW4mBxw+0qFjTM7Wjz5Q4RQqhR5rYWg4MfntWnycyFILVcpoBFN9NJ oy+UqA5+mnqxzMUQtUHalZCCUdjq78gX0lDRZ//7JumU+2ZwDUU2KwuvqbF7jb/n RMlxr4NoKFuVOA1DsgUTOuxWU8CPWnKKz4RwxYhAkztxcU7leoY4nfSCaSNoy2LC v4YarvoVi6TFSQ8gduzFo11b8q75+4v0MKnWbthRWJgcgrenKkZ5jPK7Ad0lR7vH teycIwRLCYdMnK33lRhibexPGQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJQr+dKp syGbxzA9T52gLi1cLR5qMB8GA1UdIwQYMBaAFLgiXx64Z2ZHw1nbwRC/7t60T9Xo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUEzRC82OUVGQ0REMjZF QzIxMUVDODc4QTEwMkJDNEY5QUUwMi91Q0pmSHJoblprZkRXZHZCRUxfdTNyUlAx ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VDSmZIcmhuWmtmRFdkdkJFTF91M3JSUDFlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVBM0QvNjlFRkNERDI2RUMyMTFFQzg3OEExMDJCQzRGOUFFMDIvNUFGQjg1MDg2 RUM0MTFFQ0I4RTc0OTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnmrgwDwQCAAIwCQMHACABDfVFgDANBgkqhkiG9w0BAQsF AAOCAQEAifrw9zMawkaSNTsKoHwAEvzi15NSO1Zkn/11UesmLeD/vA72ROziiqhw rVHRJs3mjbq6unTO8KMe5bbqe79gYNcdrFHEzYyiYMTRuiWV9weVpfeQusJf4OYr 7klxRFuskXUqBgR8uKi2QHrYUovENHRYhj8BJxIPi0DV/puib8eBXCJrmX/hxqzm fAxmLDZIY2Soov+y8QgmMQA2VPCMXio9pK2wRC3aEpIhZ67KB2KouWfvEsV2xn6B CKWFcevE2mTaeauA8u0oGUVpYf70LqReK6rIvQGoZ+P8UHzttjWb2i6DXe8vFpTX mPH8/Hgz0BBpPRI9VWmqZFZHTJmoxw== -----END CERTIFICATE-----Generated at Mon Feb 17 08:22:45 2025 by rpki-client