$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/C73BE8A654F311E7AC64ED3AC4F9AE02.roa File: C73BE8A654F311E7AC64ED3AC4F9AE02.roa (raw, json) Hash identifier: SmF6p3k95KsM+SMEI2F1sl2qA3ioWO3N9renwiZgrBM= Subject key identifier: 2C:D7:9F:FF:DE:5E:7E:B0:C6:75:B1:D2:A3:ED:12:02:E3:E2:AA:63 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 22D1 Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/C73BE8A654F311E7AC64ED3AC4F9AE02.roa Signing time: Thu 12 Sep 2024 16:23:22 +0000 ROA not before: Thu 12 Sep 2024 16:23:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58629 IP address blocks: 103.12.72.0/22 maxlen: 24 2001:df0:2c5::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8913 (0x22d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Sep 12 16:23:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66e3157a-2289 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e2:8a:50:85:7a:7b:21:92:d6:10:0a:4f:90: a8:60:4c:f2:79:f9:50:ce:4c:bb:96:40:27:12:8d: ab:11:c7:36:f7:0b:8d:00:43:9d:b9:09:f5:b4:2e: d6:e4:f0:63:ec:58:17:de:69:4f:8b:b6:f1:02:38: ae:96:cb:16:a2:f1:e5:61:b9:80:ca:ed:ca:d3:00: 69:37:ea:07:b2:9a:1d:a1:0c:dd:c9:ef:6a:cb:5d: 4e:25:24:df:e1:07:20:67:d8:a0:ad:02:07:7d:04: d8:90:3e:46:c1:4b:15:46:84:1f:d8:90:b5:d6:a7: 06:76:cf:2a:35:1f:17:16:77:8d:ad:1f:8f:a9:83: 37:39:9e:c8:b1:4c:b9:6e:46:ed:23:03:f8:a2:2d: 52:ee:c5:2a:10:11:d3:1e:41:00:f7:99:1f:c2:f2: d8:22:29:22:1c:a2:cb:ce:62:4a:04:f6:82:cf:4e: d1:ae:40:7f:88:05:a6:1c:ec:29:0d:d8:27:6b:93: be:7d:45:85:59:e3:c0:4a:ba:f1:24:da:8f:c5:70: 8e:92:50:44:98:89:9f:39:03:d0:f1:a7:f5:ca:26: 73:6e:b7:ed:de:59:8b:06:2f:03:7f:9c:c3:85:61: 5c:64:11:99:f2:b8:c9:77:16:d5:53:5b:d4:f5:09: 51:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:D7:9F:FF:DE:5E:7E:B0:C6:75:B1:D2:A3:ED:12:02:E3:E2:AA:63 X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/C73BE8A654F311E7AC64ED3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.72.0/22 IPv6: 2001:df0:2c5::/48 Signature Algorithm: sha256WithRSAEncryption 9b:0d:62:cf:6e:41:c0:26:8b:7f:72:58:85:e0:1a:b1:5b:5a: 16:34:d6:fa:32:66:91:73:1a:86:99:85:44:c3:85:fc:16:96: 90:7a:51:d6:a0:cd:c8:8e:83:fd:f2:27:18:45:d7:ae:e9:cc: 55:ae:91:f0:bf:d3:97:3b:1a:75:7c:9b:81:e6:ab:04:ec:d2: 2c:17:97:d7:63:62:29:03:6b:9a:23:69:b6:65:51:85:00:15: 24:0a:d9:bb:c2:7a:45:9c:30:05:d0:14:e2:4c:c0:f6:1d:c6: be:f4:e3:7e:5b:30:1f:ad:0c:0d:b2:e7:ca:52:5b:78:ca:22: e9:34:11:5d:1e:9e:bc:28:db:ef:c9:e0:05:f4:3a:e7:cd:9e: f3:90:78:c0:35:a9:bf:30:82:ca:48:52:02:a9:88:67:b6:8c: 30:dd:2b:06:05:11:3b:44:f9:b7:55:63:ca:8c:59:07:ec:cf: 12:45:3a:3e:9d:62:e0:5d:b5:47:2c:30:79:80:51:a6:2a:8b: 31:67:f8:74:2b:cd:e9:4e:bc:e5:58:05:73:61:02:db:ac:99: d6:7c:92:91:5b:37:60:66:32:97:43:8c:87:b9:d8:b1:22:0d: 6b:ce:c6:38:5c:92:96:e3:c9:92:95:86:e6:b3:09:43:85:ab: ba:c8:4e:7a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICItEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjQwOTEyMTYyMzIyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzMTU3YS0yMjg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uKKUIV6eyGS1hAKT5CoYEzyeflQzky7lkAnEo2rEcc29wuNAEOduQn1tC7W 5PBj7FgX3mlPi7bxAjiulssWovHlYbmAyu3K0wBpN+oHspodoQzdye9qy11OJSTf 4QcgZ9igrQIHfQTYkD5GwUsVRoQf2JC11qcGds8qNR8XFneNrR+PqYM3OZ7IsUy5 bkbtIwP4oi1S7sUqEBHTHkEA95kfwvLYIikiHKLLzmJKBPaCz07RrkB/iAWmHOwp Ddgna5O+fUWFWePASrrxJNqPxXCOklBEmImfOQPQ8af1yiZzbrft3lmLBi8Df5zD hWFcZBGZ8rjJdxbVU1vU9QlRDwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCzXn//e Xn6wxnWx0qPtEgLj4qpjMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZCRDgvQzU4M0QyMzI4N0EyMTFFNTlFNTFGMjUxQzRGOUFFMDIvQzczQkU4QTY1 NEYzMTFFN0FDNjRFRDNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnDEgwDwQCAAIwCQMHACABDfACxTANBgkqhkiG9w0BAQsF AAOCAQEAmw1iz25BwCaLf3JYheAasVtaFjTW+jJmkXMahpmFRMOF/BaWkHpR1qDN yI6D/fInGEXXrunMVa6R8L/TlzsadXybgearBOzSLBeX12NiKQNrmiNptmVRhQAV JArZu8J6RZwwBdAU4kzA9h3GvvTjflswH60MDbLnylJbeMoi6TQRXR6evCjb78ng BfQ6582e85B4wDWpvzCCykhSAqmIZ7aMMN0rBgURO0T5t1VjyoxZB+zPEkU6Pp1i 4F21RywweYBRpiqLMWf4dCvN6U685VgFc2EC26yZ1nySkVs3YGYyl0OMh7nYsSIN a87GOFySluPJkpWG5rMJQ4WrushOeg== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:08 2024 by rpki-client on console-ams.rpki-client.org