$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa File: 9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa (raw, json) Hash identifier: jqqBqCZOKu2qIALXNmkWZIy2E6GEnPXSik4fgBrMrDA= Subject key identifier: 38:42:DB:31:F7:92:D8:28:84:10:B0:EE:9D:42:33:D2:9F:28:AB:37 Certificate issuer: /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Certificate serial: 0A45 Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa Signing time: Thu 26 Sep 2024 19:48:45 +0000 ROA not before: Thu 26 Sep 2024 19:48:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.39.86.0/23 maxlen: 23 103.39.112.0/24 maxlen: 24 103.211.172.0/24 maxlen: 24 202.8.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2629 (0xa45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Validity Not Before: Sep 26 19:48:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f5ba9d-0d15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:99:63:86:44:a7:05:e5:4c:5e:d6:88:89:33: 68:07:88:b3:06:92:3c:fd:bf:17:92:0a:0f:2d:a0: 1f:a9:da:16:95:e6:6d:12:f5:a7:a3:2d:fb:59:e5: 1b:20:8d:b1:90:cc:da:dc:02:48:70:c0:75:a6:45: 8f:4a:ac:ca:34:fe:7a:fd:67:90:69:65:ca:7e:dd: ff:ad:00:57:5c:eb:2b:3b:4f:2b:fd:af:36:b5:1b: f5:2f:1f:18:1d:c9:58:0e:40:4e:f7:e3:1f:a4:70: 3b:19:60:93:3d:45:76:32:e4:fa:8a:6c:4c:81:f9: a7:45:9b:ca:34:98:d1:25:89:0f:8d:cd:b7:78:45: 64:37:cc:c3:97:21:51:09:03:d2:b1:8c:df:36:d1: df:d8:7e:d8:44:cf:f2:eb:3b:97:4e:a5:66:2a:b1: 60:99:a8:bb:e6:69:c7:34:96:82:25:57:38:a0:d4: f6:22:86:84:7b:84:30:c2:34:8e:27:5c:af:fe:06: 94:31:8e:60:ff:fe:d0:b2:08:f1:7c:4d:a9:41:a5: 7d:fd:58:5f:03:28:da:44:11:c5:df:17:1c:96:1a: 85:6c:51:44:57:3e:57:12:5f:24:6c:a6:66:13:f1: cb:4b:0a:e5:ab:a8:b9:a6:22:7d:78:fb:b4:a7:a4: a7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:42:DB:31:F7:92:D8:28:84:10:B0:EE:9D:42:33:D2:9F:28:AB:37 X509v3 Authority Key Identifier: keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/9AE4F7EC53A211EA8D26BD0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.86.0/23 103.39.112.0/24 103.211.172.0/24 202.8.25.0/24 Signature Algorithm: sha256WithRSAEncryption 48:29:5d:53:a3:aa:b7:c4:ed:53:d3:de:64:c3:08:41:e8:6f: e0:99:b2:4a:08:60:01:b3:ed:f0:ec:4f:16:27:f7:21:38:38: d4:46:03:20:33:c1:37:36:69:71:08:39:43:b6:b3:05:5e:d8: 16:58:32:2a:0d:a8:fa:ac:9d:73:34:60:10:ac:d9:0d:f5:8b: 3c:08:21:13:6f:7d:ad:18:bf:31:60:ce:9c:94:60:60:52:55: 6a:5f:5f:9d:17:8f:71:d7:98:05:50:d8:b8:73:fb:50:f8:a9: ea:62:30:6e:b0:bd:d3:25:1e:db:e2:a5:6e:5d:8b:62:da:c3: b6:fb:bf:d1:af:a4:9a:25:b1:6c:93:0e:85:05:e8:0f:b4:16: 8d:11:8b:4e:67:93:e3:b8:1d:27:2c:99:78:53:97:e4:d4:83: 45:cd:2b:f5:77:52:48:7a:8d:85:45:99:89:63:0b:92:a6:f3: 0d:34:ab:56:05:de:c2:9a:5d:11:1f:b2:47:db:ce:9e:0d:b0: d0:33:1f:bb:b4:58:38:9f:a9:bc:b3:b2:1f:c8:17:72:c8:5a: 9b:ce:7c:4b:5f:e3:38:9b:36:59:10:01:ad:ac:a9:f8:29:8a: d5:2e:ef:04:b6:a9:3c:45:2c:15:58:58:9a:fd:34:ea:6a:41: a4:ec:27:16 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZGNzMxMTAvBgNVBAUTKDg5QTMxRDQ0RTk0RjFDQzI3ODUwQkJBQzE2QzAyQzIw QUFCMzlDRTUwHhcNMjQwOTI2MTk0ODQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1YmE5ZC0wZDE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZljhkSnBeVMXtaIiTNoB4izBpI8/b8XkgoPLaAfqdoWleZtEvWnoy37WeUb II2xkMza3AJIcMB1pkWPSqzKNP56/WeQaWXKft3/rQBXXOsrO08r/a82tRv1Lx8Y HclYDkBO9+MfpHA7GWCTPUV2MuT6imxMgfmnRZvKNJjRJYkPjc23eEVkN8zDlyFR CQPSsYzfNtHf2H7YRM/y6zuXTqVmKrFgmai75mnHNJaCJVc4oNT2IoaEe4QwwjSO J1yv/gaUMY5g//7QsgjxfE2pQaV9/VhfAyjaRBHF3xcclhqFbFFEVz5XEl8kbKZm E/HLSwrlq6i5piJ9ePu0p6SnzwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDhC2zH3 ktgohBCw7p1CM9KfKKs3MB8GA1UdIwQYMBaAFImjHUTpTxzCeFC7rBbALCCqs5zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkY3My9BMjk3MDdGNjUz QTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhNSjRVTHVzRnNBc0lLcXpu T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhTWRST2xQSE1KNFVMdXNGc0FzSUtxem5PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZGNzMvQTI5NzA3RjY1M0ExMTFFQUFFRUVCRTBCQzRGOUFFMDIvOUFFNEY3RUM1 M0EyMTFFQThEMjZCRDBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAFnJ1YDBABnJ3ADBABn06wDBADKCBkwDQYJKoZIhvcNAQEL BQADggEBAEgpXVOjqrfE7VPT3mTDCEHob+CZskoIYAGz7fDsTxYn9yE4ONRGAyAz wTc2aXEIOUO2swVe2BZYMioNqPqsnXM0YBCs2Q31izwIIRNvfa0YvzFgzpyUYGBS VWpfX50Xj3HXmAVQ2Lhz+1D4qepiMG6wvdMlHtvipW5di2Law7b7v9GvpJolsWyT DoUF6A+0Fo0Ri05nk+O4HScsmXhTl+TUg0XNK/V3Ukh6jYVFmYljC5Km8w00q1YF 3sKaXREfskfbzp4NsNAzH7u0WDifqbyzsh/IF3LIWpvOfEtf4zibNlkQAa2sqfgp itUu7wS2qTxFLBVYWJr9NOpqQaTsJxY= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:55 2024 by rpki-client on console-ams.rpki-client.org