$ rpki-client -vvf rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/F392CF9E53A311EAB1641213C4F9AE02.roa File: F392CF9E53A311EAB1641213C4F9AE02.roa (raw, json) Hash identifier: lxeOojn+XYimi3V1BZ9O9tBljDRntCvGVjoxX3VG+x8= Subject key identifier: 37:56:5B:6A:04:43:DA:28:92:7B:B3:93:4F:A7:31:BE:84:02:5C:66 Certificate issuer: /CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Certificate serial: 0A44 Authority key identifier: 89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/F392CF9E53A311EAB1641213C4F9AE02.roa Signing time: Thu 26 Sep 2024 19:48:44 +0000 ROA not before: Thu 26 Sep 2024 19:48:44 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.39.86.0/23 maxlen: 23 103.39.112.0/24 maxlen: 24 103.211.172.0/24 maxlen: 24 202.8.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2628 (0xa44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196F73/serialNumber=89A31D44E94F1CC27850BBAC16C02C20AAB39CE5 Validity Not Before: Sep 26 19:48:44 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f5ba9c-28ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2a:01:38:87:8d:91:c6:ac:3d:4d:23:59:93: 16:70:39:e2:c5:ed:65:8f:d7:d9:6f:73:85:54:15: 77:54:dc:57:29:7f:f2:e7:2c:7a:e1:30:fd:78:cc: 0f:33:d3:7e:00:1c:0e:f7:f0:a2:38:1e:12:6f:d0: aa:cc:65:bb:2f:26:2a:6d:05:09:c3:9e:a0:f1:40: c4:03:22:cf:a9:87:42:b2:9d:f7:11:eb:7c:95:7f: f4:20:85:6f:9b:eb:09:88:d0:45:29:c6:06:18:8c: 6e:36:28:ae:53:4a:f9:f4:0d:a0:fe:7f:9f:83:ee: a6:59:7a:b3:45:d3:84:38:ee:c1:0a:07:01:76:d3: b1:bc:a7:ba:d3:ad:fb:0a:33:1d:d7:f3:bf:e6:f6: b2:31:ef:6e:b8:61:ff:81:5e:75:9b:92:e9:13:e8: 3f:e0:d6:4d:9a:44:b9:5f:2b:dc:4d:2a:12:64:1e: f5:af:b9:72:e7:c4:4e:c3:8e:7b:3c:7c:46:f0:93: 4d:4d:be:98:8a:2b:18:28:da:50:5a:61:98:13:b0: fb:11:bf:0b:c8:1a:40:2d:95:f9:26:24:f3:bf:66: 66:d4:73:b8:58:e7:80:39:01:85:54:c6:1d:28:d9: cc:91:7f:ef:2e:66:f8:d8:df:44:bd:4b:c7:da:38: ce:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:56:5B:6A:04:43:DA:28:92:7B:B3:93:4F:A7:31:BE:84:02:5C:66 X509v3 Authority Key Identifier: keyid:89:A3:1D:44:E9:4F:1C:C2:78:50:BB:AC:16:C0:2C:20:AA:B3:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/iaMdROlPHMJ4ULusFsAsIKqznOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iaMdROlPHMJ4ULusFsAsIKqznOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196F73/A29707F653A111EAAEEEBE0BC4F9AE02/F392CF9E53A311EAB1641213C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.39.86.0/23 103.39.112.0/24 103.211.172.0/24 202.8.25.0/24 Signature Algorithm: sha256WithRSAEncryption 71:59:c2:39:d5:2b:2b:6f:e0:69:3c:e4:07:af:41:86:e8:10: 3d:83:9c:65:bb:71:1a:aa:35:05:e8:a9:02:11:69:f6:19:39: 1a:4d:98:06:1b:cc:7a:24:2d:17:bc:36:58:32:c0:71:13:43: a1:9c:5d:eb:63:b6:af:af:dc:32:3c:23:9f:f0:a7:1a:9c:c2: a2:b2:a6:a7:25:b3:5b:e8:7e:77:50:56:86:d2:1e:7b:65:af: 8b:30:5b:01:f2:60:70:cd:4c:b1:dd:dd:3d:f1:e3:9f:ef:51: c9:5d:45:42:62:cf:6e:34:09:50:43:b7:32:95:97:5d:d8:c8: 8b:8b:28:0c:63:fa:e6:d1:95:45:a4:bd:a3:f1:1e:7c:c2:42: f5:d2:58:4d:e6:9f:06:ac:7f:05:49:73:38:8f:02:e8:98:98: 50:e1:2f:af:44:cf:42:0a:ba:64:83:81:ee:e3:40:2d:5b:b7: 22:18:c2:5a:b4:09:94:32:e9:2f:05:51:86:d1:68:e9:6e:83: 12:3d:b1:31:1d:a4:43:bb:2d:35:bb:9c:3f:f0:b6:9c:bf:23: 28:42:cc:6d:b1:39:da:4f:da:e4:c3:2f:5b:4f:8d:ff:d7:6e: 91:93:e2:2a:a3:af:0a:35:a0:75:41:ca:c8:f4:38:dc:49:29: 0e:e7:89:90 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZGNzMxMTAvBgNVBAUTKDg5QTMxRDQ0RTk0RjFDQzI3ODUwQkJBQzE2QzAyQzIw QUFCMzlDRTUwHhcNMjQwOTI2MTk0ODQ0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1YmE5Yy0yOGZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SoBOIeNkcasPU0jWZMWcDnixe1lj9fZb3OFVBV3VNxXKX/y5yx64TD9eMwP M9N+ABwO9/CiOB4Sb9CqzGW7LyYqbQUJw56g8UDEAyLPqYdCsp33Eet8lX/0IIVv m+sJiNBFKcYGGIxuNiiuU0r59A2g/n+fg+6mWXqzRdOEOO7BCgcBdtOxvKe60637 CjMd1/O/5vayMe9uuGH/gV51m5LpE+g/4NZNmkS5XyvcTSoSZB71r7ly58ROw457 PHxG8JNNTb6YiisYKNpQWmGYE7D7Eb8LyBpALZX5JiTzv2Zm1HO4WOeAOQGFVMYd KNnMkX/vLmb42N9EvUvH2jjOUwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDdWW2oE Q9ooknuzk0+nMb6EAlxmMB8GA1UdIwQYMBaAFImjHUTpTxzCeFC7rBbALCCqs5zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkY3My9BMjk3MDdGNjUz QTExMUVBQUVFRUJFMEJDNEY5QUUwMi9pYU1kUk9sUEhNSjRVTHVzRnNBc0lLcXpu T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lhTWRST2xQSE1KNFVMdXNGc0FzSUtxem5PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZGNzMvQTI5NzA3RjY1M0ExMTFFQUFFRUVCRTBCQzRGOUFFMDIvRjM5MkNGOUU1 M0EzMTFFQUIxNjQxMjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAFnJ1YDBABnJ3ADBABn06wDBADKCBkwDQYJKoZIhvcNAQEL BQADggEBAHFZwjnVKytv4Gk85AevQYboED2DnGW7cRqqNQXoqQIRafYZORpNmAYb zHokLRe8NlgywHETQ6GcXetjtq+v3DI8I5/wpxqcwqKypqcls1vofndQVobSHntl r4swWwHyYHDNTLHd3T3x45/vUcldRUJiz240CVBDtzKVl13YyIuLKAxj+ubRlUWk vaPxHnzCQvXSWE3mnwasfwVJcziPAuiYmFDhL69Ez0IKumSDge7jQC1btyIYwlq0 CZQy6S8FUYbRaOlugxI9sTEdpEO7LTW7nD/wtpy/IyhCzG2xOdpP2uTDL1tPjf/X bpGT4iqjrwo1oHVBysj0ONxJKQ7niZA= -----END CERTIFICATE-----Generated at Sun Nov 24 20:09:53 2024 by rpki-client on console-ams.rpki-client.org