$ rpki-client -vvf rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/E1EF913A5DF011EFAC9CA43BC4F9AE02.roa File: E1EF913A5DF011EFAC9CA43BC4F9AE02.roa (raw, json) Hash identifier: HnEUHlw9gil+mYxp63GxFhUGPoOAuwCoKZnzCLBninA= Subject key identifier: CF:4D:C4:CC:55:F2:4F:42:24:20:E5:1C:D8:0E:44:CF:16:9F:8E:D7 Certificate issuer: /CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Certificate serial: 13 Authority key identifier: D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/E1EF913A5DF011EFAC9CA43BC4F9AE02.roa Signing time: Sun 15 Sep 2024 10:40:11 +0000 ROA not before: Sun 15 Sep 2024 10:40:11 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 26658 IP address blocks: 43.246.116.0/22 maxlen: 22 103.35.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19 (0x13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197CBC/serialNumber=D398474714257BBEF3A5A975D90CD0DC65BDDBEF Validity Not Before: Sep 15 10:40:11 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e6b989-084d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:96:dd:af:0d:99:57:03:ac:48:62:0d:ef:11: d9:92:47:fd:b8:27:e5:7e:c0:df:4b:5e:1b:79:ae: 62:28:19:c7:12:02:f5:52:06:c4:5d:ad:ca:c7:41: 44:80:34:55:e2:af:c5:78:70:ff:dc:92:36:4e:b5: c4:8f:f5:c9:a4:9d:00:15:16:64:9a:15:69:2d:14: ed:6a:b4:09:d4:46:f8:6b:a2:76:53:25:7f:8e:23: 2f:59:e3:32:6b:32:5b:a2:bc:3d:4d:82:83:16:c6: 2a:9d:56:06:d2:b5:a3:a5:78:23:f9:16:c7:f7:ca: 34:df:ff:28:09:f5:89:fc:0a:23:3f:cb:03:77:9b: e8:d8:12:bc:91:5b:40:75:ba:f3:67:7a:13:d8:a9: f8:2a:b6:4a:8f:77:fb:70:2d:ee:fe:47:cb:c1:f3: 0a:fa:1f:00:21:7f:12:3f:41:ec:8c:7a:15:61:08: 98:fd:02:c7:28:27:d1:39:50:62:56:6b:95:75:9f: 08:7a:c4:f2:95:6b:df:f1:3c:23:ba:5d:a3:15:26: 33:d9:c4:ff:1c:6e:f6:63:11:c9:15:23:3c:f0:be: 48:5b:44:81:cc:fe:18:6c:ca:bc:49:54:9e:d2:b1: 0b:2e:a1:8f:47:f6:93:0f:bf:d3:b0:64:8c:0b:87: 7d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:4D:C4:CC:55:F2:4F:42:24:20:E5:1C:D8:0E:44:CF:16:9F:8E:D7 X509v3 Authority Key Identifier: keyid:D3:98:47:47:14:25:7B:BE:F3:A5:A9:75:D9:0C:D0:DC:65:BD:DB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/05hHRxQle77zpal12QzQ3GW92-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/05hHRxQle77zpal12QzQ3GW92-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197CBC/952BAE2E5DF011EFAC70ED0AC4F9AE02/E1EF913A5DF011EFAC9CA43BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.116.0/22 103.35.184.0/22 Signature Algorithm: sha256WithRSAEncryption 99:ef:4f:46:fa:2a:f0:fa:86:cd:88:65:c7:e9:0f:2f:74:b1: 5b:df:4c:8d:c1:e5:e2:5e:e1:ee:9b:fb:6f:3b:15:30:f0:02: d6:b2:fc:b9:0b:6e:4e:3b:f4:36:ee:fb:b2:2a:01:a4:cf:fb: 83:78:40:48:15:7f:e9:b6:d5:41:ee:06:f9:f3:36:1c:02:81: 38:50:c3:e2:e6:6d:c8:06:93:30:0b:d3:2f:5b:c8:32:12:7c: 3b:ab:25:fa:48:cc:33:d2:06:5c:9c:1a:59:e6:5a:a9:7e:19: 6c:57:36:09:a8:06:57:7d:20:f3:ac:8f:5e:e0:41:73:85:a7: 5a:d7:c6:82:2a:8d:51:9b:97:bc:d3:37:cd:0f:70:62:59:5d: 18:c0:8e:4c:df:75:b8:68:e5:9c:cd:44:6c:24:7e:80:7c:39: eb:6a:2a:2c:97:cf:c2:a2:fd:e3:e1:a9:c6:61:fa:08:d0:3d: ca:55:b9:a1:df:63:54:7c:ee:62:f8:13:ce:08:3a:52:48:d7: 49:74:13:12:df:fd:bb:23:e5:2d:8d:02:a7:d9:c7:57:5f:73: 46:58:38:5f:63:18:4b:c0:c9:87:c1:52:1d:56:e7:0b:75:d2: d0:37:be:55:b7:38:24:3b:f0:0e:e7:cc:c2:b4:11:58:8c:24: 6d:5b:0d:52 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBEzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 N0NCQzExMC8GA1UEBRMoRDM5ODQ3NDcxNDI1N0JCRUYzQTVBOTc1RDkwQ0QwREM2 NUJEREJFRjAeFw0yNDA5MTUxMDQwMTFaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTZiOTg5LTA4NGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKlt2vDZlXA6xIYg3vEdmSR/24J+V+wN9LXht5rmIoGccSAvVSBsRdrcrHQUSA NFXir8V4cP/ckjZOtcSP9cmknQAVFmSaFWktFO1qtAnURvhronZTJX+OIy9Z4zJr MluivD1NgoMWxiqdVgbStaOleCP5Fsf3yjTf/ygJ9Yn8CiM/ywN3m+jYEryRW0B1 uvNnehPYqfgqtkqPd/twLe7+R8vB8wr6HwAhfxI/QeyMehVhCJj9AscoJ9E5UGJW a5V1nwh6xPKVa9/xPCO6XaMVJjPZxP8cbvZjEckVIzzwvkhbRIHM/hhsyrxJVJ7S sQsuoY9H9pMPv9OwZIwLh32zAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUz03EzFXy T0IkIOUc2A5EzxafjtcwHwYDVR0jBBgwFoAU05hHRxQle77zpal12QzQ3GW92+8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3Q0JDLzk1MkJBRTJFNURG MDExRUZBQzcwRUQwQUM0RjlBRTAyLzA1aEhSeFFsZTc3enBhbDEyUXpRM0dXOTIt OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDVoSFJ4UWxlNzd6cGFsMTJRelEzR1c5Mi04LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 N0NCQy85NTJCQUUyRTVERjAxMUVGQUM3MEVEMEFDNEY5QUUwMi9FMUVGOTEzQTVE RjAxMUVGQUM5Q0E0M0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAiv2dAMEAmcjuDANBgkqhkiG9w0BAQsFAAOCAQEAme9PRvoq 8PqGzYhlx+kPL3SxW99MjcHl4l7h7pv7bzsVMPAC1rL8uQtuTjv0Nu77sioBpM/7 g3hASBV/6bbVQe4G+fM2HAKBOFDD4uZtyAaTMAvTL1vIMhJ8O6sl+kjMM9IGXJwa WeZaqX4ZbFc2CagGV30g86yPXuBBc4WnWtfGgiqNUZuXvNM3zQ9wYlldGMCOTN91 uGjlnM1EbCR+gHw562oqLJfPwqL94+GpxmH6CNA9ylW5od9jVHzuYvgTzgg6UkjX SXQTEt/9uyPlLY0Cp9nHV19zRlg4X2MYS8DJh8FSHVbnC3XS0De+Vbc4JDvwDufM wrQRWIwkbVsNUg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:46 2024 by rpki-client on console-fra.rpki-client.org