$ rpki-client -vvf rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/9E9EC628D9C511EC81B54F47C4F9AE02.roa File: 9E9EC628D9C511EC81B54F47C4F9AE02.roa (raw, json) Hash identifier: eVqCt6jrx+C1JB/X7OKow2VBehCM/YMsmg/5OjY9iwk= Subject key identifier: 80:18:89:CC:C4:D4:BB:22:76:8A:1A:A0:EF:B3:B6:77:6F:55:C1:BD Certificate issuer: /CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Certificate serial: 0259 Authority key identifier: DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/9E9EC628D9C511EC81B54F47C4F9AE02.roa Signing time: Wed 03 Jul 2024 03:24:35 +0000 ROA not before: Wed 03 Jul 2024 03:24:35 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.169.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 601 (0x259) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199AFB/serialNumber=DC617CFAEDF8BFB0A3ECF7D67142E6C1D526435C Validity Not Before: Jul 3 03:24:35 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6684c473-be61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:c1:38:1c:56:6e:38:b5:5f:e7:52:b5:96:38: e8:b8:74:d3:e1:2e:80:50:40:33:84:8d:9e:d3:e3: b6:d3:b3:92:b5:f6:03:de:06:ca:1b:1d:f9:e8:5a: 01:6c:86:0c:61:04:7b:68:c3:52:4c:36:53:7f:57: 31:bd:20:8f:e1:73:10:53:8c:4d:7f:d9:4e:26:53: c5:d0:0d:a7:09:6b:4f:0b:3c:1b:78:35:4d:3d:4a: 39:ba:8c:2b:49:a3:c0:12:31:bd:d3:9b:71:ec:02: 2d:12:90:69:e2:25:b9:d3:13:f0:8b:82:95:56:6b: 69:7d:d1:19:0e:4a:75:cd:69:10:16:79:e2:83:c6: af:4e:95:31:6b:59:0a:0e:05:0c:88:e1:35:02:e1: 7c:36:c8:0b:26:17:87:e6:1f:66:ad:0a:f2:8a:06: d2:31:2c:d8:a5:e2:48:3c:fb:5d:13:10:70:00:17: ac:64:96:1e:17:53:0f:52:7b:b5:bc:e8:65:60:b4: 6c:bc:d4:0a:a4:c7:23:01:c8:4d:5b:15:dc:b5:1e: 5f:25:72:b9:70:e2:a7:02:4f:ad:a8:fb:6c:5f:5c: ed:01:1e:78:21:ec:ec:17:3b:88:9a:18:be:d5:04: d8:af:fb:2f:f7:09:8f:b7:1e:ea:cb:89:3f:11:c7: 04:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:18:89:CC:C4:D4:BB:22:76:8A:1A:A0:EF:B3:B6:77:6F:55:C1:BD X509v3 Authority Key Identifier: keyid:DC:61:7C:FA:ED:F8:BF:B0:A3:EC:F7:D6:71:42:E6:C1:D5:26:43:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/3GF8-u34v7Cj7PfWcULmwdUmQ1w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3GF8-u34v7Cj7PfWcULmwdUmQ1w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199AFB/4434D590D9C211EC887F9846C4F9AE02/9E9EC628D9C511EC81B54F47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.91.0/24 Signature Algorithm: sha256WithRSAEncryption 86:cf:1b:d6:ae:1b:da:7c:5d:23:73:cd:a0:bb:d7:9e:de:0c: 94:00:e1:90:8a:62:39:a0:a5:44:16:32:8d:14:b4:59:6a:2e: a2:62:04:bb:f5:25:66:f6:6f:eb:77:6e:16:82:23:4e:ac:c5: 91:50:99:46:22:90:60:0b:fb:b1:25:dc:2f:27:1f:96:7f:29: 22:85:67:61:47:2e:b7:5d:18:5c:d1:ab:a1:c5:21:ab:25:51: b3:b6:f4:03:9a:79:20:9e:e8:71:3a:a3:88:10:43:0d:40:15: 04:04:4a:34:6d:93:ab:e3:df:ea:eb:47:33:03:8b:ca:36:7c: db:04:7c:ff:cd:4c:43:fe:a9:f0:d4:57:b8:4c:e3:58:cd:00: 43:df:92:15:8f:fd:f3:72:79:94:3c:dd:70:1e:6e:55:7a:54: 87:97:10:bf:9c:c0:84:99:a5:88:1f:ab:f1:e3:99:1c:4f:3c: 22:85:34:d3:22:61:11:8e:ce:c2:8f:20:7f:5d:ab:7c:e1:18: 28:65:7f:b2:b0:84:7d:44:f7:5d:5a:ce:c7:49:55:c1:68:5f: 78:b5:44:0d:21:03:f3:fd:f4:c5:eb:85:8f:81:41:ab:f1:bd: 41:bf:69:ef:a6:b0:a4:ec:98:b1:ef:b9:2b:c0:4d:60:fa:3c: 78:fe:68:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlBRkIxMTAvBgNVBAUTKERDNjE3Q0ZBRURGOEJGQjBBM0VDRjdENjcxNDJFNkMx RDUyNjQzNUMwHhcNMjQwNzAzMDMyNDM1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0YzQ3My1iZTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ME4HFZuOLVf51K1ljjouHTT4S6AUEAzhI2e0+O207OStfYD3gbKGx356FoB bIYMYQR7aMNSTDZTf1cxvSCP4XMQU4xNf9lOJlPF0A2nCWtPCzwbeDVNPUo5uowr SaPAEjG905tx7AItEpBp4iW50xPwi4KVVmtpfdEZDkp1zWkQFnnig8avTpUxa1kK DgUMiOE1AuF8NsgLJheH5h9mrQryigbSMSzYpeJIPPtdExBwABesZJYeF1MPUnu1 vOhlYLRsvNQKpMcjAchNWxXctR5fJXK5cOKnAk+tqPtsX1ztAR54IezsFzuImhi+ 1QTYr/sv9wmPtx7qy4k/EccE3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIAYiczE 1LsidooaoO+ztndvVcG9MB8GA1UdIwQYMBaAFNxhfPrt+L+wo+z31nFC5sHVJkNc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUFGQi80NDM0RDU5MEQ5 QzIxMUVDODg3Rjk4NDZDNEY5QUUwMi8zR0Y4LXUzNHY3Q2o3UGZXY1VMbXdkVW1R MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNHRjgtdTM0djdDajdQZldjVUxtd2RVbVExdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlBRkIvNDQzNEQ1OTBEOUMyMTFFQzg4N0Y5ODQ2QzRGOUFFMDIvOUU5RUM2MjhE OUM1MTFFQzgxQjU0RjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqVswDQYJKoZIhvcNAQELBQADggEBAIbPG9auG9p8XSNz zaC7157eDJQA4ZCKYjmgpUQWMo0UtFlqLqJiBLv1JWb2b+t3bhaCI06sxZFQmUYi kGAL+7El3C8nH5Z/KSKFZ2FHLrddGFzRq6HFIaslUbO29AOaeSCe6HE6o4gQQw1A FQQESjRtk6vj3+rrRzMDi8o2fNsEfP/NTEP+qfDUV7hM41jNAEPfkhWP/fNyeZQ8 3XAeblV6VIeXEL+cwISZpYgfq/HjmRxPPCKFNNMiYRGOzsKPIH9dq3zhGChlf7Kw hH1E911azsdJVcFoX3i1RA0hA/P99MXrhY+BQavxvUG/ae+msKTsmLHvuSvATWD6 PHj+aFY= -----END CERTIFICATE-----Generated at Mon Nov 25 03:00:24 2024 by rpki-client on console-fra.rpki-client.org