$ rpki-client -vvf rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/AFDA40003AB511E9A79AA42DC4F9AE02.roa File: AFDA40003AB511E9A79AA42DC4F9AE02.roa (raw, json) Hash identifier: InBIaLIwcDGKR/D+4UFDpCMgle7z5lJb1S9GwhqeL7M= Subject key identifier: 3D:8D:2B:4D:DD:F6:79:4C:B4:BE:47:80:5E:4A:E2:EE:D7:BE:3E:6D Certificate issuer: /CN=A9199CE9/serialNumber=D50EE693CB4844DD2E76034BECBD36A881C37897 Certificate serial: 0FA6 Authority key identifier: D5:0E:E6:93:CB:48:44:DD:2E:76:03:4B:EC:BD:36:A8:81:C3:78:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Q7mk8tIRN0udgNL7L02qIHDeJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/AFDA40003AB511E9A79AA42DC4F9AE02.roa Signing time: Fri 08 Mar 2024 18:26:10 +0000 ROA not before: Fri 08 Mar 2024 18:26:10 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 3 IP address blocks: 103.134.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/1Q7mk8tIRN0udgNL7L02qIHDeJc.crl rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/1Q7mk8tIRN0udgNL7L02qIHDeJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Q7mk8tIRN0udgNL7L02qIHDeJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 18:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4006 (0xfa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199CE9/serialNumber=D50EE693CB4844DD2E76034BECBD36A881C37897 Validity Not Before: Mar 8 18:26:10 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65eb5842-87d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:42:bc:99:6f:16:d5:a5:8a:29:f9:22:7e:3b: 0c:90:df:18:87:41:98:3d:59:6f:6e:e9:d4:c8:07: cc:ed:7f:56:16:ee:06:16:3e:61:0c:44:ba:a5:8c: 91:a5:7f:36:31:55:e2:e8:c3:36:bb:e0:09:6a:75: f1:39:bb:88:64:24:c8:8d:7c:ef:ed:0b:01:c6:63: 5c:c4:79:86:2b:69:ac:fa:53:00:25:0b:26:50:00: 5e:00:d0:ff:e1:19:fe:0e:d6:3b:e4:0c:6b:85:16: 1e:81:c3:6a:9d:3d:92:68:22:f4:4f:d1:1c:9f:9d: b8:8c:b5:19:b7:74:9d:ad:e7:fd:54:ea:be:c8:05: b4:7c:75:a3:ee:d5:8b:57:2f:af:59:6b:77:ac:6f: e9:c3:85:77:07:f9:fe:32:f0:e6:6b:bb:c9:89:13: 07:9c:32:49:a9:01:64:19:9c:ce:29:b5:c1:a3:d2: 03:2d:9f:c2:23:2c:42:ae:be:1f:d6:a7:14:85:2c: 63:fd:8b:e1:cd:7d:b0:23:5a:0d:0c:ed:4a:3f:c5: 5f:11:b1:25:a6:e8:39:f7:b1:d4:0f:ea:b8:fc:e6: 59:5a:f6:f6:07:c1:0b:7b:01:4a:39:20:11:82:00: bc:b9:3b:55:28:2a:25:3a:01:45:95:9b:79:aa:ec: 08:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:8D:2B:4D:DD:F6:79:4C:B4:BE:47:80:5E:4A:E2:EE:D7:BE:3E:6D X509v3 Authority Key Identifier: keyid:D5:0E:E6:93:CB:48:44:DD:2E:76:03:4B:EC:BD:36:A8:81:C3:78:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/1Q7mk8tIRN0udgNL7L02qIHDeJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1Q7mk8tIRN0udgNL7L02qIHDeJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199CE9/6CBB84F431F111E98A7B9317C4F9AE02/AFDA40003AB511E9A79AA42DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.63.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:d6:45:44:b7:1f:29:4e:86:51:6c:1e:a4:11:2b:6c:f4:49: db:a3:7c:96:e4:21:c2:e7:21:f2:b4:b1:a6:66:12:16:dd:38: 14:29:9d:52:db:3b:7f:42:b6:48:4c:89:3c:ae:53:2c:57:4c: 71:6c:3f:86:df:91:9e:54:53:fc:47:c3:d2:36:8d:aa:13:90: 9b:b7:1e:3a:28:17:99:99:d7:da:cd:c7:ea:c6:80:30:cd:e3: ab:51:c9:0c:46:65:76:ff:5d:41:17:e2:28:ad:8b:e7:da:b1: 96:95:52:55:b8:9d:80:c7:08:00:b7:4d:6c:7e:22:10:90:76: 6e:61:be:0f:87:a6:4f:f0:20:5f:6c:bc:59:c7:63:72:a5:94: 8d:15:d5:c6:0c:25:6d:8f:33:96:56:d8:36:58:db:eb:ba:7b: 92:c8:82:77:09:8e:f4:91:ca:da:53:43:39:3b:41:f1:f4:98: 23:c2:6d:9f:d5:7d:b0:7a:4c:de:5a:78:e0:ac:ec:91:ef:b6: ff:55:1e:0e:f8:65:cb:49:94:5d:99:26:3d:36:a3:0a:67:c6: fd:f8:55:98:56:05:c2:dd:45:9a:b8:f5:3b:4b:8a:24:b1:19: 8d:fd:ea:ab:62:1d:be:64:da:73:9a:c8:93:06:80:2f:dc:96: fc:a6:5e:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlDRTkxMTAvBgNVBAUTKEQ1MEVFNjkzQ0I0ODQ0REQyRTc2MDM0QkVDQkQzNkE4 ODFDMzc4OTcwHhcNMjQwMzA4MTgyNjEwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWViNTg0Mi04N2Q1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt0K8mW8W1aWKKfkifjsMkN8Yh0GYPVlvbunUyAfM7X9WFu4GFj5hDES6pYyR pX82MVXi6MM2u+AJanXxObuIZCTIjXzv7QsBxmNcxHmGK2ms+lMAJQsmUABeAND/ 4Rn+DtY75AxrhRYegcNqnT2SaCL0T9Ecn524jLUZt3Sdref9VOq+yAW0fHWj7tWL Vy+vWWt3rG/pw4V3B/n+MvDma7vJiRMHnDJJqQFkGZzOKbXBo9IDLZ/CIyxCrr4f 1qcUhSxj/YvhzX2wI1oNDO1KP8VfEbElpug597HUD+q4/OZZWvb2B8ELewFKOSAR ggC8uTtVKColOgFFlZt5quwIZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD2NK03d 9nlMtL5HgF5K4u7Xvj5tMB8GA1UdIwQYMBaAFNUO5pPLSETdLnYDS+y9NqiBw3iX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUNFOS82Q0JCODRGNDMx RjExMUU5OEE3QjkzMTdDNEY5QUUwMi8xUTdtazh0SVJOMHVkZ05MN0wwMnFJSERl SmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFRN21rOHRJUk4wdWRnTkw3TDAycUlIRGVKYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlDRTkvNkNCQjg0RjQzMUYxMTFFOThBN0I5MzE3QzRGOUFFMDIvQUZEQTQwMDAz QUI1MTFFOUE3OUFBNDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnhj8wDQYJKoZIhvcNAQELBQADggEBAI7WRUS3HylOhlFs HqQRK2z0SdujfJbkIcLnIfK0saZmEhbdOBQpnVLbO39CtkhMiTyuUyxXTHFsP4bf kZ5UU/xHw9I2jaoTkJu3HjooF5mZ19rNx+rGgDDN46tRyQxGZXb/XUEX4iiti+fa sZaVUlW4nYDHCAC3TWx+IhCQdm5hvg+Hpk/wIF9svFnHY3KllI0V1cYMJW2PM5ZW 2DZY2+u6e5LIgncJjvSRytpTQzk7QfH0mCPCbZ/VfbB6TN5aeOCs7JHvtv9VHg74 ZctJlF2ZJj02owpnxv34VZhWBcLdRZq49TtLiiSxGY396qtiHb5k2nOayJMGgC/c lvymXtM= -----END CERTIFICATE-----Generated at Wed May 22 20:09:01 2024 by rpki-client on console-ams.rpki-client.org