$ rpki-client -vvf rpki.apnic.net/member_repository/A9139790/BF2CE3F0C0AA11EBBEAFCA2AC4F9AE02/DC3716ACC0AD11EBA91C5655C4F9AE02.roa File: DC3716ACC0AD11EBA91C5655C4F9AE02.roa (raw, json) Hash identifier: zjF6hV/xCm0hZGzWLZIyEd9PhQ3Ngnb2LQfu5dnHHQI= Subject key identifier: 2A:62:95:73:86:76:EC:0A:4C:2A:5E:2A:6A:74:97:E8:D8:9F:AE:8B Certificate issuer: /CN=A9139790/serialNumber=ABACB90C31348501B4B1D5E5A2C7CFF1FD87B55B Certificate serial: 04E2 Authority key identifier: AB:AC:B9:0C:31:34:85:01:B4:B1:D5:E5:A2:C7:CF:F1:FD:87:B5:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6y5DDE0hQG0sdXlosfP8f2HtVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139790/BF2CE3F0C0AA11EBBEAFCA2AC4F9AE02/DC3716ACC0AD11EBA91C5655C4F9AE02.roa Signing time: Fri 01 Mar 2024 01:03:30 +0000 ROA not before: Fri 01 Mar 2024 01:03:30 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 131167 IP address blocks: 103.160.52.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139790/BF2CE3F0C0AA11EBBEAFCA2AC4F9AE02/q6y5DDE0hQG0sdXlosfP8f2HtVs.crl rsync://rpki.apnic.net/member_repository/A9139790/BF2CE3F0C0AA11EBBEAFCA2AC4F9AE02/q6y5DDE0hQG0sdXlosfP8f2HtVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6y5DDE0hQG0sdXlosfP8f2HtVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1250 (0x4e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139790/serialNumber=ABACB90C31348501B4B1D5E5A2C7CFF1FD87B55B Validity Not Before: Mar 1 01:03:30 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65e12961-b0ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d9:df:60:17:f9:22:44:09:9b:63:d6:3a:38: 0e:1d:93:b4:93:81:74:22:09:98:11:41:9e:f4:c7: 88:f5:95:ce:cb:4c:2f:a4:22:7c:7d:09:61:3c:6f: f4:0a:7e:c8:e0:27:1e:fc:bb:23:ce:4e:be:cf:b7: 93:f3:ae:8a:8b:96:4f:b1:c2:aa:e3:b1:02:71:f7: 2d:00:83:a4:ca:2f:8a:8d:26:c9:38:a2:1b:a5:9d: 42:68:3e:d4:f5:1c:8b:82:23:01:07:de:6e:1f:b0: f7:69:db:e7:6b:5e:a3:69:51:d1:9c:28:19:a1:6d: 09:22:28:1a:a9:f0:13:af:ba:19:cb:70:73:3a:2f: 2f:04:14:eb:d6:27:12:5c:c9:39:ef:59:0c:c9:62: ba:77:53:0e:68:55:ea:10:24:7d:f2:7e:62:88:2d: 4e:4c:9b:42:6b:e5:ce:81:80:e5:fa:c3:d5:ae:3a: 28:eb:7b:0b:07:1a:cc:73:84:4a:b0:e7:aa:a3:eb: a2:57:84:6e:31:d1:07:b9:26:af:4b:0c:ff:50:6a: 47:04:01:fb:16:82:a0:b2:bc:a5:ca:78:8f:0c:03: 2b:35:83:b8:94:94:30:dd:e5:6e:80:17:5b:ce:12: 34:35:b9:77:45:26:6f:dd:c9:73:ff:9f:46:40:84: c3:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:62:95:73:86:76:EC:0A:4C:2A:5E:2A:6A:74:97:E8:D8:9F:AE:8B X509v3 Authority Key Identifier: keyid:AB:AC:B9:0C:31:34:85:01:B4:B1:D5:E5:A2:C7:CF:F1:FD:87:B5:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139790/BF2CE3F0C0AA11EBBEAFCA2AC4F9AE02/q6y5DDE0hQG0sdXlosfP8f2HtVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6y5DDE0hQG0sdXlosfP8f2HtVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139790/BF2CE3F0C0AA11EBBEAFCA2AC4F9AE02/DC3716ACC0AD11EBA91C5655C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.52.0/23 Signature Algorithm: sha256WithRSAEncryption a2:06:7b:e2:96:0e:38:b5:6f:02:91:20:5f:47:82:03:a5:e2: f3:21:82:18:c5:36:a1:f4:1f:56:49:98:bc:db:6c:43:bd:63: 64:20:5c:78:c6:2b:79:c7:ba:e1:3f:83:16:eb:a6:25:44:ad: dc:0f:86:2e:4c:aa:2e:d3:96:ba:47:4a:a4:ae:51:e3:e2:3f: 78:35:91:1f:e6:18:9a:35:f7:16:62:21:a5:20:47:9b:4a:f3: 27:94:f5:09:d6:8c:a4:ac:35:55:64:36:6d:8d:4e:fe:71:c5: 4e:c0:30:bf:ec:39:e4:27:81:f9:fc:f4:fe:da:f7:bd:55:d8: 72:4e:9e:4a:67:20:86:b2:3b:79:7c:1d:59:dc:8c:fb:50:f5: 99:d9:00:85:56:51:4f:33:69:42:2f:34:97:6b:49:bc:b3:f7: b7:d7:20:81:89:e7:8d:58:b4:72:7f:62:95:ff:45:40:c1:7a: 0e:4f:53:2b:05:9e:a0:a2:50:e4:0c:d2:e3:fd:1e:e3:67:2c: d6:05:1d:2b:6a:c9:a9:18:8b:12:5b:ae:f7:92:a2:6d:ad:e1: 22:f9:e8:7e:e2:4d:cd:aa:f4:a8:dc:19:1e:03:fe:a0:6e:e4: 4b:85:65:e4:11:ff:a4:7f:4c:ef:a0:8d:2f:40:7a:16:0c:62: 6e:93:2a:05 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk3OTAxMTAvBgNVBAUTKEFCQUNCOTBDMzEzNDg1MDFCNEIxRDVFNUEyQzdDRkYx RkQ4N0I1NUIwHhcNMjQwMzAxMDEwMzMwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxMjk2MS1iMGVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvdnfYBf5IkQJm2PWOjgOHZO0k4F0IgmYEUGe9MeI9ZXOy0wvpCJ8fQlhPG/0 Cn7I4Cce/Lsjzk6+z7eT866Ki5ZPscKq47ECcfctAIOkyi+KjSbJOKIbpZ1CaD7U 9RyLgiMBB95uH7D3advna16jaVHRnCgZoW0JIigaqfATr7oZy3BzOi8vBBTr1icS XMk571kMyWK6d1MOaFXqECR98n5iiC1OTJtCa+XOgYDl+sPVrjoo63sLBxrMc4RK sOeqo+uiV4RuMdEHuSavSwz/UGpHBAH7FoKgsrylyniPDAMrNYO4lJQw3eVugBdb zhI0Nbl3RSZv3clz/59GQITDFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCpilXOG duwKTCpeKmp0l+jYn66LMB8GA1UdIwQYMBaAFKusuQwxNIUBtLHV5aLHz/H9h7Vb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTc5MC9CRjJDRTNGMEMw QUExMUVCQkVBRkNBMkFDNEY5QUUwMi9xNnk1RERFMGhRRzBzZFhsb3NmUDhmMkh0 VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E2eTVEREUwaFFHMHNkWGxvc2ZQOGYySHRWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk3OTAvQkYyQ0UzRjBDMEFBMTFFQkJFQUZDQTJBQzRGOUFFMDIvREMzNzE2QUND MEFEMTFFQkE5MUM1NjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoDQwDQYJKoZIhvcNAQELBQADggEBAKIGe+KWDji1bwKR IF9HggOl4vMhghjFNqH0H1ZJmLzbbEO9Y2QgXHjGK3nHuuE/gxbrpiVErdwPhi5M qi7TlrpHSqSuUePiP3g1kR/mGJo19xZiIaUgR5tK8yeU9QnWjKSsNVVkNm2NTv5x xU7AML/sOeQngfn89P7a971V2HJOnkpnIIayO3l8HVncjPtQ9ZnZAIVWUU8zaUIv NJdrSbyz97fXIIGJ541YtHJ/YpX/RUDBeg5PUysFnqCiUOQM0uP9HuNnLNYFHStq yakYixJbrveSom2t4SL56H7iTc2q9KjcGR4D/qBu5EuFZeQR/6R/TO+gjS9AehYM Ym6TKgU= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:37 2024 by rpki-client on console-ams.rpki-client.org