$ rpki-client -vvf rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/D97D5F6A3FEB11E9882E830FC4F9AE02.roa File: D97D5F6A3FEB11E9882E830FC4F9AE02.roa (raw, json) Hash identifier: 1xAA2p3bRzKtkuwJYgmnpWotzfIy6qgcGQhWEvGOqKo= Subject key identifier: 18:60:3C:59:D9:FA:6A:D8:80:46:48:09:08:F4:33:29:BA:68:E9:4B Certificate issuer: /CN=A9162DD6/serialNumber=0E2870631FA0EFEAE94531DB0E26045CA3BC819B Certificate serial: 0F6B Authority key identifier: 0E:28:70:63:1F:A0:EF:EA:E9:45:31:DB:0E:26:04:5C:A3:BC:81:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/D97D5F6A3FEB11E9882E830FC4F9AE02.roa Signing time: Sat 30 Mar 2024 18:26:40 +0000 ROA not before: Sat 30 Mar 2024 18:26:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 18225 IP address blocks: 103.161.218.0/24 maxlen: 24 103.161.219.0/24 maxlen: 24 202.154.160.0/21 maxlen: 21 202.154.168.0/24 maxlen: 24 202.154.169.0/24 maxlen: 24 202.154.170.0/24 maxlen: 24 202.154.171.0/24 maxlen: 24 202.154.172.0/24 maxlen: 24 202.154.173.0/24 maxlen: 24 202.154.174.0/24 maxlen: 24 202.154.175.0/24 maxlen: 24 2406:de00:100::/40 maxlen: 40 2406:de00:200::/40 maxlen: 40 2406:de00:400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.crl rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3947 (0xf6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9162DD6/serialNumber=0E2870631FA0EFEAE94531DB0E26045CA3BC819B Validity Not Before: Mar 30 18:26:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66085960-884f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:da:28:a6:b8:a4:4f:c9:a9:45:c4:c3:6a:1f: 0e:0a:ba:32:4b:46:ba:43:e2:bf:10:83:fe:1d:75: 79:e3:82:3e:de:38:e1:fc:94:1d:6d:68:0f:4a:98: 39:21:11:80:e7:7a:84:9d:8c:8b:ad:77:5e:80:1b: 37:44:6f:fe:35:57:99:a7:47:a7:c5:31:07:b0:43: 65:63:1d:8d:11:76:6f:3e:b9:b4:29:66:64:e2:6d: 5f:c4:9f:67:85:6f:d9:a0:22:dd:7c:fb:b0:2e:e1: a7:91:c1:c9:4c:7e:03:d5:fd:af:86:6f:94:6c:03: 26:32:44:94:3f:0b:25:46:0b:ad:37:be:5f:e5:3e: df:d2:fb:5f:bd:f4:dd:94:d8:60:d2:99:ff:f0:63: e7:d7:ac:f3:b5:04:86:62:b5:5c:1a:13:d6:51:03: 89:95:f2:d9:73:0c:65:aa:69:d7:a8:29:aa:1c:0c: 85:d8:0f:15:39:15:58:68:23:9e:b8:f0:9e:af:09: 77:8a:0a:f2:b2:ec:fb:a6:51:d1:89:e1:ea:04:76: 6a:25:9f:6d:42:2b:4a:42:41:98:db:07:57:53:dc: 16:22:8a:66:99:0c:28:82:4c:15:5e:94:91:93:ac: 6e:8b:c8:e1:0c:0a:d3:84:69:4f:60:20:0e:41:e4: 24:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:60:3C:59:D9:FA:6A:D8:80:46:48:09:08:F4:33:29:BA:68:E9:4B X509v3 Authority Key Identifier: keyid:0E:28:70:63:1F:A0:EF:EA:E9:45:31:DB:0E:26:04:5C:A3:BC:81:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/DihwYx-g7-rpRTHbDiYEXKO8gZs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DihwYx-g7-rpRTHbDiYEXKO8gZs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9162DD6/9CD7CB0A3FEA11E991839D0DC4F9AE02/D97D5F6A3FEB11E9882E830FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.218.0/23 202.154.160.0/20 IPv6: 2406:de00:100::-2406:de00:2ff:ffff:ffff:ffff:ffff:ffff 2406:de00:400::/40 Signature Algorithm: sha256WithRSAEncryption 54:f7:1f:39:d4:45:d7:bf:3b:67:f3:9b:31:bb:20:2c:63:52: 84:01:06:aa:ec:fc:e0:52:11:61:14:57:b0:25:b7:8d:a1:e8: db:17:bb:b3:c3:50:f0:ed:7c:57:9c:0a:a3:7b:b7:65:01:03: 08:fd:bf:b6:00:0a:ad:3a:38:5c:81:a5:f5:b2:86:02:9e:00: 54:4e:dd:42:87:d1:7e:e4:86:6a:e8:2f:29:b7:1c:30:5d:04: f9:a1:9f:b1:a4:75:35:81:89:e5:13:2f:82:84:9d:af:65:6f: 58:f2:80:2b:00:02:fb:fc:29:c7:10:3f:fd:0a:74:24:d1:7b: 7e:d6:b5:18:0f:0c:a3:ac:c0:4b:8e:80:37:05:ad:be:48:0b: ad:d9:4c:56:53:2f:39:3c:4f:ad:eb:0e:6d:8e:bb:05:42:5f: 19:f8:6f:91:92:ef:07:a0:d4:29:bb:79:d0:20:f5:ec:74:a1: fb:a4:4f:8a:26:11:7e:dc:b4:73:40:aa:44:b9:6a:e1:46:e4: 83:88:30:6c:79:20:42:97:fa:85:55:2b:b3:79:60:ae:83:1b: 5a:d6:fc:ea:3e:82:11:7c:48:76:9a:7a:25:4c:ac:f5:f9:9a: 15:7d:57:44:85:ac:54:46:5f:f1:1a:79:d5:ad:80:8f:ed:bc: 03:e3:78:c4 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgICD2swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjJERDYxMTAvBgNVBAUTKDBFMjg3MDYzMUZBMEVGRUFFOTQ1MzFEQjBFMjYwNDVD QTNCQzgxOUIwHhcNMjQwMzMwMTgyNjQwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4NTk2MC04ODRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw9ooprikT8mpRcTDah8OCroyS0a6Q+K/EIP+HXV544I+3jjh/JQdbWgPSpg5 IRGA53qEnYyLrXdegBs3RG/+NVeZp0enxTEHsENlYx2NEXZvPrm0KWZk4m1fxJ9n hW/ZoCLdfPuwLuGnkcHJTH4D1f2vhm+UbAMmMkSUPwslRgutN75f5T7f0vtfvfTd lNhg0pn/8GPn16zztQSGYrVcGhPWUQOJlfLZcwxlqmnXqCmqHAyF2A8VORVYaCOe uPCerwl3igrysuz7plHRieHqBHZqJZ9tQitKQkGY2wdXU9wWIopmmQwogkwVXpSR k6xui8jhDArThGlPYCAOQeQkfwIDAQABo4ICvTCCArkwHQYDVR0OBBYEFBhgPFnZ +mrYgEZICQj0Mym6aOlLMB8GA1UdIwQYMBaAFA4ocGMfoO/q6UUx2w4mBFyjvIGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MkRENi85Q0Q3Q0IwQTNG RUExMUU5OTE4MzlEMERDNEY5QUUwMi9EaWh3WXgtZzctcnBSVEhiRGlZRVhLTzhn WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RpaHdZeC1nNy1ycFJUSGJEaVlFWEtPOGdacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjJERDYvOUNEN0NCMEEzRkVBMTFFOTkxODM5RDBEQzRGOUFFMDIvRDk3RDVGNkEz RkVCMTFFOTg4MkU4MzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRwYIKwYBBQUHAQcBAf8E ODA2MBIEAgABMAwDBAFnodoDBATKmqAwIAQCAAIwGjAQAwYAJAbeAAEDBgAkBt4A AgMGACQG3gAEMA0GCSqGSIb3DQEBCwUAA4IBAQBU9x851EXXvztn85sxuyAsY1KE AQaq7PzgUhFhFFewJbeNoejbF7uzw1Dw7XxXnAqje7dlAQMI/b+2AAqtOjhcgaX1 soYCngBUTt1Ch9F+5IZq6C8ptxwwXQT5oZ+xpHU1gYnlEy+ChJ2vZW9Y8oArAAL7 /CnHED/9CnQk0Xt+1rUYDwyjrMBLjoA3Ba2+SAut2UxWUy85PE+t6w5tjrsFQl8Z +G+Rku8HoNQpu3nQIPXsdKH7pE+KJhF+3LRzQKpEuWrhRuSDiDBseSBCl/qFVSuz eWCugxta1vzqPoIRfEh2mnolTKz1+ZoVfVdEhaxURl/xGnnVrYCP7bwD43jE -----END CERTIFICATE-----Generated at Fri May 31 20:34:04 2024 by rpki-client on console-ams.rpki-client.org