$ rpki-client -vvf rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa File: 52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa (raw, json) Hash identifier: WJmU3zKS7DC5uhWTazUvcz+uUKMvCoTZtIvTzFzwxGo= Subject key identifier: DF:86:E5:2D:4B:A9:E8:A5:9E:9A:25:29:9F:A3:88:B4:92:5B:C3:BE Certificate issuer: /CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Certificate serial: 69 Authority key identifier: D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa Signing time: Tue 12 Dec 2023 08:15:10 +0000 ROA not before: Tue 12 Dec 2023 08:15:10 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 142631 IP address blocks: 103.208.66.0/24 maxlen: 24 103.229.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 105 (0x69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163B62/serialNumber=D3AE626449C3A9DD0E7798BCE8BCBB39662A27FF Validity Not Before: Dec 12 08:15:10 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6578168e-34eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bb:d4:78:89:6f:94:45:00:e7:a5:20:99:4f: fd:b4:96:14:16:67:3c:82:ed:8d:eb:b6:ad:ae:06: a8:81:cd:02:ee:11:ba:1e:df:4a:69:f2:c5:5f:ef: f9:e4:45:03:ad:a5:1c:f4:3d:ed:e3:9e:c3:81:29: cd:f0:3e:0f:e1:e4:1b:3a:0d:7f:5c:41:45:80:4b: d0:07:27:c4:71:3b:e1:a8:4f:8e:d6:b3:3b:68:5e: 70:e2:6b:c4:66:2b:1f:bd:63:03:4e:07:e1:b0:7c: 2c:56:ee:74:9e:f2:bd:ae:42:07:31:fd:f0:63:17: 24:d1:22:3e:86:0f:43:ae:90:5c:46:fc:e6:28:8d: 0d:da:be:40:0a:46:74:f1:a6:32:18:3d:fb:7b:cc: 97:eb:e4:c5:40:c9:6d:7b:4d:eb:d3:8c:36:db:c3: 8a:d8:5c:16:e3:18:33:13:39:06:1b:8c:ee:58:19: 5a:f3:41:67:f9:9a:7b:93:4b:c6:ee:25:53:a6:09: ba:31:cd:ed:1d:24:39:81:a6:39:3f:93:ab:34:6f: 1a:14:7e:1f:4b:ac:6d:73:df:ac:7f:b5:e6:91:93: 6d:1a:c2:66:0e:97:6a:94:f3:f9:e9:bf:f6:81:19: 28:f0:d2:3a:90:ae:7a:27:9b:0c:81:ea:79:6c:fe: 9e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:86:E5:2D:4B:A9:E8:A5:9E:9A:25:29:9F:A3:88:B4:92:5B:C3:BE X509v3 Authority Key Identifier: keyid:D3:AE:62:64:49:C3:A9:DD:0E:77:98:BC:E8:BC:BB:39:66:2A:27:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/065iZEnDqd0Od5i86Ly7OWYqJ_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/065iZEnDqd0Od5i86Ly7OWYqJ_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163B62/4E9B76D2FBD211EDA0864345C4F9AE02/52CA5FA4FBDA11EDBC5C2B51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.208.66.0/24 103.229.232.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:ee:45:81:73:04:23:be:7a:8d:a3:74:8a:bb:e7:ec:14:12: db:98:e8:f2:d5:0f:c9:7d:93:5f:26:38:65:ca:84:20:b3:a2: 9d:3f:dc:37:84:40:c5:80:0d:b8:65:8e:8f:4d:17:49:98:02: 5a:82:98:89:31:58:48:a5:3b:8e:68:1b:6b:24:e8:20:da:b7: 8a:5e:e7:b9:39:ba:a1:72:86:e0:8e:1f:82:6a:99:c0:13:d9: 8a:67:4a:c5:06:89:fe:79:26:53:66:3c:7c:1f:aa:f1:8f:91: d7:d3:39:03:09:ab:1c:5a:6e:67:23:81:27:c9:87:e8:70:4a: 22:85:fe:8b:b8:af:00:8b:fd:f9:fa:8b:74:d9:b7:99:d8:cb: 61:cb:43:01:92:b0:49:82:3a:09:ac:72:48:d7:49:f3:65:da: 5d:86:c7:78:36:0f:56:37:12:75:be:b2:fc:cd:f6:9a:52:d6: 18:55:ea:6e:1e:72:a6:64:23:27:be:80:9d:db:89:e1:d8:3b: b3:48:19:00:46:f7:16:27:a7:d5:e7:3d:45:6e:a7:3f:43:c7: 6d:88:62:0f:71:b6:bc:a8:af:f4:b4:7b:6b:1e:73:47:35:ed: 6e:a7:c2:99:f6:17:bc:04:02:b4:0c:79:e8:ac:4f:7b:a6:18: d0:e9:88:d4 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBaTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 M0I2MjExMC8GA1UEBRMoRDNBRTYyNjQ0OUMzQTlERDBFNzc5OEJDRThCQ0JCMzk2 NjJBMjdGRjAeFw0yMzEyMTIwODE1MTBaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NzgxNjhlLTM0ZWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9u9R4iW+URQDnpSCZT/20lhQWZzyC7Y3rtq2uBqiBzQLuEboe30pp8sVf7/nk RQOtpRz0Pe3jnsOBKc3wPg/h5Bs6DX9cQUWAS9AHJ8RxO+GoT47WsztoXnDia8Rm Kx+9YwNOB+GwfCxW7nSe8r2uQgcx/fBjFyTRIj6GD0OukFxG/OYojQ3avkAKRnTx pjIYPft7zJfr5MVAyW17TevTjDbbw4rYXBbjGDMTOQYbjO5YGVrzQWf5mnuTS8bu JVOmCboxze0dJDmBpjk/k6s0bxoUfh9LrG1z36x/teaRk20awmYOl2qU8/npv/aB GSjw0jqQrnonmwyB6nls/p5DAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU34blLUup 6KWemiUpn6OItJJbw74wHwYDVR0jBBgwFoAU065iZEnDqd0Od5i86Ly7OWYqJ/8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYzQjYyLzRFOUI3NkQyRkJE MjExRURBMDg2NDM0NUM0RjlBRTAyLzA2NWlaRW5EcWQwT2Q1aTg2THk3T1dZcUpf OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMDY1aVpFbkRxZDBPZDVpODZMeTdPV1lxSl84LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 M0I2Mi80RTlCNzZEMkZCRDIxMUVEQTA4NjQzNDVDNEY5QUUwMi81MkNBNUZBNEZC REExMUVEQkM1QzJCNTFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGfQQgMEAGfl6DANBgkqhkiG9w0BAQsFAAOCAQEAfu5FgXME I756jaN0irvn7BQS25jo8tUPyX2TXyY4ZcqEILOinT/cN4RAxYANuGWOj00XSZgC WoKYiTFYSKU7jmgbayToINq3il7nuTm6oXKG4I4fgmqZwBPZimdKxQaJ/nkmU2Y8 fB+q8Y+R19M5AwmrHFpuZyOBJ8mH6HBKIoX+i7ivAIv9+fqLdNm3mdjLYctDAZKw SYI6CaxySNdJ82XaXYbHeDYPVjcSdb6y/M32mlLWGFXqbh5ypmQjJ76AnduJ4dg7 s0gZAEb3Fien1ec9RW6nP0PHbYhiD3G2vKiv9LR7ax5zRzXtbqfCmfYXvAQCtAx5 6KxPe6YY0OmI1A== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:16 2024 by rpki-client on console-ams.rpki-client.org