$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/DA505546B74C11ED916B5A6AC4F9AE02.roa File: DA505546B74C11ED916B5A6AC4F9AE02.roa (raw, json) Hash identifier: idPv6x/QADhZ/UKyaBsX5e2LFcTraLnSbZhm1viIkJg= Subject key identifier: BE:80:BA:0E:30:DB:98:00:12:ED:58:9D:1C:55:C9:D3:E3:75:82:A5 Certificate issuer: /CN=A9164860/serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E Certificate serial: 1145 Authority key identifier: BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/DA505546B74C11ED916B5A6AC4F9AE02.roa Signing time: Sat 30 Dec 2023 17:54:55 +0000 ROA not before: Sat 30 Dec 2023 17:54:55 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 0 IP address blocks: 103.104.19.0/24 maxlen: 24 116.89.244.0/24 maxlen: 24 2401:fdc0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.crl rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 17:54:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4421 (0x1145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164860/serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E Validity Not Before: Dec 30 17:54:55 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6590596f-ffc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:de:68:dd:28:93:d2:2d:44:47:63:36:e1:1a: 74:24:ff:20:c3:05:fe:97:63:32:19:61:b6:01:38: f7:a2:4e:0b:e3:8c:8b:e7:3a:b8:4f:2d:1f:1a:c5: c9:14:ed:91:0f:6f:17:49:d3:cd:b3:89:70:33:33: a2:f7:47:04:c9:ba:08:68:a7:51:a0:31:40:45:92: f2:c9:9f:49:c0:74:e9:c0:c4:7c:51:94:a2:48:31: 55:91:19:85:d8:d8:1e:aa:9e:dd:c7:31:d5:fe:cf: 6f:e4:07:3a:f8:50:c4:46:83:4e:d4:03:8b:c3:06: 93:12:62:de:0e:23:4d:73:91:59:a9:5f:5e:14:f9: a3:30:6a:23:fd:50:a4:95:e9:19:45:08:2f:82:95: 8d:2b:e7:a2:6b:62:1c:24:e6:b1:75:47:d3:b6:e5: 24:63:b9:ee:cc:37:45:12:aa:10:b5:1d:5a:ee:95: 6e:25:b0:6f:98:4b:4c:5b:4a:63:2e:27:27:86:ca: b7:f5:70:06:e2:86:69:90:27:f6:c8:7d:c6:49:f7: 21:e0:e2:cf:c4:6a:9e:97:9e:b7:d1:91:a3:0d:52: 7c:6d:23:12:70:4d:4c:ff:ec:c9:64:78:56:92:ba: d1:1c:53:9a:f9:2c:ce:97:f2:a7:64:46:ba:db:75: dc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:80:BA:0E:30:DB:98:00:12:ED:58:9D:1C:55:C9:D3:E3:75:82:A5 X509v3 Authority Key Identifier: keyid:BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/DA505546B74C11ED916B5A6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.19.0/24 116.89.244.0/24 IPv6: 2401:fdc0::/44 Signature Algorithm: sha256WithRSAEncryption 04:7b:06:bf:7d:f3:50:5a:08:74:af:c3:69:01:57:43:1c:45: 85:d7:48:57:76:08:00:2d:02:2f:0a:6e:b9:54:82:0e:37:25: 0b:21:ef:42:6f:43:c9:eb:ab:90:10:25:cf:cb:65:24:5c:cd: fa:99:2f:f7:f2:8e:72:fa:ad:7d:86:26:08:fe:ee:2c:61:15: 67:f5:71:35:b2:36:7d:13:c2:59:8b:fb:84:83:63:51:d0:39: b0:11:56:a6:6b:7d:8e:fe:16:cd:ea:e1:ed:76:64:07:00:0a: f6:e4:6a:53:74:96:30:7b:98:47:3d:68:a5:f3:b5:ee:6e:af: f5:b5:2f:98:3a:73:d6:46:5a:f1:b4:b2:9e:f8:e4:88:3e:dc: a4:1b:ea:67:3a:c9:0e:79:69:c6:47:67:30:8c:1c:bc:5e:62: 6e:2c:c7:6e:f6:2b:95:0c:1f:6f:d0:7d:60:fe:72:62:2f:e5: 22:1d:17:24:3c:b0:0e:cf:5d:1c:83:19:cb:ac:42:6b:d8:64: 0c:36:4b:84:b8:4a:89:73:95:17:e4:33:22:15:0a:a7:84:9a: 9d:ac:b1:ec:3c:a6:9e:0d:87:2c:9f:55:ef:01:a8:f3:09:73: 74:42:de:59:57:03:94:c6:7c:a6:f5:0a:fb:0d:df:77:26:c7: d6:c5:e4:95 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICEUUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ4NjAxMTAvBgNVBAUTKEJDNTM2QzAwRjg1RjU5MDQxRDlDNEMyOTYxRjcyMjQy QkY2MEQ1MUUwHhcNMjMxMjMwMTc1NDU1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkwNTk2Zi1mZmMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqt5o3SiT0i1ER2M24Rp0JP8gwwX+l2MyGWG2ATj3ok4L44yL5zq4Ty0fGsXJ FO2RD28XSdPNs4lwMzOi90cEyboIaKdRoDFARZLyyZ9JwHTpwMR8UZSiSDFVkRmF 2Ngeqp7dxzHV/s9v5Ac6+FDERoNO1AOLwwaTEmLeDiNNc5FZqV9eFPmjMGoj/VCk lekZRQgvgpWNK+eia2IcJOaxdUfTtuUkY7nuzDdFEqoQtR1a7pVuJbBvmEtMW0pj Licnhsq39XAG4oZpkCf2yH3GSfch4OLPxGqel5630ZGjDVJ8bSMScE1M/+zJZHhW krrRHFOa+SzOl/KnZEa623XcNwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFL6Aug4w 25gAEu1YnRxVydPjdYKlMB8GA1UdIwQYMBaAFLxTbAD4X1kEHZxMKWH3IkK/YNUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDg2MC9CNDAxQzk4MkU5 NzAxMUU4QjAzNTkzNTlDNEY5QUUwMi92Rk5zQVBoZldRUWRuRXdwWWZjaVFyOWcx UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZGTnNBUGhmV1FRZG5Fd3BZZmNpUXI5ZzFSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQ4NjAvQjQwMUM5ODJFOTcwMTFFOEIwMzU5MzU5QzRGOUFFMDIvREE1MDU1NDZC NzRDMTFFRDkxNkI1QTZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnaBMDBAB0WfQwDwQCAAIwCQMHBCQB/cAAADANBgkqhkiG 9w0BAQsFAAOCAQEABHsGv33zUFoIdK/DaQFXQxxFhddIV3YIAC0CLwpuuVSCDjcl CyHvQm9DyeurkBAlz8tlJFzN+pkv9/KOcvqtfYYmCP7uLGEVZ/VxNbI2fRPCWYv7 hINjUdA5sBFWpmt9jv4Wzerh7XZkBwAK9uRqU3SWMHuYRz1opfO17m6v9bUvmDpz 1kZa8bSynvjkiD7cpBvqZzrJDnlpxkdnMIwcvF5ibizHbvYrlQwfb9B9YP5yYi/l Ih0XJDywDs9dHIMZy6xCa9hkDDZLhLhKiXOVF+QzIhUKp4Sanayx7Dymng2HLJ9V 7wGo8wlzdELeWVcDlMZ8pvUK+w3fdybH1sXklQ== -----END CERTIFICATE-----Generated at Thu May 2 20:50:26 2024 by rpki-client on console-fra.rpki-client.org