$ rpki-client -vvf rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa File: B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa (raw, json) Hash identifier: i8DoGHYlHx46c/zGymlOqfsnnDW4xU0Ca98hVoxidlE= Subject key identifier: 33:F5:F0:03:54:83:67:68:81:08:83:97:4C:C8:49:7C:BF:5D:A0:12 Certificate issuer: /CN=A9168D20/serialNumber=717A78D83EC38F17110273281398449ECDD10500 Certificate serial: 0558 Authority key identifier: 71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa Signing time: Wed 28 Feb 2024 20:08:10 +0000 ROA not before: Wed 28 Feb 2024 20:08:10 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 152596 IP address blocks: 103.125.220.0/23 maxlen: 23 103.125.220.0/24 maxlen: 24 103.125.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1368 (0x558) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168D20/serialNumber=717A78D83EC38F17110273281398449ECDD10500 Validity Not Before: Feb 28 20:08:10 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65df92aa-7603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:08:a7:69:69:99:a8:44:40:90:45:ad:ef:55: bf:f9:c2:39:46:6a:7b:63:61:9f:8d:fb:46:58:8a: 82:c3:66:8e:80:d3:17:f5:93:5f:70:69:ec:68:2e: b2:55:95:e4:01:05:0c:e7:72:63:40:98:ea:a4:42: a0:f5:32:59:02:73:96:76:b9:99:3f:1d:a7:84:a2: 01:f1:4c:ee:90:d7:c5:c6:ad:4c:8c:57:8a:fe:d1: bf:1c:05:44:14:55:e1:00:96:aa:ba:37:49:66:5e: 71:b1:f2:77:23:e7:69:9b:d0:d1:d7:19:98:68:c1: 36:1f:98:0a:a9:ba:2c:56:05:74:7d:0e:48:ce:34: 3a:59:23:0e:fc:96:bc:4c:83:a7:3b:4f:ff:02:a6: ef:d6:a0:c9:9e:4c:7d:71:5a:bb:78:60:f9:c7:2e: 0d:be:16:af:bd:ad:6f:72:f2:8a:3a:ca:5f:1e:99: 9e:21:c8:aa:68:63:f9:df:96:e5:ab:f3:69:2f:3d: 21:b3:42:48:b3:31:6e:96:20:fd:66:1d:41:45:04: 9a:af:b2:7e:f0:a1:e8:c7:3a:4b:af:1b:4e:88:c2: 84:33:b4:1a:00:73:a0:bd:ea:0e:dd:27:55:f0:3b: 67:77:7b:fb:22:be:f8:c7:38:cb:eb:44:41:e8:7c: 50:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:F5:F0:03:54:83:67:68:81:08:83:97:4C:C8:49:7C:BF:5D:A0:12 X509v3 Authority Key Identifier: keyid:71:7A:78:D8:3E:C3:8F:17:11:02:73:28:13:98:44:9E:CD:D1:05:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/cXp42D7DjxcRAnMoE5hEns3RBQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cXp42D7DjxcRAnMoE5hEns3RBQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168D20/C0C6AE5C935B11EB91086D55C4F9AE02/B9D0CC00D67311EEAD5F8B0FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.220.0/23 Signature Algorithm: sha256WithRSAEncryption 32:cb:ec:af:3f:0f:1b:fc:71:ae:ac:6b:68:53:80:2d:dc:98: 5e:b0:d3:25:67:d8:b9:0d:d3:9f:d3:b6:8e:fa:53:89:a3:63: 68:b8:f8:36:91:b3:15:f2:13:85:b5:b1:ab:14:13:db:14:e5: e0:94:8c:cc:70:8d:62:da:85:93:a1:67:b5:38:03:84:30:50: ad:4f:37:1c:d3:d1:10:e9:f8:9c:53:ba:66:86:be:c4:d8:4d: b3:1e:19:ce:ab:b3:f8:fe:90:90:85:10:02:86:9c:1f:6d:78: d2:44:d9:7f:a9:77:44:3e:41:1d:84:63:7b:62:04:90:5a:08: 00:37:71:5f:ab:d0:1b:b4:85:5d:c8:1b:dd:b1:fa:f3:a4:ca: f1:c1:d9:a9:4e:9f:35:f8:38:0f:8c:bf:dc:73:ed:fb:e8:9b: 9d:51:a4:e9:09:18:6d:ab:6a:3e:da:c1:42:4f:89:7a:fb:f2: 61:60:cb:a0:a3:06:a2:f1:32:00:ae:1e:9f:4c:7b:84:36:70: d0:c0:39:74:5f:c2:c3:0d:bb:68:95:db:ff:09:a7:fe:df:ec: 7e:55:e7:6f:12:31:39:63:4e:29:4c:ae:01:63:a6:67:19:c1: b0:07:06:81:02:11:6f:db:90:7d:25:c3:25:78:9e:3c:49:fe: 00:0d:74:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhEMjAxMTAvBgNVBAUTKDcxN0E3OEQ4M0VDMzhGMTcxMTAyNzMyODEzOTg0NDlF Q0REMTA1MDAwHhcNMjQwMjI4MjAwODEwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmOTJhYS03NjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwinaWmZqERAkEWt71W/+cI5Rmp7Y2GfjftGWIqCw2aOgNMX9ZNfcGnsaC6y VZXkAQUM53JjQJjqpEKg9TJZAnOWdrmZPx2nhKIB8UzukNfFxq1MjFeK/tG/HAVE FFXhAJaqujdJZl5xsfJ3I+dpm9DR1xmYaME2H5gKqbosVgV0fQ5IzjQ6WSMO/Ja8 TIOnO0//Aqbv1qDJnkx9cVq7eGD5xy4Nvhavva1vcvKKOspfHpmeIciqaGP535bl q/NpLz0hs0JIszFuliD9Zh1BRQSar7J+8KHoxzpLrxtOiMKEM7QaAHOgveoO3SdV 8Dtnd3v7Ir74xzjL60RB6HxQ6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDP18ANU g2dogQiDl0zISXy/XaASMB8GA1UdIwQYMBaAFHF6eNg+w48XEQJzKBOYRJ7N0QUA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEQyMC9DMEM2QUU1Qzkz NUIxMUVCOTEwODZENTVDNEY5QUUwMi9jWHA0MkQ3RGp4Y1JBbk1vRTVoRW5zM1JC UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NYcDQyRDdEanhjUkFuTW9FNWhFbnMzUkJRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhEMjAvQzBDNkFFNUM5MzVCMTFFQjkxMDg2RDU1QzRGOUFFMDIvQjlEMENDMDBE NjczMTFFRUFENUY4QjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnfdwwDQYJKoZIhvcNAQELBQADggEBADLL7K8/Dxv8ca6s a2hTgC3cmF6w0yVn2LkN05/Tto76U4mjY2i4+DaRsxXyE4W1sasUE9sU5eCUjMxw jWLahZOhZ7U4A4QwUK1PNxzT0RDp+JxTumaGvsTYTbMeGc6rs/j+kJCFEAKGnB9t eNJE2X+pd0Q+QR2EY3tiBJBaCAA3cV+r0Bu0hV3IG92x+vOkyvHB2alOnzX4OA+M v9xz7fvom51RpOkJGG2raj7awUJPiXr78mFgy6CjBqLxMgCuHp9Me4Q2cNDAOXRf wsMNu2iV2/8Jp/7f7H5V528SMTljTilMrgFjpmcZwbAHBoECEW/bkH0lwyV4njxJ /gANdB4= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:27 2024 by rpki-client on console-fra.rpki-client.org