$ rpki-client -vvf rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/8D655C9656A511EA8FAB974DC4F9AE02.roa File: 8D655C9656A511EA8FAB974DC4F9AE02.roa (raw, json) Hash identifier: gTXDeyD6WxMMvLrCShbBbePPjjGE4+CbJQX3xYtiEjY= Subject key identifier: 79:0F:A5:6D:C6:50:E9:C6:9A:E9:C6:45:D3:D6:38:07:26:BC:59:B2 Certificate issuer: /CN=A916D29F/serialNumber=AA85CCD2DD3E1C003BF72FF53E58C7200E7CF0A8 Certificate serial: 0D83 Authority key identifier: AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/8D655C9656A511EA8FAB974DC4F9AE02.roa Signing time: Thu 04 Jan 2024 18:36:19 +0000 ROA not before: Thu 04 Jan 2024 18:36:19 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 64200 IP address blocks: 103.105.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 18:36:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3459 (0xd83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916D29F/serialNumber=AA85CCD2DD3E1C003BF72FF53E58C7200E7CF0A8 Validity Not Before: Jan 4 18:36:19 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6596faa3-7441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:49:5a:0b:2a:77:11:17:69:aa:f0:63:2e:a8: 8a:ac:d8:17:61:a5:50:7f:8f:25:77:b0:3f:f0:72: 78:8d:99:6f:b7:c2:95:44:1e:1e:69:90:21:e0:9b: 5e:5b:59:bd:ab:49:f8:6e:10:42:80:2f:b6:5e:8e: 4d:ad:ae:b6:ae:a7:4c:b8:c5:3b:9f:6c:a1:48:ae: 8d:04:24:f9:ca:d3:ae:70:c5:a8:83:84:a9:40:c7: 32:12:b4:da:73:1a:3f:23:31:87:49:ca:a5:eb:e7: 41:0a:15:e3:6a:24:fa:b7:67:a6:d2:cf:7f:57:87: 2b:65:ee:b6:e1:a2:0c:df:58:06:84:17:df:17:13: d0:90:ce:74:c0:6f:bd:6e:c2:5a:5f:96:cf:9e:30: 04:d0:18:95:b4:16:d3:f4:2b:d7:ec:cb:8d:fc:0b: 5b:8e:c9:56:36:98:50:85:0d:53:51:9c:0d:32:8a: 54:a7:a6:3b:06:33:b2:8c:c8:6f:04:52:69:b1:3e: bd:2b:ca:99:f9:c7:44:b9:03:1d:46:67:12:fa:a6: 9f:2b:a2:b3:31:9b:fb:6c:96:c4:4e:72:59:f1:82: 77:00:e6:0e:14:88:ad:e3:dc:9d:b1:d2:d0:3f:9c: 2b:8a:66:ca:b9:35:1f:51:d4:e6:e7:1f:a4:fa:fd: 04:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:0F:A5:6D:C6:50:E9:C6:9A:E9:C6:45:D3:D6:38:07:26:BC:59:B2 X509v3 Authority Key Identifier: keyid:AA:85:CC:D2:DD:3E:1C:00:3B:F7:2F:F5:3E:58:C7:20:0E:7C:F0:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/qoXM0t0-HAA79y_1PljHIA588Kg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qoXM0t0-HAA79y_1PljHIA588Kg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916D29F/691F74C4988811E991AF6636C4F9AE02/8D655C9656A511EA8FAB974DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.105.167.0/24 Signature Algorithm: sha256WithRSAEncryption 33:75:39:55:0b:96:17:72:9f:a0:e3:ba:ab:9a:90:da:c2:38: af:75:b9:70:6b:33:42:57:8a:d8:26:ba:34:42:14:d9:da:5d: 3b:77:10:04:80:b5:98:46:87:a8:06:bd:ad:d8:1c:21:bb:dc: 56:bb:ad:2d:0f:4d:ea:29:33:da:b3:96:57:14:58:a7:72:5a: 23:62:79:b0:00:b4:88:20:65:2a:6f:aa:68:f4:cf:26:59:a6: 11:9d:ca:66:cd:36:70:32:57:d2:be:b5:e8:0b:59:07:54:8a: bf:35:bd:4c:ed:d5:6f:cd:9e:a9:bd:df:86:39:52:a1:04:78: 92:fc:97:6a:98:b1:50:f2:2b:1b:f1:d5:70:9f:11:8a:36:f6: 8f:50:e9:cc:66:e1:38:4d:9f:6f:88:2a:6f:d3:c8:73:04:d7: 23:52:00:b1:ad:85:fd:b9:41:29:32:54:b9:c5:81:8d:74:56: 91:31:da:0c:e3:6f:40:51:8c:f9:d9:33:eb:0a:77:34:10:ee: 94:b5:a3:d4:1e:8f:33:10:07:f4:00:0c:17:74:87:54:00:fb: 83:c0:a3:b8:3d:9b:30:52:52:4c:8f:c1:83:59:1b:3d:8b:b3: 53:59:5d:47:4f:8f:f9:d1:33:42:a2:cc:39:2b:25:b5:57:97: 1c:9e:cf:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkQyOUYxMTAvBgNVBAUTKEFBODVDQ0QyREQzRTFDMDAzQkY3MkZGNTNFNThDNzIw MEU3Q0YwQTgwHhcNMjQwMTA0MTgzNjE5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk2ZmFhMy03NDQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0laCyp3ERdpqvBjLqiKrNgXYaVQf48ld7A/8HJ4jZlvt8KVRB4eaZAh4Jte W1m9q0n4bhBCgC+2Xo5Nra62rqdMuMU7n2yhSK6NBCT5ytOucMWog4SpQMcyErTa cxo/IzGHScql6+dBChXjaiT6t2em0s9/V4crZe624aIM31gGhBffFxPQkM50wG+9 bsJaX5bPnjAE0BiVtBbT9CvX7MuN/AtbjslWNphQhQ1TUZwNMopUp6Y7BjOyjMhv BFJpsT69K8qZ+cdEuQMdRmcS+qafK6KzMZv7bJbETnJZ8YJ3AOYOFIit49ydsdLQ P5wrimbKuTUfUdTm5x+k+v0EXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHkPpW3G UOnGmunGRdPWOAcmvFmyMB8GA1UdIwQYMBaAFKqFzNLdPhwAO/cv9T5YxyAOfPCo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RDI5Ri82OTFGNzRDNDk4 ODgxMUU5OTFBRjY2MzZDNEY5QUUwMi9xb1hNMHQwLUhBQTc5eV8xUGxqSElBNTg4 S2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvWE0wdDAtSEFBNzl5XzFQbGpISUE1ODhLZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkQyOUYvNjkxRjc0QzQ5ODg4MTFFOTkxQUY2NjM2QzRGOUFFMDIvOEQ2NTVDOTY1 NkE1MTFFQThGQUI5NzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnaacwDQYJKoZIhvcNAQELBQADggEBADN1OVULlhdyn6Dj uquakNrCOK91uXBrM0JXitgmujRCFNnaXTt3EASAtZhGh6gGva3YHCG73Fa7rS0P TeopM9qzllcUWKdyWiNiebAAtIggZSpvqmj0zyZZphGdymbNNnAyV9K+tegLWQdU ir81vUzt1W/Nnqm934Y5UqEEeJL8l2qYsVDyKxvx1XCfEYo29o9Q6cxm4ThNn2+I Km/TyHME1yNSALGthf25QSkyVLnFgY10VpEx2gzjb0BRjPnZM+sKdzQQ7pS1o9Qe jzMQB/QADBd0h1QA+4PAo7g9mzBSUkyPwYNZGz2Ls1NZXUdPj/nRM0KizDkrJbVX lxyezzQ= -----END CERTIFICATE-----Generated at Mon May 6 20:19:13 2024 by rpki-client on console-fra.rpki-client.org