$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/6AA5FC16905211EE840DED1DC4F9AE02.roa File: 6AA5FC16905211EE840DED1DC4F9AE02.roa (raw, json) Hash identifier: MC0BNQ8WSdb9k6lw5PW7hJBMQ3Zo5Nq5ihUjlKmX1lo= Subject key identifier: BD:70:F4:33:87:E6:CC:33:F7:E4:67:28:B0:83:73:CD:8D:16:C6:45 Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 010F Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/6AA5FC16905211EE840DED1DC4F9AE02.roa Signing time: Fri 05 Jul 2024 05:06:24 +0000 ROA not before: Fri 05 Jul 2024 05:06:24 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149838 IP address blocks: 103.187.190.0/23 maxlen: 23 103.187.190.0/24 maxlen: 24 103.187.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Jul 5 05:06:24 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66877f50-9091 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:96:0c:d1:06:b5:7d:29:93:2d:50:0e:4e:c6: 2a:cb:4e:47:0b:93:b9:c4:74:43:57:76:83:12:e4: 12:7c:e1:5a:6a:56:db:3e:63:ac:68:df:30:3c:4d: a1:32:a9:7d:eb:c5:d1:fe:df:d5:ee:75:e6:c4:b0: 99:1c:33:57:3d:95:75:92:62:07:16:dc:91:8e:5e: ca:ff:51:ab:3d:e2:9b:68:04:a1:52:39:56:03:04: 81:3b:f7:ea:45:ee:f8:47:69:6a:87:0e:89:65:68: cd:0f:39:a5:f3:39:29:8e:59:cd:f7:bc:ce:23:c6: 7f:40:6b:69:30:00:6b:d1:34:b7:a7:74:e2:31:a1: b5:cd:0b:83:9d:24:66:aa:d0:60:78:e1:d7:57:ef: cc:0c:48:42:cb:fe:f8:17:94:48:c5:3a:f0:50:38: d3:b5:c9:33:b7:32:c5:7e:d0:98:49:15:4b:ce:56: e5:6c:d1:c4:9a:c6:6c:bb:b0:ae:a6:d2:c3:59:e6: e2:fe:74:19:fd:e0:3c:1a:df:72:12:38:e0:db:83: bb:84:33:90:4f:18:e8:8f:90:1f:52:7a:73:e4:14: 62:b9:64:6e:04:66:f3:a1:29:c1:7c:20:c3:13:c4: e0:7d:5c:7d:da:95:51:21:b0:44:00:11:30:d8:72: 5e:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:70:F4:33:87:E6:CC:33:F7:E4:67:28:B0:83:73:CD:8D:16:C6:45 X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/6AA5FC16905211EE840DED1DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.190.0/23 Signature Algorithm: sha256WithRSAEncryption b5:c4:71:99:cd:cd:19:e2:0d:9d:30:da:74:71:f9:aa:9f:04: 8a:0e:3d:00:9b:1e:34:6a:91:e9:c6:ea:a9:aa:70:d7:e1:60: 54:df:6f:fd:61:a1:65:6d:95:93:53:f3:78:42:c3:dc:7b:30: 48:c2:bf:ff:c8:95:af:76:01:1f:29:2c:b8:0e:0b:93:c7:93: b9:5e:f3:c3:80:c1:bc:99:c0:ba:23:82:8a:68:b7:d4:d3:84: ee:8d:75:c1:9c:85:9c:f0:75:56:b5:dd:4b:d2:e0:61:43:e2: 64:93:bc:1d:92:98:c8:a0:77:3b:c1:b6:ca:e8:6e:6a:0f:bd: dc:eb:55:4b:cf:0e:30:b9:d2:7d:ad:6b:9f:2e:50:5b:a0:dc: a1:4c:d6:c3:18:e3:ce:d3:7d:4c:6e:80:1d:ef:70:90:c1:b1: ed:09:c3:c8:4a:da:73:f4:24:f5:fc:ce:ed:99:b1:2c:1d:1b: ff:c9:35:d4:47:cc:a5:52:36:0f:39:ea:69:30:5a:de:e4:38: d7:79:15:65:d3:cf:ba:af:c0:2b:55:e8:72:ef:a6:1f:cb:60: d9:38:2e:12:7a:4c:00:34:0e:3d:93:c3:ec:36:f7:d3:25:d2: c5:30:47:b3:a5:a2:d6:c4:ad:1a:62:70:8a:51:49:ef:df:77: eb:69:e0:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjQwNzA1MDUwNjI0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3N2Y1MC05MDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZYM0Qa1fSmTLVAOTsYqy05HC5O5xHRDV3aDEuQSfOFaalbbPmOsaN8wPE2h Mql968XR/t/V7nXmxLCZHDNXPZV1kmIHFtyRjl7K/1GrPeKbaAShUjlWAwSBO/fq Re74R2lqhw6JZWjNDzml8zkpjlnN97zOI8Z/QGtpMABr0TS3p3TiMaG1zQuDnSRm qtBgeOHXV+/MDEhCy/74F5RIxTrwUDjTtckztzLFftCYSRVLzlblbNHEmsZsu7Cu ptLDWebi/nQZ/eA8Gt9yEjjg24O7hDOQTxjoj5AfUnpz5BRiuWRuBGbzoSnBfCDD E8TgfVx92pVRIbBEABEw2HJeuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL1w9DOH 5swz9+RnKLCDc82NFsZFMB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE5MjcvRkQ4QjIyQjBCQzJGMTFFREE4Rjc2NTNFQzRGOUFFMDIvNkFBNUZDMTY5 MDUyMTFFRTg0MERFRDFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnu74wDQYJKoZIhvcNAQELBQADggEBALXEcZnNzRniDZ0w 2nRx+aqfBIoOPQCbHjRqkenG6qmqcNfhYFTfb/1hoWVtlZNT83hCw9x7MEjCv//I la92AR8pLLgOC5PHk7le88OAwbyZwLojgopot9TThO6NdcGchZzwdVa13UvS4GFD 4mSTvB2SmMigdzvBtsrobmoPvdzrVUvPDjC50n2ta58uUFug3KFM1sMY487TfUxu gB3vcJDBse0Jw8hK2nP0JPX8zu2ZsSwdG//JNdRHzKVSNg856mkwWt7kONd5FWXT z7qvwCtV6HLvph/LYNk4LhJ6TAA0Dj2Tw+w299Ml0sUwR7OlotbErRpicIpRSe/f d+tp4Nc= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org