$ rpki-client -vvf rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa File: 7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa (raw, json) Hash identifier: eALzuGTBIdO32t7InjPCWdnlihceQ6Ej+q9aOFO73+k= Subject key identifier: E9:16:72:9C:E1:D0:8E:95:7E:55:09:89:44:14:9B:12:78:BD:9C:25 Certificate issuer: /CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Certificate serial: 04E9 Authority key identifier: 82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa Signing time: Mon 29 Jul 2024 00:42:16 +0000 ROA not before: Mon 29 Jul 2024 00:42:16 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142557 IP address blocks: 103.169.94.0/24 maxlen: 24 103.169.95.0/24 maxlen: 24 2001:df6:f380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1257 (0x4e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Validity Not Before: Jul 29 00:42:16 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a6e568-0bac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:9d:f2:40:a0:f0:0e:bb:a8:d4:5a:44:c2:45: c6:da:b1:16:08:6b:28:c0:bb:b1:69:d9:77:24:d8: dd:df:bc:47:6b:43:2a:c3:ad:62:64:12:30:c9:02: 97:19:95:32:db:4b:b0:d7:5b:d4:7c:c5:c8:81:17: 7b:ec:42:ff:eb:71:10:eb:1b:32:eb:88:af:e9:6c: cf:2f:b1:61:3f:22:9c:57:58:f5:cd:87:f3:02:4b: 24:42:3c:e7:d2:23:7e:c6:31:c2:f7:0d:be:0b:63: ab:b7:65:b2:4f:81:f4:56:1d:4a:eb:bf:25:33:7c: de:c2:7f:d2:bc:18:78:13:d1:98:7b:54:2f:16:9b: f9:7c:35:47:77:f6:6f:fb:81:e1:5b:65:d7:c6:31: 40:d1:44:af:ef:18:74:0b:b7:e6:12:13:a7:e2:ce: 46:76:b6:52:70:bd:3c:cb:8c:83:ad:7f:95:b2:eb: 23:3c:9c:98:42:2b:5f:ab:df:eb:f6:50:89:e0:3d: 17:41:85:a9:0b:c7:32:2b:8a:b1:e2:43:c9:9a:68: 4d:5c:e9:87:88:32:69:28:bc:a9:68:3a:d6:7b:14: cf:a8:cf:57:d6:81:1c:5d:c9:a0:ba:a3:71:df:91: 23:fb:36:02:90:34:95:bb:ac:81:18:2f:06:59:f4: b2:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:16:72:9C:E1:D0:8E:95:7E:55:09:89:44:14:9B:12:78:BD:9C:25 X509v3 Authority Key Identifier: keyid:82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.94.0/23 IPv6: 2001:df6:f380::/48 Signature Algorithm: sha256WithRSAEncryption 1d:de:f2:07:dc:a1:0a:1a:50:fe:96:c6:40:f0:cb:b1:d4:5c: 8c:a0:ac:1d:1e:5e:7c:bc:ce:dc:43:f7:17:0f:d0:df:eb:57: 57:a6:58:78:c0:2f:c7:b5:df:06:73:b3:88:a0:34:76:de:22: c3:6a:aa:f0:c1:9f:11:f1:be:5a:35:09:58:aa:a1:b8:92:67: 30:a3:9c:76:b1:70:cd:c0:50:92:83:3b:b0:19:35:02:fc:cc: 8c:c5:75:b8:c8:a7:ca:0c:4a:13:1d:6c:7e:ae:66:9f:ea:ab: be:a7:bb:3f:c9:7f:d9:a4:df:73:be:ed:da:80:63:8b:fc:d4: ae:99:a2:5d:32:1e:66:6d:4a:7d:c5:7e:3c:5f:80:4f:a0:f1: 5e:a2:6d:7a:37:dc:f7:ee:d1:2b:01:e2:85:df:5e:1a:ec:28: 86:fe:59:df:db:fe:e9:74:c7:7c:a4:ea:9f:b4:d5:ad:e7:a9: f9:7a:6b:40:8a:0f:1e:e4:47:d6:24:5a:37:38:f9:f3:b2:e0: da:87:70:72:e8:46:9a:8a:83:b7:61:2e:f6:15:95:f7:60:2b: b1:18:87:ed:01:17:e4:9f:6a:ab:18:f6:93:12:11:ad:f8:7d: 75:ab:e7:b8:ed:ef:a4:ba:de:64:87:31:f5:08:da:bc:1a:76: d3:49:09:c2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFDMjMxMTAvBgNVBAUTKDgyQTg1QUZERjMyOTI1NkY0N0UwQjcwMEIyRDE0NzU2 QTEwNEMxMTIwHhcNMjQwNzI5MDA0MjE2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE2ZTU2OC0wYmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAop3yQKDwDruo1FpEwkXG2rEWCGsowLuxadl3JNjd37xHa0Mqw61iZBIwyQKX GZUy20uw11vUfMXIgRd77EL/63EQ6xsy64iv6WzPL7FhPyKcV1j1zYfzAkskQjzn 0iN+xjHC9w2+C2Ort2WyT4H0Vh1K678lM3zewn/SvBh4E9GYe1QvFpv5fDVHd/Zv +4HhW2XXxjFA0USv7xh0C7fmEhOn4s5GdrZScL08y4yDrX+VsusjPJyYQitfq9/r 9lCJ4D0XQYWpC8cyK4qx4kPJmmhNXOmHiDJpKLypaDrWexTPqM9X1oEcXcmguqNx 35Ej+zYCkDSVu6yBGC8GWfSyJwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOkWcpzh 0I6VflUJiUQUmxJ4vZwlMB8GA1UdIwQYMBaAFIKoWv3zKSVvR+C3ALLRR1ahBMES MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUMyMy9DNkJEMUUyQ0RD MTIxMUVCOEMxREE2NEFDNEY5QUUwMi9ncWhhX2ZNcEpXOUg0TGNBc3RGSFZxRUV3 UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxaGFfZk1wSlc5SDRMY0FzdEZIVnFFRXdSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFDMjMvQzZCRDFFMkNEQzEyMTFFQjhDMURBNjRBQzRGOUFFMDIvN0NDMTlGQkNE Q0FBMTFFQkI4N0RBRDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqV4wDwQCAAIwCQMHACABDfbzgDANBgkqhkiG9w0BAQsF AAOCAQEAHd7yB9yhChpQ/pbGQPDLsdRcjKCsHR5efLzO3EP3Fw/Q3+tXV6ZYeMAv x7XfBnOziKA0dt4iw2qq8MGfEfG+WjUJWKqhuJJnMKOcdrFwzcBQkoM7sBk1AvzM jMV1uMinygxKEx1sfq5mn+qrvqe7P8l/2aTfc77t2oBji/zUrpmiXTIeZm1KfcV+ PF+AT6DxXqJtejfc9+7RKwHihd9eGuwohv5Z39v+6XTHfKTqn7TVreep+XprQIoP HuRH1iRaNzj587Lg2odwcuhGmoqDt2Eu9hWV92ArsRiH7QEX5J9qqxj2kxIRrfh9 davnuO3vpLreZIcx9QjavBp200kJwg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:42 2024 by rpki-client on console-ams.rpki-client.org