$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/D118AD20820911EDAC2FD360C4F9AE02.roa File: D118AD20820911EDAC2FD360C4F9AE02.roa (raw, json) Hash identifier: ixpGpZxeJE6MjqJE4TZF5F7RqpJksuo4R/FnZcP/pPA= Subject key identifier: 2F:91:D6:AD:75:F5:39:BE:15:D9:0C:4F:CE:76:7C:D1:1A:A1:FD:8C Certificate issuer: /CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Certificate serial: 02D0 Authority key identifier: B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/D118AD20820911EDAC2FD360C4F9AE02.roa Signing time: Tue 05 Mar 2024 03:04:51 +0000 ROA not before: Tue 05 Mar 2024 03:04:51 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 17501 IP address blocks: 103.162.2.0/23 maxlen: 23 103.162.2.0/24 maxlen: 24 103.162.3.0/24 maxlen: 24 2407:b40::/32 maxlen: 32 2407:b40::/48 maxlen: 48 2407:b40:1::/48 maxlen: 48 2407:b40:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 720 (0x2d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D88/serialNumber=B2F05C2CEC3550D2D3C9EB513839F47A002A872E Validity Not Before: Mar 5 03:04:51 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e68bd3-55f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:35:c1:2c:bb:d1:59:9d:8c:2e:c0:8a:66:7c: 80:77:4e:90:75:34:e6:b5:b3:0f:bd:d8:12:75:1b: 50:a6:27:5a:33:3f:e9:36:a1:6e:60:20:08:e8:d5: fb:73:22:c4:24:86:a4:fa:2e:8e:30:db:27:39:25: 64:72:3b:fd:52:b5:b3:01:78:95:84:1b:76:c1:58: e0:c9:a3:7f:79:97:37:8f:5d:90:68:da:72:be:0c: 9f:9f:42:7f:51:44:fb:96:19:5d:0a:14:80:99:24: 67:ab:af:f8:2d:e3:52:2a:e0:18:22:cd:8c:45:7e: 8a:93:91:2f:19:a0:84:e4:8f:99:cf:d1:72:82:8b: ee:74:5e:4f:ce:1c:c1:dc:bb:0d:93:d4:25:aa:e7: b9:86:8c:ab:76:a0:29:d6:1b:d3:0e:d2:73:bb:90: f5:08:02:92:6e:3d:ab:c2:9d:30:6f:ab:a4:32:de: 99:b9:6a:a9:64:a7:00:70:11:fd:bf:91:a8:73:f1: 1c:7d:65:f1:9c:b5:44:e1:e1:cf:92:c4:4b:60:0d: 50:5e:51:0d:c2:fb:df:20:10:e7:e6:a0:ee:56:f2: 94:7e:6f:68:72:a4:62:dc:a8:3d:26:1e:e1:87:2c: 1c:81:9f:c2:aa:0f:1b:32:4c:c3:d2:f4:d6:6e:ea: 6e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:91:D6:AD:75:F5:39:BE:15:D9:0C:4F:CE:76:7C:D1:1A:A1:FD:8C X509v3 Authority Key Identifier: keyid:B2:F0:5C:2C:EC:35:50:D2:D3:C9:EB:51:38:39:F4:7A:00:2A:87:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/svBcLOw1UNLTyetRODn0egAqhy4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/svBcLOw1UNLTyetRODn0egAqhy4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D88/F1B7EABA93AC11ECB67A3152C4F9AE02/D118AD20820911EDAC2FD360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.2.0/23 IPv6: 2407:b40::/32 Signature Algorithm: sha256WithRSAEncryption 66:74:85:a8:83:c4:8e:b1:a9:e4:9b:f5:14:db:b1:d3:73:ab: 4c:33:ee:fd:ac:7b:a9:cd:63:e7:10:cf:8e:d3:7d:d5:f3:33: 35:c4:7b:3b:9a:56:b0:6d:fc:1b:dc:f0:69:4f:17:43:2d:7a: 3d:7c:ac:11:fc:42:bf:aa:1b:e3:8f:d0:f1:ea:d5:0c:75:a4: bf:2a:f4:06:23:aa:aa:b9:d5:a8:ab:4e:fb:7f:38:5c:3a:a8: 15:ad:6d:23:e8:0e:32:80:e8:94:09:98:63:4e:54:92:1a:5d: 6f:84:57:38:09:8d:a4:63:63:bf:ce:14:cb:41:52:66:6d:2b: 89:cc:c1:fb:3d:21:13:73:d7:32:04:db:76:46:f0:7d:d1:fb: 81:8e:ff:36:17:62:0a:59:90:05:77:e2:4d:42:01:35:5a:ba: 5b:fa:a4:6e:a4:48:b2:93:01:7f:91:a8:c7:aa:93:cb:ff:46: 96:bd:dd:45:48:94:f8:00:20:e9:3c:d3:24:f7:42:f8:3a:45: 1d:46:e6:b1:57:5b:83:3d:ef:33:fa:d8:37:3d:4b:ed:c4:59: b6:ee:26:fe:7d:c0:9a:59:01:7d:8e:65:ec:bf:6f:63:8d:9a: e1:7e:dc:58:80:5c:ea:4d:79:22:3a:cb:de:dc:bb:17:f4:aa: 91:eb:f1:f7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAtAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJEODgxMTAvBgNVBAUTKEIyRjA1QzJDRUMzNTUwRDJEM0M5RUI1MTM4MzlGNDdB MDAyQTg3MkUwHhcNMjQwMzA1MDMwNDUxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2OGJkMy01NWY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DXBLLvRWZ2MLsCKZnyAd06QdTTmtbMPvdgSdRtQpidaMz/pNqFuYCAI6NX7 cyLEJIak+i6OMNsnOSVkcjv9UrWzAXiVhBt2wVjgyaN/eZc3j12QaNpyvgyfn0J/ UUT7lhldChSAmSRnq6/4LeNSKuAYIs2MRX6Kk5EvGaCE5I+Zz9FygovudF5PzhzB 3LsNk9Qlque5hoyrdqAp1hvTDtJzu5D1CAKSbj2rwp0wb6ukMt6ZuWqpZKcAcBH9 v5Goc/EcfWXxnLVE4eHPksRLYA1QXlENwvvfIBDn5qDuVvKUfm9ocqRi3Kg9Jh7h hywcgZ/Cqg8bMkzD0vTWbupucwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFC+R1q11 9Tm+FdkMT852fNEaof2MMB8GA1UdIwQYMBaAFLLwXCzsNVDS08nrUTg59HoAKocu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ4OC9GMUI3RUFCQTkz QUMxMUVDQjY3QTMxNTJDNEY5QUUwMi9zdkJjTE93MVVOTFR5ZXRST0RuMGVnQXFo eTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N2QmNMT3cxVU5MVHlldFJPRG4wZWdBcWh5NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJEODgvRjFCN0VBQkE5M0FDMTFFQ0I2N0EzMTUyQzRGOUFFMDIvRDExOEFEMjA4 MjA5MTFFREFDMkZEMzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnogIwDQQCAAIwBwMFACQHC0AwDQYJKoZIhvcNAQELBQAD ggEBAGZ0haiDxI6xqeSb9RTbsdNzq0wz7v2se6nNY+cQz47TfdXzMzXEezuaVrBt /Bvc8GlPF0Mtej18rBH8Qr+qG+OP0PHq1Qx1pL8q9AYjqqq51airTvt/OFw6qBWt bSPoDjKA6JQJmGNOVJIaXW+EVzgJjaRjY7/OFMtBUmZtK4nMwfs9IRNz1zIE23ZG 8H3R+4GO/zYXYgpZkAV34k1CATVaulv6pG6kSLKTAX+RqMeqk8v/Rpa93UVIlPgA IOk80yT3Qvg6RR1G5rFXW4M97zP62Dc9S+3EWbbuJv59wJpZAX2OZey/b2ONmuF+ 3FiAXOpNeSI6y97cuxf0qpHr8fc= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:19 2024 by rpki-client on console-ams.rpki-client.org