$ rpki-client -vvf rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/D7A207C2F33611EAA449F44CC4F9AE02.roa File: D7A207C2F33611EAA449F44CC4F9AE02.roa (raw, json) Hash identifier: 0YMqBzPvoFQA0axPjDRgV3CXDJ6fUaHaP0ohkfzBp/Q= Subject key identifier: 7A:35:92:8E:1C:C2:EA:40:36:1F:7B:7D:12:82:13:27:7A:B4:02:D5 Certificate issuer: /CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Certificate serial: 070E Authority key identifier: 69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/D7A207C2F33611EAA449F44CC4F9AE02.roa Signing time: Wed 24 Apr 2024 23:01:29 +0000 ROA not before: Wed 24 Apr 2024 23:01:29 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136481 IP address blocks: 103.89.168.0/22 maxlen: 22 103.89.168.0/24 maxlen: 24 103.89.169.0/24 maxlen: 24 103.89.170.0/23 maxlen: 24 163.53.236.0/22 maxlen: 22 163.53.236.0/24 maxlen: 24 163.53.237.0/24 maxlen: 24 163.53.238.0/24 maxlen: 24 163.53.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1806 (0x70e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DB52/serialNumber=693B71A5B5DA6054DF7F9C0D379CF520C1C8F291 Validity Not Before: Apr 24 23:01:29 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66298f49-c759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:98:77:92:2a:20:93:2c:4b:a2:c7:45:f9:ca: 38:72:14:83:16:1f:55:8a:fe:ae:4a:c3:bb:f0:3c: b5:bb:12:a1:5d:f7:1c:18:28:48:31:fa:3a:6c:72: fa:21:7f:3a:c5:9c:5b:b4:33:fb:1a:cb:90:ef:b9: 65:84:d4:06:eb:b0:0a:c0:82:6c:05:08:12:f7:b6: 8a:19:f5:d0:6e:7b:df:9c:a5:ac:fa:75:8a:45:b4: 34:8f:d8:f9:0a:fc:65:66:2c:50:c8:0d:85:de:40: 59:18:4c:97:b0:5a:ff:cc:ab:28:0a:df:64:36:c2: 62:6f:35:25:0a:c2:3c:f3:83:36:c4:59:8d:29:e6: 9a:f4:ef:06:2d:4f:de:ed:06:5d:7d:4c:a7:ce:f5: ab:60:7d:85:44:c7:34:17:8b:cb:75:87:37:37:0c: 90:4a:c5:c7:39:15:fe:60:bc:2a:e8:45:6d:80:f3: 26:ad:cf:2a:30:40:77:ca:16:d8:95:1f:84:e7:2b: ee:a6:d9:66:d5:d0:a6:97:a0:9f:b6:e6:d3:cc:9c: 82:7b:a7:21:aa:f0:df:33:11:da:28:71:dd:af:8e: 52:14:35:31:f9:b5:35:34:57:58:b3:cc:e3:4c:50: ea:fe:28:ec:81:d9:9e:a9:25:55:58:e1:fa:61:23: 96:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:35:92:8E:1C:C2:EA:40:36:1F:7B:7D:12:82:13:27:7A:B4:02:D5 X509v3 Authority Key Identifier: keyid:69:3B:71:A5:B5:DA:60:54:DF:7F:9C:0D:37:9C:F5:20:C1:C8:F2:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/aTtxpbXaYFTff5wNN5z1IMHI8pE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aTtxpbXaYFTff5wNN5z1IMHI8pE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DB52/45F556BEF28011EA871BAD6AC4F9AE02/D7A207C2F33611EAA449F44CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.89.168.0/22 163.53.236.0/22 Signature Algorithm: sha256WithRSAEncryption 26:b8:9d:d6:3c:f6:60:d3:5c:25:5d:9c:16:3b:29:c5:5b:38: 70:9e:14:7e:72:33:9a:e2:14:10:2c:39:f5:85:78:89:24:77: 73:18:4d:d8:bb:19:5f:82:d3:f0:73:69:a7:91:1a:5b:4d:96: 08:e4:e1:99:0a:03:78:96:3a:d7:dc:7a:ff:d6:7e:89:8a:53: c7:40:1d:6d:48:29:b0:99:9f:10:1e:47:19:b3:0e:73:11:cc: 77:fb:0f:46:b8:f3:8e:e5:45:45:66:fd:d1:67:00:37:1e:ad: a6:48:34:de:3f:71:bd:cc:42:f8:8d:c7:53:c5:9e:8d:31:d5: 37:23:d3:c0:d3:a6:d9:39:2b:c9:cb:eb:f6:91:3a:08:a4:9a: 46:c6:23:e9:b0:be:1a:e2:be:74:cf:b8:a5:eb:0e:de:a4:02: 11:35:d1:ec:4c:be:13:e7:12:a9:cc:7e:db:04:a7:f4:7c:0d: 50:b1:4c:4d:6d:46:44:30:93:8c:01:f8:cc:c0:77:be:2a:1a: c5:6e:7e:f8:7c:c0:7b:fd:11:0e:64:bf:a0:34:09:35:1e:83: 26:5b:b9:cf:9a:41:09:1e:b3:87:e7:c2:cf:bf:80:8d:77:3d: 1e:fd:e2:04:c0:0e:07:51:d7:18:06:0b:50:cb:af:3d:67:73: 7a:61:0a:3d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBw4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCNTIxMTAvBgNVBAUTKDY5M0I3MUE1QjVEQTYwNTRERjdGOUMwRDM3OUNGNTIw QzFDOEYyOTEwHhcNMjQwNDI0MjMwMTI5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI5OGY0OS1jNzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzph3kiogkyxLosdF+co4chSDFh9Viv6uSsO78Dy1uxKhXfccGChIMfo6bHL6 IX86xZxbtDP7GsuQ77llhNQG67AKwIJsBQgS97aKGfXQbnvfnKWs+nWKRbQ0j9j5 CvxlZixQyA2F3kBZGEyXsFr/zKsoCt9kNsJibzUlCsI884M2xFmNKeaa9O8GLU/e 7QZdfUynzvWrYH2FRMc0F4vLdYc3NwyQSsXHORX+YLwq6EVtgPMmrc8qMEB3yhbY lR+E5yvuptlm1dCml6CftubTzJyCe6chqvDfMxHaKHHdr45SFDUx+bU1NFdYs8zj TFDq/ijsgdmeqSVVWOH6YSOWDQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHo1ko4c wupANh97fRKCEyd6tALVMB8GA1UdIwQYMBaAFGk7caW12mBU33+cDTec9SDByPKR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REI1Mi80NUY1NTZCRUYy ODAxMUVBODcxQkFENkFDNEY5QUUwMi9hVHR4cGJYYVlGVGZmNXdOTjV6MUlNSEk4 cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FUdHhwYlhhWUZUZmY1d05ONXoxSU1ISThwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCNTIvNDVGNTU2QkVGMjgwMTFFQTg3MUJBRDZBQzRGOUFFMDIvRDdBMjA3QzJG MzM2MTFFQUE0NDlGNDRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnWagDBAKjNewwDQYJKoZIhvcNAQELBQADggEBACa4ndY8 9mDTXCVdnBY7KcVbOHCeFH5yM5riFBAsOfWFeIkkd3MYTdi7GV+C0/BzaaeRGltN lgjk4ZkKA3iWOtfcev/WfomKU8dAHW1IKbCZnxAeRxmzDnMRzHf7D0a4847lRUVm /dFnADceraZINN4/cb3MQviNx1PFno0x1Tcj08DTptk5K8nL6/aROgikmkbGI+mw vhrivnTPuKXrDt6kAhE10exMvhPnEqnMftsEp/R8DVCxTE1tRkQwk4wB+MzAd74q GsVufvh8wHv9EQ5kv6A0CTUegyZbuc+aQQkes4fnws+/gI13PR794gTADgdR1xgG C1DLrz1nc3phCj0= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:31 2024 by rpki-client on console-ams.rpki-client.org