$ rpki-client -vvf rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/0C3D8674345511EFA05D0C10C4F9AE02.roa File: 0C3D8674345511EFA05D0C10C4F9AE02.roa (raw, json) Hash identifier: ZnpRalcn1+UDz0Qh9MVT7PEHG3mXFgwSlTQlnQVlTtU= Subject key identifier: 01:FF:D8:44:CC:35:0A:F2:FC:B6:AA:E6:F3:38:AD:8B:E4:28:C1:80 Certificate issuer: /CN=A918DA0C/serialNumber=6A95481CE8F40DD8895D1FB7AEE90E5959BA83C1 Certificate serial: 04CE Authority key identifier: 6A:95:48:1C:E8:F4:0D:D8:89:5D:1F:B7:AE:E9:0E:59:59:BA:83:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apVIHOj0DdiJXR-3rukOWVm6g8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/0C3D8674345511EFA05D0C10C4F9AE02.roa Signing time: Mon 09 Sep 2024 02:03:23 +0000 ROA not before: Mon 09 Sep 2024 02:03:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142595 IP address blocks: 103.170.172.0/23 maxlen: 23 103.170.172.0/24 maxlen: 24 103.170.173.0/24 maxlen: 24 2001:df7:2180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/apVIHOj0DdiJXR-3rukOWVm6g8E.crl rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/apVIHOj0DdiJXR-3rukOWVm6g8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apVIHOj0DdiJXR-3rukOWVm6g8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1230 (0x4ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918DA0C/serialNumber=6A95481CE8F40DD8895D1FB7AEE90E5959BA83C1 Validity Not Before: Sep 9 02:03:23 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66de576b-4c50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:66:98:69:7a:e0:a5:c6:cd:f6:f0:0a:f4:58: c9:bc:e3:69:84:5b:a5:7d:b3:53:1e:24:bb:38:ec: c1:df:46:84:80:4f:b8:8a:68:21:09:35:70:5a:83: fc:59:15:b8:ec:6f:9b:c4:8b:d8:4a:25:86:d6:a6: dc:79:69:16:06:32:61:82:11:77:00:60:31:ea:63: 98:95:29:50:20:b5:e5:2f:b4:c1:ed:99:3e:ff:45: de:5d:fe:44:40:f7:ef:65:79:6d:d2:f8:c5:81:a6: 98:d1:81:14:97:96:43:10:fc:90:e6:30:df:7a:d9: 4e:2d:ba:e6:45:36:10:af:e4:cd:78:18:5d:10:1e: 1e:a1:63:dc:c2:f4:9d:f1:14:bc:ec:17:f6:1f:cc: 58:2c:14:c0:b4:a1:4b:a1:dc:62:7e:09:ce:ea:04: 17:6d:a8:b0:58:f7:50:18:a5:c6:e8:32:6e:d7:ef: 2a:1f:31:fc:ea:c9:30:a8:db:d4:e6:08:fd:2d:e1: 45:1b:be:7c:7e:80:c0:00:e0:5b:91:cc:56:95:91: 41:a0:b0:6e:10:95:72:97:8b:23:4e:56:67:10:2f: 6c:a2:7b:9c:d5:38:28:87:0f:93:96:6d:4e:8b:05: d6:d1:e8:bb:63:45:f2:d2:41:2c:ce:2b:19:eb:0e: 3d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:FF:D8:44:CC:35:0A:F2:FC:B6:AA:E6:F3:38:AD:8B:E4:28:C1:80 X509v3 Authority Key Identifier: keyid:6A:95:48:1C:E8:F4:0D:D8:89:5D:1F:B7:AE:E9:0E:59:59:BA:83:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/apVIHOj0DdiJXR-3rukOWVm6g8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/apVIHOj0DdiJXR-3rukOWVm6g8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918DA0C/B6DE1312F04911EB941FFB32C4F9AE02/0C3D8674345511EFA05D0C10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.172.0/23 IPv6: 2001:df7:2180::/48 Signature Algorithm: sha256WithRSAEncryption 73:6d:fc:51:61:b9:76:22:f2:76:5c:38:9a:f6:73:89:72:8a: fb:c8:10:4c:ce:a6:91:db:95:8d:ae:0b:b4:96:00:3a:70:bb: 65:70:0f:94:d2:3b:1d:53:f2:d2:90:37:b3:83:58:b7:1b:2c: 18:ab:b5:85:ae:d9:46:56:2f:8f:ee:11:0d:f7:38:d0:8c:4a: fe:cf:79:9f:90:d9:bb:bf:4f:f3:88:d5:29:90:39:f6:b9:db: 23:dd:e4:51:af:5a:ad:9f:f9:3e:b2:ef:8c:0c:6a:78:f3:9e: 35:c5:00:0f:3a:a4:f2:5c:ae:23:ff:9a:47:7b:d9:4e:46:6f: 9e:2c:da:58:78:05:26:02:95:d1:da:e1:de:0d:e3:19:f7:2d: 56:d1:2f:b1:75:5f:b0:f9:e0:ed:53:2f:87:df:af:53:ea:c3: 83:f7:cb:8a:89:69:6f:92:f1:52:da:6d:7c:5d:ef:c0:07:b9: f4:19:a9:d6:3c:15:f4:71:4b:f7:95:cd:4c:e4:2c:39:e8:26: 83:16:52:78:bc:a0:74:a1:09:e7:1f:ac:77:7f:4e:4b:c3:62: 90:a5:68:92:2c:4f:7f:18:52:f1:7c:1d:ef:af:66:f2:a5:2e: 62:54:e2:ad:55:27:f0:d7:5e:88:05:63:0b:58:28:bf:df:78: 01:ef:27:45 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OERBMEMxMTAvBgNVBAUTKDZBOTU0ODFDRThGNDBERDg4OTVEMUZCN0FFRTkwRTU5 NTlCQTgzQzEwHhcNMjQwOTA5MDIwMzIzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRlNTc2Yi00YzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWaYaXrgpcbN9vAK9FjJvONphFulfbNTHiS7OOzB30aEgE+4imghCTVwWoP8 WRW47G+bxIvYSiWG1qbceWkWBjJhghF3AGAx6mOYlSlQILXlL7TB7Zk+/0XeXf5E QPfvZXlt0vjFgaaY0YEUl5ZDEPyQ5jDfetlOLbrmRTYQr+TNeBhdEB4eoWPcwvSd 8RS87Bf2H8xYLBTAtKFLodxifgnO6gQXbaiwWPdQGKXG6DJu1+8qHzH86skwqNvU 5gj9LeFFG758foDAAOBbkcxWlZFBoLBuEJVyl4sjTlZnEC9sonuc1Tgohw+Tlm1O iwXW0ei7Y0Xy0kEszisZ6w49lQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAH/2ETM NQry/Laq5vM4rYvkKMGAMB8GA1UdIwQYMBaAFGqVSBzo9A3YiV0ft67pDllZuoPB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4REEwQy9CNkRFMTMxMkYw NDkxMUVCOTQxRkZCMzJDNEY5QUUwMi9hcFZJSE9qMERkaUpYUi0zcnVrT1dWbTZn OEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FwVklIT2owRGRpSlhSLTNydWtPV1ZtNmc4RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OERBMEMvQjZERTEzMTJGMDQ5MTFFQjk0MUZGQjMyQzRGOUFFMDIvMEMzRDg2NzQz NDU1MTFFRkEwNUQwQzEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqqwwDwQCAAIwCQMHACABDfchgDANBgkqhkiG9w0BAQsF AAOCAQEAc238UWG5diLydlw4mvZziXKK+8gQTM6mkduVja4LtJYAOnC7ZXAPlNI7 HVPy0pA3s4NYtxssGKu1ha7ZRlYvj+4RDfc40IxK/s95n5DZu79P84jVKZA59rnb I93kUa9arZ/5PrLvjAxqePOeNcUADzqk8lyuI/+aR3vZTkZvnizaWHgFJgKV0drh 3g3jGfctVtEvsXVfsPng7VMvh9+vU+rDg/fLiolpb5LxUtptfF3vwAe59Bmp1jwV 9HFL95XNTOQsOegmgxZSeLygdKEJ5x+sd39OS8NikKVokixPfxhS8Xwd769m8qUu YlTirVUn8NdeiAVjC1gov994Ae8nRQ== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:45 2024 by rpki-client on console-ams.rpki-client.org