$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/C885D0C8374B11EEA2157233C4F9AE02.roa File: C885D0C8374B11EEA2157233C4F9AE02.roa (raw, json) Hash identifier: F7+eS/2mxj8NPkOaATw5jcjuastn33+xdcT4OGIAl6Y= Subject key identifier: 29:C7:6C:BA:1B:85:A1:63:90:BC:8C:B1:72:E0:4D:8D:05:BA:42:8A Certificate issuer: /CN=A9194A8C/serialNumber=CA8990895C4F4D0E5FE3DF815880B203590FB27A Certificate serial: 9D Authority key identifier: CA:89:90:89:5C:4F:4D:0E:5F:E3:DF:81:58:80:B2:03:59:0F:B2:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yomQiVxPTQ5f49-BWICyA1kPsno.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/C885D0C8374B11EEA2157233C4F9AE02.roa Signing time: Fri 31 May 2024 03:27:39 +0000 ROA not before: Fri 31 May 2024 03:27:39 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 142121 IP address blocks: 103.166.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/yomQiVxPTQ5f49-BWICyA1kPsno.crl rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/yomQiVxPTQ5f49-BWICyA1kPsno.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yomQiVxPTQ5f49-BWICyA1kPsno.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 02:44:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A8C/serialNumber=CA8990895C4F4D0E5FE3DF815880B203590FB27A Validity Not Before: May 31 03:27:39 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=665943ab-57e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:12:ef:ee:fc:4b:a9:da:11:85:2a:18:fe:08: 6e:10:3a:fe:5e:ac:ab:cf:90:16:a4:0c:55:cb:07: 62:ec:50:46:c9:ed:8c:96:61:4e:53:b4:8f:84:de: 53:cf:3e:98:f4:3a:aa:4f:ba:dc:f3:f8:16:12:3b: d5:0b:24:40:0c:92:c6:a0:f5:3f:69:46:a5:34:79: 54:44:a4:eb:39:8d:ab:fd:5c:23:a9:83:8f:cd:8f: 3d:ec:7c:4b:03:11:b3:3e:d6:a3:1c:9c:9f:43:be: 4d:0b:70:f6:5f:27:2e:d8:b3:1d:c3:ed:c5:d1:bb: 25:aa:84:79:6c:34:64:d2:26:17:c2:25:a4:ce:f5: 85:37:ee:a3:a5:6f:e8:f8:f7:12:be:4e:e4:0b:f2: 88:c0:b9:66:09:f8:47:fb:56:a6:d8:a3:eb:ea:52: 74:be:a0:25:3e:4c:1a:75:cf:b3:58:ca:1c:7f:2a: 01:85:63:03:cc:e2:e5:b6:2b:fd:70:7b:eb:77:ed: 22:2c:3f:75:8d:d8:cc:a1:50:4e:bd:ed:45:fb:c1: 52:89:a1:e7:7e:c1:c1:d7:7a:a4:e5:8e:01:b9:d2: bc:e7:44:de:b3:fd:e9:11:16:5c:6d:fc:13:69:4a: 9e:f7:31:9e:1c:60:2e:c4:cd:74:a7:fd:c1:50:05: 81:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C7:6C:BA:1B:85:A1:63:90:BC:8C:B1:72:E0:4D:8D:05:BA:42:8A X509v3 Authority Key Identifier: keyid:CA:89:90:89:5C:4F:4D:0E:5F:E3:DF:81:58:80:B2:03:59:0F:B2:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/yomQiVxPTQ5f49-BWICyA1kPsno.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yomQiVxPTQ5f49-BWICyA1kPsno.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A8C/9E6711A42B1C11EC95997409C4F9AE02/C885D0C8374B11EEA2157233C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.168.0/23 Signature Algorithm: sha256WithRSAEncryption 44:53:7a:4b:df:e2:a5:86:62:04:b6:8c:01:77:97:b5:2b:cf: fe:ce:8f:02:75:c1:1a:2d:e5:78:62:c6:f7:b8:cc:fb:7f:a0: 28:dd:25:df:ed:04:c9:db:59:56:a8:07:7f:da:49:23:e6:bb: 9a:9a:57:27:ec:d8:c5:5b:a7:d9:7c:b3:6e:33:c6:d7:13:fb: ff:53:e9:11:8f:77:96:1f:50:f8:35:83:92:f0:9a:d3:06:c2: ff:43:b0:46:d7:a0:2a:78:a7:d1:08:aa:4b:73:05:22:4b:38: 05:72:31:61:e2:e4:fd:85:c9:66:c1:c1:c9:37:6d:6d:2a:18: 92:44:dc:34:66:bf:fa:bb:8b:3e:bf:ac:50:ec:6c:62:53:b1: 8a:11:c1:ff:8d:da:ff:de:80:43:b2:0c:3d:b3:dd:13:8e:bc: 05:cb:85:e3:a1:1b:5d:23:dd:5f:37:3e:ef:9c:c8:30:42:87: f1:93:b6:c6:68:04:0e:96:65:40:b5:94:c8:56:55:ba:51:7a: 6a:fc:86:01:c2:f2:e7:6c:22:4b:06:a8:64:89:50:46:a3:81: 3b:84:78:de:b8:63:cd:6d:a0:26:4b:d8:45:77:2f:ae:43:96: c4:b4:a8:8c:f2:3c:13:ef:c1:44:3b:83:3b:f0:a4:a4:48:ba: c4:e8:0c:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBOEMxMTAvBgNVBAUTKENBODk5MDg5NUM0RjREMEU1RkUzREY4MTU4ODBCMjAz NTkwRkIyN0EwHhcNMjQwNTMxMDMyNzM5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5NDNhYi01N2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4RLv7vxLqdoRhSoY/ghuEDr+Xqyrz5AWpAxVywdi7FBGye2MlmFOU7SPhN5T zz6Y9DqqT7rc8/gWEjvVCyRADJLGoPU/aUalNHlURKTrOY2r/VwjqYOPzY897HxL AxGzPtajHJyfQ75NC3D2Xycu2LMdw+3F0bslqoR5bDRk0iYXwiWkzvWFN+6jpW/o +PcSvk7kC/KIwLlmCfhH+1am2KPr6lJ0vqAlPkwadc+zWMocfyoBhWMDzOLltiv9 cHvrd+0iLD91jdjMoVBOve1F+8FSiaHnfsHB13qk5Y4BudK850Tes/3pERZcbfwT aUqe9zGeHGAuxM10p/3BUAWB2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCnHbLob haFjkLyMsXLgTY0FukKKMB8GA1UdIwQYMBaAFMqJkIlcT00OX+PfgViAsgNZD7J6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE4Qy85RTY3MTFBNDJC MUMxMUVDOTU5OTc0MDlDNEY5QUUwMi95b21RaVZ4UFRRNWY0OS1CV0lDeUExa1Bz bm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lvbVFpVnhQVFE1ZjQ5LUJXSUN5QTFrUHNuby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRBOEMvOUU2NzExQTQyQjFDMTFFQzk1OTk3NDA5QzRGOUFFMDIvQzg4NUQwQzgz NzRCMTFFRUEyMTU3MjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpqgwDQYJKoZIhvcNAQELBQADggEBAERTekvf4qWGYgS2 jAF3l7Urz/7OjwJ1wRot5Xhixve4zPt/oCjdJd/tBMnbWVaoB3/aSSPmu5qaVyfs 2MVbp9l8s24zxtcT+/9T6RGPd5YfUPg1g5LwmtMGwv9DsEbXoCp4p9EIqktzBSJL OAVyMWHi5P2FyWbBwck3bW0qGJJE3DRmv/q7iz6/rFDsbGJTsYoRwf+N2v/egEOy DD2z3ROOvAXLheOhG10j3V83Pu+cyDBCh/GTtsZoBA6WZUC1lMhWVbpRemr8hgHC 8udsIksGqGSJUEajgTuEeN64Y81toCZL2EV3L65DlsS0qIzyPBPvwUQ7gzvwpKRI usToDCo= -----END CERTIFICATE-----Generated at Fri Jun 7 05:07:55 2024 by rpki-client on console-ams.rpki-client.org