$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/C17E1DDCBC7111EBB1423E5FC4F9AE02.roa File: C17E1DDCBC7111EBB1423E5FC4F9AE02.roa (raw, json) Hash identifier: ei3bKZ/cpLIRgTqV0pdjcmnxhOkz7g6PWIVeDuQtGq8= Subject key identifier: 43:9F:2D:D4:57:09:3E:E8:70:19:66:4B:BA:2B:91:26:15:E8:08:9A Certificate issuer: /CN=A91A6F2D/serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Certificate serial: 0527 Authority key identifier: AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/C17E1DDCBC7111EBB1423E5FC4F9AE02.roa Signing time: Mon 01 Jul 2024 01:02:09 +0000 ROA not before: Mon 01 Jul 2024 01:02:09 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142285 IP address blocks: 103.167.116.0/24 maxlen: 24 2001:df6:b080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1319 (0x527) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F2D/serialNumber=AFEEF7A2F831A9755B13B37EB6E9B91D81E8A9E8 Validity Not Before: Jul 1 01:02:09 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66820011-4df9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:66:f4:6c:65:1f:0e:d1:d0:da:a2:1b:95:65: 4e:30:b5:64:06:86:fb:9f:80:a6:11:bd:33:9d:08: c2:ff:65:b7:ec:4d:42:ae:68:81:58:a9:55:af:cf: a6:a9:3d:57:0c:fd:db:24:17:a6:24:2d:d8:9c:93: a6:52:12:59:2d:9c:45:2e:dd:b4:b5:af:f1:a9:d1: 21:05:a9:4b:69:d5:a4:c1:70:83:e5:e4:7a:e4:c3: da:cc:9d:43:56:a0:1d:e8:74:cd:c7:8c:71:63:8c: cb:b9:42:26:41:cb:97:a7:12:3e:09:2d:13:06:3d: db:17:4f:a1:29:60:59:b9:3b:a2:aa:d2:54:a4:90: 35:c3:3b:13:ce:dc:b9:c4:f8:60:80:ee:ce:3f:b8: ea:6c:a2:9a:5f:03:c5:34:29:cb:75:44:b9:9c:ec: 81:45:9a:33:b2:a2:01:e4:e9:d9:e4:64:61:f3:71: ec:01:d7:c8:15:eb:73:f0:d3:fd:34:89:b6:09:9e: 2d:b9:f1:18:cc:c1:ec:fb:d2:8b:72:90:a8:61:68: 24:93:82:33:52:40:8e:1b:15:de:9d:fa:db:86:d1: 8c:90:76:2f:78:6f:e1:c0:4d:a2:a3:76:5d:6c:a1: 16:3d:1e:fc:37:85:54:c3:3e:0f:22:4d:89:e5:67: 42:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:9F:2D:D4:57:09:3E:E8:70:19:66:4B:BA:2B:91:26:15:E8:08:9A X509v3 Authority Key Identifier: keyid:AF:EE:F7:A2:F8:31:A9:75:5B:13:B3:7E:B6:E9:B9:1D:81:E8:A9:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/r-73ovgxqXVbE7N-tum5HYHoqeg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r-73ovgxqXVbE7N-tum5HYHoqeg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F2D/FD860F68BC6E11EBB8C64854C4F9AE02/C17E1DDCBC7111EBB1423E5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.116.0/24 IPv6: 2001:df6:b080::/48 Signature Algorithm: sha256WithRSAEncryption 4f:0d:8c:af:7c:47:35:a2:2f:4b:cb:3a:ae:f2:0e:93:cb:7c: 0a:b4:f3:8a:5f:d3:d8:f6:2d:45:a6:d7:74:91:c8:41:ec:8f: d7:5a:3b:ea:de:c1:e8:b8:b2:ce:68:12:b9:7f:14:d8:06:57: e6:21:25:03:79:1d:06:83:79:76:e7:ee:d2:47:08:ea:d8:b6: 86:76:da:f0:77:6f:a6:39:fd:b5:af:2d:e8:b2:f3:64:a1:86: 61:4f:2e:03:78:b8:7f:ce:34:f6:a7:de:42:14:ea:1d:bc:d3: 7e:b2:aa:6c:c1:3c:6a:90:61:5d:ca:42:84:27:87:55:67:0b: a3:70:3d:3f:35:9a:ab:1c:06:42:73:2c:9a:f4:f8:ad:ab:c2: e4:bd:82:b9:c2:c4:d1:c0:f9:71:1b:ba:84:f9:f5:18:da:7b: ec:7f:42:b9:20:a5:99:1c:b1:bc:90:15:fa:29:a0:dc:bf:68: d7:f2:11:7c:71:57:7b:54:fc:0d:6a:b9:91:b5:78:97:13:e9: ff:11:77:29:a6:67:5c:73:fd:25:2b:83:60:ed:36:ca:fe:c9: 6a:df:7c:d5:57:2a:4d:44:20:c2:da:d4:65:e2:d0:85:d8:9b: ad:43:9b:d6:69:3f:59:6a:49:88:54:ff:46:a7:22:b6:49:79: 91:fe:12:be -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTZGMkQxMTAvBgNVBAUTKEFGRUVGN0EyRjgzMUE5NzU1QjEzQjM3RUI2RTlCOTFE ODFFOEE5RTgwHhcNMjQwNzAxMDEwMjA5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgyMDAxMS00ZGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWb0bGUfDtHQ2qIblWVOMLVkBob7n4CmEb0znQjC/2W37E1CrmiBWKlVr8+m qT1XDP3bJBemJC3YnJOmUhJZLZxFLt20ta/xqdEhBalLadWkwXCD5eR65MPazJ1D VqAd6HTNx4xxY4zLuUImQcuXpxI+CS0TBj3bF0+hKWBZuTuiqtJUpJA1wzsTzty5 xPhggO7OP7jqbKKaXwPFNCnLdUS5nOyBRZozsqIB5OnZ5GRh83HsAdfIFetz8NP9 NIm2CZ4tufEYzMHs+9KLcpCoYWgkk4IzUkCOGxXenfrbhtGMkHYveG/hwE2io3Zd bKEWPR78N4VUwz4PIk2J5WdCJwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEOfLdRX CT7ocBlmS7orkSYV6AiaMB8GA1UdIwQYMBaAFK/u96L4Mal1WxOzfrbpuR2B6Kno MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNkYyRC9GRDg2MEY2OEJD NkUxMUVCQjhDNjQ4NTRDNEY5QUUwMi9yLTczb3ZneHFYVmJFN04tdHVtNUhZSG9x ZWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ItNzNvdmd4cVhWYkU3Ti10dW01SFlIb3FlZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTZGMkQvRkQ4NjBGNjhCQzZFMTFFQkI4QzY0ODU0QzRGOUFFMDIvQzE3RTFERENC QzcxMTFFQkIxNDIzRTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnp3QwDwQCAAIwCQMHACABDfawgDANBgkqhkiG9w0BAQsF AAOCAQEATw2Mr3xHNaIvS8s6rvIOk8t8CrTzil/T2PYtRabXdJHIQeyP11o76t7B 6LiyzmgSuX8U2AZX5iElA3kdBoN5dufu0kcI6ti2hnba8Hdvpjn9ta8t6LLzZKGG YU8uA3i4f8409qfeQhTqHbzTfrKqbME8apBhXcpChCeHVWcLo3A9PzWaqxwGQnMs mvT4ravC5L2CucLE0cD5cRu6hPn1GNp77H9CuSClmRyxvJAV+img3L9o1/IRfHFX e1T8DWq5kbV4lxPp/xF3KaZnXHP9JSuDYO02yv7Jat981VcqTUQgwtrUZeLQhdib rUOb1mk/WWpJiFT/Rqcitkl5kf4Svg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:47 2024 by rpki-client on console-ams.rpki-client.org