$ rpki-client -vvf rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/5704AA34FF1511EBB3AE4C19C4F9AE02.roa File: 5704AA34FF1511EBB3AE4C19C4F9AE02.roa (raw, json) Hash identifier: Zf1YLHj5oHWHsvrK9s01PMIRLgfhNzMKFjsTSUpy6B0= Subject key identifier: E1:71:22:BA:D6:1B:E1:56:51:A2:08:64:71:5D:0E:F2:5A:17:69:63 Certificate issuer: /CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Certificate serial: 052C Authority key identifier: D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/5704AA34FF1511EBB3AE4C19C4F9AE02.roa Signing time: Thu 23 May 2024 01:05:13 +0000 ROA not before: Thu 23 May 2024 01:05:13 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142146 IP address blocks: 103.166.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Sep 2024 23:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1324 (0x52c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911309C/serialNumber=D333A7787A61FF86C745B474096AF69AE31ACFF1 Validity Not Before: May 23 01:05:13 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664e9649-0e25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:53:6a:0c:27:a7:87:49:b1:f6:19:20:a5:3f: c6:fa:34:2c:b1:d6:cf:6a:1a:07:38:21:13:5d:f7: 6f:d3:14:cb:0f:91:61:53:de:f0:cb:e4:c5:32:7b: 66:b2:6d:30:df:4c:89:da:70:ca:97:82:0f:e9:90: 40:9c:e5:2c:5a:54:35:2d:15:19:f9:e0:9d:39:78: 8a:c4:85:5e:01:ca:0b:b7:a7:59:47:da:11:5c:c3: 48:5a:96:1e:e6:4b:35:64:1e:94:1e:a3:9b:35:2c: 94:99:df:fb:77:1e:c3:c0:f9:01:64:44:8e:52:3f: 18:05:1b:0f:4c:12:78:54:87:66:14:7d:8e:57:45: 5a:06:60:c8:c4:17:71:20:87:e5:a5:6e:84:2a:35: a8:7f:7b:25:33:40:6c:ef:f1:fa:a3:b3:ce:3a:64: b7:d0:69:fe:2b:eb:5f:4a:1d:a8:40:9f:89:dc:70: 73:41:7e:c3:74:de:09:91:49:0b:8d:7c:8d:60:82: d8:6a:cf:26:5e:d9:4f:b1:97:58:91:e2:b2:90:57: 36:46:4c:42:55:0e:76:71:a1:be:f4:0e:27:6f:8c: 4f:de:1a:52:54:b5:04:f7:f8:31:ee:b5:fe:ae:b0: db:09:0a:a2:a1:7b:ce:be:f0:23:5e:be:2c:bf:6f: 73:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:71:22:BA:D6:1B:E1:56:51:A2:08:64:71:5D:0E:F2:5A:17:69:63 X509v3 Authority Key Identifier: keyid:D3:33:A7:78:7A:61:FF:86:C7:45:B4:74:09:6A:F6:9A:E3:1A:CF:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/0zOneHph_4bHRbR0CWr2muMaz_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0zOneHph_4bHRbR0CWr2muMaz_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911309C/B92E3540B2E911EBB4D9CC31C4F9AE02/5704AA34FF1511EBB3AE4C19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.232.0/23 Signature Algorithm: sha256WithRSAEncryption ba:c1:4e:1b:0a:79:ff:6c:67:dd:08:bd:61:77:e5:ae:aa:40: 2b:bf:af:62:98:b3:0e:67:79:45:b7:52:14:10:17:b6:d3:8d: 5c:a8:b1:1e:f9:75:21:df:e3:4a:92:37:a6:90:49:65:52:2c: b3:73:0c:ce:de:29:08:58:b2:4c:6e:1a:26:b1:55:71:0a:4b: d9:6d:0b:d5:fc:4e:2b:c4:c7:a5:6c:35:93:8c:d6:af:00:3f: df:11:1a:54:de:15:84:b6:10:41:77:17:0e:70:8d:c0:4f:e5: 93:b2:f9:30:7a:c3:c1:1e:25:54:60:40:3c:b4:d8:f1:e4:f7: 72:9e:5b:43:ab:98:4b:45:c2:8e:05:3d:0c:05:ec:76:e5:21: 5e:06:27:8f:7c:47:0f:14:ef:50:b3:ca:36:d2:ae:a5:ad:d3: 06:06:c3:58:56:1d:9d:78:f9:fe:86:f4:80:69:08:c4:59:42: a2:9a:42:2c:51:f6:60:c6:86:e2:64:15:c7:84:d9:47:be:f1: 17:2b:bc:93:28:79:7c:33:35:49:5d:34:43:27:76:e3:b0:ca: 7b:11:ec:bc:be:fc:6d:8d:aa:26:b1:0e:fe:40:de:d4:55:d3: ed:45:8b:cc:96:56:73:80:93:98:d1:5e:e4:5c:9f:6b:86:47: 60:69:12:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTMwOUMxMTAvBgNVBAUTKEQzMzNBNzc4N0E2MUZGODZDNzQ1QjQ3NDA5NkFGNjlB RTMxQUNGRjEwHhcNMjQwNTIzMDEwNTEzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlOTY0OS0wZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1NqDCenh0mx9hkgpT/G+jQssdbPahoHOCETXfdv0xTLD5FhU97wy+TFMntm sm0w30yJ2nDKl4IP6ZBAnOUsWlQ1LRUZ+eCdOXiKxIVeAcoLt6dZR9oRXMNIWpYe 5ks1ZB6UHqObNSyUmd/7dx7DwPkBZESOUj8YBRsPTBJ4VIdmFH2OV0VaBmDIxBdx IIflpW6EKjWof3slM0Bs7/H6o7POOmS30Gn+K+tfSh2oQJ+J3HBzQX7DdN4JkUkL jXyNYILYas8mXtlPsZdYkeKykFc2RkxCVQ52caG+9A4nb4xP3hpSVLUE9/gx7rX+ rrDbCQqioXvOvvAjXr4sv29zJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOFxIrrW G+FWUaIIZHFdDvJaF2ljMB8GA1UdIwQYMBaAFNMzp3h6Yf+Gx0W0dAlq9prjGs/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzA5Qy9COTJFMzU0MEIy RTkxMUVCQjREOUNDMzFDNEY5QUUwMi8wek9uZUhwaF80YkhSYlIwQ1dyMm11TWF6 X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB6T25lSHBoXzRiSFJiUjBDV3IybXVNYXpfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTMwOUMvQjkyRTM1NDBCMkU5MTFFQkI0RDlDQzMxQzRGOUFFMDIvNTcwNEFBMzRG RjE1MTFFQkIzQUU0QzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpugwDQYJKoZIhvcNAQELBQADggEBALrBThsKef9sZ90I vWF35a6qQCu/r2KYsw5neUW3UhQQF7bTjVyosR75dSHf40qSN6aQSWVSLLNzDM7e KQhYskxuGiaxVXEKS9ltC9X8TivEx6VsNZOM1q8AP98RGlTeFYS2EEF3Fw5wjcBP 5ZOy+TB6w8EeJVRgQDy02PHk93KeW0OrmEtFwo4FPQwF7HblIV4GJ498Rw8U71Cz yjbSrqWt0wYGw1hWHZ14+f6G9IBpCMRZQqKaQixR9mDGhuJkFceE2Ue+8RcrvJMo eXwzNUldNEMnduOwynsR7Ly+/G2NqiaxDv5A3tRV0+1Fi8yWVnOAk5jRXuRcn2uG R2BpEoQ= -----END CERTIFICATE-----Generated at Thu Sep 19 01:17:18 2024 by rpki-client on console-ams.rpki-client.org