$ rpki-client -vvf rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/67425BB07A7F11EFB5653840C4F9AE02.roa File: 67425BB07A7F11EFB5653840C4F9AE02.roa (raw, json) Hash identifier: CF1J0U4bw58RMShNGhdMA9v1rutlPTB0QeSV/Dx5uXs= Subject key identifier: 38:A7:D3:14:44:E6:B9:34:32:B9:80:92:69:C4:AA:DA:E0:A5:0A:FC Certificate issuer: /CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA Certificate serial: 0166 Authority key identifier: 0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/67425BB07A7F11EFB5653840C4F9AE02.roa Signing time: Sun 29 Sep 2024 03:17:22 +0000 ROA not before: Sun 29 Sep 2024 03:17:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 17941 IP address blocks: 103.71.92.0/24 maxlen: 24 103.71.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:40:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 358 (0x166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116DDB/serialNumber=0C769DA44982F61650362943E6DFEF951B9777FA Validity Not Before: Sep 29 03:17:22 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f8c6c2-d00e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:39:85:2e:a5:5a:38:84:73:43:9f:14:48:c3: 86:d2:26:0f:81:72:24:28:ff:35:11:3a:6b:4c:55: 70:40:b0:2e:9c:a7:03:58:82:f8:24:b3:37:3a:a4: 6c:a7:3b:4e:88:5f:51:31:5f:a5:9d:9b:4e:3e:87: 9c:cb:88:d2:21:9a:5f:5b:cd:86:9a:c7:d2:50:2f: 4d:da:db:06:36:af:ac:52:d1:ea:78:78:ce:51:75: d5:3e:ef:84:f3:db:1d:77:be:43:ed:f6:a7:50:a0: de:8b:c9:c3:2d:59:be:27:2f:5e:08:09:13:50:ea: 10:85:bb:6a:ee:75:cb:7a:2c:5b:9f:e4:6f:3f:cb: 38:64:c4:2c:ce:22:b9:91:76:58:94:50:fe:b4:08: b5:2b:7e:f5:e3:f0:8c:29:de:c0:1e:32:14:4a:23: 83:34:32:02:b9:c6:96:26:55:c0:6a:6c:d5:ae:21: f2:d2:2e:de:6c:3b:58:5b:a7:55:79:78:04:fe:6f: 91:c6:0f:6e:4d:a2:a9:01:63:07:29:79:56:64:20: 0d:61:8e:71:16:18:94:bb:ef:bf:b5:ad:96:20:ea: d7:cc:4a:89:13:eb:c8:f7:ef:02:eb:52:98:2a:90: 03:f0:4c:c8:5c:3f:dc:8e:9a:21:a3:9e:41:e0:2a: 4a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:A7:D3:14:44:E6:B9:34:32:B9:80:92:69:C4:AA:DA:E0:A5:0A:FC X509v3 Authority Key Identifier: keyid:0C:76:9D:A4:49:82:F6:16:50:36:29:43:E6:DF:EF:95:1B:97:77:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/DHadpEmC9hZQNilD5t_vlRuXd_o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHadpEmC9hZQNilD5t_vlRuXd_o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116DDB/E1CDCDD2BE1B11EDA61ACD84C4F9AE02/67425BB07A7F11EFB5653840C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.92.0/24 103.71.94.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:cf:4e:2e:07:ed:a3:56:cb:a1:62:52:5c:f6:31:03:9e:ec: 0f:e6:3e:04:6d:46:d1:70:f4:1d:f3:78:a3:42:7b:74:51:58: e5:f4:21:25:42:56:1d:f5:64:11:7f:ff:4e:a7:1e:34:98:4c: 23:75:75:ab:33:f4:37:68:93:9a:16:e7:f2:93:cc:a4:ab:19: de:22:a9:3e:f2:07:b5:35:e2:68:80:e8:a4:36:5c:35:b0:88: f7:d2:56:ac:ae:02:26:14:3a:a8:24:cc:30:d5:58:2b:5d:dd: a2:95:14:c9:84:2c:f6:fb:e9:8e:05:68:20:a0:be:6c:dc:eb: b2:e4:46:77:3f:a6:5d:c7:e9:7b:b9:2d:04:d0:19:ea:47:8e: c5:e5:7d:62:00:84:f0:0d:c2:10:0d:20:34:25:e0:4c:af:01: 0f:54:44:d8:73:3a:ac:d7:44:4c:b5:6f:b4:c0:1c:1a:a0:b9: 5a:9b:0b:93:ba:90:21:4d:bd:df:da:39:82:ca:6e:5f:4d:b2: 43:13:42:b5:8f:2d:2d:77:26:e9:cb:68:8d:8f:e3:38:4c:b8: 74:4d:09:3c:4d:87:6d:b1:ac:e9:a0:ff:1c:29:31:f9:55:fe: 4f:31:5f:64:9f:38:a9:d5:48:30:f8:0d:22:93:a1:30:67:1a: 02:1a:96:8f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAWYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZEREIxMTAvBgNVBAUTKDBDNzY5REE0NDk4MkY2MTY1MDM2Mjk0M0U2REZFRjk1 MUI5Nzc3RkEwHhcNMjQwOTI5MDMxNzIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4YzZjMi1kMDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAojmFLqVaOIRzQ58USMOG0iYPgXIkKP81ETprTFVwQLAunKcDWIL4JLM3OqRs pztOiF9RMV+lnZtOPoecy4jSIZpfW82GmsfSUC9N2tsGNq+sUtHqeHjOUXXVPu+E 89sdd75D7fanUKDei8nDLVm+Jy9eCAkTUOoQhbtq7nXLeixbn+RvP8s4ZMQsziK5 kXZYlFD+tAi1K3714/CMKd7AHjIUSiODNDICucaWJlXAamzVriHy0i7ebDtYW6dV eXgE/m+Rxg9uTaKpAWMHKXlWZCANYY5xFhiUu++/ta2WIOrXzEqJE+vI9+8C61KY KpAD8EzIXD/cjpoho55B4CpKcQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDin0xRE 5rk0MrmAkmnEqtrgpQr8MB8GA1UdIwQYMBaAFAx2naRJgvYWUDYpQ+bf75Ubl3f6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkREQi9FMUNEQ0REMkJF MUIxMUVEQTYxQUNEODRDNEY5QUUwMi9ESGFkcEVtQzloWlFOaWxENXRfdmxSdVhk X28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIYWRwRW1DOWhaUU5pbEQ1dF92bFJ1WGRfby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZEREIvRTFDRENERDJCRTFCMTFFREE2MUFDRDg0QzRGOUFFMDIvNjc0MjVCQjA3 QTdGMTFFRkI1NjUzODQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnR1wDBABnR14wDQYJKoZIhvcNAQELBQADggEBAIrPTi4H 7aNWy6FiUlz2MQOe7A/mPgRtRtFw9B3zeKNCe3RRWOX0ISVCVh31ZBF//06nHjSY TCN1dasz9Ddok5oW5/KTzKSrGd4iqT7yB7U14miA6KQ2XDWwiPfSVqyuAiYUOqgk zDDVWCtd3aKVFMmELPb76Y4FaCCgvmzc67LkRnc/pl3H6Xu5LQTQGepHjsXlfWIA hPANwhANIDQl4EyvAQ9URNhzOqzXREy1b7TAHBqguVqbC5O6kCFNvd/aOYLKbl9N skMTQrWPLS13JunLaI2P4zhMuHRNCTxNh22xrOmg/xwpMflV/k8xX2SfOKnVSDD4 DSKToTBnGgIalo8= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:00 2024 by rpki-client on console-ams.rpki-client.org