$ rpki-client -vvf rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/977ED926B7AD11ECA2E94A7EC4F9AE02.roa File: 977ED926B7AD11ECA2E94A7EC4F9AE02.roa (raw, json) Hash identifier: M4NylbqODaGIV7jb3azGtcDcoPjVhzDh1zfYrf7L1aE= Subject key identifier: 54:41:E1:1F:AA:8F:74:D5:08:0E:6E:E0:9E:3E:2C:AD:DF:58:D0:04 Certificate issuer: /CN=A911F55D/serialNumber=1A23986843565DFFC800F80FF296BAB1AD3714EC Certificate serial: 02DB Authority key identifier: 1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/977ED926B7AD11ECA2E94A7EC4F9AE02.roa Signing time: Wed 25 Sep 2024 01:44:53 +0000 ROA not before: Wed 25 Sep 2024 01:44:53 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.195.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 731 (0x2db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911F55D Validity Not Before: Sep 25 01:44:53 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f36b14-4b39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e7:c6:c2:59:d0:82:91:0c:eb:c0:93:e4:86: c4:26:d2:d8:9c:8d:cd:aa:d4:3f:78:eb:bb:88:40: 48:42:9a:10:24:39:98:d3:ff:94:c8:ae:86:3a:c4: b8:98:54:d8:e2:7a:17:0f:6e:58:ea:5a:96:6a:73: 65:d2:8a:ba:7e:0b:81:a1:c3:7f:cd:f3:7e:9b:dc: 62:b8:3f:db:1e:cd:32:42:f4:7f:cd:65:79:b1:aa: d7:ea:1c:b2:89:7c:03:b3:ca:8d:11:78:2e:00:ca: 12:fa:a8:ae:e6:1a:bb:2f:d8:e5:94:67:8a:cf:ce: 41:72:18:28:7f:b1:27:e2:3e:ff:dd:29:87:a9:5a: fa:d0:ad:24:27:c8:d1:11:d0:be:c0:93:d0:d8:41: 66:70:87:10:a1:4d:ae:5c:98:03:61:bd:5e:4d:34: f9:d9:d0:1c:77:0c:e2:c7:09:96:dd:c2:b4:26:e1: 2a:e0:e9:20:fd:62:16:27:ca:61:45:ab:ed:56:fe: 76:a1:a5:9b:d5:6d:36:eb:f2:50:fe:47:23:b8:bc: 15:91:2e:c8:b1:c9:16:7a:90:4c:29:d4:07:2d:5d: 62:67:ff:f2:dd:3b:33:e4:54:1a:ad:10:4e:8e:24: 5e:b2:d7:90:57:b7:ca:d6:1d:73:81:4c:20:61:90: f2:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:41:E1:1F:AA:8F:74:D5:08:0E:6E:E0:9E:3E:2C:AD:DF:58:D0:04 X509v3 Authority Key Identifier: keyid:1A:23:98:68:43:56:5D:FF:C8:00:F8:0F:F2:96:BA:B1:AD:37:14:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/GiOYaENWXf_IAPgP8pa6sa03FOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GiOYaENWXf_IAPgP8pa6sa03FOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911F55D/40E43B80B7AB11EC9E55317DC4F9AE02/977ED926B7AD11ECA2E94A7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.195.60.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:24:56:00:1d:79:c6:35:7f:2c:2d:2c:4e:48:39:e6:db:bf: ff:19:e1:7e:8b:ad:83:7e:30:9d:c1:5e:f0:10:76:fb:10:27: db:13:71:18:ad:41:4e:ea:91:9b:41:72:a2:b1:1b:33:37:19: 5c:b4:5a:93:43:74:84:49:1c:03:68:82:9a:75:f7:15:71:96: 49:89:36:15:45:50:d1:8c:8b:8b:94:60:2a:31:a8:2d:32:e0: 59:ee:1e:16:3f:d5:ce:54:e5:40:e6:cb:f2:df:a2:89:29:74: 29:33:4a:65:5f:3c:fa:6e:b2:45:49:1c:db:51:dc:ad:60:db: ea:75:49:5e:20:7a:41:20:c3:00:c6:ea:46:00:46:c7:3c:34: b4:69:94:17:f0:8e:bb:35:cf:fd:74:39:2f:8d:cd:cf:25:1e: 04:43:52:33:fa:89:38:78:33:e9:16:17:24:f8:09:d7:40:2a: 57:1e:4f:04:43:0a:b3:55:2d:20:60:0a:fc:5f:bd:a9:42:92: 13:52:c8:7e:d4:c0:4c:d0:e4:e1:b5:3b:32:f9:eb:79:7f:e2: 0d:a8:6c:1f:4a:39:5f:7e:d1:55:14:52:f3:05:cb:9a:51:ff: d2:7d:3f:fe:81:4e:c2:4f:a5:c4:21:1d:83:13:ae:de:e3:e3: ed:5a:64:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUY1NUQxMTAvBgNVBAUTKDFBMjM5ODY4NDM1NjVERkZDODAwRjgwRkYyOTZCQUIx QUQzNzE0RUMwHhcNMjQwOTI1MDE0NDUzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzNmIxNC00YjM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1+fGwlnQgpEM68CT5IbEJtLYnI3NqtQ/eOu7iEBIQpoQJDmY0/+UyK6GOsS4 mFTY4noXD25Y6lqWanNl0oq6fguBocN/zfN+m9xiuD/bHs0yQvR/zWV5sarX6hyy iXwDs8qNEXguAMoS+qiu5hq7L9jllGeKz85Bchgof7En4j7/3SmHqVr60K0kJ8jR EdC+wJPQ2EFmcIcQoU2uXJgDYb1eTTT52dAcdwzixwmW3cK0JuEq4Okg/WIWJ8ph RavtVv52oaWb1W026/JQ/kcjuLwVkS7IsckWepBMKdQHLV1iZ//y3Tsz5FQarRBO jiResteQV7fK1h1zgUwgYZDymQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFRB4R+q j3TVCA5u4J4+LK3fWNAEMB8GA1UdIwQYMBaAFBojmGhDVl3/yAD4D/KWurGtNxTs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRjU1RC80MEU0M0I4MEI3 QUIxMUVDOUU1NTMxN0RDNEY5QUUwMi9HaU9ZYUVOV1hmX0lBUGdQOHBhNnNhMDNG T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dpT1lhRU5XWGZfSUFQZ1A4cGE2c2EwM0ZPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUY1NUQvNDBFNDNCODBCN0FCMTFFQzlFNTUzMTdEQzRGOUFFMDIvOTc3RUQ5MjZC N0FEMTFFQ0EyRTk0QTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnwzwwDQYJKoZIhvcNAQELBQADggEBAHwkVgAdecY1fywt LE5IOebbv/8Z4X6LrYN+MJ3BXvAQdvsQJ9sTcRitQU7qkZtBcqKxGzM3GVy0WpND dIRJHANogpp19xVxlkmJNhVFUNGMi4uUYCoxqC0y4FnuHhY/1c5U5UDmy/Lfookp dCkzSmVfPPpuskVJHNtR3K1g2+p1SV4gekEgwwDG6kYARsc8NLRplBfwjrs1z/10 OS+Nzc8lHgRDUjP6iTh4M+kWFyT4CddAKlceTwRDCrNVLSBgCvxfvalCkhNSyH7U wEzQ5OG1OzL563l/4g2obB9KOV9+0VUUUvMFy5pR/9J9P/6BTsJPpcQhHYMTrt7j 4+1aZCU= -----END CERTIFICATE-----Generated at Sun Feb 16 15:07:23 2025 by rpki-client