$ rpki-client -vvf rpki.apnic.net/member_repository/A914A7D6/DD8E57241E9D11EC9C2B9F4AC4F9AE02/793A891A1EA111ECA967444FC4F9AE02.roa File: 793A891A1EA111ECA967444FC4F9AE02.roa (raw, json) Hash identifier: TuwY0bH/I8eBppDazNaeZzaGUKdY+8ax5yn8wmQ1iv4= Subject key identifier: 64:93:C7:A8:B3:13:51:A5:F2:9B:1F:7E:89:AD:C9:98:DC:69:2D:90 Certificate issuer: /CN=A914A7D6/serialNumber=B27AEC53FFBAB2F5B5BC0CB47C08706D50533210 Certificate serial: 0478 Authority key identifier: B2:7A:EC:53:FF:BA:B2:F5:B5:BC:0C:B4:7C:08:70:6D:50:53:32:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snrsU_-6svW1vAy0fAhwbVBTMhA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914A7D6/DD8E57241E9D11EC9C2B9F4AC4F9AE02/793A891A1EA111ECA967444FC4F9AE02.roa Signing time: Tue 29 Oct 2024 00:25:46 +0000 ROA not before: Tue 29 Oct 2024 00:25:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135615 IP address blocks: 103.172.164.0/23 maxlen: 23 103.172.164.0/24 maxlen: 24 103.172.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914A7D6/DD8E57241E9D11EC9C2B9F4AC4F9AE02/snrsU_-6svW1vAy0fAhwbVBTMhA.crl rsync://rpki.apnic.net/member_repository/A914A7D6/DD8E57241E9D11EC9C2B9F4AC4F9AE02/snrsU_-6svW1vAy0fAhwbVBTMhA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snrsU_-6svW1vAy0fAhwbVBTMhA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914A7D6/serialNumber=B27AEC53FFBAB2F5B5BC0CB47C08706D50533210 Validity Not Before: Oct 29 00:25:46 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67202b8a-ec11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:2a:2f:e0:27:5e:15:1f:6f:5b:e0:30:05:b7: 20:b1:99:85:42:41:a5:52:5d:1a:d7:39:ee:5e:c3: 1c:ec:7e:1b:55:5a:8b:e6:58:93:0d:fb:e1:27:2c: 66:1c:ef:9f:d4:1a:db:be:51:ea:f5:ee:a4:75:0d: 76:60:b7:68:95:99:e0:3e:5d:a1:ea:1e:7a:88:43: f6:67:59:cf:b0:72:40:b6:c0:8b:2d:2a:af:16:eb: aa:6f:1e:3c:3c:ab:51:9c:c5:10:8e:a5:d6:89:4f: 4a:52:d7:ba:38:2a:d6:a5:de:4a:44:25:24:86:d6: 4c:11:c8:b5:a4:ef:36:6e:38:a7:6c:c1:b4:52:7c: 96:13:4b:5e:d7:ad:48:8e:39:9c:d4:12:c4:f1:48: bb:8b:28:d4:b4:f0:5d:43:29:da:fe:10:3e:75:ab: 08:5a:f1:a3:e9:06:a2:e5:57:b3:0b:66:1a:29:d9: ba:24:56:dc:b4:d1:aa:09:70:a3:b0:36:9d:0d:ce: b5:0a:fb:5c:92:45:72:cf:cd:d2:a4:97:9d:fa:aa: fb:c9:b8:38:da:82:cd:8d:cc:dd:13:b7:bb:d7:d1: b5:e0:9e:c0:09:69:32:c0:98:1a:5a:27:20:d9:19: 9b:45:70:91:ef:95:3b:ed:68:3c:db:32:cc:9c:9d: ad:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:93:C7:A8:B3:13:51:A5:F2:9B:1F:7E:89:AD:C9:98:DC:69:2D:90 X509v3 Authority Key Identifier: keyid:B2:7A:EC:53:FF:BA:B2:F5:B5:BC:0C:B4:7C:08:70:6D:50:53:32:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914A7D6/DD8E57241E9D11EC9C2B9F4AC4F9AE02/snrsU_-6svW1vAy0fAhwbVBTMhA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/snrsU_-6svW1vAy0fAhwbVBTMhA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914A7D6/DD8E57241E9D11EC9C2B9F4AC4F9AE02/793A891A1EA111ECA967444FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.164.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:14:2c:1c:14:1c:f4:fd:a0:6c:04:0a:a9:46:74:c4:bd:ca: 95:0d:ab:d7:20:7f:70:59:8a:80:8c:26:eb:ad:99:bb:bf:36: 6d:bf:f1:9f:e7:c5:d7:d6:c3:70:60:0f:0c:19:07:cd:6d:80: 14:48:30:90:b7:42:e6:41:0d:2c:52:8e:1b:ee:67:05:e5:8d: 9d:67:72:22:a0:86:8b:9c:41:50:dd:c4:60:e5:27:05:2d:90: 76:8b:3a:2e:8b:7b:f3:14:5b:7d:d4:73:8a:53:c3:81:a9:18: 85:78:b9:cf:5a:11:da:be:64:23:92:9c:ab:9c:b9:af:c8:1b: dd:50:4d:87:d0:d4:75:07:26:e8:8c:6c:f3:18:21:93:9d:b5: 0e:36:bc:9b:b0:b5:dc:c4:b6:ed:a5:8c:e2:30:40:b9:95:de: c1:6f:68:ba:ee:dc:e0:6c:0d:01:43:a6:65:81:ef:f4:98:1e: 69:aa:74:3a:fb:f5:b3:b8:e8:5b:27:c3:46:97:fd:ab:3d:96: 94:d3:06:77:e4:c0:e7:06:34:e6:5a:30:e9:56:40:0b:62:16: 3f:a5:3d:6f:26:44:a5:e9:56:ae:04:24:30:7b:af:e7:14:91: e0:29:72:7b:f0:e1:ba:6e:14:93:da:46:98:32:fe:78:8d:ef: 2c:73:bd:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEE3RDYxMTAvBgNVBAUTKEIyN0FFQzUzRkZCQUIyRjVCNUJDMENCNDdDMDg3MDZE NTA1MzMyMTAwHhcNMjQxMDI5MDAyNTQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMmI4YS1lYzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Cov4CdeFR9vW+AwBbcgsZmFQkGlUl0a1znuXsMc7H4bVVqL5liTDfvhJyxm HO+f1BrbvlHq9e6kdQ12YLdolZngPl2h6h56iEP2Z1nPsHJAtsCLLSqvFuuqbx48 PKtRnMUQjqXWiU9KUte6OCrWpd5KRCUkhtZMEci1pO82bjinbMG0UnyWE0te161I jjmc1BLE8Ui7iyjUtPBdQyna/hA+dasIWvGj6Qai5VezC2YaKdm6JFbctNGqCXCj sDadDc61CvtckkVyz83SpJed+qr7ybg42oLNjczdE7e719G14J7ACWkywJgaWicg 2RmbRXCR75U77Wg82zLMnJ2tYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGSTx6iz E1Gl8psffomtyZjcaS2QMB8GA1UdIwQYMBaAFLJ67FP/urL1tbwMtHwIcG1QUzIQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QTdENi9ERDhFNTcyNDFF OUQxMUVDOUMyQjlGNEFDNEY5QUUwMi9zbnJzVV8tNnN2VzF2QXkwZkFod2JWQlRN aEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NucnNVXy02c3ZXMXZBeTBmQWh3YlZCVE1oQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEE3RDYvREQ4RTU3MjQxRTlEMTFFQzlDMkI5RjRBQzRGOUFFMDIvNzkzQTg5MUEx RUExMTFFQ0E5Njc0NDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnrKQwDQYJKoZIhvcNAQELBQADggEBAHwULBwUHPT9oGwE CqlGdMS9ypUNq9cgf3BZioCMJuutmbu/Nm2/8Z/nxdfWw3BgDwwZB81tgBRIMJC3 QuZBDSxSjhvuZwXljZ1nciKghoucQVDdxGDlJwUtkHaLOi6Le/MUW33Uc4pTw4Gp GIV4uc9aEdq+ZCOSnKucua/IG91QTYfQ1HUHJuiMbPMYIZOdtQ42vJuwtdzEtu2l jOIwQLmV3sFvaLru3OBsDQFDpmWB7/SYHmmqdDr79bO46Fsnw0aX/as9lpTTBnfk wOcGNOZaMOlWQAtiFj+lPW8mRKXpVq4EJDB7r+cUkeApcnvw4bpuFJPaRpgy/niN 7yxzvek= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org