$ rpki-client -vvf rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/DD21ADFACA7311EBAA6E0567C4F9AE02.roa File: DD21ADFACA7311EBAA6E0567C4F9AE02.roa (raw, json) Hash identifier: ZotghGiuMfOw+s3uuTOdkshmDTpBWNWmcIBqIc4IVro= Subject key identifier: 61:BA:F0:E7:21:B0:EC:AC:8A:64:5B:BC:7D:25:83:8A:2E:19:75:D2 Certificate issuer: /CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Certificate serial: 0507 Authority key identifier: A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/DD21ADFACA7311EBAA6E0567C4F9AE02.roa Signing time: Sat 29 Jun 2024 01:31:32 +0000 ROA not before: Sat 29 Jun 2024 01:31:32 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142283 IP address blocks: 103.167.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1287 (0x507) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158877/serialNumber=A3B16481B5D6C179FC0B73AE1E0E53DE967641DC Validity Not Before: Jun 29 01:31:32 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667f63f4-77ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:93:f0:68:3e:70:8a:38:4e:9d:0d:4f:dd:23: 46:09:5e:c3:b7:d3:b0:ec:8c:60:f8:70:7a:70:d2: 76:36:e9:6a:57:a5:18:37:58:ba:4b:9f:4f:52:5d: 0c:10:bb:c6:52:f5:4b:95:8d:70:f4:d4:dd:56:69: 99:5c:fc:1d:ba:de:2a:0d:0a:19:5a:1d:0f:e2:eb: 61:ea:d8:07:a5:22:dd:eb:58:c0:49:47:25:06:b5: a7:38:6f:37:2c:62:14:13:d0:f6:15:e8:09:7b:0e: 79:64:ef:bd:6f:3c:14:e0:67:9f:5a:c3:72:ef:31: c6:80:50:a3:07:b2:f3:22:27:26:f3:75:13:58:a4: c4:40:fa:21:8b:af:72:13:46:7a:be:0e:1d:29:81: ac:a1:9e:df:a2:a1:a5:cd:a4:af:bb:32:30:29:9e: fb:4a:7e:8b:b3:2b:d1:00:10:af:94:34:77:37:35: 25:cd:ae:66:7c:16:fe:57:11:77:07:da:7c:d5:5c: bb:2c:89:53:44:f8:2f:15:a0:05:29:60:37:b6:3d: a3:74:c7:78:c7:86:3b:d4:65:79:e8:35:3f:7e:87: b6:db:3e:b3:eb:ba:c0:b4:e6:60:1c:89:0f:8e:e6: 8d:1d:22:ca:ee:4a:49:fc:e9:51:08:d3:a2:3d:e7: a8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:BA:F0:E7:21:B0:EC:AC:8A:64:5B:BC:7D:25:83:8A:2E:19:75:D2 X509v3 Authority Key Identifier: keyid:A3:B1:64:81:B5:D6:C1:79:FC:0B:73:AE:1E:0E:53:DE:96:76:41:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o7FkgbXWwXn8C3OuHg5T3pZ2Qdw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158877/F05858B8CA7011EBA9D2DC61C4F9AE02/DD21ADFACA7311EBAA6E0567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.81.0/24 Signature Algorithm: sha256WithRSAEncryption 44:24:cb:a3:0c:88:f9:1a:a5:92:11:8c:4d:99:11:37:d8:69: 70:7c:6f:c1:0e:41:c5:08:66:7e:6c:a0:7f:4e:61:1b:e8:66: 94:cf:64:42:d4:07:1e:da:5b:1b:b8:e5:84:71:82:7c:24:a7: cc:2a:c6:61:a1:49:33:d7:a3:8f:92:fe:aa:45:a7:b4:4b:d0: 48:db:65:99:6d:f2:4e:86:a3:e8:c0:6f:02:eb:98:a7:93:bd: 42:1b:8b:26:e7:ae:d3:78:8b:1f:25:bc:04:63:a0:1a:ad:cc: 98:c1:28:f5:ed:87:06:56:ce:bf:76:f2:b9:1e:f9:0b:68:f1: 39:b2:42:e4:bf:14:37:33:34:b5:54:64:75:4e:80:14:6a:c6: 84:a3:d4:eb:30:e1:62:ff:38:25:35:f9:c8:a5:6d:06:97:05: a8:c2:74:a8:cb:b9:b9:b2:b7:77:77:d2:22:2a:bd:9b:16:62: fd:61:40:71:5e:13:4e:f3:16:8f:89:ea:92:ee:27:89:5a:d2: d3:4a:6c:89:05:7b:77:20:72:7e:1d:ff:75:d6:a0:49:7c:b2: 7d:ec:21:26:fd:28:d0:71:f7:18:e4:a7:23:f4:05:54:12:16: 54:00:2a:24:bc:07:3f:1f:8d:55:f1:32:3f:b6:37:e9:3e:3b: e7:c8:92:cc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NzcxMTAvBgNVBAUTKEEzQjE2NDgxQjVENkMxNzlGQzBCNzNBRTFFMEU1M0RF OTY3NjQxREMwHhcNMjQwNjI5MDEzMTMyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmNjNmNC03N2FlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJPwaD5wijhOnQ1P3SNGCV7Dt9Ow7Ixg+HB6cNJ2NulqV6UYN1i6S59PUl0M ELvGUvVLlY1w9NTdVmmZXPwdut4qDQoZWh0P4uth6tgHpSLd61jASUclBrWnOG83 LGIUE9D2FegJew55ZO+9bzwU4GefWsNy7zHGgFCjB7LzIicm83UTWKTEQPohi69y E0Z6vg4dKYGsoZ7foqGlzaSvuzIwKZ77Sn6LsyvRABCvlDR3NzUlza5mfBb+VxF3 B9p81Vy7LIlTRPgvFaAFKWA3tj2jdMd4x4Y71GV56DU/foe22z6z67rAtOZgHIkP juaNHSLK7kpJ/OlRCNOiPeeohQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGG68Och sOysimRbvH0lg4ouGXXSMB8GA1UdIwQYMBaAFKOxZIG11sF5/Atzrh4OU96WdkHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg3Ny9GMDU4NThCOENB NzAxMUVCQTlEMkRDNjFDNEY5QUUwMi9vN0ZrZ2JYV3dYbjhDM091SGc1VDNwWjJR ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL283RmtnYlhXd1huOEMzT3VIZzVUM3BaMlFkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg4NzcvRjA1ODU4QjhDQTcwMTFFQkE5RDJEQzYxQzRGOUFFMDIvREQyMUFERkFD QTczMTFFQkFBNkUwNTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnp1EwDQYJKoZIhvcNAQELBQADggEBAEQky6MMiPkapZIR jE2ZETfYaXB8b8EOQcUIZn5soH9OYRvoZpTPZELUBx7aWxu45YRxgnwkp8wqxmGh STPXo4+S/qpFp7RL0EjbZZlt8k6Go+jAbwLrmKeTvUIbiybnrtN4ix8lvARjoBqt zJjBKPXthwZWzr928rke+Qto8TmyQuS/FDczNLVUZHVOgBRqxoSj1Osw4WL/OCU1 +cilbQaXBajCdKjLubmyt3d30iIqvZsWYv1hQHFeE07zFo+J6pLuJ4la0tNKbIkF e3cgcn4d/3XWoEl8sn3sISb9KNBx9xjkpyP0BVQSFlQAKiS8Bz8fjVXxMj+2N+k+ O+fIksw= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:40 2024 by rpki-client on console-ams.rpki-client.org