$ rpki-client -vvf rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/D060A788062711ED98FC531BC4F9AE02.roa File: D060A788062711ED98FC531BC4F9AE02.roa (raw, json) Hash identifier: q59NmHJMCVC3dpOE6B51oUif6kX0C+mT6Y8FTTLEHHM= Subject key identifier: 2B:B5:FD:17:A1:02:E2:8B:EC:22:15:1B:7C:46:A9:54:D3:9E:1D:73 Certificate issuer: /CN=A9160EEF/serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Certificate serial: 0C0E Authority key identifier: 95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/D060A788062711ED98FC531BC4F9AE02.roa Signing time: Sun 28 Jul 2024 18:56:29 +0000 ROA not before: Sun 28 Jul 2024 18:56:29 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 139074 IP address blocks: 103.139.78.0/23 maxlen: 23 2404:ddc0:6000::/36 maxlen: 36 2404:ddc0:aa00::/40 maxlen: 40 2404:ddc0:af00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:15:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3086 (0xc0e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160EEF/serialNumber=958A4ED9D7D64FAC87BD16EC8A36571E1A2F508A Validity Not Before: Jul 28 18:56:29 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66a6945d-da7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:dc:e2:19:84:49:e9:f5:cb:14:50:6a:56:b0: 01:9f:c6:e5:de:f8:51:ff:f6:64:ff:c9:20:cc:ee: e1:af:f4:39:73:e0:93:78:7d:2a:ca:d5:f2:1b:5a: 4c:f5:f1:a5:b1:9c:9f:b9:87:db:6b:3a:55:b1:3f: b2:9c:49:d8:f9:a1:03:7c:87:78:f8:e2:0d:8a:46: 0d:a2:45:35:b5:ea:b3:a1:a9:7a:55:7a:2f:2e:be: e0:3d:53:dd:86:a5:d8:86:fe:f7:3e:f8:98:f2:d9: 51:7d:38:3a:09:9e:f9:b1:d9:7c:2f:3e:31:78:f4: b8:70:84:fc:c1:21:e8:aa:e1:35:d2:6a:6c:a2:ec: ff:54:a5:df:64:91:1f:03:3e:b3:ed:0d:b4:ac:34: b0:c4:72:9e:cf:64:a4:27:e3:89:09:1a:42:b9:cb: b5:ee:a5:7d:72:e6:cc:ee:4a:1c:85:72:1c:d8:e4: 9d:b2:af:99:e5:b4:e1:11:e7:7b:1a:11:3c:f9:5f: c7:69:c5:46:70:cf:6a:9d:02:1d:05:ec:dd:2f:e8: 09:1d:ce:77:5b:58:b0:6c:02:67:e7:7f:07:e9:8d: 54:ca:14:18:84:0f:70:ca:47:dc:b7:e4:e3:81:40: 9d:2a:32:2b:4b:72:2e:92:6b:3b:40:6b:b0:37:f1: 4d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B5:FD:17:A1:02:E2:8B:EC:22:15:1B:7C:46:A9:54:D3:9E:1D:73 X509v3 Authority Key Identifier: keyid:95:8A:4E:D9:D7:D6:4F:AC:87:BD:16:EC:8A:36:57:1E:1A:2F:50:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/lYpO2dfWT6yHvRbsijZXHhovUIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lYpO2dfWT6yHvRbsijZXHhovUIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160EEF/6C4CD690F88811E98FA00A7CC4F9AE02/D060A788062711ED98FC531BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.78.0/23 IPv6: 2404:ddc0:6000::/36 2404:ddc0:aa00::/40 2404:ddc0:af00::/40 Signature Algorithm: sha256WithRSAEncryption 37:6a:63:16:d8:f8:67:84:de:ca:75:70:72:da:da:8d:00:8b: 80:89:90:85:01:84:f7:8d:1a:b9:65:59:91:a1:cf:97:ec:90: 70:5e:27:cc:1a:e3:b4:44:3c:77:ef:96:61:70:17:a1:8c:22: 4c:11:c2:8a:8c:1f:93:fd:69:1c:66:72:ac:8c:be:91:d9:0a: 1e:c3:d7:08:29:77:5a:1a:ea:e7:0a:c8:b3:c8:21:57:b3:42: f8:38:cf:47:a5:c9:a3:4c:a1:ef:09:e0:59:fa:de:74:b5:77: 68:54:17:c8:55:b1:eb:9d:dd:87:94:21:2e:bb:65:3e:9d:3b: 3b:85:0e:23:52:e0:66:ef:bd:5e:41:87:79:23:a7:8a:16:bb: c7:aa:75:32:df:05:1d:8b:e9:26:bd:87:ef:42:08:a4:42:62: f9:bf:67:44:c3:25:4e:91:28:8d:26:86:a5:1a:02:dd:6c:6c: f1:02:37:b2:6e:a7:eb:23:a9:b7:59:49:1d:ed:34:87:8c:89: 39:fc:83:87:d8:5f:3c:cd:9b:d6:d3:b1:5a:18:e0:55:cb:98: 52:1e:2d:1c:8a:84:bd:1b:b5:49:3c:5d:0d:74:98:ee:24:13: fa:33:68:13:0d:8a:30:3e:b7:c2:30:1e:5a:14:d4:a3:13:c8: 02:fd:e4:59 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICDA4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjBFRUYxMTAvBgNVBAUTKDk1OEE0RUQ5RDdENjRGQUM4N0JEMTZFQzhBMzY1NzFF MUEyRjUwOEEwHhcNMjQwNzI4MTg1NjI5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE2OTQ1ZC1kYTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNziGYRJ6fXLFFBqVrABn8bl3vhR//Zk/8kgzO7hr/Q5c+CTeH0qytXyG1pM 9fGlsZyfuYfbazpVsT+ynEnY+aEDfId4+OINikYNokU1teqzoal6VXovLr7gPVPd hqXYhv73PviY8tlRfTg6CZ75sdl8Lz4xePS4cIT8wSHoquE10mpsouz/VKXfZJEf Az6z7Q20rDSwxHKez2SkJ+OJCRpCucu17qV9cubM7kochXIc2OSdsq+Z5bThEed7 GhE8+V/HacVGcM9qnQIdBezdL+gJHc53W1iwbAJn538H6Y1UyhQYhA9wykfct+Tj gUCdKjIrS3Iukms7QGuwN/FNgwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFCu1/Reh AuKL7CIVG3xGqVTTnh1zMB8GA1UdIwQYMBaAFJWKTtnX1k+sh70W7Io2Vx4aL1CK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MEVFRi82QzRDRDY5MEY4 ODgxMUU5OEZBMDBBN0NDNEY5QUUwMi9sWXBPMmRmV1Q2eUh2UmJzaWpaWEhob3ZV SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xZcE8yZGZXVDZ5SHZSYnNpalpYSGhvdlVJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjBFRUYvNkM0Q0Q2OTBGODg4MTFFOThGQTAwQTdDQzRGOUFFMDIvRDA2MEE3ODgw NjI3MTFFRDk4RkM1MzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMAwEAgABMAYDBAFni04wHgQCAAIwGAMGBCQE3cBgAwYAJATdwKoDBgAkBN3A rzANBgkqhkiG9w0BAQsFAAOCAQEAN2pjFtj4Z4TeynVwctrajQCLgImQhQGE940a uWVZkaHPl+yQcF4nzBrjtEQ8d++WYXAXoYwiTBHCiowfk/1pHGZyrIy+kdkKHsPX CCl3Whrq5wrIs8ghV7NC+DjPR6XJo0yh7wngWfredLV3aFQXyFWx653dh5QhLrtl Pp07O4UOI1LgZu+9XkGHeSOniha7x6p1Mt8FHYvpJr2H70IIpEJi+b9nRMMlTpEo jSaGpRoC3Wxs8QI3sm6n6yOpt1lJHe00h4yJOfyDh9hfPM2b1tOxWhjgVcuYUh4t HIqEvRu1STxdDXSY7iQT+jNoEw2KMD63wjAeWhTUoxPIAv3kWQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org