$ rpki-client -vvf rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/8A190AB66D1011EFA13D6E2BC4F9AE02.roa File: 8A190AB66D1011EFA13D6E2BC4F9AE02.roa (raw, json) Hash identifier: JXwBxiGEkFaFWVz8HbHFVp2nlp17eTZBvyxAVrqYWhk= Subject key identifier: F5:BA:2E:20:16:1F:A6:66:D6:B2:86:44:34:67:C6:61:19:73:E6:E7 Certificate issuer: /CN=A9163BEF/serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Certificate serial: 0443 Authority key identifier: 0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/8A190AB66D1011EFA13D6E2BC4F9AE02.roa Signing time: Sat 07 Sep 2024 11:58:48 +0000 ROA not before: Sat 07 Sep 2024 11:58:47 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138968 IP address blocks: 103.67.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1091 (0x443) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163BEF/serialNumber=0CBED27AB7B681BC9966ACE244FCBF297E65CA19 Validity Not Before: Sep 7 11:58:47 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66dc3ff7-61f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a7:bb:e3:65:e7:a3:a0:cc:d7:6d:39:2a:c1: 2a:84:3b:04:da:72:2b:2a:a6:85:36:d5:cb:ab:81: aa:3c:9d:7a:c9:c8:15:63:5a:0a:07:7c:78:2d:6e: 82:5d:52:59:4f:60:7c:f7:e9:a0:4b:86:fd:88:ef: 0b:cd:14:f8:be:55:a8:57:bf:cd:b1:3d:d4:54:6b: 55:fc:4d:b3:6d:76:33:2b:4e:a7:c4:fe:3d:6d:10: 71:f1:e4:8e:9f:ef:d9:dc:70:1e:b8:6f:b2:14:8c: bc:2e:87:7b:ba:59:43:c9:3f:bc:b5:c1:21:c9:c8: 0c:7e:46:2d:93:3e:02:9d:a6:03:9a:a1:d0:a8:15: 62:f5:16:d8:b9:76:a9:2d:1b:5a:80:ba:54:94:0f: d9:5d:13:97:9c:23:80:e9:05:84:87:61:b2:15:a8: 37:6e:87:93:67:24:c8:84:6d:90:9e:12:2b:42:cb: ae:70:fc:72:e9:f0:ec:c9:ce:d0:50:a3:a1:71:46: b3:ac:09:0f:ec:b2:3f:d8:05:42:74:b9:8d:ff:7f: 74:50:08:5e:4d:20:55:c9:36:95:83:bf:20:75:dc: e2:e8:76:df:cc:b8:1d:5e:e1:2c:39:8d:99:6e:e0: 5c:7a:af:ea:90:9a:d2:61:a3:f1:21:75:35:c6:f0: bd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:BA:2E:20:16:1F:A6:66:D6:B2:86:44:34:67:C6:61:19:73:E6:E7 X509v3 Authority Key Identifier: keyid:0C:BE:D2:7A:B7:B6:81:BC:99:66:AC:E2:44:FC:BF:29:7E:65:CA:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/DL7Sere2gbyZZqziRPy_KX5lyhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DL7Sere2gbyZZqziRPy_KX5lyhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163BEF/8AAFE28C25CF11EC8B4A992EC4F9AE02/8A190AB66D1011EFA13D6E2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.252.0/22 Signature Algorithm: sha256WithRSAEncryption 72:01:cd:11:cb:72:eb:b9:70:bb:4c:55:6d:09:e0:b6:7b:3d: 2c:f2:e9:a9:df:66:79:2e:d2:87:79:25:1e:20:19:d7:0f:de: 7a:c3:ab:e4:99:a5:7d:94:d5:89:51:99:ca:b4:31:e4:8d:03: a5:57:7e:aa:af:25:72:50:4a:f2:0f:00:08:f6:34:34:f0:15: 5b:13:8a:8f:17:28:a4:ac:98:e0:89:d4:8c:8e:f5:6c:e6:87: 3e:ef:98:16:3c:96:25:94:12:84:35:b1:d8:62:aa:90:0b:63: 53:71:b4:7e:68:b4:e5:7c:d7:48:70:f3:5f:88:2b:c4:44:dc: 69:00:5c:8a:42:21:c3:37:bd:c8:25:c1:c1:99:06:75:c8:a2: 35:48:94:3d:a9:63:be:22:9e:89:51:9a:26:44:4d:07:c8:78: 89:48:98:cb:12:bb:c4:8d:50:64:e4:92:0e:59:66:65:06:a5: c0:e4:e4:ae:0b:8e:f8:ac:f0:7f:55:ad:8a:86:e1:e5:7e:b9: ec:4b:6f:99:cf:c1:b7:fb:7b:74:10:aa:62:a7:78:78:1f:f2: 69:33:a1:2e:99:15:52:70:0e:aa:20:31:77:e3:46:4f:89:09: 75:df:fe:ee:6e:47:c7:6d:62:96:2e:b7:65:b2:07:d6:d5:08: c9:15:b1:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjNCRUYxMTAvBgNVBAUTKDBDQkVEMjdBQjdCNjgxQkM5OTY2QUNFMjQ0RkNCRjI5 N0U2NUNBMTkwHhcNMjQwOTA3MTE1ODQ3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRjM2ZmNy02MWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA26e742Xno6DM1205KsEqhDsE2nIrKqaFNtXLq4GqPJ16ycgVY1oKB3x4LW6C XVJZT2B89+mgS4b9iO8LzRT4vlWoV7/NsT3UVGtV/E2zbXYzK06nxP49bRBx8eSO n+/Z3HAeuG+yFIy8Lod7ullDyT+8tcEhycgMfkYtkz4CnaYDmqHQqBVi9RbYuXap LRtagLpUlA/ZXROXnCOA6QWEh2GyFag3boeTZyTIhG2QnhIrQsuucPxy6fDsyc7Q UKOhcUazrAkP7LI/2AVCdLmN/390UAheTSBVyTaVg78gddzi6HbfzLgdXuEsOY2Z buBceq/qkJrSYaPxIXU1xvC92QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPW6LiAW H6Zm1rKGRDRnxmEZc+bnMB8GA1UdIwQYMBaAFAy+0nq3toG8mWas4kT8vyl+ZcoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2M0JFRi84QUFGRTI4QzI1 Q0YxMUVDOEI0QTk5MkVDNEY5QUUwMi9ETDdTZXJlMmdieVpacXppUlB5X0tYNWx5 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RMN1NlcmUyZ2J5WlpxemlSUHlfS1g1bHloay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjNCRUYvOEFBRkUyOEMyNUNGMTFFQzhCNEE5OTJFQzRGOUFFMDIvOEExOTBBQjY2 RDEwMTFFRkExM0Q2RTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnQ/wwDQYJKoZIhvcNAQELBQADggEBAHIBzRHLcuu5cLtM VW0J4LZ7PSzy6anfZnku0od5JR4gGdcP3nrDq+SZpX2U1YlRmcq0MeSNA6VXfqqv JXJQSvIPAAj2NDTwFVsTio8XKKSsmOCJ1IyO9Wzmhz7vmBY8liWUEoQ1sdhiqpAL Y1NxtH5otOV810hw81+IK8RE3GkAXIpCIcM3vcglwcGZBnXIojVIlD2pY74inolR miZETQfIeIlImMsSu8SNUGTkkg5ZZmUGpcDk5K4Ljvis8H9VrYqG4eV+uexLb5nP wbf7e3QQqmKneHgf8mkzoS6ZFVJwDqogMXfjRk+JCXXf/u5uR8dtYpYut2WyB9bV CMkVsXo= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:59 2024 by rpki-client on console-ams.rpki-client.org