$ rpki-client -vvf rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/2FF4108A0C3911EB828BDC25C4F9AE02.roa File: 2FF4108A0C3911EB828BDC25C4F9AE02.roa (raw, json) Hash identifier: YV2x84DiirJLvW5sO6TKN1rFR9zcOJbtoohEkrg65ck= Subject key identifier: A2:4F:6F:BA:1F:3A:A8:95:9E:4D:8D:F4:EC:40:23:03:0E:4E:D9:A3 Certificate issuer: /CN=A9164FD2/serialNumber=9378691D5A83CC026B8D1F232806008371BEDC04 Certificate serial: 066C Authority key identifier: 93:78:69:1D:5A:83:CC:02:6B:8D:1F:23:28:06:00:83:71:BE:DC:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/2FF4108A0C3911EB828BDC25C4F9AE02.roa Signing time: Tue 31 Oct 2023 23:10:44 +0000 ROA not before: Tue 31 Oct 2023 23:10:44 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 55720 IP address blocks: 103.9.51.0/24 maxlen: 24 103.81.162.0/24 maxlen: 24 103.195.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.crl rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 23:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1644 (0x66c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164FD2/serialNumber=9378691D5A83CC026B8D1F232806008371BEDC04 Validity Not Before: Oct 31 23:10:44 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65418974-0678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e9:40:b6:bb:e1:c3:8f:84:0c:85:8e:e2:3a: fb:ca:82:82:04:60:e8:8d:7e:91:97:64:d7:4d:3a: 31:5b:d6:05:95:43:b5:af:61:5a:73:1e:73:ea:2c: 6e:a6:93:83:ce:54:57:cf:44:b2:0a:84:7a:9d:de: 32:8b:90:56:60:c6:63:36:cb:66:cd:f3:fc:6b:50: 88:68:1f:ac:c5:71:2c:a1:ba:39:6f:25:ac:03:be: a1:91:fc:39:f8:07:ab:89:8e:2d:9e:ce:a4:a6:38: fe:1b:99:f0:10:c7:4d:b4:af:45:97:12:b9:c6:5c: ba:b6:b5:9e:36:e2:61:89:0a:35:19:32:9f:f0:80: 84:75:45:21:40:43:ec:e4:a9:c2:2c:ff:44:80:86: cf:6c:78:ec:56:ed:44:b1:f4:78:e7:aa:d1:72:a8: 94:40:d4:dc:1a:ba:a2:08:4a:0f:61:77:22:bf:1f: bd:79:6c:19:68:f5:07:c6:dc:74:23:e7:f4:a7:80: 8f:0e:cd:9d:ad:4e:7b:f9:a6:21:a3:a0:06:04:d7: ec:eb:3e:fa:57:29:e1:3d:60:c0:10:d0:09:3e:bd: ba:cf:75:e4:de:3f:05:6f:fc:9f:c8:cd:4c:5d:e9: ed:6a:f1:53:0d:8b:b6:6c:c2:f5:a6:00:ec:45:48: ff:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:4F:6F:BA:1F:3A:A8:95:9E:4D:8D:F4:EC:40:23:03:0E:4E:D9:A3 X509v3 Authority Key Identifier: keyid:93:78:69:1D:5A:83:CC:02:6B:8D:1F:23:28:06:00:83:71:BE:DC:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/2FF4108A0C3911EB828BDC25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.51.0/24 103.81.162.0/24 103.195.143.0/24 Signature Algorithm: sha256WithRSAEncryption 00:a7:d1:a6:6f:ae:21:0c:8d:71:40:3a:20:ed:18:c7:c5:f1: c0:b7:7c:08:87:18:26:81:05:fe:2c:81:d2:8a:4f:40:ae:17: 2c:2e:ce:6d:3d:b0:1d:54:81:f5:d7:f1:73:2e:9d:a8:f1:1d: ae:1e:e2:44:62:a4:c5:9c:2f:b2:f2:89:25:0b:63:65:49:2d: 4b:a8:6e:9e:5b:d4:6d:91:8a:b2:4c:9d:c2:18:ce:8a:05:5a: d4:3d:c7:45:e1:27:dc:ae:d7:19:30:7d:2e:52:1b:d7:c7:0c: fc:a8:8d:42:44:7d:ed:4e:f7:a0:38:85:35:e3:43:4a:55:d0: bb:fa:e7:39:ce:51:e6:fd:a3:35:17:d4:63:ac:14:ee:3d:44: 76:0b:7c:38:17:96:86:86:ab:28:52:71:0e:94:38:58:f1:09: c3:99:86:b5:41:6e:fa:52:a3:8f:62:d2:24:ef:c2:13:ee:fe: e8:22:fa:e7:26:1f:27:4e:86:20:91:ae:b9:90:ca:50:ab:ed: e7:08:1f:27:3a:75:1a:7b:2f:a9:e8:0f:41:b2:0e:1a:b0:b0: 1c:ab:89:0b:72:d8:cc:c7:a0:16:d6:ec:da:ba:58:ca:73:25: 7e:c5:2f:d3:b1:87:19:d8:c7:78:68:7f:8a:4b:82:3e:27:da: f9:59:49:1c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGRDIxMTAvBgNVBAUTKDkzNzg2OTFENUE4M0NDMDI2QjhEMUYyMzI4MDYwMDgz NzFCRURDMDQwHhcNMjMxMDMxMjMxMDQ0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxODk3NC0wNjc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3elAtrvhw4+EDIWO4jr7yoKCBGDojX6Rl2TXTToxW9YFlUO1r2Facx5z6ixu ppODzlRXz0SyCoR6nd4yi5BWYMZjNstmzfP8a1CIaB+sxXEsobo5byWsA76hkfw5 +AeriY4tns6kpjj+G5nwEMdNtK9FlxK5xly6trWeNuJhiQo1GTKf8ICEdUUhQEPs 5KnCLP9EgIbPbHjsVu1EsfR456rRcqiUQNTcGrqiCEoPYXcivx+9eWwZaPUHxtx0 I+f0p4CPDs2drU57+aYho6AGBNfs6z76VynhPWDAENAJPr26z3Xk3j8Fb/yfyM1M XentavFTDYu2bML1pgDsRUj/PwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKJPb7of OqiVnk2N9OxAIwMOTtmjMB8GA1UdIwQYMBaAFJN4aR1ag8wCa40fIygGAINxvtwE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEZEMi9COTRCNEY3QzBD MzYxMUVCODUyMzMxMjFDNEY5QUUwMi9rM2hwSFZxRHpBSnJqUjhqS0FZQWczRy0z QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szaHBIVnFEekFKcmpSOGpLQVlBZzNHLTNBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjRGRDIvQjk0QjRGN0MwQzM2MTFFQjg1MjMzMTIxQzRGOUFFMDIvMkZGNDEwOEEw QzM5MTFFQjgyOEJEQzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnCTMDBABnUaIDBABnw48wDQYJKoZIhvcNAQELBQADggEB AACn0aZvriEMjXFAOiDtGMfF8cC3fAiHGCaBBf4sgdKKT0CuFywuzm09sB1UgfXX 8XMunajxHa4e4kRipMWcL7LyiSULY2VJLUuobp5b1G2RirJMncIYzooFWtQ9x0Xh J9yu1xkwfS5SG9fHDPyojUJEfe1O96A4hTXjQ0pV0Lv65znOUeb9ozUX1GOsFO49 RHYLfDgXloaGqyhScQ6UOFjxCcOZhrVBbvpSo49i0iTvwhPu/ugi+ucmHydOhiCR rrmQylCr7ecIHyc6dRp7L6noD0GyDhqwsByriQty2MzHoBbW7Nq6WMpzJX7FL9Ox hxnYx3hof4pLgj4n2vlZSRw= -----END CERTIFICATE-----Generated at Tue Apr 23 18:42:59 2024 by rpki-client on console-ams.rpki-client.org