$ rpki-client -vvf rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa File: 457A00A8AF7A11E9AFF10782C4F9AE02.roa (raw, json) Hash identifier: mx4Am+cBFSXiPddaACrFcI512PsDACEUWWDSLjunmeM= Subject key identifier: 34:A0:F9:FE:7E:CF:1F:DD:96:DC:CE:5F:4A:8B:1D:86:83:62:7B:58 Certificate issuer: /CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Certificate serial: 0D57 Authority key identifier: A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa Signing time: Fri 12 Jul 2024 18:56:39 +0000 ROA not before: Fri 12 Jul 2024 18:56:39 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 24550 IP address blocks: 103.94.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:53:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3415 (0xd57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165297/serialNumber=A7F882C0ACC8F0D8F1DB361CD40B12606B0C68C6 Validity Not Before: Jul 12 18:56:39 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66917c66-1541 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:13:6a:6c:4b:46:c2:0e:ec:6c:c3:88:71:09: d8:58:ec:cb:9d:32:1c:16:67:a2:1d:d8:e1:5d:a2: c2:c4:53:99:53:80:72:82:e6:13:fc:96:5b:a7:c5: 80:df:66:de:04:b9:00:d0:09:56:13:13:3b:ea:13: 28:7f:70:05:50:73:43:29:1d:3e:3d:4d:24:b0:a2: e7:21:fa:4f:59:27:56:78:7e:93:5a:27:c2:d2:05: c3:1b:26:de:d4:91:c7:ff:3c:4a:e5:52:12:00:1c: c0:de:85:e4:6e:18:b1:ec:2c:5c:e4:ec:41:0a:63: 65:a3:16:ba:1f:60:0e:4c:77:c2:f8:00:85:57:03: 42:52:02:3e:91:5a:48:81:6a:ca:4d:53:4b:43:66: 9c:fb:3b:4a:de:25:61:13:10:9a:0e:dc:fa:12:9c: f6:2d:ad:1e:cd:fe:d8:83:47:f1:84:69:18:05:83: bf:a6:b4:a2:f6:d4:07:7b:41:19:5c:d5:dd:05:95: 12:f7:34:5c:fb:7f:dd:b3:9d:16:fc:fb:01:c3:23: 4a:70:0d:bf:02:f8:0e:a7:b7:ad:5f:f4:19:97:85: be:36:5c:c2:d1:69:ae:74:5a:8c:15:ab:cc:7f:1f: 92:8b:7f:b8:1f:a5:6b:75:47:26:ef:e9:0c:0a:9e: 16:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A0:F9:FE:7E:CF:1F:DD:96:DC:CE:5F:4A:8B:1D:86:83:62:7B:58 X509v3 Authority Key Identifier: keyid:A7:F8:82:C0:AC:C8:F0:D8:F1:DB:36:1C:D4:0B:12:60:6B:0C:68:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/p_iCwKzI8Njx2zYc1AsSYGsMaMY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p_iCwKzI8Njx2zYc1AsSYGsMaMY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165297/4301FDBEAF6E11E9A9258067C4F9AE02/457A00A8AF7A11E9AFF10782C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.94.252.0/22 Signature Algorithm: sha256WithRSAEncryption bc:cf:5b:1f:49:2f:fd:7b:1e:d0:13:37:27:94:4f:b9:58:78: 82:c2:a6:41:ce:f5:79:6f:d5:78:7f:e4:2e:0d:88:14:ca:7f: 7b:9e:c7:30:5a:f2:df:0c:dc:4f:28:72:1b:bd:ba:92:64:16: da:2c:ec:96:9f:3c:26:87:fd:d7:3e:ae:02:92:e5:4e:ef:c3: 6f:b5:2d:8e:16:9f:aa:c7:91:30:8e:58:b8:9a:72:4f:70:fd: 27:fb:43:9c:a3:e6:68:97:9a:cf:77:7a:cd:0e:18:3c:53:67: 57:81:26:5e:76:72:ae:53:42:60:64:58:cb:4e:ed:04:4e:04: 1a:c4:9e:4c:7d:5b:1a:4b:07:3c:e1:2d:a3:4e:6d:78:f1:2d: d0:66:1f:a8:9b:43:ff:73:6e:aa:56:d2:83:3b:bc:60:58:2d: 4a:53:0a:56:e9:70:08:92:6a:12:a7:88:82:ff:dc:eb:5a:e8: 66:71:ba:fd:fd:d7:d6:5c:1f:05:2e:b4:cb:b2:88:ee:73:39: 79:05:1c:7d:ad:b4:55:02:fa:0f:15:25:fa:59:7a:9a:9f:2f: 8c:ea:b3:01:5c:6f:ce:5d:54:f2:40:53:6b:56:ea:5c:9a:3e: f6:4d:d3:6d:f5:5e:31:50:63:2b:81:c2:66:bd:a4:92:9b:70: c0:7f:0a:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyOTcxMTAvBgNVBAUTKEE3Rjg4MkMwQUNDOEYwRDhGMURCMzYxQ0Q0MEIxMjYw NkIwQzY4QzYwHhcNMjQwNzEyMTg1NjM5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxN2M2Ni0xNTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhNqbEtGwg7sbMOIcQnYWOzLnTIcFmeiHdjhXaLCxFOZU4ByguYT/JZbp8WA 32beBLkA0AlWExM76hMof3AFUHNDKR0+PU0ksKLnIfpPWSdWeH6TWifC0gXDGybe 1JHH/zxK5VISABzA3oXkbhix7Cxc5OxBCmNloxa6H2AOTHfC+ACFVwNCUgI+kVpI gWrKTVNLQ2ac+ztK3iVhExCaDtz6Epz2La0ezf7Yg0fxhGkYBYO/prSi9tQHe0EZ XNXdBZUS9zRc+3/ds50W/PsBwyNKcA2/AvgOp7etX/QZl4W+NlzC0WmudFqMFavM fx+Si3+4H6VrdUcm7+kMCp4W/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDSg+f5+ zx/dltzOX0qLHYaDYntYMB8GA1UdIwQYMBaAFKf4gsCsyPDY8ds2HNQLEmBrDGjG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTI5Ny80MzAxRkRCRUFG NkUxMUU5QTkyNTgwNjdDNEY5QUUwMi9wX2lDd0t6SThOangyelljMUFzU1lHc01h TVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BfaUN3S3pJOE5qeDJ6WWMxQXNTWUdzTWFNWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUyOTcvNDMwMUZEQkVBRjZFMTFFOUE5MjU4MDY3QzRGOUFFMDIvNDU3QTAwQThB RjdBMTFFOUFGRjEwNzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnXvwwDQYJKoZIhvcNAQELBQADggEBALzPWx9JL/17HtAT NyeUT7lYeILCpkHO9Xlv1Xh/5C4NiBTKf3uexzBa8t8M3E8ochu9upJkFtos7Jaf PCaH/dc+rgKS5U7vw2+1LY4Wn6rHkTCOWLiack9w/Sf7Q5yj5miXms93es0OGDxT Z1eBJl52cq5TQmBkWMtO7QROBBrEnkx9WxpLBzzhLaNObXjxLdBmH6ibQ/9zbqpW 0oM7vGBYLUpTClbpcAiSahKniIL/3Ota6GZxuv3919ZcHwUutMuyiO5zOXkFHH2t tFUC+g8VJfpZepqfL4zqswFcb85dVPJAU2tW6lyaPvZN0231XjFQYyuBwma9pJKb cMB/Clw= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:04 2024 by rpki-client on console-ams.rpki-client.org