$ rpki-client -vvf rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6EF22D0A07C411EF8A38A486C4F9AE02.roa File: 6EF22D0A07C411EF8A38A486C4F9AE02.roa (raw, json) Hash identifier: H7mwXnAxb747BhosayyIuzxkCgPHMRkzFntir5DoNWo= Subject key identifier: EA:C0:1E:B4:D8:F4:8F:67:BE:87:10:CC:DB:BB:EF:2D:57:BA:BC:6F Certificate issuer: /CN=A9165772/serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Certificate serial: 02 Authority key identifier: EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6EF22D0A07C411EF8A38A486C4F9AE02.roa Signing time: Wed 01 May 2024 14:09:33 +0000 ROA not before: Wed 01 May 2024 14:09:33 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 7594 IP address blocks: 103.157.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165772/serialNumber=EA8B043E868F75573BCC4540AD4954102DC922B8 Validity Not Before: May 1 14:09:33 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66324d1d-e8d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:bd:1f:6e:b0:50:a3:3f:d7:3c:5d:61:d1:d9: 61:ee:5e:ff:22:ae:3e:90:36:41:ac:70:3e:5f:33: f6:75:f6:17:9e:33:89:02:c8:a6:b0:94:75:85:ab: 86:e7:61:38:84:0e:71:89:44:a3:9a:0f:f1:b8:9a: a7:79:99:d2:38:69:6f:75:56:51:53:21:fa:9a:27: 51:ea:ed:0f:12:82:25:66:3a:12:9b:70:34:5c:5c: c8:b9:df:37:b3:42:7a:44:3b:da:e3:f7:e6:e4:bb: 26:22:d7:ba:41:9e:ac:41:d4:1d:5c:3a:e4:de:c8: 39:de:8b:3f:c6:75:7d:b6:56:f5:61:2a:ec:d8:0b: 68:26:ff:12:7e:cb:1f:bc:d6:23:72:70:d9:79:d1: f1:75:d2:a5:30:59:0b:85:1c:ed:6e:d6:6d:89:0a: 1b:07:cf:57:8f:47:cb:ef:b7:e1:20:53:03:5a:9b: bc:bd:4d:17:b2:48:08:89:b8:65:87:cb:ac:60:69: 8d:06:a9:cf:29:15:12:e5:28:47:47:35:63:a1:e5: b8:97:81:de:9e:e2:5d:e1:46:d3:f2:ca:c4:1d:e7: 58:5a:20:c0:7b:27:de:68:de:4d:ce:e0:35:b6:e1: a5:88:58:98:ea:f9:6d:cb:c8:1e:a0:4d:65:7f:2a: 1d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C0:1E:B4:D8:F4:8F:67:BE:87:10:CC:DB:BB:EF:2D:57:BA:BC:6F X509v3 Authority Key Identifier: keyid:EA:8B:04:3E:86:8F:75:57:3B:CC:45:40:AD:49:54:10:2D:C9:22:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6osEPoaPdVc7zEVArUlUEC3JIrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6osEPoaPdVc7zEVArUlUEC3JIrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165772/04BD1A6C07C411EF852DCC7DC4F9AE02/6EF22D0A07C411EF8A38A486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.57.0/24 Signature Algorithm: sha256WithRSAEncryption 28:d6:c7:0f:3e:1a:93:9c:ca:f0:c2:68:6f:68:23:2a:f5:33: 12:e9:c3:72:c5:35:df:b5:4d:54:84:dc:ad:57:db:c8:c8:88: f1:d0:91:98:78:99:ab:63:65:75:8e:28:83:1c:6e:e9:56:ca: 9c:b4:74:54:fc:ad:3e:54:fd:dc:ca:70:5d:c1:d5:52:f8:0a: 73:98:eb:a9:4d:9d:b2:45:88:b7:56:a5:cf:72:15:35:ea:b0: 43:3c:b4:9b:3d:bc:00:ab:66:83:28:02:8b:0d:cc:d4:c3:08: 45:23:b0:2d:ac:25:97:3b:6c:3e:e9:69:80:e9:75:a8:2c:73: 2a:fa:7e:fd:f7:75:80:a2:47:0c:d6:52:0f:5b:c5:70:ec:d1: f9:d0:2b:26:7b:18:83:d0:60:de:b3:71:f5:c7:38:5e:24:a8: f9:45:21:7c:af:e9:ca:a0:d8:4a:4f:7f:58:47:17:30:83:8c: c9:15:9c:71:9b:fb:4c:85:60:32:81:b2:57:8b:20:9e:5f:7b: 05:00:b9:6f:9c:ca:ca:ef:fa:74:2d:bc:e9:6e:46:8b:6b:1f: 60:41:b8:b2:e7:a4:a3:b5:ff:ec:b0:b3:f3:9e:a8:b7:7f:3c: 0d:e9:b1:6f:8a:be:76:07:af:9f:06:92:6d:06:0d:92:91:08: 31:b1:c9:83 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTc3MjExMC8GA1UEBRMoRUE4QjA0M0U4NjhGNzU1NzNCQ0M0NTQwQUQ0OTU0MTAy REM5MjJCODAeFw0yNDA1MDExNDA5MzNaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzI0ZDFkLWU4ZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSvR9usFCjP9c8XWHR2WHuXv8irj6QNkGscD5fM/Z19heeM4kCyKawlHWFq4bn YTiEDnGJRKOaD/G4mqd5mdI4aW91VlFTIfqaJ1Hq7Q8SgiVmOhKbcDRcXMi53zez QnpEO9rj9+bkuyYi17pBnqxB1B1cOuTeyDneiz/GdX22VvVhKuzYC2gm/xJ+yx+8 1iNycNl50fF10qUwWQuFHO1u1m2JChsHz1ePR8vvt+EgUwNam7y9TReySAiJuGWH y6xgaY0Gqc8pFRLlKEdHNWOh5biXgd6e4l3hRtPyysQd51haIMB7J95o3k3O4DW2 4aWIWJjq+W3LyB6gTWV/Kh2lAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU6sAetNj0 j2e+hxDM27vvLVe6vG8wHwYDVR0jBBgwFoAU6osEPoaPdVc7zEVArUlUEC3JIrgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1NzcyLzA0QkQxQTZDMDdD NDExRUY4NTJEQ0M3REM0RjlBRTAyLzZvc0VQb2FQZFZjN3pFVkFyVWxVRUMzSkly Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNm9zRVBvYVBkVmM3ekVWQXJVbFVFQzNKSXJnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NTc3Mi8wNEJEMUE2QzA3QzQxMUVGODUyRENDN0RDNEY5QUUwMi82RUYyMkQwQTA3 QzQxMUVGOEEzOEE0ODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGedOTANBgkqhkiG9w0BAQsFAAOCAQEAKNbHDz4ak5zK8MJo b2gjKvUzEunDcsU137VNVITcrVfbyMiI8dCRmHiZq2NldY4ogxxu6VbKnLR0VPyt PlT93MpwXcHVUvgKc5jrqU2dskWIt1alz3IVNeqwQzy0mz28AKtmgygCiw3M1MMI RSOwLawllztsPulpgOl1qCxzKvp+/fd1gKJHDNZSD1vFcOzR+dArJnsYg9Bg3rNx 9cc4XiSo+UUhfK/pyqDYSk9/WEcXMIOMyRWccZv7TIVgMoGyV4sgnl97BQC5b5zK yu/6dC286W5Gi2sfYEG4sueko7X/7LCz856ot388Demxb4q+dgevnwaSbQYNkpEI MbHJgw== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:54 2024 by rpki-client on console-ams.rpki-client.org