$ rpki-client -vvf rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/C3417AA6593611E98E4C8C44C4F9AE02.roa File: C3417AA6593611E98E4C8C44C4F9AE02.roa (raw, json) Hash identifier: ad8PcZtJmJ5GZCdh7kUo1sT5x0A8F5SEGBdl18QkFxI= Subject key identifier: 42:5F:FE:50:E5:2F:97:BA:BD:15:97:4A:B6:D8:DF:2E:2A:0A:4E:51 Certificate issuer: /CN=A9166708/serialNumber=22792C70C98947BE8AF4F4A3E755AEDE7959D278 Certificate serial: 0EDB Authority key identifier: 22:79:2C:70:C9:89:47:BE:8A:F4:F4:A3:E7:55:AE:DE:79:59:D2:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/InkscMmJR76K9PSj51Wu3nlZ0ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/C3417AA6593611E98E4C8C44C4F9AE02.roa Signing time: Sat 06 Apr 2024 18:27:00 +0000 ROA not before: Sat 06 Apr 2024 18:27:00 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132232 IP address blocks: 103.7.252.0/22 maxlen: 22 2403:8700::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/InkscMmJR76K9PSj51Wu3nlZ0ng.crl rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/InkscMmJR76K9PSj51Wu3nlZ0ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/InkscMmJR76K9PSj51Wu3nlZ0ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:33:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3803 (0xedb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166708/serialNumber=22792C70C98947BE8AF4F4A3E755AEDE7959D278 Validity Not Before: Apr 6 18:27:00 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661193f4-af62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:96:9b:da:a9:c5:15:36:77:34:f5:b9:cd:62: 2b:8e:05:04:4c:1d:3e:3d:1f:c2:94:ff:39:f8:f2: 8d:66:5c:09:a4:5e:d9:79:0b:f6:81:c6:34:ac:46: 91:7a:56:06:e4:ac:a6:24:d9:a8:a2:e1:27:6d:c1: 99:ed:3b:a3:e8:fa:63:9d:ea:1f:48:9d:1d:f5:e9: dc:42:9c:c7:8f:de:db:e5:7c:71:43:b1:fe:ed:85: 77:5d:a4:2c:a4:5d:f8:dc:0d:86:ff:ba:1d:20:a1: 9f:68:98:e3:89:77:f6:8d:7b:e9:21:15:59:f4:90: 63:95:f6:9b:12:68:d3:df:99:04:99:c9:43:c4:8b: 9e:2f:fb:8f:cf:02:52:7e:0a:81:b0:5a:d6:d5:57: 05:4f:1c:3e:71:e5:a6:d5:8a:8e:74:cf:f0:9e:d6: 1a:95:58:30:8d:61:e2:d7:35:d5:9e:b0:86:a5:63: 1a:78:ec:9e:71:02:bc:7b:5c:35:c9:00:3c:b6:b1: d5:38:15:30:d9:e7:03:58:61:e6:ad:2f:17:75:65: 21:cf:6c:f2:71:e5:7a:00:44:34:fb:16:ec:d7:cb: 63:68:55:b1:a5:fa:5c:90:a6:d3:4d:06:21:da:16: 4d:9c:64:fe:93:9f:06:42:b4:d4:f0:aa:f4:45:76: 0f:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:5F:FE:50:E5:2F:97:BA:BD:15:97:4A:B6:D8:DF:2E:2A:0A:4E:51 X509v3 Authority Key Identifier: keyid:22:79:2C:70:C9:89:47:BE:8A:F4:F4:A3:E7:55:AE:DE:79:59:D2:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/InkscMmJR76K9PSj51Wu3nlZ0ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/InkscMmJR76K9PSj51Wu3nlZ0ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166708/FA526B50593511E98B54BC43C4F9AE02/C3417AA6593611E98E4C8C44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.252.0/22 IPv6: 2403:8700::/32 Signature Algorithm: sha256WithRSAEncryption b9:b5:99:2f:de:27:5b:c5:3d:f4:07:98:6b:c9:c9:90:25:4a: bc:29:59:0f:68:c8:5b:65:77:b8:44:d3:9d:de:47:d1:20:f6: ab:99:1b:d2:64:7b:6a:e7:bb:8b:6d:cf:fa:0f:e1:63:82:f9: e6:e9:61:9d:b4:70:f2:af:d1:db:66:29:85:02:d5:15:c0:b0: 40:3c:07:a0:1e:c0:88:83:03:b5:3a:d4:59:f0:12:6d:1f:c9: d9:9f:62:11:04:88:93:5a:35:fa:1d:53:b6:5e:3f:04:66:e3: b6:c8:d1:7a:6e:22:f2:b0:96:43:7f:70:d0:75:b5:54:d7:48: 8e:e7:61:b6:35:38:a6:59:df:c4:d5:73:c5:4a:4e:3a:5c:90: f4:16:3f:19:2d:7b:57:de:08:65:fd:65:3f:c3:8b:7c:27:94: 88:cf:93:d6:91:97:9a:5e:7d:f8:d9:7b:1b:80:d8:48:b9:14: 24:08:7a:72:57:2d:73:66:46:27:73:6a:2d:c9:55:0e:14:03: 45:f4:68:dd:8e:15:cd:94:90:a3:ad:33:da:6d:5e:c8:98:d0: 51:72:dc:0b:1c:fa:22:6e:2e:40:65:76:4f:7f:a2:48:fb:b1: 7b:0e:d6:35:19:40:50:24:64:5c:ad:2b:a0:cc:98:45:2e:54: 87:72:55:9b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDtswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjY3MDgxMTAvBgNVBAUTKDIyNzkyQzcwQzk4OTQ3QkU4QUY0RjRBM0U3NTVBRURF Nzk1OUQyNzgwHhcNMjQwNDA2MTgyNzAwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjExOTNmNC1hZjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZab2qnFFTZ3NPW5zWIrjgUETB0+PR/ClP85+PKNZlwJpF7ZeQv2gcY0rEaR elYG5KymJNmoouEnbcGZ7Tuj6PpjneofSJ0d9encQpzHj97b5XxxQ7H+7YV3XaQs pF343A2G/7odIKGfaJjjiXf2jXvpIRVZ9JBjlfabEmjT35kEmclDxIueL/uPzwJS fgqBsFrW1VcFTxw+ceWm1YqOdM/wntYalVgwjWHi1zXVnrCGpWMaeOyecQK8e1w1 yQA8trHVOBUw2ecDWGHmrS8XdWUhz2zyceV6AEQ0+xbs18tjaFWxpfpckKbTTQYh 2hZNnGT+k58GQrTU8Kr0RXYPbQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEJf/lDl L5e6vRWXSrbY3y4qCk5RMB8GA1UdIwQYMBaAFCJ5LHDJiUe+ivT0o+dVrt55WdJ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjcwOC9GQTUyNkI1MDU5 MzUxMUU5OEI1NEJDNDNDNEY5QUUwMi9JbmtzY01tSlI3Nks5UFNqNTFXdTNubFow bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lua3NjTW1KUjc2SzlQU2o1MVd1M25sWjBuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjY3MDgvRkE1MjZCNTA1OTM1MTFFOThCNTRCQzQzQzRGOUFFMDIvQzM0MTdBQTY1 OTM2MTFFOThFNEM4QzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnB/wwDQQCAAIwBwMFACQDhwAwDQYJKoZIhvcNAQELBQAD ggEBALm1mS/eJ1vFPfQHmGvJyZAlSrwpWQ9oyFtld7hE053eR9Eg9quZG9Jke2rn u4ttz/oP4WOC+ebpYZ20cPKv0dtmKYUC1RXAsEA8B6AewIiDA7U61FnwEm0fydmf YhEEiJNaNfodU7ZePwRm47bI0XpuIvKwlkN/cNB1tVTXSI7nYbY1OKZZ38TVc8VK TjpckPQWPxkte1feCGX9ZT/Di3wnlIjPk9aRl5peffjZexuA2Ei5FCQIenJXLXNm Ridzai3JVQ4UA0X0aN2OFc2UkKOtM9ptXsiY0FFy3Asc+iJuLkBldk9/okj7sXsO 1jUZQFAkZFytK6DMmEUuVIdyVZs= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org