$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa File: F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa (raw, json) Hash identifier: i2LHA/EgGtTBeHKNnFlyuCR2kaAk5AeCjXfpxJn/gu0= Subject key identifier: A7:10:94:3B:41:BA:10:AF:2C:4C:BF:96:E0:60:32:93:47:EA:B3:FB Certificate issuer: /CN=A9167A72/serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Certificate serial: 08 Authority key identifier: 90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa Signing time: Fri 15 Mar 2024 07:59:37 +0000 ROA not before: Fri 15 Mar 2024 07:59:37 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 63981 IP address blocks: 103.167.140.0/24 maxlen: 24 103.167.141.0/24 maxlen: 24 103.197.28.0/22 maxlen: 24 2407:6bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72/serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Validity Not Before: Mar 15 07:59:37 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65f3ffe9-f803 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:34:1f:ca:10:96:4a:04:26:78:32:07:c2:76: 5d:56:04:a2:34:8e:56:ca:4b:04:3f:d1:c3:8e:e7: 19:2f:41:03:5b:a6:d8:6b:73:80:af:04:e8:b8:29: 15:89:f8:8b:51:63:8f:60:7a:84:70:44:42:64:76: 4e:00:cd:eb:84:ae:44:89:f0:79:25:34:93:65:2b: 31:76:b3:8b:dd:11:27:86:87:0c:84:94:eb:d4:63: 8b:b8:ce:e2:01:14:95:cc:eb:01:25:08:ce:16:bb: ae:ec:97:77:87:5d:cc:c2:e7:dd:a6:f5:f3:99:a9: 50:5d:5d:8e:1c:33:32:bf:3d:bc:e4:fb:aa:d1:b2: c2:a9:c7:c3:e8:39:6b:f2:16:bf:53:2c:4e:aa:54: 24:26:e4:2d:b4:e0:f1:21:1d:fa:91:3f:e3:49:4a: ff:af:c3:0e:ec:76:91:d1:23:42:20:44:e7:be:6d: 43:24:8e:2d:23:1f:55:83:f3:87:50:17:99:40:dd: da:83:27:4f:9c:52:bd:5c:c8:7f:49:0e:6c:46:9a: 8c:19:3c:de:06:10:c4:2a:2f:ec:35:87:dd:4f:47: 57:a9:7e:41:68:cb:b1:4e:34:62:fe:ca:94:94:5a: 6d:6e:d0:9f:4b:9a:e7:49:3f:7b:aa:8f:34:e4:6b: b3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:10:94:3B:41:BA:10:AF:2C:4C:BF:96:E0:60:32:93:47:EA:B3:FB X509v3 Authority Key Identifier: keyid:90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.140.0/23 103.197.28.0/22 IPv6: 2407:6bc0::/32 Signature Algorithm: sha256WithRSAEncryption 8d:ee:20:c9:31:26:81:c0:98:37:d3:b5:91:8c:99:06:84:b2: 39:e2:5e:17:3d:3b:40:80:8a:e9:b7:cb:59:15:9d:2a:ff:49: c3:1c:30:f3:1d:57:e9:81:c9:3f:a3:90:b1:ef:ba:f8:51:a1: 28:db:28:cf:58:d0:20:02:85:be:0b:9d:08:4b:b3:4b:98:d1: c4:58:ca:aa:8c:9e:7c:10:6a:e2:1e:98:9f:6a:31:6f:68:b6: 76:d6:5c:78:d1:81:7b:52:58:7d:56:1c:32:5f:c0:b0:09:39: 88:64:df:a3:22:72:2d:05:28:64:a4:ff:bb:d7:6e:a2:3d:fc: dc:de:b6:54:a3:ca:0b:85:13:39:20:dc:82:19:fe:ed:8d:51: c3:71:e1:17:df:d9:d3:d8:1a:a7:9e:d4:5c:a9:f0:9e:e3:0d: 03:ba:be:88:c9:14:f3:42:94:fd:63:b5:88:02:23:29:59:04: 66:97:b3:76:4e:48:02:8e:34:7a:ab:8f:ed:4f:eb:6c:a0:e2: 93:7f:fa:dc:a6:f1:7c:db:a0:c2:60:fc:c7:29:fd:28:89:01: cb:8f:fc:eb:54:d6:30:88:6d:7c:04:b4:3a:08:70:96:5f:21: 73:1e:2c:70:b9:62:c6:f3:d7:56:25:24:29:24:ff:ff:c9:3f: 5c:8f:34:07 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0E3MjExMC8GA1UEBRMoOTBBNDdGM0M2NTlCMzcxOEZEQzgyRDMwMDdBOUQzNDI0 OUNDQzhGNDAeFw0yNDAzMTUwNzU5MzdaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjNmZmU5LWY4MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDINB/KEJZKBCZ4MgfCdl1WBKI0jlbKSwQ/0cOO5xkvQQNbpthrc4CvBOi4KRWJ +ItRY49geoRwREJkdk4AzeuErkSJ8HklNJNlKzF2s4vdESeGhwyElOvUY4u4zuIB FJXM6wElCM4Wu67sl3eHXczC592m9fOZqVBdXY4cMzK/Pbzk+6rRssKpx8PoOWvy Fr9TLE6qVCQm5C204PEhHfqRP+NJSv+vww7sdpHRI0IgROe+bUMkji0jH1WD84dQ F5lA3dqDJ0+cUr1cyH9JDmxGmowZPN4GEMQqL+w1h91PR1epfkFoy7FONGL+ypSU Wm1u0J9LmudJP3uqjzTka7P3AgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUpxCUO0G6 EK8sTL+W4GAyk0fqs/swHwYDVR0jBBgwFoAUkKR/PGWbNxj9yC0wB6nTQknMyPQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3QTcyLzIyRkQxMjFBRENG MDExRUVCQzkwMzExRUM0RjlBRTAyL2tLUl9QR1diTnhqOXlDMHdCNm5UUWtuTXlQ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0tSX1BHV2JOeGo5eUMwd0I2blRRa25NeVBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0E3Mi8yMkZEMTIxQURDRjAxMUVFQkM5MDMxMUVDNEY5QUUwMi9GODFGN0UwRUUy QTExMUVFQTJERDlFMThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAWenjAMEAmfFHDANBAIAAjAHAwUAJAdrwDANBgkqhkiG9w0B AQsFAAOCAQEAje4gyTEmgcCYN9O1kYyZBoSyOeJeFz07QICK6bfLWRWdKv9Jwxww 8x1X6YHJP6OQse+6+FGhKNsoz1jQIAKFvgudCEuzS5jRxFjKqoyefBBq4h6Yn2ox b2i2dtZceNGBe1JYfVYcMl/AsAk5iGTfoyJyLQUoZKT/u9duoj383N62VKPKC4UT OSDcghn+7Y1Rw3HhF9/Z09gap57UXKnwnuMNA7q+iMkU80KU/WO1iAIjKVkEZpez dk5IAo40equP7U/rbKDik3/63KbxfNugwmD8xyn9KIkBy4/861TWMIhtfAS0Oghw ll8hcx4scLlixvPXViUkKST//8k/XI80Bw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:16 2024 by rpki-client on console-ams.rpki-client.org