$ rpki-client -vvf rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa File: F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa (raw, json) Hash identifier: C1pdAbl6h5et4uQ/HDMA/uODKhTj4EU2QcxZSh3A4J4= Subject key identifier: D6:6E:9C:08:4D:BF:50:41:57:9E:27:AB:33:39:30:6F:39:0A:8C:00 Certificate issuer: /CN=A9167A72/serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Certificate serial: 37 Authority key identifier: 90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa Signing time: Tue 11 Jun 2024 09:20:21 +0000 ROA not before: Tue 11 Jun 2024 09:20:21 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 63981 IP address blocks: 103.167.140.0/24 maxlen: 24 103.167.141.0/24 maxlen: 24 103.197.28.0/22 maxlen: 24 2407:6bc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167A72/serialNumber=90A47F3C659B3718FDC82D3007A9D34249CCC8F4 Validity Not Before: Jun 11 09:20:21 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666816d5-3927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:5e:8d:60:ad:cf:35:e6:a2:8a:c1:75:96:69: 5a:19:5e:23:8e:74:fd:50:e3:f6:28:eb:d3:df:d7: c9:a8:84:ba:62:16:8e:c5:82:5f:e4:60:b9:a9:f7: 18:23:55:61:d5:6e:c9:c7:8b:c6:35:75:57:07:68: 76:54:4a:b1:45:42:aa:b3:d4:b0:bc:79:97:4c:9b: b3:63:64:4b:0d:4d:7e:5d:06:f7:9e:24:2e:6a:f2: 64:4c:01:a7:24:e7:7d:72:52:11:13:ec:37:5b:71: 00:bc:c8:28:04:91:e8:f1:b3:f8:22:a2:c7:ca:54: 9a:1a:14:33:28:58:ed:13:d2:de:f2:16:d4:29:f2: 52:2f:3a:99:30:d3:9d:29:bd:01:7d:5d:18:c5:9b: a4:de:14:8d:29:9e:e4:09:6f:2e:31:d1:69:bf:e8: 38:c5:dd:27:36:da:db:7f:b9:d9:20:56:6a:5c:91: b9:ad:b9:04:e8:73:21:16:53:52:9b:f5:fb:be:d9: c1:dd:87:99:61:5b:43:10:30:b1:75:f7:91:1e:52: 3a:0a:91:33:16:69:27:21:b5:63:aa:cb:2b:15:58: a6:c7:ed:d0:1f:fc:e9:7c:fa:06:98:c4:21:c7:62: 8a:8f:24:19:fa:30:b2:68:5c:1c:9e:da:b3:da:09: a9:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:6E:9C:08:4D:BF:50:41:57:9E:27:AB:33:39:30:6F:39:0A:8C:00 X509v3 Authority Key Identifier: keyid:90:A4:7F:3C:65:9B:37:18:FD:C8:2D:30:07:A9:D3:42:49:CC:C8:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/kKR_PGWbNxj9yC0wB6nTQknMyPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kKR_PGWbNxj9yC0wB6nTQknMyPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167A72/22FD121ADCF011EEBC90311EC4F9AE02/F81F7E0EE2A111EEA2DD9E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.140.0/23 103.197.28.0/22 IPv6: 2407:6bc0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:5c:3e:6f:31:eb:2f:48:55:b2:04:8c:03:67:c3:e4:8c:2b: 18:1e:82:e6:07:fe:3a:34:c8:73:48:1f:8e:e4:58:5f:5c:e8: 4e:92:5b:b7:b5:eb:ba:e2:98:7b:54:10:49:99:a8:e3:44:be: 4a:d5:ba:dc:6e:6a:1b:cc:48:02:87:73:ec:46:7e:a9:d3:f1: 3f:c0:16:74:78:2b:c8:82:31:82:f6:72:a9:14:32:41:8d:44: 2b:5a:c7:25:fe:76:a5:38:8e:8e:bf:d4:1d:9a:0a:bc:6b:a7: bd:2a:23:c7:d8:e3:77:45:b6:b4:a7:f8:79:0d:65:da:1e:42: b5:20:7a:46:0e:4b:e0:74:a4:af:f8:50:7d:f4:87:2f:0c:96: cd:57:24:b0:fa:54:52:c7:46:1f:c4:9f:af:fc:38:68:7f:7e: 49:fb:28:b2:c9:12:3a:3f:6c:2b:08:7b:9c:8b:22:0e:a3:c5: 57:02:45:9d:79:c7:5d:66:33:bd:86:b7:c7:2e:a6:a3:3b:42: 93:42:8d:86:99:86:e3:0a:2f:b3:2d:b5:d0:ad:50:f2:2e:e4: f5:36:1e:d8:a8:37:ec:44:e6:45:eb:ae:b1:9c:3e:58:6b:ab: fb:02:0f:da:3b:53:8c:39:0b:6f:f0:c7:a4:02:f0:6b:83:b1: 5f:dc:ac:13 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 N0E3MjExMC8GA1UEBRMoOTBBNDdGM0M2NTlCMzcxOEZEQzgyRDMwMDdBOUQzNDI0 OUNDQzhGNDAeFw0yNDA2MTEwOTIwMjFaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjgxNmQ1LTM5MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaXo1grc815qKKwXWWaVoZXiOOdP1Q4/Yo69Pf18mohLpiFo7Fgl/kYLmp9xgj VWHVbsnHi8Y1dVcHaHZUSrFFQqqz1LC8eZdMm7NjZEsNTX5dBveeJC5q8mRMAack 531yUhET7DdbcQC8yCgEkejxs/giosfKVJoaFDMoWO0T0t7yFtQp8lIvOpkw050p vQF9XRjFm6TeFI0pnuQJby4x0Wm/6DjF3Sc22tt/udkgVmpckbmtuQTocyEWU1Kb 9fu+2cHdh5lhW0MQMLF195EeUjoKkTMWaSchtWOqyysVWKbH7dAf/Ol8+gaYxCHH YoqPJBn6MLJoXBye2rPaCam5AgMBAAGjggKqMIICpjAdBgNVHQ4EFgQU1m6cCE2/ UEFXnierMzkwbzkKjAAwHwYDVR0jBBgwFoAUkKR/PGWbNxj9yC0wB6nTQknMyPQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3QTcyLzIyRkQxMjFBRENG MDExRUVCQzkwMzExRUM0RjlBRTAyL2tLUl9QR1diTnhqOXlDMHdCNm5UUWtuTXlQ US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva0tSX1BHV2JOeGo5eUMwd0I2blRRa25NeVBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 N0E3Mi8yMkZEMTIxQURDRjAxMUVFQkM5MDMxMUVDNEY5QUUwMi9GODFGN0UwRUUy QTExMUVFQTJERDlFMThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAWenjAMEAmfFHDANBAIAAjAHAwUAJAdrwDANBgkqhkiG9w0B AQsFAAOCAQEAWlw+bzHrL0hVsgSMA2fD5IwrGB6C5gf+OjTIc0gfjuRYX1zoTpJb t7XruuKYe1QQSZmo40S+StW63G5qG8xIAodz7EZ+qdPxP8AWdHgryIIxgvZyqRQy QY1EK1rHJf52pTiOjr/UHZoKvGunvSojx9jjd0W2tKf4eQ1l2h5CtSB6Rg5L4HSk r/hQffSHLwyWzVcksPpUUsdGH8Sfr/w4aH9+SfsosskSOj9sKwh7nIsiDqPFVwJF nXnHXWYzvYa3xy6moztCk0KNhpmG4wovsy210K1Q8i7k9TYe2Kg37ETmReuusZw+ WGur+wIP2jtTjDkLb/DHpALwa4OxX9ysEw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:25 2024 by rpki-client on console-fra.rpki-client.org