$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/D70119A43CB211EC9A01695FC4F9AE02.roa File: D70119A43CB211EC9A01695FC4F9AE02.roa (raw, json) Hash identifier: ZZ3AWsXi2QuxvDhmH4XofVeIQLIAI+5UE6Sz9E2LloA= Subject key identifier: 18:89:EF:09:05:5A:E7:FD:5E:04:5A:98:65:0E:5F:53:20:70:24:2A Certificate issuer: /CN=A9167B9D/serialNumber=99FCF804CAC87D5885718F190BAA2E2C85F1B18D Certificate serial: 0382 Authority key identifier: 99:FC:F8:04:CA:C8:7D:58:85:71:8F:19:0B:AA:2E:2C:85:F1:B1:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mfz4BMrIfViFcY8ZC6ouLIXxsY0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/D70119A43CB211EC9A01695FC4F9AE02.roa Signing time: Tue 19 Dec 2023 13:23:42 +0000 ROA not before: Tue 19 Dec 2023 13:23:42 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 148975 IP address blocks: 103.175.20.0/23 maxlen: 23 103.175.20.0/24 maxlen: 24 103.175.21.0/24 maxlen: 24 2001:df7:e880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/mfz4BMrIfViFcY8ZC6ouLIXxsY0.crl rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/mfz4BMrIfViFcY8ZC6ouLIXxsY0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mfz4BMrIfViFcY8ZC6ouLIXxsY0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 02:24:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 898 (0x382) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B9D/serialNumber=99FCF804CAC87D5885718F190BAA2E2C85F1B18D Validity Not Before: Dec 19 13:23:42 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6581995e-3380 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:32:95:76:04:95:71:7f:c6:09:f2:9b:48:9a: ac:da:1e:48:60:a0:43:b0:a4:a0:36:05:96:28:d1: 25:af:09:20:1e:c4:1b:32:16:f0:8d:21:db:a1:72: 57:ef:7a:94:2b:47:d8:a1:41:ae:8a:92:b4:94:08: ba:f7:eb:30:99:ff:49:b6:8b:ff:e0:c0:6d:1d:2e: 00:d4:e3:86:b5:b9:bc:3a:20:d5:23:bb:89:0a:1f: 56:75:9f:15:7f:cc:97:0f:6c:d4:f8:34:35:f1:f6: 27:15:60:5d:30:fc:fb:d6:ec:02:d3:3a:54:f6:4f: d6:f0:6d:7c:a7:de:f3:18:4e:ae:e9:76:50:bd:28: d2:55:6a:67:ac:4e:14:3f:43:69:79:8a:21:d9:5a: 00:15:f8:38:8c:34:de:e9:28:71:a4:f9:d5:cd:a6: b1:ab:d7:2e:9d:aa:79:6e:b8:4d:4f:42:90:82:7c: be:f6:21:a2:c8:f1:07:50:d1:ba:7a:ed:b4:74:6c: 58:7c:3b:ed:d6:b1:9b:15:b3:8b:53:e9:a9:95:4e: b2:82:56:60:3b:cd:c2:3b:ba:71:f5:9a:b0:d5:34: 87:ad:9a:bc:7c:89:32:65:9c:d2:9d:08:17:88:ef: 11:73:88:01:54:cf:3d:b3:a9:ae:28:b2:be:25:16: 9f:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:89:EF:09:05:5A:E7:FD:5E:04:5A:98:65:0E:5F:53:20:70:24:2A X509v3 Authority Key Identifier: keyid:99:FC:F8:04:CA:C8:7D:58:85:71:8F:19:0B:AA:2E:2C:85:F1:B1:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/mfz4BMrIfViFcY8ZC6ouLIXxsY0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mfz4BMrIfViFcY8ZC6ouLIXxsY0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B9D/C5556F1E3CAF11ECB31F3C38C4F9AE02/D70119A43CB211EC9A01695FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.175.20.0/23 IPv6: 2001:df7:e880::/48 Signature Algorithm: sha256WithRSAEncryption d0:14:6a:5b:45:c5:0f:27:fc:d0:1a:66:fe:86:47:92:e3:dd: 16:41:93:0f:13:8d:35:f9:37:d3:8a:12:91:2d:40:3d:a6:82: 3c:e0:a0:43:21:bc:cd:b0:60:c5:31:f8:c8:b5:c1:d3:12:92: 18:43:3b:37:3e:a3:88:be:20:64:3e:75:92:33:31:ef:30:0c: 13:b3:04:64:92:fb:57:33:d4:27:2d:c5:d9:e4:05:eb:58:ba: e1:fd:7c:51:26:13:9b:a9:b9:e3:28:c2:35:2e:38:86:38:c3: 95:ab:67:15:6b:70:62:74:4d:fc:7a:41:fa:8d:1f:41:10:39: 64:96:84:75:cf:d6:27:23:f6:63:3e:3c:2b:f4:10:0d:16:c9: 62:04:3c:fe:a2:a7:4d:63:6b:4e:94:29:85:8c:f2:f3:67:a9: 32:a1:5a:f5:0b:82:ad:76:80:e7:e3:00:be:cb:54:2f:fa:70: f2:5f:69:39:86:17:9f:ea:c3:72:5f:b4:1b:4c:71:a9:26:09: 4a:f3:b2:52:9b:ae:21:4c:49:d7:0c:66:56:32:5e:8c:46:91: 21:8a:8e:84:4f:f9:e6:32:44:d2:a3:2d:20:f9:07:08:92:8d: 45:18:f5:d5:1d:88:66:69:4d:56:af:ff:8c:29:5d:42:ab:57: b0:e3:a6:07 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA4IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCOUQxMTAvBgNVBAUTKDk5RkNGODA0Q0FDODdENTg4NTcxOEYxOTBCQUEyRTJD ODVGMUIxOEQwHhcNMjMxMjE5MTMyMzQyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgxOTk1ZS0zMzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzKVdgSVcX/GCfKbSJqs2h5IYKBDsKSgNgWWKNElrwkgHsQbMhbwjSHboXJX 73qUK0fYoUGuipK0lAi69+swmf9Jtov/4MBtHS4A1OOGtbm8OiDVI7uJCh9WdZ8V f8yXD2zU+DQ18fYnFWBdMPz71uwC0zpU9k/W8G18p97zGE6u6XZQvSjSVWpnrE4U P0NpeYoh2VoAFfg4jDTe6ShxpPnVzaaxq9cunap5brhNT0KQgny+9iGiyPEHUNG6 eu20dGxYfDvt1rGbFbOLU+mplU6yglZgO83CO7px9Zqw1TSHrZq8fIkyZZzSnQgX iO8Rc4gBVM89s6muKLK+JRafoQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBiJ7wkF Wuf9XgRamGUOX1MgcCQqMB8GA1UdIwQYMBaAFJn8+ATKyH1YhXGPGQuqLiyF8bGN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I5RC9DNTU1NkYxRTND QUYxMUVDQjMxRjNDMzhDNEY5QUUwMi9tZno0Qk1ySWZWaUZjWThaQzZvdUxJWHhz WTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21mejRCTXJJZlZpRmNZOFpDNm91TElYeHNZMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdCOUQvQzU1NTZGMUUzQ0FGMTFFQ0IzMUYzQzM4QzRGOUFFMDIvRDcwMTE5QTQz Q0IyMTFFQzlBMDE2OTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrxQwDwQCAAIwCQMHACABDffogDANBgkqhkiG9w0BAQsF AAOCAQEA0BRqW0XFDyf80Bpm/oZHkuPdFkGTDxONNfk304oSkS1APaaCPOCgQyG8 zbBgxTH4yLXB0xKSGEM7Nz6jiL4gZD51kjMx7zAME7MEZJL7VzPUJy3F2eQF61i6 4f18USYTm6m54yjCNS44hjjDlatnFWtwYnRN/HpB+o0fQRA5ZJaEdc/WJyP2Yz48 K/QQDRbJYgQ8/qKnTWNrTpQphYzy82epMqFa9QuCrXaA5+MAvstUL/pw8l9pOYYX n+rDcl+0G0xxqSYJSvOyUpuuIUxJ1wxmVjJejEaRIYqOhE/55jJE0qMtIPkHCJKN RRj11R2IZmlNVq//jCldQqtXsOOmBw== -----END CERTIFICATE-----Generated at Tue May 21 03:39:33 2024 by rpki-client on console-ams.rpki-client.org