$ rpki-client -vvf rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/AD35C0044EA511EAAB9DBE7DC4F9AE02.roa File: AD35C0044EA511EAAB9DBE7DC4F9AE02.roa (raw, json) Hash identifier: G/eOqgEpWZFr1HOkV3DCeyILuIaljP+37f1Jcziv0j8= Subject key identifier: BD:0E:73:49:26:52:63:B8:F5:2C:FC:6E:E2:19:9F:74:87:3C:32:47 Certificate issuer: /CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Certificate serial: 0A00 Authority key identifier: D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/AD35C0044EA511EAAB9DBE7DC4F9AE02.roa Signing time: Tue 16 Apr 2024 20:59:25 +0000 ROA not before: Tue 16 Apr 2024 20:59:25 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 45637 IP address blocks: 103.91.172.0/22 maxlen: 23 123.253.56.0/22 maxlen: 23 182.54.160.0/20 maxlen: 21 2402:ff00::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:24:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2560 (0xa00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167C20/serialNumber=D40B10C1224C61E0D318C2FC60039378ECF72D00 Validity Not Before: Apr 16 20:59:25 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=661ee6ad-54be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c2:94:7a:1f:63:72:d8:a8:ac:b1:8d:2a:35: 7b:fe:79:84:87:d0:cc:1e:01:79:16:41:fa:3f:ce: c0:78:08:cd:d5:e4:fc:3a:fe:63:32:75:01:44:8e: 2d:b2:e8:69:d8:c6:b1:e8:05:e5:eb:a2:fb:1a:3e: 32:2d:ae:90:f1:c9:10:20:ee:3c:b1:e5:b2:e1:47: a2:36:bd:e9:9f:f7:74:f0:6d:64:7e:87:37:5a:8a: 79:77:c1:a2:88:05:b6:38:fe:99:f8:72:42:4d:de: 36:9e:1b:30:e9:77:e1:a2:51:71:59:a4:73:1c:8c: 9f:17:bb:7c:0d:b2:9a:48:86:a3:8e:d4:38:d1:68: 51:73:13:d4:0b:d0:34:a7:b2:90:f5:db:0c:66:ab: 4d:14:d7:ef:25:27:29:8e:8c:28:19:a3:09:69:6d: 24:ab:27:e3:3e:8a:2c:c7:82:00:d7:49:86:a3:bb: b9:4b:21:70:3f:8b:d4:94:83:e7:33:f1:1e:31:f8: 8a:01:3c:fe:20:7f:99:a3:12:11:ad:87:4a:44:73: 79:ac:51:86:49:c4:52:7f:5f:e2:43:f6:0a:47:fa: 98:55:c8:31:e2:78:b3:0b:d1:4b:9c:fd:89:11:6c: 1b:f2:65:65:08:44:cb:b2:4d:c8:7f:74:0f:20:66: ab:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:0E:73:49:26:52:63:B8:F5:2C:FC:6E:E2:19:9F:74:87:3C:32:47 X509v3 Authority Key Identifier: keyid:D4:0B:10:C1:22:4C:61:E0:D3:18:C2:FC:60:03:93:78:EC:F7:2D:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/1AsQwSJMYeDTGML8YAOTeOz3LQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AsQwSJMYeDTGML8YAOTeOz3LQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167C20/86571C104EA211EA84C08874C4F9AE02/AD35C0044EA511EAAB9DBE7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.172.0/22 123.253.56.0/22 182.54.160.0/20 IPv6: 2402:ff00::/32 Signature Algorithm: sha256WithRSAEncryption 18:81:2e:23:3a:d2:37:56:0c:3a:12:eb:3e:f6:5c:b2:75:25: 7a:e4:f6:d3:0b:71:f3:aa:5b:5d:5e:51:50:81:82:31:d4:60: 90:f3:27:d1:be:4f:2b:50:b1:3a:25:87:74:22:d6:d5:93:71: 54:6f:05:6d:ba:e5:8e:4a:17:ae:e7:f8:7f:d1:78:f9:9b:66: 40:97:2c:a8:11:99:86:95:ce:96:14:b9:d8:87:8a:7a:e8:ac: c5:61:0c:de:66:da:c5:f5:61:38:c6:e2:24:80:72:92:d1:b4: ab:52:63:15:5b:3c:40:0f:6d:3b:de:82:21:b4:94:99:fe:7e: 8a:5a:24:b6:9d:32:8d:28:1b:0a:f2:97:15:73:2d:f7:6c:e1: 47:7b:92:28:1e:f6:67:9b:72:f6:65:1d:f9:42:00:59:15:2c: c2:5f:37:76:0a:a5:ba:49:fa:a7:95:62:6e:ae:d8:55:f2:c1: a1:df:4c:9e:94:22:50:78:78:da:8a:c6:5d:33:bb:60:46:d6: 0c:63:f8:02:1e:df:ea:df:f8:3b:e4:3f:50:ed:d7:32:6f:ed: e9:2d:da:7b:ea:05:84:d6:a9:3b:d2:46:a2:6d:68:94:d1:c4: 33:5d:e3:27:4f:1d:d9:51:d9:ed:d0:ab:a1:6a:df:bb:8f:d2: 82:5f:00:27 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdDMjAxMTAvBgNVBAUTKEQ0MEIxMEMxMjI0QzYxRTBEMzE4QzJGQzYwMDM5Mzc4 RUNGNzJEMDAwHhcNMjQwNDE2MjA1OTI1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjFlZTZhZC01NGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcKUeh9jctiorLGNKjV7/nmEh9DMHgF5FkH6P87AeAjN1eT8Ov5jMnUBRI4t suhp2Max6AXl66L7Gj4yLa6Q8ckQIO48seWy4UeiNr3pn/d08G1kfoc3Wop5d8Gi iAW2OP6Z+HJCTd42nhsw6XfholFxWaRzHIyfF7t8DbKaSIajjtQ40WhRcxPUC9A0 p7KQ9dsMZqtNFNfvJScpjowoGaMJaW0kqyfjPoosx4IA10mGo7u5SyFwP4vUlIPn M/EeMfiKATz+IH+ZoxIRrYdKRHN5rFGGScRSf1/iQ/YKR/qYVcgx4nizC9FLnP2J EWwb8mVlCETLsk3If3QPIGaraQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFL0Oc0km UmO49Sz8buIZn3SHPDJHMB8GA1UdIwQYMBaAFNQLEMEiTGHg0xjC/GADk3js9y0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0MyMC84NjU3MUMxMDRF QTIxMUVBODRDMDg4NzRDNEY5QUUwMi8xQXNRd1NKTVllRFRHTUw4WUFPVGVPejNM UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBc1F3U0pNWWVEVEdNTDhZQU9UZU96M0xRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdDMjAvODY1NzFDMTA0RUEyMTFFQTg0QzA4ODc0QzRGOUFFMDIvQUQzNUMwMDQ0 RUE1MTFFQUFCOURCRTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnW6wDBAJ7/TgDBAS2NqAwDQQCAAIwBwMFACQC/wAwDQYJ KoZIhvcNAQELBQADggEBABiBLiM60jdWDDoS6z72XLJ1JXrk9tMLcfOqW11eUVCB gjHUYJDzJ9G+TytQsTolh3Qi1tWTcVRvBW265Y5KF67n+H/RePmbZkCXLKgRmYaV zpYUudiHinrorMVhDN5m2sX1YTjG4iSAcpLRtKtSYxVbPEAPbTvegiG0lJn+fopa JLadMo0oGwrylxVzLfds4Ud7kige9mebcvZlHflCAFkVLMJfN3YKpbpJ+qeVYm6u 2FXywaHfTJ6UIlB4eNqKxl0zu2BG1gxj+AIe3+rf+DvkP1Dt1zJv7ekt2nvqBYTW qTvSRqJtaJTRxDNd4ydPHdlR2e3Qq6Fq37uP0oJfACc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:29 2024 by rpki-client on console-ams.rpki-client.org