$ rpki-client -vvf rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa File: 7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa (raw, json) Hash identifier: TNsMJFZbcdKegim5sz+iSFbDGvmlLTbjneRhrtC2NlE= Subject key identifier: AD:78:EE:5D:BA:16:57:79:EF:96:7A:41:21:44:E5:66:7C:F7:59:79 Certificate issuer: /CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Certificate serial: 136A Authority key identifier: AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa Signing time: Tue 02 Jul 2024 17:44:29 +0000 ROA not before: Tue 02 Jul 2024 17:44:29 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142032 IP address blocks: 103.106.188.0/22 maxlen: 24 103.116.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:56:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4970 (0x136a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168B4A/serialNumber=AF02511F7C80DFC0E8ED506F6630F67BD6400E09 Validity Not Before: Jul 2 17:44:29 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66843c7d-3820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:80:01:5d:30:9c:58:1f:f4:7c:a6:73:26:90: 1a:66:fb:ec:9e:82:f5:3f:0a:8f:27:33:9c:8a:63: 18:62:4b:b0:1f:2b:30:9f:87:09:28:51:ea:0a:af: c1:2b:75:51:59:43:54:fb:fe:62:11:d2:79:46:07: bf:af:40:59:51:1e:5c:ae:1f:ea:f8:ab:06:77:d3: 6c:a3:04:b0:e9:60:78:66:73:3b:e6:9d:af:36:31: f1:67:ca:69:ef:d7:39:6d:b3:4c:1c:5e:94:f7:c1: 3e:0c:4d:50:f7:fe:bb:33:0a:be:fb:97:7e:28:02: 34:5c:bb:ae:a3:34:2e:c2:c1:13:b7:b5:8b:03:a9: aa:af:f5:b8:a5:b2:2a:32:b6:f6:08:09:55:bc:c8: 16:e0:19:bf:4e:9e:69:30:3f:97:12:e2:2e:d2:cc: 5c:78:a5:8f:eb:87:1a:37:f2:89:64:d8:7a:4e:b5: 31:1d:4c:7a:33:42:ca:d7:7f:f2:42:d8:85:13:2d: db:d5:03:b8:7c:3c:d4:79:15:7b:2d:fd:21:b4:23: d4:01:5f:12:62:a3:6a:a6:39:78:c1:40:0f:ea:c6: 29:b9:da:c8:05:cf:ae:01:cc:da:d7:2f:d1:42:aa: d9:6d:ca:f3:2b:0d:47:01:5e:0a:5c:69:42:80:62: 57:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:78:EE:5D:BA:16:57:79:EF:96:7A:41:21:44:E5:66:7C:F7:59:79 X509v3 Authority Key Identifier: keyid:AF:02:51:1F:7C:80:DF:C0:E8:ED:50:6F:66:30:F6:7B:D6:40:0E:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/rwJRH3yA38Do7VBvZjD2e9ZADgk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rwJRH3yA38Do7VBvZjD2e9ZADgk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168B4A/0ADB17C0800A11E89B483E7CC4F9AE02/7EA2ADC0C3A411ED8EFA6F13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.188.0/22 103.116.244.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:45:12:a6:cd:87:87:62:77:9e:07:e3:1e:de:df:54:e6:1d: e9:b4:e3:a0:26:7e:e4:ba:f8:1e:d2:41:09:49:a7:cf:b5:e7: 00:8d:d9:11:a7:64:2b:38:18:4e:8d:a8:76:fc:b4:2e:65:20: 3c:8b:c5:c4:01:0a:e4:d3:b1:df:3b:8c:16:de:d7:eb:47:2a: b8:93:61:06:6f:5b:a8:c3:f9:8f:9a:1e:af:14:5e:7f:7a:a1: a7:b8:43:f8:25:bb:f2:2b:85:cb:a1:b4:90:b3:ff:31:a5:d1: 44:41:d3:94:19:ce:b4:dc:3c:87:36:1f:81:69:19:63:52:57: af:51:26:94:ad:24:b5:2e:ce:61:35:59:44:f3:a3:bc:d1:e7: 1e:03:a2:a4:f2:cc:ae:7b:79:25:bb:d6:67:ce:34:ad:15:05: 79:a4:e1:0e:14:47:c1:73:f2:9e:a0:d8:c5:10:af:66:28:30: b5:af:f6:03:78:91:9c:75:29:7e:78:fe:39:84:b9:bf:75:04: ba:3f:f3:2c:85:8d:97:10:3f:92:46:a4:dc:8d:ac:59:aa:c1: 3c:de:71:9e:6c:ea:a0:05:63:bb:54:a6:c7:94:48:b9:22:84: 40:fd:75:3b:7b:7d:e7:5f:de:9e:3a:45:76:d5:94:59:ad:9b: bc:e2:ea:7d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICE2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhCNEExMTAvBgNVBAUTKEFGMDI1MTFGN0M4MERGQzBFOEVENTA2RjY2MzBGNjdC RDY0MDBFMDkwHhcNMjQwNzAyMTc0NDI5WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0M2M3ZC0zODIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4ABXTCcWB/0fKZzJpAaZvvsnoL1PwqPJzOcimMYYkuwHyswn4cJKFHqCq/B K3VRWUNU+/5iEdJ5Rge/r0BZUR5crh/q+KsGd9NsowSw6WB4ZnM75p2vNjHxZ8pp 79c5bbNMHF6U98E+DE1Q9/67Mwq++5d+KAI0XLuuozQuwsETt7WLA6mqr/W4pbIq Mrb2CAlVvMgW4Bm/Tp5pMD+XEuIu0sxceKWP64caN/KJZNh6TrUxHUx6M0LK13/y QtiFEy3b1QO4fDzUeRV7Lf0htCPUAV8SYqNqpjl4wUAP6sYpudrIBc+uAcza1y/R QqrZbcrzKw1HAV4KXGlCgGJX2QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFK147l26 Fld575Z6QSFE5WZ891l5MB8GA1UdIwQYMBaAFK8CUR98gN/A6O1Qb2Yw9nvWQA4J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEI0QS8wQURCMTdDMDgw MEExMUU4OUI0ODNFN0NDNEY5QUUwMi9yd0pSSDN5QTM4RG83VkJ2WmpEMmU5WkFE Z2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J3SlJIM3lBMzhEbzdWQnZaakQyZTlaQURnay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhCNEEvMEFEQjE3QzA4MDBBMTFFODlCNDgzRTdDQzRGOUFFMDIvN0VBMkFEQzBD M0E0MTFFRDhFRkE2RjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnarwDBAJndPQwDQYJKoZIhvcNAQELBQADggEBABtFEqbN h4did54H4x7e31TmHem046AmfuS6+B7SQQlJp8+15wCN2RGnZCs4GE6NqHb8tC5l IDyLxcQBCuTTsd87jBbe1+tHKriTYQZvW6jD+Y+aHq8UXn96oae4Q/glu/Irhcuh tJCz/zGl0URB05QZzrTcPIc2H4FpGWNSV69RJpStJLUuzmE1WUTzo7zR5x4DoqTy zK57eSW71mfONK0VBXmk4Q4UR8Fz8p6g2MUQr2YoMLWv9gN4kZx1KX54/jmEub91 BLo/8yyFjZcQP5JGpNyNrFmqwTzecZ5s6qAFY7tUpseUSLkihED9dTt7fedf3p46 RXbVlFmtm7zi6n0= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:20 2024 by rpki-client on console-ams.rpki-client.org