$ rpki-client -vvf rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/82D8082A292611EF875A5C36C4F9AE02.roa File: 82D8082A292611EF875A5C36C4F9AE02.roa (raw, json) Hash identifier: wXFw1WCYOzN+C3+tE/wlw+YhUZwlxJ82iP5vfZ3R23g= Subject key identifier: 8F:EE:74:77:69:BE:70:75:E2:78:78:51:65:52:80:82:9C:7C:4B:4D Certificate issuer: /CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Certificate serial: 11 Authority key identifier: CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/82D8082A292611EF875A5C36C4F9AE02.roa Signing time: Thu 13 Jun 2024 01:46:10 +0000 ROA not before: Thu 13 Jun 2024 01:46:10 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 4768 IP address blocks: 103.19.194.0/24 maxlen: 24 203.12.172.0/24 maxlen: 24 203.12.173.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 04:55:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17 (0x11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169C00/serialNumber=CB66E035E2F07858F4F73B478DCD85A636A4250A Validity Not Before: Jun 13 01:46:10 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=666a4f62-b61c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2b:3b:78:33:f2:bf:0e:b9:ea:a7:74:f5:8d: 8a:d6:34:51:29:02:23:3b:d2:33:db:4f:6e:12:27: 3b:71:d1:f2:9b:9a:d2:9b:03:5e:8e:3d:d7:cb:96: 01:70:0e:21:11:4a:e9:d2:5a:86:15:1d:3d:e0:89: fe:43:86:cd:2e:a1:66:03:76:db:2c:cc:3c:c6:39: e7:d6:ff:fc:c6:56:15:de:6e:3c:f3:42:58:6a:91: 88:b9:96:3a:d2:5e:8b:fb:09:f5:79:5e:78:12:b1: 33:e3:c6:33:5d:91:c1:9c:1b:5d:13:97:1c:0b:63: 26:e4:0a:55:ad:75:d8:2a:c3:0b:00:80:61:a7:48: 5d:d1:f5:e5:0c:81:77:65:b6:c6:db:2c:e8:15:be: 25:b5:8e:f9:9f:80:9e:b2:36:d0:59:11:89:64:ee: eb:e9:12:76:fe:28:9f:17:a5:bf:98:76:eb:1d:a5: 15:04:a0:af:0b:f3:3f:e3:8e:7e:1f:f9:25:fb:8a: 25:0e:7e:25:7a:85:e2:5d:03:a1:56:71:7f:64:13: 32:df:3e:63:2f:ed:a7:c7:52:df:78:e4:67:e5:ed: 27:54:18:d7:c9:fe:49:2c:83:29:d5:25:16:8c:bd: bc:55:a4:60:1b:fa:39:fc:cd:4d:fb:b5:4b:ac:bd: be:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:EE:74:77:69:BE:70:75:E2:78:78:51:65:52:80:82:9C:7C:4B:4D X509v3 Authority Key Identifier: keyid:CB:66:E0:35:E2:F0:78:58:F4:F7:3B:47:8D:CD:85:A6:36:A4:25:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/y2bgNeLweFj09ztHjc2FpjakJQo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y2bgNeLweFj09ztHjc2FpjakJQo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169C00/1C31EAF01BC011EFBB688D5EC4F9AE02/82D8082A292611EF875A5C36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.194.0/24 203.12.172.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:13:13:a9:d7:0f:d9:9a:f6:27:f6:a1:19:03:2f:2f:9a:6b: 6a:a6:ec:71:e6:5b:85:25:58:66:75:7e:23:60:8c:3f:48:dd: 59:44:78:2c:58:72:7c:d3:df:e6:2b:31:e6:4d:f8:86:6b:8d: 45:f3:b1:9e:2a:cd:24:b0:98:6e:b4:fe:5b:a8:d6:90:34:8f: 23:20:2b:1d:98:6f:38:58:70:6e:0d:33:be:e6:9c:16:a3:5a: f4:43:57:d7:e6:ba:c1:ac:08:90:8a:04:ed:56:f5:c5:9a:8b: f9:de:f5:34:b7:13:5c:d5:29:4e:bc:e6:97:61:0d:59:35:5e: 15:3a:f4:90:e5:91:cd:31:3a:c9:c6:cc:70:41:2b:41:7c:ba: aa:ec:30:a6:fc:9b:68:82:0b:a4:e0:a1:c3:b8:27:40:e8:14: 1d:45:55:ff:c3:c4:f8:d3:e4:5a:f3:73:9e:37:9f:92:73:63: 01:3e:46:8b:4a:b5:8d:f0:11:39:c1:b0:95:2c:fb:b8:54:98: f5:fd:55:58:99:f5:9c:f7:2a:59:10:dd:74:85:84:81:49:68: 54:56:b9:35:30:4d:f0:e7:2e:b0:db:25:b6:74:36:fe:99:28: a3:1e:25:75:47:f5:b0:dd:6d:95:9b:e4:b1:d9:42:23:3b:ab: fd:55:ec:b8 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBETANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OUMwMDExMC8GA1UEBRMoQ0I2NkUwMzVFMkYwNzg1OEY0RjczQjQ3OERDRDg1QTYz NkE0MjUwQTAeFw0yNDA2MTMwMTQ2MTBaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NmE0ZjYyLWI2MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbKzt4M/K/Drnqp3T1jYrWNFEpAiM70jPbT24SJztx0fKbmtKbA16OPdfLlgFw DiERSunSWoYVHT3gif5Dhs0uoWYDdtsszDzGOefW//zGVhXebjzzQlhqkYi5ljrS Xov7CfV5XngSsTPjxjNdkcGcG10TlxwLYybkClWtddgqwwsAgGGnSF3R9eUMgXdl tsbbLOgVviW1jvmfgJ6yNtBZEYlk7uvpEnb+KJ8Xpb+YdusdpRUEoK8L8z/jjn4f +SX7iiUOfiV6heJdA6FWcX9kEzLfPmMv7afHUt945Gfl7SdUGNfJ/kksgynVJRaM vbxVpGAb+jn8zU37tUusvb4JAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUj+50d2m+ cHXieHhRZVKAgpx8S00wHwYDVR0jBBgwFoAUy2bgNeLweFj09ztHjc2FpjakJQow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5QzAwLzFDMzFFQUYwMUJD MDExRUZCQjY4OEQ1RUM0RjlBRTAyL3kyYmdOZUx3ZUZqMDl6dEhqYzJGcGpha0pR by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveTJiZ05lTHdlRmowOXp0SGpjMkZwamFrSlFvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OUMwMC8xQzMxRUFGMDFCQzAxMUVGQkI2ODhENUVDNEY5QUUwMi84MkQ4MDgyQTI5 MjYxMUVGODc1QTVDMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGcTwgMEAcsMrDANBgkqhkiG9w0BAQsFAAOCAQEAfBMTqdcP 2Zr2J/ahGQMvL5praqbsceZbhSVYZnV+I2CMP0jdWUR4LFhyfNPf5isx5k34hmuN RfOxnirNJLCYbrT+W6jWkDSPIyArHZhvOFhwbg0zvuacFqNa9ENX1+a6wawIkIoE 7Vb1xZqL+d71NLcTXNUpTrzml2ENWTVeFTr0kOWRzTE6ycbMcEErQXy6quwwpvyb aIILpOChw7gnQOgUHUVV/8PE+NPkWvNznjefknNjAT5Gi0q1jfAROcGwlSz7uFSY 9f1VWJn1nPcqWRDddIWEgUloVFa5NTBN8OcusNsltnQ2/pkoox4ldUf1sN1tlZvk sdlCIzur/VXsuA== -----END CERTIFICATE-----Generated at Mon Nov 25 06:04:11 2024 by rpki-client on console-ams.rpki-client.org