$ rpki-client -vvf rpki.apnic.net/member_repository/A916B53B/20323A8259DD11EFBAD4C286C4F9AE02/6104609C5A1111EFA655393FC4F9AE02.roa File: 6104609C5A1111EFA655393FC4F9AE02.roa (raw, json) Hash identifier: 9c45BaBlVMR7XX0xhpD8nfBMrjtsUQUJEJfn4sWwe5c= Subject key identifier: D7:D7:87:6D:A1:BD:23:E5:C4:EC:D4:2D:22:89:2C:44:33:13:F2:68 Certificate issuer: /CN=A916B53B/serialNumber=8D9717727D6E8EEB23807B313C058D0356FFE162 Certificate serial: 17 Authority key identifier: 8D:97:17:72:7D:6E:8E:EB:23:80:7B:31:3C:05:8D:03:56:FF:E1:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZcXcn1ujusjgHsxPAWNA1b_4WI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B53B/20323A8259DD11EFBAD4C286C4F9AE02/6104609C5A1111EFA655393FC4F9AE02.roa Signing time: Sun 15 Sep 2024 10:39:44 +0000 ROA not before: Sun 15 Sep 2024 10:39:44 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 26658 IP address blocks: 103.12.48.0/22 maxlen: 22 103.72.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B53B/20323A8259DD11EFBAD4C286C4F9AE02/jZcXcn1ujusjgHsxPAWNA1b_4WI.crl rsync://rpki.apnic.net/member_repository/A916B53B/20323A8259DD11EFBAD4C286C4F9AE02/jZcXcn1ujusjgHsxPAWNA1b_4WI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZcXcn1ujusjgHsxPAWNA1b_4WI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B53B/serialNumber=8D9717727D6E8EEB23807B313C058D0356FFE162 Validity Not Before: Sep 15 10:39:44 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e6b96f-ebd6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e1:1a:7c:84:04:75:d7:c8:c1:41:d0:76:84: 56:2c:38:b8:af:f0:83:2e:67:44:38:98:ab:2e:b7: f6:bf:2f:55:d8:fa:88:bb:08:61:d8:19:2f:41:29: c1:53:b7:3d:2a:82:af:7b:4c:e3:24:e8:92:67:b5: cf:ab:10:fa:c5:ac:74:01:ec:ec:f0:63:cd:ce:79: 94:95:60:05:c0:42:11:94:e6:3d:3a:46:a5:f4:1d: 9a:94:ae:bc:ce:c9:ae:1c:43:2f:1e:25:62:32:25: 03:7c:c4:03:79:73:c5:7a:27:30:f4:cd:6b:ed:70: 43:9a:ba:1a:b4:30:46:78:68:c7:dc:c0:82:4c:05: c5:9a:fe:ba:ef:b8:69:f8:dc:c3:e2:e1:2f:95:47: bb:36:5d:a8:49:f5:61:89:06:26:50:92:6b:98:6a: bf:b4:ef:41:6f:d5:eb:33:1c:3b:22:79:80:ee:6a: 04:df:fc:db:18:87:8f:bb:94:57:80:fc:73:32:0f: 2e:2f:3c:44:fd:36:f0:d2:69:79:3c:89:14:52:a0: 82:2e:1b:cf:5b:f4:91:a5:5f:81:b6:b0:ae:2d:73: 33:ec:86:98:33:b6:bd:49:94:c1:47:9b:32:3d:03: fd:d0:07:6a:05:b1:a1:6a:09:99:97:0a:cc:64:9f: a2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D7:87:6D:A1:BD:23:E5:C4:EC:D4:2D:22:89:2C:44:33:13:F2:68 X509v3 Authority Key Identifier: keyid:8D:97:17:72:7D:6E:8E:EB:23:80:7B:31:3C:05:8D:03:56:FF:E1:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B53B/20323A8259DD11EFBAD4C286C4F9AE02/jZcXcn1ujusjgHsxPAWNA1b_4WI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZcXcn1ujusjgHsxPAWNA1b_4WI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B53B/20323A8259DD11EFBAD4C286C4F9AE02/6104609C5A1111EFA655393FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.48.0/22 103.72.152.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:d0:af:bf:c4:70:a5:92:47:ab:69:fa:74:57:3c:e0:99:09: 66:ae:af:58:a1:b3:0a:ee:d1:76:28:71:c4:86:22:68:2a:00: 44:37:c3:fa:fc:b1:7f:c6:4d:dd:22:77:45:a1:03:19:55:7a: 0d:2d:d5:bd:02:82:d3:2f:c1:11:e7:e4:da:cd:6e:00:66:5f: a0:d0:4f:b8:5f:35:d7:de:c3:0f:93:22:6a:53:4c:fc:fb:b1: 03:ff:0d:47:56:29:77:5b:e1:2e:53:cc:ad:97:e7:7c:6b:f5: 61:33:78:be:6b:9a:20:0a:d8:c2:06:da:40:6d:9a:a4:1e:2f: 50:d9:98:4d:e4:62:77:fb:79:26:14:9f:36:05:67:4b:c5:79: 24:25:d2:04:17:80:07:0e:e3:74:c1:9e:0a:d8:33:58:a4:80: ee:70:54:dd:5f:29:df:84:5a:2b:b4:ce:b4:c8:6b:13:1b:c7: 0d:c7:4c:15:38:9c:e4:9e:8a:9f:60:d9:86:a4:e5:d1:aa:4a: e0:04:fa:2a:8a:ee:c6:68:58:ea:f4:23:3e:ce:dc:82:76:a4: a4:8f:3a:04:cf:0f:5f:76:00:43:90:26:b6:c4:a6:ff:65:d2: 99:07:7f:93:b1:37:75:f1:fa:2d:bf:63:d6:60:6e:b3:b0:61: 38:c1:6d:72 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBFzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QjUzQjExMC8GA1UEBRMoOEQ5NzE3NzI3RDZFOEVFQjIzODA3QjMxM0MwNThEMDM1 NkZGRTE2MjAeFw0yNDA5MTUxMDM5NDRaFw0yNTEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZTZiOTZmLWViZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF4Rp8hAR118jBQdB2hFYsOLiv8IMuZ0Q4mKsut/a/L1XY+oi7CGHYGS9BKcFT tz0qgq97TOMk6JJntc+rEPrFrHQB7OzwY83OeZSVYAXAQhGU5j06RqX0HZqUrrzO ya4cQy8eJWIyJQN8xAN5c8V6JzD0zWvtcEOauhq0MEZ4aMfcwIJMBcWa/rrvuGn4 3MPi4S+VR7s2XahJ9WGJBiZQkmuYar+070Fv1eszHDsieYDuagTf/NsYh4+7lFeA /HMyDy4vPET9NvDSaXk8iRRSoIIuG89b9JGlX4G2sK4tczPshpgztr1JlMFHmzI9 A/3QB2oFsaFqCZmXCsxkn6K7AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU19eHbaG9 I+XE7NQtIoksRDMT8mgwHwYDVR0jBBgwFoAUjZcXcn1ujusjgHsxPAWNA1b/4WIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZCNTNCLzIwMzIzQTgyNTlE RDExRUZCQUQ0QzI4NkM0RjlBRTAyL2paY1hjbjF1anVzamdIc3hQQVdOQTFiXzRX SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvalpjWGNuMXVqdXNqZ0hzeFBBV05BMWJfNFdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QjUzQi8yMDMyM0E4MjU5REQxMUVGQkFENEMyODZDNEY5QUUwMi82MTA0NjA5QzVB MTExMUVGQTY1NTM5M0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmcMMAMEAmdImDANBgkqhkiG9w0BAQsFAAOCAQEAfdCvv8Rw pZJHq2n6dFc84JkJZq6vWKGzCu7RdihxxIYiaCoARDfD+vyxf8ZN3SJ3RaEDGVV6 DS3VvQKC0y/BEefk2s1uAGZfoNBPuF81197DD5MialNM/PuxA/8NR1Ypd1vhLlPM rZfnfGv1YTN4vmuaIArYwgbaQG2apB4vUNmYTeRid/t5JhSfNgVnS8V5JCXSBBeA Bw7jdMGeCtgzWKSA7nBU3V8p34RaK7TOtMhrExvHDcdMFTic5J6Kn2DZhqTl0apK 4AT6KoruxmhY6vQjPs7cgnakpI86BM8PX3YAQ5AmtsSm/2XSmQd/k7E3dfH6Lb9j 1mBus7BhOMFtcg== -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:13 2024 by rpki-client on console-ams.rpki-client.org