$ rpki-client -vvf rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/5D7779A6108A11EC9E1F3D49C4F9AE02.roa File: 5D7779A6108A11EC9E1F3D49C4F9AE02.roa (raw, json) Hash identifier: PZxJfjzjdyZlmOEk3GHkckfVyABUkJWbSsSKrjPn2qY= Subject key identifier: 07:3D:2B:F3:65:81:52:B5:AC:4E:0F:35:66:7C:10:7D:67:EC:38:70 Certificate issuer: /CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Certificate serial: 0478 Authority key identifier: 1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/5D7779A6108A11EC9E1F3D49C4F9AE02.roa Signing time: Fri 13 Sep 2024 02:44:09 +0000 ROA not before: Fri 13 Sep 2024 02:44:09 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 147017 IP address blocks: 103.173.2.0/23 maxlen: 23 103.173.2.0/24 maxlen: 24 103.173.3.0/24 maxlen: 24 2001:df7:8280::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1144 (0x478) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170AE9/serialNumber=1B7F7981D9E2C2C30F6F2C34871A2986D85F890E Validity Not Before: Sep 13 02:44:09 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e3a6f9-eeeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:5b:d8:76:86:4f:89:1b:08:f4:38:d7:ab:85: 12:d9:5d:52:01:8b:68:ff:95:29:d7:7c:d9:d9:49: 1e:80:4e:73:6a:ec:96:3e:c6:0f:75:23:6a:c4:4b: f6:96:7f:b4:92:ee:82:8c:fd:e3:e5:85:56:f5:1d: 9b:1f:c1:8b:97:c7:24:f6:12:f8:a6:73:94:85:26: 8b:98:78:68:4e:3a:d3:2f:11:8f:d9:0c:81:4c:10: ec:7e:3d:31:b0:d1:78:ce:84:1d:0c:36:70:9d:ea: 08:74:87:55:ec:3b:a5:d3:3c:e0:99:26:ff:e0:37: d1:c2:f6:ab:5f:ec:99:4d:f9:04:dd:e4:93:1e:ba: ca:ce:2f:4b:14:97:24:97:21:36:d6:70:77:29:86: d3:e7:be:e8:c7:87:80:1f:ed:9a:de:61:36:9a:47: d0:fe:15:9a:21:4a:79:dd:7e:b7:7e:84:43:fb:ca: 83:09:1f:3f:38:e8:af:57:96:71:4b:dd:52:e0:ef: f5:03:2d:08:db:2e:e1:c2:e3:2c:85:03:15:46:0a: f9:b0:9a:15:af:82:8c:74:ee:a2:3c:60:7a:f4:29: d4:8b:58:5f:2a:85:b4:31:e0:45:ad:23:93:1b:0f: 00:fd:e9:a5:d5:bc:34:0a:f8:02:5b:4d:51:8d:fd: 88:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:3D:2B:F3:65:81:52:B5:AC:4E:0F:35:66:7C:10:7D:67:EC:38:70 X509v3 Authority Key Identifier: keyid:1B:7F:79:81:D9:E2:C2:C3:0F:6F:2C:34:87:1A:29:86:D8:5F:89:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/G395gdniwsMPbyw0hxophthfiQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G395gdniwsMPbyw0hxophthfiQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170AE9/09120380108611EC81E7703FC4F9AE02/5D7779A6108A11EC9E1F3D49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.2.0/23 IPv6: 2001:df7:8280::/48 Signature Algorithm: sha256WithRSAEncryption 44:d4:2a:13:b8:d9:47:17:85:84:21:0c:b5:6f:4d:6d:91:12: 19:2c:ff:87:06:cd:88:e4:2e:15:44:1a:7a:df:c1:30:6e:b6: fa:05:b9:26:24:5e:3f:0f:92:48:2e:8c:04:50:c3:6d:89:57: 5c:86:05:56:b8:2a:ab:9e:3c:fa:8c:3c:e8:e0:d2:c8:84:81: 4d:e7:77:70:af:a5:c1:5e:6a:75:22:c1:00:c8:0c:64:a3:be: cc:fb:78:c2:54:00:b4:2c:38:7a:53:29:e9:5c:74:cb:bd:1e: d2:f3:52:35:97:a4:3e:51:ea:fb:20:dc:74:91:a9:ed:64:37: 67:df:9a:b9:86:7e:43:08:9d:f4:b0:fb:e0:28:21:66:c5:92: e2:77:3c:24:38:3d:5b:b3:dd:a1:cc:d1:d9:67:15:b4:22:d8: 82:3e:26:16:79:25:a7:cd:a5:c8:d2:12:44:4d:12:70:60:df: d0:e8:e4:a3:53:2a:7d:1d:89:d9:be:94:d7:8c:c0:7a:64:bd: 11:53:ab:96:09:1d:e7:db:84:1f:b2:07:e7:a3:c9:44:c5:bd: 66:b4:d5:e3:b3:e4:f3:6a:4b:e3:76:2f:74:ea:23:ef:04:88: 60:da:66:4b:88:1b:8f:99:8c:d0:35:00:8e:1a:65:2a:8e:91: 58:1b:f1:db -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBHgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzBBRTkxMTAvBgNVBAUTKDFCN0Y3OTgxRDlFMkMyQzMwRjZGMkMzNDg3MUEyOTg2 RDg1Rjg5MEUwHhcNMjQwOTEzMDI0NDA5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzYTZmOS1lZWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtFvYdoZPiRsI9DjXq4US2V1SAYto/5Up13zZ2UkegE5zauyWPsYPdSNqxEv2 ln+0ku6CjP3j5YVW9R2bH8GLl8ck9hL4pnOUhSaLmHhoTjrTLxGP2QyBTBDsfj0x sNF4zoQdDDZwneoIdIdV7Dul0zzgmSb/4DfRwvarX+yZTfkE3eSTHrrKzi9LFJck lyE21nB3KYbT577ox4eAH+2a3mE2mkfQ/hWaIUp53X63foRD+8qDCR8/OOivV5Zx S91S4O/1Ay0I2y7hwuMshQMVRgr5sJoVr4KMdO6iPGB69CnUi1hfKoW0MeBFrSOT Gw8A/eml1bw0CvgCW01Rjf2I+QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAc9K/Nl gVK1rE4PNWZ8EH1n7DhwMB8GA1UdIwQYMBaAFBt/eYHZ4sLDD28sNIcaKYbYX4kO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MEFFOS8wOTEyMDM4MDEw ODYxMUVDODFFNzcwM0ZDNEY5QUUwMi9HMzk1Z2RuaXdzTVBieXcwaHhvcGh0aGZp UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0czOTVnZG5pd3NNUGJ5dzBoeG9waHRoZmlRNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzBBRTkvMDkxMjAzODAxMDg2MTFFQzgxRTc3MDNGQzRGOUFFMDIvNUQ3Nzc5QTYx MDhBMTFFQzlFMUYzRDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnrQIwDwQCAAIwCQMHACABDfeCgDANBgkqhkiG9w0BAQsF AAOCAQEARNQqE7jZRxeFhCEMtW9NbZESGSz/hwbNiOQuFUQaet/BMG62+gW5JiRe Pw+SSC6MBFDDbYlXXIYFVrgqq548+ow86ODSyISBTed3cK+lwV5qdSLBAMgMZKO+ zPt4wlQAtCw4elMp6Vx0y70e0vNSNZekPlHq+yDcdJGp7WQ3Z9+auYZ+Qwid9LD7 4CghZsWS4nc8JDg9W7PdoczR2WcVtCLYgj4mFnklp82lyNISRE0ScGDf0Ojko1Mq fR2J2b6U14zAemS9EVOrlgkd59uEH7IH56PJRMW9ZrTV47Pk82pL43YvdOoj7wSI YNpmS4gbj5mM0DUAjhplKo6RWBvx2w== -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org