$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4CA4BE8E667411EF8E723587C4F9AE02.roa File: 4CA4BE8E667411EF8E723587C4F9AE02.roa (raw, json) Hash identifier: 7++r6OOyALDEbZ8NuTRttHGB0NJutWXA3LepiATGOv8= Subject key identifier: 28:94:9B:AC:41:7A:C8:0F:C6:5C:36:8E:C5:AD:72:0A:5C:E9:C6:50 Certificate issuer: /CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Certificate serial: 03 Authority key identifier: E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4CA4BE8E667411EF8E723587C4F9AE02.roa Signing time: Fri 30 Aug 2024 02:05:16 +0000 ROA not before: Fri 30 Aug 2024 02:05:16 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 135898 IP address blocks: 103.79.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Validity Not Before: Aug 30 02:05:16 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66d128dc-6d73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a1:45:c1:cb:27:0d:a3:96:cb:3d:80:53:4f: 8e:8a:69:54:41:0c:f9:bd:47:59:ff:a7:5b:50:cc: 62:dd:4e:81:8f:ff:23:26:46:1c:dc:53:68:87:11: 74:31:76:b4:a6:d3:25:3e:bb:3d:63:c1:45:71:19: 45:ad:99:48:fb:29:19:25:a8:66:98:1d:c3:92:d9: ff:f8:ee:4a:f1:22:a5:72:bd:4f:93:d5:a0:61:23: 4c:d5:35:28:f7:23:02:80:32:3a:6c:84:3c:77:f2: 88:5f:9d:0d:f1:7a:81:b2:69:f1:b0:81:5d:aa:3a: 56:d8:33:56:ab:e1:95:d7:21:87:17:cf:f2:a0:6b: 1e:dc:a3:c9:46:88:80:87:ab:aa:48:90:12:f3:73: 98:48:96:06:ff:a9:c5:81:00:21:f8:a3:b5:0b:ea: e5:ff:c7:4f:5b:5b:8d:d9:49:85:20:5f:8a:f1:f6: e5:e0:6c:0d:65:72:ae:75:fa:ef:3f:18:a1:4d:a0: 85:fc:96:28:02:a6:43:71:2d:65:cb:ec:79:d0:87: c4:bd:ea:7e:19:bb:8e:a1:42:ea:fc:2a:2e:46:60: 41:7a:f6:63:fe:b3:e6:6c:5e:2e:11:02:be:c2:02: 86:40:25:3b:e8:69:9d:cf:ee:ea:dc:bb:f9:12:99: 8c:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:94:9B:AC:41:7A:C8:0F:C6:5C:36:8E:C5:AD:72:0A:5C:E9:C6:50 X509v3 Authority Key Identifier: keyid:E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4CA4BE8E667411EF8E723587C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.88.0/23 Signature Algorithm: sha256WithRSAEncryption e4:8f:65:75:ba:36:78:1c:d5:47:b9:3d:ea:30:40:02:6a:53: 47:9b:21:7d:d7:c8:97:7a:b8:1d:c3:aa:35:75:33:07:2e:58: e0:10:09:8b:50:df:43:b0:d9:ef:d3:dd:18:53:58:2f:8a:f4: 41:8a:a1:55:07:84:68:2c:c7:e0:ba:07:9d:c7:d4:b6:b4:b0: b2:e9:67:7c:42:f0:0e:14:f7:9b:46:22:c8:eb:90:b8:64:1e: 0b:60:70:6f:be:fd:e3:2c:e8:36:c3:d9:49:f3:76:1b:9d:5e: f9:7e:a1:d3:ae:2c:d8:5e:b9:9d:0b:ea:9c:97:34:fb:60:2f: ec:4b:ca:e8:8b:d0:7f:7a:35:9c:f2:97:77:59:25:6a:4a:6c: d4:6e:c3:21:02:58:e7:f1:c4:f1:1d:71:74:a9:7a:d3:cd:2e: a1:2e:a2:7c:5c:a3:53:37:11:c9:05:aa:e1:70:69:b9:68:4a: 01:68:02:41:d5:71:1c:86:79:0e:8f:08:39:65:2c:2c:7b:c1: b2:b8:f3:d3:7b:ea:0d:b6:5f:58:a4:e6:27:2f:76:e4:10:9b: d1:83:1c:fe:f7:88:56:3e:29:f6:1c:67:49:2a:35:a9:25:50: 6a:07:f4:4b:18:4c:8e:6b:18:13:82:c5:7d:08:31:96:10:9d: 39:9a:bc:93 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEREODExMC8GA1UEBRMoRTZCNTREMDI3Q0UzNDk4QkYzNUU0RDA2NUJDNDc4QTkz NkMxNjE2OTAeFw0yNDA4MzAwMjA1MTZaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDEyOGRjLTZkNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPoUXByycNo5bLPYBTT46KaVRBDPm9R1n/p1tQzGLdToGP/yMmRhzcU2iHEXQx drSm0yU+uz1jwUVxGUWtmUj7KRklqGaYHcOS2f/47krxIqVyvU+T1aBhI0zVNSj3 IwKAMjpshDx38ohfnQ3xeoGyafGwgV2qOlbYM1ar4ZXXIYcXz/Kgax7co8lGiICH q6pIkBLzc5hIlgb/qcWBACH4o7UL6uX/x09bW43ZSYUgX4rx9uXgbA1lcq51+u8/ GKFNoIX8ligCpkNxLWXL7HnQh8S96n4Zu46hQur8Ki5GYEF69mP+s+ZsXi4RAr7C AoZAJTvoaZ3P7urcu/kSmYz5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUKJSbrEF6 yA/GXDaOxa1yClzpxlAwHwYDVR0jBBgwFoAU5rVNAnzjSYvzXk0GW8R4qTbBYWkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREQ4L0E2NkE3NUVFNjVC QjExRUZBRkEzMkY4MkM0RjlBRTAyLzVyVk5BbnpqU1l2elhrMEdXOFI0cVRiQllX ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNXJWTkFuempTWXZ6WGswR1c4UjRxVGJCWVdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEREOC9BNjZBNzVFRTY1QkIxMUVGQUZBMzJGODJDNEY5QUUwMi80Q0E0QkU4RTY2 NzQxMUVGOEU3MjM1ODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdPWDANBgkqhkiG9w0BAQsFAAOCAQEA5I9ldbo2eBzVR7k9 6jBAAmpTR5shfdfIl3q4HcOqNXUzBy5Y4BAJi1DfQ7DZ79PdGFNYL4r0QYqhVQeE aCzH4LoHncfUtrSwsulnfELwDhT3m0YiyOuQuGQeC2Bwb7794yzoNsPZSfN2G51e +X6h064s2F65nQvqnJc0+2Av7EvK6IvQf3o1nPKXd1klakps1G7DIQJY5/HE8R1x dKl6080uoS6ifFyjUzcRyQWq4XBpuWhKAWgCQdVxHIZ5Do8IOWUsLHvBsrjz03vq DbZfWKTmJy925BCb0YMc/veIVj4p9hxnSSo1qSVQagf0SxhMjmsYE4LFfQgxlhCd OZq8kw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:26 2024 by rpki-client on console-fra.rpki-client.org