$ rpki-client -vvf rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa File: 4D06CD2C667411EF8E723587C4F9AE02.roa (raw, json) Hash identifier: gk01C0+X6T4lb9RqY5UBxRDdRkuHIyyy3hGVV+zbyW0= Subject key identifier: 9A:4F:76:57:A6:C8:63:4D:1A:19:13:22:42:E1:1A:46:CD:72:7C:E9 Certificate issuer: /CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Certificate serial: 04 Authority key identifier: E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa Signing time: Fri 30 Aug 2024 02:05:17 +0000 ROA not before: Fri 30 Aug 2024 02:05:17 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4049 IP address blocks: 103.79.88.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170DD8/serialNumber=E6B54D027CE3498BF35E4D065BC478A936C16169 Validity Not Before: Aug 30 02:05:17 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66d128dc-a4ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a0:79:0e:f8:5a:53:dc:0d:88:96:b3:1b:6b: 2c:a2:18:c4:e3:b9:49:53:f4:58:59:08:cd:96:ad: ce:74:5d:84:f4:6d:3e:6c:07:62:ed:05:36:f2:64: f4:6f:d4:bc:f2:04:ea:37:80:21:d4:4b:37:f0:30: 4f:e5:ec:eb:02:1a:3f:44:16:1d:4d:78:ce:ac:15: 8d:5c:80:fd:4e:34:e9:0c:c7:64:95:7e:be:49:1e: da:65:b2:57:fe:0c:e5:0e:29:a8:f8:d4:c4:29:f1: f5:74:44:ea:40:30:88:91:36:79:b0:7f:9f:d0:19: 5e:6b:9c:05:a1:b2:f0:9d:af:38:56:5c:92:8b:b6: ad:91:26:90:78:4c:9b:b5:ed:67:88:66:e2:dd:c7: 38:d3:c1:42:08:ca:f7:dc:ab:53:0f:f2:16:87:57: 9b:8f:f4:ba:46:ea:68:42:a7:19:6c:6f:00:67:95: e4:1b:56:7f:00:4d:03:4e:4f:a5:fe:25:82:5b:e7: 54:77:3f:04:9e:a6:4a:16:6a:30:9b:bc:ad:10:8b: aa:19:e5:ea:85:ae:f9:21:0c:26:38:a2:3b:fb:d3: 2c:ab:4c:86:23:6e:8c:4e:fe:91:31:be:0c:f6:51: 64:52:54:0c:10:28:e4:41:2d:1c:cc:08:de:b3:89: d2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:4F:76:57:A6:C8:63:4D:1A:19:13:22:42:E1:1A:46:CD:72:7C:E9 X509v3 Authority Key Identifier: keyid:E6:B5:4D:02:7C:E3:49:8B:F3:5E:4D:06:5B:C4:78:A9:36:C1:61:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/5rVNAnzjSYvzXk0GW8R4qTbBYWk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5rVNAnzjSYvzXk0GW8R4qTbBYWk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170DD8/A66A75EE65BB11EFAFA32F82C4F9AE02/4D06CD2C667411EF8E723587C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.88.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:05:3a:14:02:eb:7f:85:93:ab:0c:30:b9:82:41:f6:60:11: 12:32:fc:a6:89:a9:f5:51:32:7d:ce:4b:d0:6d:72:c6:46:04: dd:ce:a5:a6:a5:81:46:91:17:eb:c3:f9:ab:10:50:cf:47:0d: 78:51:0d:b8:fb:8f:52:32:a0:5b:b1:a7:e2:da:cb:c0:ea:1a: a0:b0:dc:fc:77:fd:aa:68:05:0e:1e:c8:e6:22:b8:04:3b:31: b9:05:59:52:0a:99:c5:e4:23:c7:19:17:46:dc:e8:95:7c:dc: 45:09:69:a7:3b:14:b5:d6:f4:29:9e:e8:2d:ba:25:c9:04:a0: f8:7d:5a:58:d8:e6:f4:89:9c:7f:16:05:b0:f5:a3:11:89:56: c4:6d:57:45:b2:ae:ea:5f:81:62:9b:15:a5:9d:77:c8:ec:12: 3a:6e:e7:b4:fd:40:53:b8:9e:75:eb:ee:5b:04:06:67:4f:64: 7e:f3:58:5c:df:a6:ca:86:22:a1:a9:a5:4e:f0:49:48:f3:a1: 6e:bd:d7:26:fd:c8:b6:a8:a5:3c:8e:c0:4b:21:6e:ad:eb:66: bd:62:2d:08:8a:e8:8d:ef:77:28:2e:d6:3f:ef:71:7f:73:10: d3:c7:de:78:8a:73:c2:86:8e:6a:f6:33:97:94:3d:8a:89:eb: 38:e6:2a:76 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MEREODExMC8GA1UEBRMoRTZCNTREMDI3Q0UzNDk4QkYzNUU0RDA2NUJDNDc4QTkz NkMxNjE2OTAeFw0yNDA4MzAwMjA1MTdaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDEyOGRjLWE0ZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAoHkO+FpT3A2IlrMbayyiGMTjuUlT9FhZCM2Wrc50XYT0bT5sB2LtBTbyZPRv 1LzyBOo3gCHUSzfwME/l7OsCGj9EFh1NeM6sFY1cgP1ONOkMx2SVfr5JHtplslf+ DOUOKaj41MQp8fV0ROpAMIiRNnmwf5/QGV5rnAWhsvCdrzhWXJKLtq2RJpB4TJu1 7WeIZuLdxzjTwUIIyvfcq1MP8haHV5uP9LpG6mhCpxlsbwBnleQbVn8ATQNOT6X+ JYJb51R3PwSepkoWajCbvK0Qi6oZ5eqFrvkhDCY4ojv70yyrTIYjboxO/pExvgz2 UWRSVAwQKORBLRzMCN6zidIhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUmk92V6bI Y00aGRMiQuEaRs1yfOkwHwYDVR0jBBgwFoAU5rVNAnzjSYvzXk0GW8R4qTbBYWkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwREQ4L0E2NkE3NUVFNjVC QjExRUZBRkEzMkY4MkM0RjlBRTAyLzVyVk5BbnpqU1l2elhrMEdXOFI0cVRiQllX ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNXJWTkFuempTWXZ6WGswR1c4UjRxVGJCWVdrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MEREOC9BNjZBNzVFRTY1QkIxMUVGQUZBMzJGODJDNEY5QUUwMi80RDA2Q0QyQzY2 NzQxMUVGOEU3MjM1ODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdPWDANBgkqhkiG9w0BAQsFAAOCAQEATwU6FALrf4WTqwww uYJB9mAREjL8pomp9VEyfc5L0G1yxkYE3c6lpqWBRpEX68P5qxBQz0cNeFENuPuP UjKgW7Gn4trLwOoaoLDc/Hf9qmgFDh7I5iK4BDsxuQVZUgqZxeQjxxkXRtzolXzc RQlppzsUtdb0KZ7oLbolyQSg+H1aWNjm9ImcfxYFsPWjEYlWxG1XRbKu6l+BYpsV pZ13yOwSOm7ntP1AU7iedevuWwQGZ09kfvNYXN+myoYioamlTvBJSPOhbr3XJv3I tqilPI7ASyFuretmvWItCIroje93KC7WP+9xf3MQ08feeIpzwoaOavYzl5Q9ionr OOYqdg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org