$ rpki-client -vvf rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/9CD74392C9E411EC956B0A3CC4F9AE02.roa File: 9CD74392C9E411EC956B0A3CC4F9AE02.roa (raw, json) Hash identifier: 4fhVLBhfu57aeFMCKT6xqBWKFb9Ogft79B2/qJ68TUU= Subject key identifier: 8C:4E:79:42:A3:DF:27:D7:F2:5E:F0:04:3C:EA:C9:14:AC:40:1B:49 Certificate issuer: /CN=A9171235/serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Certificate serial: 028E Authority key identifier: 44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/9CD74392C9E411EC956B0A3CC4F9AE02.roa Signing time: Fri 05 Jul 2024 03:04:32 +0000 ROA not before: Fri 05 Jul 2024 03:04:32 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45858 IP address blocks: 103.227.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 654 (0x28e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171235/serialNumber=441CB0D86A92CEDFBE8083DED697A26D623EE655 Validity Not Before: Jul 5 03:04:32 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668762c0-58e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f8:eb:6d:60:e5:78:c3:64:3a:10:e3:1b:21: 37:72:1f:a3:ec:60:97:f3:f3:2c:c2:17:52:a8:64: 36:ef:f1:73:c2:1f:3c:d6:ea:28:50:da:a3:c5:dd: fd:a7:b3:05:e8:b8:07:4d:36:72:18:8a:f1:b0:21: fc:02:c3:f2:32:1e:e2:6b:f2:0c:f3:2d:93:e2:79: 0a:e3:36:53:28:99:fa:1e:6e:5d:70:f3:33:22:c1: 51:16:94:ed:7f:de:87:98:ba:38:22:d6:57:ed:34: 10:76:95:4e:08:f9:95:5f:a6:ce:a0:3a:c4:33:be: 0f:4a:45:0f:22:47:26:55:74:d5:32:a3:ed:27:04: e9:79:53:e8:93:56:73:7b:d2:29:9f:9d:94:60:70: 30:94:fa:ab:e6:f3:cd:69:e0:10:dc:02:d6:28:ec: a3:c4:94:81:4d:d0:4b:f0:04:82:39:79:d4:f3:d2: 76:e5:ea:8e:0a:22:de:68:7b:35:09:7b:01:c8:54: 4a:da:b2:fb:9c:dd:cf:1d:cc:a4:af:a2:db:59:b4: b6:c8:10:bb:c4:0a:8f:96:1b:81:29:1b:7d:a8:11: 45:2f:c2:05:35:20:ff:b1:f1:a6:41:bc:61:2c:10: 0e:f2:4e:89:0a:a0:fd:6a:30:23:99:a8:f7:2e:05: 22:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:4E:79:42:A3:DF:27:D7:F2:5E:F0:04:3C:EA:C9:14:AC:40:1B:49 X509v3 Authority Key Identifier: keyid:44:1C:B0:D8:6A:92:CE:DF:BE:80:83:DE:D6:97:A2:6D:62:3E:E6:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/RByw2GqSzt--gIPe1peibWI-5lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RByw2GqSzt--gIPe1peibWI-5lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171235/DD61E22EC5DD11ECBEF42C77C4F9AE02/9CD74392C9E411EC956B0A3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.227.44.0/22 Signature Algorithm: sha256WithRSAEncryption 06:ee:f8:f4:f9:ce:be:0b:90:81:99:09:99:ab:48:86:77:52: af:aa:5c:09:c0:c7:ce:4c:4c:8b:15:3c:0b:c6:7b:76:cc:11: 1a:f9:ab:0b:da:89:41:6a:b3:28:de:d0:af:8f:17:a7:f0:0b: 02:f0:95:6d:29:de:92:23:b3:95:f1:53:16:07:af:81:69:6d: b7:55:a2:a7:38:88:a4:43:08:0c:9b:e6:71:36:e5:99:40:48: e8:bb:44:29:14:ed:fb:ec:37:fa:0e:7a:3d:5c:c2:72:1a:83: ca:af:8f:1d:88:7c:03:40:63:81:fd:3c:24:0b:ef:4d:df:1b: 0c:1c:f1:42:98:ff:44:db:44:65:47:7d:cd:dc:cf:13:66:a8: 72:d1:e7:f6:df:c9:71:72:b1:89:59:b6:7f:f4:15:b4:b8:31: 11:09:17:1a:8c:20:34:63:af:fb:49:e1:7a:c0:a2:fe:54:36: c6:48:e6:4b:0c:f5:1d:0f:ef:df:8c:d9:76:93:07:0d:05:e9: e1:d8:c5:3e:5b:fd:a0:e9:fd:d4:be:75:ee:6a:bb:e1:53:84: 2d:f2:fd:84:a8:82:86:01:72:56:36:0f:1f:7d:03:6d:06:46: 34:fd:f5:ac:b2:44:e4:a7:ed:46:bf:fb:81:2f:11:68:b5:25: a2:83:51:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAo4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzEyMzUxMTAvBgNVBAUTKDQ0MUNCMEQ4NkE5MkNFREZCRTgwODNERUQ2OTdBMjZE NjIzRUU2NTUwHhcNMjQwNzA1MDMwNDMyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3NjJjMC01OGU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/jrbWDleMNkOhDjGyE3ch+j7GCX8/MswhdSqGQ27/Fzwh881uooUNqjxd39 p7MF6LgHTTZyGIrxsCH8AsPyMh7ia/IM8y2T4nkK4zZTKJn6Hm5dcPMzIsFRFpTt f96HmLo4ItZX7TQQdpVOCPmVX6bOoDrEM74PSkUPIkcmVXTVMqPtJwTpeVPok1Zz e9Ipn52UYHAwlPqr5vPNaeAQ3ALWKOyjxJSBTdBL8ASCOXnU89J25eqOCiLeaHs1 CXsByFRK2rL7nN3PHcykr6LbWbS2yBC7xAqPlhuBKRt9qBFFL8IFNSD/sfGmQbxh LBAO8k6JCqD9ajAjmaj3LgUifwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIxOeUKj 3yfX8l7wBDzqyRSsQBtJMB8GA1UdIwQYMBaAFEQcsNhqks7fvoCD3taXom1iPuZV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTIzNS9ERDYxRTIyRUM1 REQxMUVDQkVGNDJDNzdDNEY5QUUwMi9SQnl3MkdxU3p0LS1nSVBlMXBlaWJXSS01 bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JCeXcyR3FTenQtLWdJUGUxcGVpYldJLTVsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzEyMzUvREQ2MUUyMkVDNUREMTFFQ0JFRjQyQzc3QzRGOUFFMDIvOUNENzQzOTJD OUU0MTFFQzk1NkIwQTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4ywwDQYJKoZIhvcNAQELBQADggEBAAbu+PT5zr4LkIGZ CZmrSIZ3Uq+qXAnAx85MTIsVPAvGe3bMERr5qwvaiUFqsyje0K+PF6fwCwLwlW0p 3pIjs5XxUxYHr4FpbbdVoqc4iKRDCAyb5nE25ZlASOi7RCkU7fvsN/oOej1cwnIa g8qvjx2IfANAY4H9PCQL703fGwwc8UKY/0TbRGVHfc3czxNmqHLR5/bfyXFysYlZ tn/0FbS4MREJFxqMIDRjr/tJ4XrAov5UNsZI5ksM9R0P79+M2XaTBw0F6eHYxT5b /aDp/dS+de5qu+FThC3y/YSogoYBclY2Dx99A20GRjT99ayyROSn7Ua/+4EvEWi1 JaKDUc4= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:38 2024 by rpki-client on console-fra.rpki-client.org