$ rpki-client -vvf rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa File: 7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa (raw, json) Hash identifier: 1FB+xGGfJFBtYkIcTivZWRxeSxbgKD7RpqSre6ctfDw= Subject key identifier: 9B:6D:1F:B5:57:AB:A2:D3:98:CF:B5:6A:60:99:6D:2C:47:53:1A:D3 Certificate issuer: /CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Certificate serial: 042C Authority key identifier: 82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa Signing time: Mon 31 Jul 2023 00:41:50 +0000 ROA not before: Mon 31 Jul 2023 00:41:49 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142557 IP address blocks: 103.169.94.0/24 maxlen: 24 103.169.95.0/24 maxlen: 24 2001:df6:f380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 00:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1068 (0x42c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171C23/serialNumber=82A85AFDF329256F47E0B700B2D14756A104C112 Validity Not Before: Jul 31 00:41:49 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c7034d-5373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1c:d2:a5:b4:90:e8:8b:f1:02:cf:91:e2:1f: 4f:da:8f:e3:8b:06:48:9c:64:94:02:3a:62:3a:44: f8:ff:68:c8:9f:ef:6c:68:9b:ce:f5:9c:d4:39:ea: a0:30:1c:ba:e7:5b:bc:8e:bc:b1:39:4d:61:03:de: 56:55:a4:45:ef:85:91:2f:df:0e:63:dd:ba:a0:df: 4e:f0:88:3a:e2:4d:3f:85:76:6a:d1:ea:f4:1d:8c: 89:be:19:c4:70:91:24:f1:ea:2b:29:17:fd:81:c0: df:08:a6:5c:84:92:af:5a:61:a5:d9:d5:38:ab:40: 4f:92:83:86:49:5c:25:41:6e:2b:5f:e9:3a:b4:cc: f2:ab:64:6b:55:24:a7:90:f0:70:07:91:b9:89:ad: 7a:28:e2:27:27:e5:bd:35:25:1a:c1:96:a8:e1:71: 68:e4:f9:6c:83:63:eb:18:3b:0e:aa:b7:ff:05:ff: 44:0a:be:fc:a0:0e:c7:bf:a2:0d:49:4a:b4:a9:ea: 03:bd:b6:28:37:35:d4:28:40:15:c4:17:65:d9:41: f8:09:97:91:ac:a8:6e:b6:82:92:8c:f3:25:29:15: b0:8c:ff:3d:a1:c6:29:ec:69:53:7e:91:f6:00:ea: c2:a4:f4:63:f8:f3:0b:40:b5:97:c1:99:17:48:b7: 6e:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:6D:1F:B5:57:AB:A2:D3:98:CF:B5:6A:60:99:6D:2C:47:53:1A:D3 X509v3 Authority Key Identifier: keyid:82:A8:5A:FD:F3:29:25:6F:47:E0:B7:00:B2:D1:47:56:A1:04:C1:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/gqha_fMpJW9H4LcAstFHVqEEwRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gqha_fMpJW9H4LcAstFHVqEEwRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171C23/C6BD1E2CDC1211EB8C1DA64AC4F9AE02/7CC19FBCDCAA11EBB87DAD44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.94.0/23 IPv6: 2001:df6:f380::/48 Signature Algorithm: sha256WithRSAEncryption cd:8e:79:1d:2f:7c:ac:fc:4d:fc:e7:ee:2d:9c:80:ca:a2:11: c0:fd:0d:94:39:1f:99:ef:16:ce:8e:c6:93:29:b6:ef:92:fc: 2f:ca:47:9b:79:7f:87:7f:eb:67:5f:66:a3:82:b1:1e:dd:5d: 97:11:c2:0e:98:b1:d3:74:a1:f5:24:7a:15:3f:d4:24:f6:b3: 8b:ec:02:c9:3f:06:c2:0f:4e:7f:c6:e8:d1:0c:40:00:5d:9e: f3:5d:4f:72:3f:97:16:d9:71:df:73:f8:c8:ae:08:04:57:ae: 2d:30:81:1a:a0:a8:68:7b:1f:a7:5d:9e:98:d1:64:93:35:a2: df:49:20:d3:8e:3e:0e:14:1c:5a:f3:8a:78:6c:95:19:94:30: 2d:f6:ea:39:17:a2:14:41:b1:5d:30:f0:26:c1:d9:30:b2:9f: 55:27:18:2c:38:2d:51:0c:2d:3f:eb:8d:03:a5:b1:6d:c8:b7: ec:bf:aa:22:28:b5:fd:d2:09:e6:5f:95:fb:53:25:98:fe:0d: 30:28:e4:97:fc:bd:c1:cf:be:4c:bc:d4:47:50:1e:4d:d1:46: c4:f3:cc:f3:00:6d:a4:8c:ac:0c:26:53:31:bb:bf:6a:19:82: f9:d5:da:46:84:39:b9:4d:db:40:6a:3e:07:79:74:70:05:74: 8b:6b:a5:29 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBCwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFDMjMxMTAvBgNVBAUTKDgyQTg1QUZERjMyOTI1NkY0N0UwQjcwMEIyRDE0NzU2 QTEwNEMxMTIwHhcNMjMwNzMxMDA0MTQ5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM3MDM0ZC01MzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1hzSpbSQ6IvxAs+R4h9P2o/jiwZInGSUAjpiOkT4/2jIn+9saJvO9ZzUOeqg MBy651u8jryxOU1hA95WVaRF74WRL98OY926oN9O8Ig64k0/hXZq0er0HYyJvhnE cJEk8eorKRf9gcDfCKZchJKvWmGl2dU4q0BPkoOGSVwlQW4rX+k6tMzyq2RrVSSn kPBwB5G5ia16KOInJ+W9NSUawZao4XFo5Plsg2PrGDsOqrf/Bf9ECr78oA7Hv6IN SUq0qeoDvbYoNzXUKEAVxBdl2UH4CZeRrKhutoKSjPMlKRWwjP89ocYp7GlTfpH2 AOrCpPRj+PMLQLWXwZkXSLdu9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJttH7VX q6LTmM+1amCZbSxHUxrTMB8GA1UdIwQYMBaAFIKoWv3zKSVvR+C3ALLRR1ahBMES MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUMyMy9DNkJEMUUyQ0RD MTIxMUVCOEMxREE2NEFDNEY5QUUwMi9ncWhhX2ZNcEpXOUg0TGNBc3RGSFZxRUV3 UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dxaGFfZk1wSlc5SDRMY0FzdEZIVnFFRXdSSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFDMjMvQzZCRDFFMkNEQzEyMTFFQjhDMURBNjRBQzRGOUFFMDIvN0NDMTlGQkNE Q0FBMTFFQkI4N0RBRDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnqV4wDwQCAAIwCQMHACABDfbzgDANBgkqhkiG9w0BAQsF AAOCAQEAzY55HS98rPxN/OfuLZyAyqIRwP0NlDkfme8Wzo7Gkym275L8L8pHm3l/ h3/rZ19mo4KxHt1dlxHCDpix03Sh9SR6FT/UJPazi+wCyT8Gwg9Of8bo0QxAAF2e 811Pcj+XFtlx33P4yK4IBFeuLTCBGqCoaHsfp12emNFkkzWi30kg044+DhQcWvOK eGyVGZQwLfbqOReiFEGxXTDwJsHZMLKfVScYLDgtUQwtP+uNA6Wxbci37L+qIii1 /dIJ5l+V+1MlmP4NMCjkl/y9wc++TLzUR1AeTdFGxPPM8wBtpIysDCZTMbu/ahmC +dXaRoQ5uU3bQGo+B3l0cAV0i2ulKQ== -----END CERTIFICATE-----Generated at Thu May 23 02:40:21 2024 by rpki-client on console-ams.rpki-client.org