$ rpki-client -vvf rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/4C1CC64C7F1A11EEAD41A94EC4F9AE02.roa File: 4C1CC64C7F1A11EEAD41A94EC4F9AE02.roa (raw, json) Hash identifier: Nnq2nSrzZVVFW1WeAqLhZAthl6arj6cpbPo8gyxuIuE= Subject key identifier: 25:A2:56:A7:EE:06:85:35:EB:E8:C8:6A:6F:7F:C5:3C:D9:E5:DF:02 Certificate issuer: /CN=A9171D3C/serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Certificate serial: CC Authority key identifier: 4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/4C1CC64C7F1A11EEAD41A94EC4F9AE02.roa Signing time: Thu 23 May 2024 06:40:37 +0000 ROA not before: Thu 23 May 2024 06:40:37 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 61317 IP address blocks: 103.213.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:06:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171D3C/serialNumber=4DEE0836FA0F7EE92C2E6A6C198016DE8CF8BF16 Validity Not Before: May 23 06:40:37 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=664ee4e5-2dd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:aa:1a:7b:8a:9a:eb:6a:54:e6:99:bc:03:17: e7:fb:fa:31:4a:b0:99:e8:25:c3:08:fc:c2:2e:ff: 59:35:af:14:39:81:5c:c0:e3:95:af:05:0c:01:26: 67:01:9e:74:e9:2d:7d:c4:23:90:7b:73:e8:5c:d8: 00:aa:18:6f:ed:26:3b:e2:ed:dc:91:b4:31:90:8e: e7:f5:84:c5:76:ea:bb:7e:17:32:eb:53:0d:1c:15: 49:ca:17:c3:9f:0d:ab:5a:a3:0f:85:4c:78:1c:3b: 4a:c6:c6:e8:0f:f3:b5:6a:f4:d9:11:0d:ee:dd:3f: 88:7f:cd:66:7d:d9:70:02:4f:7d:11:df:17:dd:0f: 5e:98:5c:d6:56:e1:5a:cf:12:13:53:01:6c:52:9c: 47:59:05:bf:12:be:09:1d:ee:b2:f7:4f:0a:35:e2: 89:26:5d:65:78:d1:39:af:6e:5f:a7:6f:00:e8:e6: 57:99:22:8f:48:f1:c4:af:bd:60:31:b5:3b:b6:89: cd:08:ea:2c:36:1f:83:63:fa:40:1f:c6:d4:6f:a2: c9:e9:d5:b5:e0:fa:ea:96:df:e2:72:25:30:d1:ce: c2:8f:0a:39:6e:31:fa:93:6c:11:2d:24:49:0b:78: 15:46:21:06:78:84:90:09:79:1e:72:7c:7d:95:93: 59:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:A2:56:A7:EE:06:85:35:EB:E8:C8:6A:6F:7F:C5:3C:D9:E5:DF:02 X509v3 Authority Key Identifier: keyid:4D:EE:08:36:FA:0F:7E:E9:2C:2E:6A:6C:19:80:16:DE:8C:F8:BF:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/Te4INvoPfuksLmpsGYAW3oz4vxY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Te4INvoPfuksLmpsGYAW3oz4vxY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171D3C/127157F2056A11EEB8870013C4F9AE02/4C1CC64C7F1A11EEAD41A94EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.39.0/24 Signature Algorithm: sha256WithRSAEncryption 52:8f:b7:8c:2e:16:9f:a8:68:24:98:42:dd:05:ca:44:3b:90: cf:bd:d7:59:d7:ef:47:9b:94:67:a4:11:78:f6:c1:9b:82:0f: 55:f7:3c:bc:8f:36:c6:c0:ab:46:98:99:ab:62:74:9e:9f:d5: c6:f4:75:c2:e5:5b:d3:fe:65:de:de:6d:1b:69:65:db:37:a9: 75:f0:6e:3d:ec:51:35:fb:0c:4e:22:1f:92:de:c8:bf:78:57: 0d:64:6a:ba:88:49:d4:5a:d7:b4:97:a0:d7:c2:e5:11:6d:3c: 8f:0c:9f:33:6d:7d:25:fc:90:6e:66:b7:b1:29:16:d5:48:9e: ef:e2:11:ee:e6:a7:df:8c:5d:2a:be:55:df:2d:0b:c9:d2:84: a1:63:84:44:fa:7b:0f:1b:83:0f:08:98:46:0e:37:0c:4c:89: 51:e2:bb:bd:75:62:c8:b2:88:c3:a6:f3:d0:73:e1:8e:93:03: 13:03:fc:f7:8d:b5:66:6d:3d:47:9b:46:4e:26:aa:14:62:0c: d3:eb:6d:f2:57:ed:6c:3c:a4:a7:85:49:c9:8e:4a:df:7a:5d: fe:ae:4e:31:00:1d:e2:78:1d:60:3a:51:7f:13:92:80:63:64: 4e:58:c0:c3:8c:9c:35:02:31:7c:6a:ec:d9:d0:9b:c8:72:c5: 76:e0:3c:06 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEM0MxMTAvBgNVBAUTKDRERUUwODM2RkEwRjdFRTkyQzJFNkE2QzE5ODAxNkRF OENGOEJGMTYwHhcNMjQwNTIzMDY0MDM3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRlZTRlNS0yZGQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo6oae4qa62pU5pm8Axfn+/oxSrCZ6CXDCPzCLv9ZNa8UOYFcwOOVrwUMASZn AZ506S19xCOQe3PoXNgAqhhv7SY74u3ckbQxkI7n9YTFduq7fhcy61MNHBVJyhfD nw2rWqMPhUx4HDtKxsboD/O1avTZEQ3u3T+If81mfdlwAk99Ed8X3Q9emFzWVuFa zxITUwFsUpxHWQW/Er4JHe6y908KNeKJJl1leNE5r25fp28A6OZXmSKPSPHEr71g MbU7tonNCOosNh+DY/pAH8bUb6LJ6dW14Prqlt/iciUw0c7Cjwo5bjH6k2wRLSRJ C3gVRiEGeISQCXkecnx9lZNZ5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCWiVqfu BoU16+jIam9/xTzZ5d8CMB8GA1UdIwQYMBaAFE3uCDb6D37pLC5qbBmAFt6M+L8W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MUQzQy8xMjcxNTdGMjA1 NkExMUVFQjg4NzAwMTNDNEY5QUUwMi9UZTRJTnZvUGZ1a3NMbXBzR1lBVzNvejR2 eFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RlNElOdm9QZnVrc0xtcHNHWUFXM296NHZ4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEM0MvMTI3MTU3RjIwNTZBMTFFRUI4ODcwMDEzQzRGOUFFMDIvNEMxQ0M2NEM3 RjFBMTFFRUFENDFBOTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn1ScwDQYJKoZIhvcNAQELBQADggEBAFKPt4wuFp+oaCSY Qt0FykQ7kM+911nX70eblGekEXj2wZuCD1X3PLyPNsbAq0aYmatidJ6f1cb0dcLl W9P+Zd7ebRtpZds3qXXwbj3sUTX7DE4iH5LeyL94Vw1karqISdRa17SXoNfC5RFt PI8MnzNtfSX8kG5mt7EpFtVInu/iEe7mp9+MXSq+Vd8tC8nShKFjhET6ew8bgw8I mEYONwxMiVHiu711YsiyiMOm89Bz4Y6TAxMD/PeNtWZtPUebRk4mqhRiDNPrbfJX 7Ww8pKeFScmOSt96Xf6uTjEAHeJ4HWA6UX8TkoBjZE5YwMOMnDUCMXxq7NnQm8hy xXbgPAY= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:06 2024 by rpki-client on console-ams.rpki-client.org