$ rpki-client -vvf rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/6EC5F1A8420611ECB8345E7DC4F9AE02.roa File: 6EC5F1A8420611ECB8345E7DC4F9AE02.roa (raw, json) Hash identifier: 5T7dToRNDFlOZIMhz0V1aN3lG6JivnfiSfUrF62C9Es= Subject key identifier: 5E:60:1F:69:70:EC:98:A6:6E:6F:71:70:DC:4F:0A:E5:01:53:C8:67 Certificate issuer: /CN=A9171DB9/serialNumber=96F631B37B2DCCAFBEE7B09BFDF4715E1A1C505B Certificate serial: 0329 Authority key identifier: 96:F6:31:B3:7B:2D:CC:AF:BE:E7:B0:9B:FD:F4:71:5E:1A:1C:50:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvYxs3stzK--57Cb_fRxXhocUFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/6EC5F1A8420611ECB8345E7DC4F9AE02.roa Signing time: Fri 21 Jul 2023 01:22:15 +0000 ROA not before: Fri 21 Jul 2023 01:22:15 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 147068 IP address blocks: 103.172.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/lvYxs3stzK--57Cb_fRxXhocUFs.crl rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/lvYxs3stzK--57Cb_fRxXhocUFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvYxs3stzK--57Cb_fRxXhocUFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 809 (0x329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171DB9/serialNumber=96F631B37B2DCCAFBEE7B09BFDF4715E1A1C505B Validity Not Before: Jul 21 01:22:15 2023 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=64b9ddc7-bb30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:82:85:7b:83:d8:38:c3:53:1f:5c:2f:02:5e: b6:36:4f:c3:a5:4b:14:93:65:95:e2:0e:fa:57:68: 9a:f1:ca:82:b3:7a:0f:3a:22:5f:ee:d4:33:14:bb: ca:52:65:af:68:06:ad:98:17:d0:43:64:36:4b:b1: a5:8e:8c:cf:63:e7:8e:27:23:5c:b8:cc:12:40:63: 09:6d:0b:b2:23:9a:f0:bd:ed:c9:02:e7:26:3e:31: 10:20:36:64:bd:8b:d6:c3:6b:f7:79:42:65:09:56: b3:e0:f4:25:64:c3:88:8a:75:c4:b8:b0:d8:27:88: dd:7b:5b:f4:b3:fa:58:35:7b:c6:29:1f:48:3e:f5: 04:5b:c4:c9:55:2e:3f:09:bb:75:c3:be:90:7f:bf: 2a:a0:10:80:ac:f1:48:37:d3:b4:bf:29:25:bd:be: 28:5d:13:b9:c0:fc:7b:18:19:0d:6c:0b:8b:d7:3f: d5:ed:d8:cf:a0:9f:b4:8c:d5:70:67:6b:53:9d:63: a9:c6:a8:fe:7d:f5:b9:b9:d3:2e:3e:cb:f2:7f:b0: 17:5d:96:c3:52:63:fd:a5:b0:a4:40:64:41:35:1c: 63:73:00:7d:53:e0:66:b1:ed:79:1e:10:82:e9:f3: d4:5a:15:3f:69:54:bf:bb:94:d6:fa:3d:39:30:10: 2e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:60:1F:69:70:EC:98:A6:6E:6F:71:70:DC:4F:0A:E5:01:53:C8:67 X509v3 Authority Key Identifier: keyid:96:F6:31:B3:7B:2D:CC:AF:BE:E7:B0:9B:FD:F4:71:5E:1A:1C:50:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/lvYxs3stzK--57Cb_fRxXhocUFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lvYxs3stzK--57Cb_fRxXhocUFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171DB9/A9C90F14420211ECBA261976C4F9AE02/6EC5F1A8420611ECB8345E7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.140.0/24 Signature Algorithm: sha256WithRSAEncryption 98:89:2d:ce:76:44:fa:11:cd:eb:a9:bc:5e:0f:1d:6d:29:98: 55:7f:f5:e9:86:ea:cd:7f:51:fb:6b:2d:49:70:00:ee:05:44: c1:36:6b:82:83:f6:51:8d:9b:9b:81:af:3e:16:1c:b7:29:3f: de:2e:c9:a6:ae:e4:46:fb:f9:1a:60:9a:e5:c0:eb:85:71:de: de:14:f3:07:8c:b5:bc:5e:dd:90:60:7c:19:0c:fb:be:a6:33: f8:c5:a6:b9:9f:cf:d6:5b:d6:7e:3f:4d:c7:15:52:78:eb:1c: b5:b7:5d:24:ee:a9:04:d5:99:df:47:85:2d:f5:99:95:25:2d: 1f:f2:36:67:9a:f1:c2:91:f8:7d:64:08:de:f3:99:b3:e8:23: 19:5e:c7:f4:99:dc:82:d6:73:b4:60:dc:d0:53:f5:4a:88:21: 0c:27:d1:ab:79:31:17:af:42:84:52:37:76:a8:14:92:04:db: e3:19:57:fb:bb:b8:ca:dd:8e:66:a7:2a:95:a4:59:40:1c:e1: 38:e0:8c:87:7d:e8:16:5f:46:fa:5f:60:fe:fa:5a:d2:68:25: 39:58:56:82:3e:33:f8:c0:62:30:7c:8c:e9:6f:ab:1f:cf:4d: 6c:2b:02:85:cc:6b:3c:7a:32:08:10:a6:5a:fb:96:8a:ab:a5: 83:bb:68:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAykwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzFEQjkxMTAvBgNVBAUTKDk2RjYzMUIzN0IyRENDQUZCRUU3QjA5QkZERjQ3MTVF MUExQzUwNUIwHhcNMjMwNzIxMDEyMjE1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5ZGRjNy1iYjMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IKFe4PYOMNTH1wvAl62Nk/DpUsUk2WV4g76V2ia8cqCs3oPOiJf7tQzFLvK UmWvaAatmBfQQ2Q2S7GljozPY+eOJyNcuMwSQGMJbQuyI5rwve3JAucmPjEQIDZk vYvWw2v3eUJlCVaz4PQlZMOIinXEuLDYJ4jde1v0s/pYNXvGKR9IPvUEW8TJVS4/ Cbt1w76Qf78qoBCArPFIN9O0vyklvb4oXRO5wPx7GBkNbAuL1z/V7djPoJ+0jNVw Z2tTnWOpxqj+ffW5udMuPsvyf7AXXZbDUmP9pbCkQGRBNRxjcwB9U+Bmse15HhCC 6fPUWhU/aVS/u5TW+j05MBAu0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFF5gH2lw 7Jimbm9xcNxPCuUBU8hnMB8GA1UdIwQYMBaAFJb2MbN7Lcyvvuewm/30cV4aHFBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MURCOS9BOUM5MEYxNDQy MDIxMUVDQkEyNjE5NzZDNEY5QUUwMi9sdll4czNzdHpLLS01N0NiX2ZSeFhob2NV RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x2WXhzM3N0ekstLTU3Q2JfZlJ4WGhvY1VGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzFEQjkvQTlDOTBGMTQ0MjAyMTFFQ0JBMjYxOTc2QzRGOUFFMDIvNkVDNUYxQTg0 MjA2MTFFQ0I4MzQ1RTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrIwwDQYJKoZIhvcNAQELBQADggEBAJiJLc52RPoRzeup vF4PHW0pmFV/9emG6s1/UftrLUlwAO4FRME2a4KD9lGNm5uBrz4WHLcpP94uyaau 5Eb7+RpgmuXA64Vx3t4U8weMtbxe3ZBgfBkM+76mM/jFprmfz9Zb1n4/TccVUnjr HLW3XSTuqQTVmd9HhS31mZUlLR/yNmea8cKR+H1kCN7zmbPoIxlex/SZ3ILWc7Rg 3NBT9UqIIQwn0at5MRevQoRSN3aoFJIE2+MZV/u7uMrdjmanKpWkWUAc4TjgjId9 6BZfRvpfYP76WtJoJTlYVoI+M/jAYjB8jOlvqx/PTWwrAoXMazx6MggQplr7loqr pYO7aAE= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org