$ rpki-client -vvf rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/5F80F96C9A6F11EF8D9BD80FC4F9AE02.roa File: 5F80F96C9A6F11EF8D9BD80FC4F9AE02.roa (raw, json) Hash identifier: x/GxynEkpXLSNWmZVbITUGXMZJMGzB1C/0SmBXF5ZvU= Subject key identifier: BB:37:E3:6B:BE:DF:F1:EF:5B:E8:89:5F:D2:48:3B:F7:FD:F9:F6:9B Certificate issuer: /CN=A9172A52/serialNumber=674AC57C099876A06657180B34E24E6EEE884411 Certificate serial: 26 Authority key identifier: 67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/5F80F96C9A6F11EF8D9BD80FC4F9AE02.roa Signing time: Mon 04 Nov 2024 05:41:01 +0000 ROA not before: Mon 04 Nov 2024 05:41:01 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134963 IP address blocks: 103.40.164.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172A52/serialNumber=674AC57C099876A06657180B34E24E6EEE884411 Validity Not Before: Nov 4 05:41:01 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67285e6c-b198 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ca:8b:51:8e:04:27:52:bb:be:ff:50:77:b2: 0e:bc:0b:74:07:f8:fa:f9:bc:93:ac:41:0c:e6:9c: c6:0c:0b:8d:6a:39:fc:74:ca:fd:9a:74:6a:6f:38: 9f:f4:63:64:24:98:3b:15:fe:6c:e3:45:91:6a:96: 65:d1:f9:76:e1:ea:15:a8:84:8e:92:e3:80:39:f2: 9e:38:fe:67:ad:bc:22:96:02:c5:92:5f:95:16:4b: 91:b2:ff:c0:39:2b:78:8e:ce:72:b7:83:ee:e4:37: 4b:55:18:28:98:e4:d9:d3:b8:f3:2a:bb:e3:45:08: d2:29:86:c9:bc:70:34:64:54:26:30:69:07:0d:69: fb:4e:63:dc:5d:c0:ba:5e:8e:2f:68:b9:30:c5:33: b2:9c:7e:93:c6:ab:5f:f7:04:21:2d:62:51:f2:6b: 4b:df:f4:c5:13:5f:ed:91:4b:3e:ff:67:2b:46:4e: a7:16:50:94:3c:eb:4a:ad:d7:a5:53:58:ad:0e:b3: 12:c6:bb:75:9e:9e:08:b0:9e:dc:75:2e:92:c4:ef: 6c:c7:06:11:b8:99:e7:53:da:fd:02:4c:77:f1:fa: bf:89:aa:b3:5d:b1:5b:6c:7f:cc:b7:b1:c8:f6:78: 35:e1:eb:25:db:3b:92:d5:80:ca:a7:53:fa:7b:5d: a0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:37:E3:6B:BE:DF:F1:EF:5B:E8:89:5F:D2:48:3B:F7:FD:F9:F6:9B X509v3 Authority Key Identifier: keyid:67:4A:C5:7C:09:98:76:A0:66:57:18:0B:34:E2:4E:6E:EE:88:44:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/Z0rFfAmYdqBmVxgLNOJObu6IRBE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z0rFfAmYdqBmVxgLNOJObu6IRBE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172A52/3E76D7EE981911EFB0D0DD34C4F9AE02/5F80F96C9A6F11EF8D9BD80FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.40.164.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:63:b0:f7:c0:47:4a:0f:25:69:e2:54:6f:34:84:ce:85:db: a5:2f:c9:61:12:d2:05:5c:fc:81:f7:db:9f:9a:10:bc:3d:9f: 9b:29:f2:17:6c:80:44:40:28:c0:1d:d8:ca:88:55:fe:4d:c6: 46:c9:31:28:e3:a9:53:0a:9d:d0:b6:92:78:46:bb:b4:ee:51: e5:c5:6d:c3:8b:29:b1:7d:2d:2d:c7:97:3d:f4:a6:4c:a0:4d: c0:91:88:36:c9:54:65:5c:bf:85:29:de:2c:e3:92:c6:37:3f: de:29:5e:b9:f0:3c:2d:af:5c:89:6a:30:91:f3:8d:59:87:80: 74:63:b0:62:97:43:f4:d2:96:ae:10:4e:34:49:2e:56:d1:c2: f0:44:c9:ba:f0:a5:45:f3:49:33:c9:4b:ca:6a:7b:19:99:23: f3:a5:df:a2:39:b4:4d:7f:9c:83:e1:0e:ca:55:d0:e7:05:31: 18:7f:fb:9f:35:70:66:e9:0d:e8:60:0a:7b:24:cd:1e:3c:0f: 97:4d:e1:09:47:ac:81:27:46:6a:f5:84:74:7d:4d:47:36:6d: b0:bb:a0:13:94:ca:76:26:5a:f6:25:56:f8:a0:12:a3:e3:1e: 01:39:b7:61:67:5a:fa:5a:10:23:03:cb:c8:ab:3b:18:c3:c5: 10:d4:e4:c7 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MkE1MjExMC8GA1UEBRMoNjc0QUM1N0MwOTk4NzZBMDY2NTcxODBCMzRFMjRFNkVF RTg4NDQxMTAeFw0yNDExMDQwNTQxMDFaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Mjg1ZTZjLWIxOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzyotRjgQnUru+/1B3sg68C3QH+Pr5vJOsQQzmnMYMC41qOfx0yv2adGpvOJ/0 Y2QkmDsV/mzjRZFqlmXR+Xbh6hWohI6S44A58p44/metvCKWAsWSX5UWS5Gy/8A5 K3iOznK3g+7kN0tVGCiY5NnTuPMqu+NFCNIphsm8cDRkVCYwaQcNaftOY9xdwLpe ji9ouTDFM7KcfpPGq1/3BCEtYlHya0vf9MUTX+2RSz7/ZytGTqcWUJQ860qt16VT WK0OsxLGu3Wengiwntx1LpLE72zHBhG4medT2v0CTHfx+r+JqrNdsVtsf8y3scj2 eDXh6yXbO5LVgMqnU/p7XaCjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuzfja77f 8e9b6Ilf0kg79/359pswHwYDVR0jBBgwFoAUZ0rFfAmYdqBmVxgLNOJObu6IRBEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcyQTUyLzNFNzZEN0VFOTgx OTExRUZCMEQwREQzNEM0RjlBRTAyL1owckZmQW1ZZHFCbVZ4Z0xOT0pPYnU2SVJC RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWjByRmZBbVlkcUJtVnhnTE5PSk9idTZJUkJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MkE1Mi8zRTc2RDdFRTk4MTkxMUVGQjBEMEREMzRDNEY5QUUwMi81RjgwRjk2QzlB NkYxMUVGOEQ5QkQ4MEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGcopDANBgkqhkiG9w0BAQsFAAOCAQEAC2Ow98BHSg8laeJU bzSEzoXbpS/JYRLSBVz8gffbn5oQvD2fmynyF2yAREAowB3YyohV/k3GRskxKOOp Uwqd0LaSeEa7tO5R5cVtw4spsX0tLceXPfSmTKBNwJGINslUZVy/hSneLOOSxjc/ 3ileufA8La9ciWowkfONWYeAdGOwYpdD9NKWrhBONEkuVtHC8ETJuvClRfNJM8lL ymp7GZkj86Xfojm0TX+cg+EOylXQ5wUxGH/7nzVwZukN6GAKeyTNHjwPl03hCUes gSdGavWEdH1NRzZtsLugE5TKdiZa9iVW+KASo+MeATm3YWda+loQIwPLyKs7GMPF ENTkxw== -----END CERTIFICATE-----Generated at Sat Nov 23 07:31:31 2024 by rpki-client on console-fra.rpki-client.org