$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/DD2DD3489F9111ECB958FF25C4F9AE02.roa File: DD2DD3489F9111ECB958FF25C4F9AE02.roa (raw, json) Hash identifier: N3iYb1exvwHt+Rgew6r5CS3daUkG797TW6/8BnfLNMw= Subject key identifier: FF:55:50:7F:3B:B6:62:1D:2C:9D:72:A1:AE:06:17:66:2C:0D:08:42 Certificate issuer: /CN=A9172CB5/serialNumber=69E1CECB881DA6C968BAAE073237C266095A45CD Certificate serial: 02C3 Authority key identifier: 69:E1:CE:CB:88:1D:A6:C9:68:BA:AE:07:32:37:C2:66:09:5A:45:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aeHOy4gdpslouq4HMjfCZglaRc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/DD2DD3489F9111ECB958FF25C4F9AE02.roa Signing time: Mon 25 Mar 2024 03:25:03 +0000 ROA not before: Mon 25 Mar 2024 03:25:03 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 139603 IP address blocks: 103.182.73.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.crl rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aeHOy4gdpslouq4HMjfCZglaRc0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CB5/serialNumber=69E1CECB881DA6C968BAAE073237C266095A45CD Validity Not Before: Mar 25 03:25:03 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6600ee8f-ac6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:ac:56:eb:8f:f8:7b:e1:50:bd:b1:6f:a8:ce: 2c:09:0e:b2:97:b6:ae:0d:c1:d1:f0:2c:e5:99:6d: f0:43:84:fd:29:b1:24:1c:d2:a8:16:28:62:5b:5a: 9b:7b:a7:a7:38:80:d1:86:fb:a3:a2:dd:07:d9:8e: c4:ae:88:0a:6a:67:07:60:bf:cc:d1:aa:ef:bd:0d: e6:cf:51:3c:9e:d8:ac:c0:7b:e1:28:25:a6:df:23: 9e:d5:58:87:5f:f9:4b:6f:9d:84:31:00:de:4d:40: bf:cc:41:22:45:3e:14:99:32:ae:22:8f:b7:71:71: 21:cd:41:29:ab:92:60:47:9c:16:70:a8:14:37:ce: 94:bb:e3:b6:ff:6f:6a:63:10:f2:f9:e1:eb:f7:34: 89:c5:fa:73:09:82:a3:75:47:76:17:93:c6:11:b6: be:7f:29:b3:68:f4:4f:66:86:1b:d9:07:5b:39:b9: c5:39:ed:3c:4f:1b:94:66:ce:11:84:14:92:7d:27: d9:9f:26:03:56:5c:25:1c:32:8f:7a:1d:4f:ff:c1: 6b:dd:5d:3b:82:00:9a:54:43:bc:13:6d:79:b9:39: 8d:9f:72:2c:29:37:07:71:d3:be:cf:b1:3e:4a:f8: de:88:54:03:63:1b:a5:c3:b0:21:32:35:f1:ec:2f: 65:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:55:50:7F:3B:B6:62:1D:2C:9D:72:A1:AE:06:17:66:2C:0D:08:42 X509v3 Authority Key Identifier: keyid:69:E1:CE:CB:88:1D:A6:C9:68:BA:AE:07:32:37:C2:66:09:5A:45:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/aeHOy4gdpslouq4HMjfCZglaRc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aeHOy4gdpslouq4HMjfCZglaRc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CB5/39D767209B6A11ECA6823522C4F9AE02/DD2DD3489F9111ECB958FF25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.73.0/24 Signature Algorithm: sha256WithRSAEncryption 64:5a:a6:c6:0d:fc:ae:a6:b8:02:72:41:9e:8b:bc:88:93:f0: f4:37:e0:df:35:7a:fe:31:9b:66:8e:bf:5a:d7:1d:46:93:f4: 7d:b1:c0:d6:13:cd:c9:3b:68:a5:a0:09:87:e8:a6:a6:63:c5: 46:9f:54:79:88:3d:a0:cd:80:23:54:39:cc:8c:20:e6:12:45: 1f:91:fe:c2:19:f6:5e:92:16:12:31:e1:89:27:42:04:2e:80: 38:4b:33:2f:c9:8c:d6:22:50:bd:b0:71:bb:35:f5:4f:6b:c0: f7:d9:8d:16:ff:4e:3c:26:66:75:be:8f:b6:4c:bb:01:dc:7e: 2b:e7:36:be:37:15:c0:a8:3f:41:70:31:b5:69:e2:60:d5:46: 5a:38:1b:2a:02:5c:d7:5a:d0:13:62:37:2f:a6:de:8c:a4:83: 80:ad:2f:b8:bb:c6:d9:77:7e:f1:3c:4c:ca:3f:91:53:95:cb: 5d:85:cf:af:04:7c:13:8b:84:c2:71:cf:75:c6:a4:99:4e:bf: 36:8b:81:5e:53:4f:35:37:e3:da:76:93:5a:9d:3f:bf:ae:37: d3:fc:c7:6a:d2:4f:ff:ee:0f:cc:bb:55:46:bf:27:8a:73:7c: e6:a0:49:04:64:f0:fc:dd:3d:45:77:11:97:d7:8d:92:0b:18: b8:5d:5f:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDQjUxMTAvBgNVBAUTKDY5RTFDRUNCODgxREE2Qzk2OEJBQUUwNzMyMzdDMjY2 MDk1QTQ1Q0QwHhcNMjQwMzI1MDMyNTAzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAwZWU4Zi1hYzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq6xW64/4e+FQvbFvqM4sCQ6yl7auDcHR8CzlmW3wQ4T9KbEkHNKoFihiW1qb e6enOIDRhvujot0H2Y7ErogKamcHYL/M0arvvQ3mz1E8ntiswHvhKCWm3yOe1ViH X/lLb52EMQDeTUC/zEEiRT4UmTKuIo+3cXEhzUEpq5JgR5wWcKgUN86Uu+O2/29q YxDy+eHr9zSJxfpzCYKjdUd2F5PGEba+fymzaPRPZoYb2QdbObnFOe08TxuUZs4R hBSSfSfZnyYDVlwlHDKPeh1P/8Fr3V07ggCaVEO8E215uTmNn3IsKTcHcdO+z7E+ SvjeiFQDYxulw7AhMjXx7C9lLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP9VUH87 tmIdLJ1yoa4GF2YsDQhCMB8GA1UdIwQYMBaAFGnhzsuIHabJaLquBzI3wmYJWkXN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNCNS8zOUQ3NjcyMDlC NkExMUVDQTY4MjM1MjJDNEY5QUUwMi9hZUhPeTRnZHBzbG91cTRITWpmQ1pnbGFS YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FlSE95NGdkcHNsb3VxNEhNamZDWmdsYVJjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJDQjUvMzlENzY3MjA5QjZBMTFFQ0E2ODIzNTIyQzRGOUFFMDIvREQyREQzNDg5 RjkxMTFFQ0I5NThGRjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABntkkwDQYJKoZIhvcNAQELBQADggEBAGRapsYN/K6muAJy QZ6LvIiT8PQ34N81ev4xm2aOv1rXHUaT9H2xwNYTzck7aKWgCYfopqZjxUafVHmI PaDNgCNUOcyMIOYSRR+R/sIZ9l6SFhIx4YknQgQugDhLMy/JjNYiUL2wcbs19U9r wPfZjRb/TjwmZnW+j7ZMuwHcfivnNr43FcCoP0FwMbVp4mDVRlo4GyoCXNda0BNi Ny+m3oykg4CtL7i7xtl3fvE8TMo/kVOVy12Fz68EfBOLhMJxz3XGpJlOvzaLgV5T TzU349p2k1qdP7+uN9P8x2rST//uD8y7VUa/J4pzfOagSQRk8PzdPUV3EZfXjZIL GLhdX5w= -----END CERTIFICATE-----Generated at Fri May 17 04:44:31 2024 by rpki-client on console-ams.rpki-client.org