$ rpki-client -vvf rpki.apnic.net/member_repository/A9172D65/4F421F523B0B11ECAA25E33AC4F9AE02/C808B8703B0F11ECA663EE27C4F9AE02.roa File: C808B8703B0F11ECA663EE27C4F9AE02.roa (raw, json) Hash identifier: d6CAFLT8cCS4zpMxtq4ojjbfws2v8ud7co649eTSfA8= Subject key identifier: D7:AD:0A:56:6E:94:86:64:34:45:A7:1F:B9:13:FF:F1:5A:D4:C8:4F Certificate issuer: /CN=A9172D65/serialNumber=D71518FC6E56C7C4ECA9EA18B1B541D8B0C2CA22 Certificate serial: 041A Authority key identifier: D7:15:18:FC:6E:56:C7:C4:EC:A9:EA:18:B1:B5:41:D8:B0:C2:CA:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xUY_G5Wx8TsqeoYsbVB2LDCyiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172D65/4F421F523B0B11ECAA25E33AC4F9AE02/C808B8703B0F11ECA663EE27C4F9AE02.roa Signing time: Tue 01 Oct 2024 00:43:58 +0000 ROA not before: Tue 01 Oct 2024 00:43:58 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 23669 IP address blocks: 103.172.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172D65/4F421F523B0B11ECAA25E33AC4F9AE02/1xUY_G5Wx8TsqeoYsbVB2LDCyiI.crl rsync://rpki.apnic.net/member_repository/A9172D65/4F421F523B0B11ECAA25E33AC4F9AE02/1xUY_G5Wx8TsqeoYsbVB2LDCyiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xUY_G5Wx8TsqeoYsbVB2LDCyiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1050 (0x41a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172D65/serialNumber=D71518FC6E56C7C4ECA9EA18B1B541D8B0C2CA22 Validity Not Before: Oct 1 00:43:58 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fb45ce-3796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6a:12:38:56:22:fa:25:87:99:0a:9f:2e:cf: fe:95:d4:7a:58:ee:8a:94:af:5c:a7:93:11:24:7a: a2:75:c4:25:9e:bd:a3:50:41:81:c7:03:24:59:b8: 4a:b6:49:99:cd:f5:99:3e:72:1d:92:75:43:21:ad: 50:74:58:0f:52:6a:7a:79:cf:70:5b:18:68:cd:5b: d4:b8:00:a0:67:62:26:1d:fd:1a:ae:59:8c:c2:eb: 4e:82:cf:05:c4:88:63:2d:0b:66:f2:8e:9c:65:9f: 21:ba:d2:ca:76:d1:25:d0:67:ce:05:8e:78:d8:f9: fa:69:bf:e5:6b:cf:2b:78:99:5e:4d:a2:84:18:47: 43:b6:f6:a1:20:02:72:13:32:cc:49:d8:ce:d0:42: dd:c4:4b:b1:24:0e:45:15:ca:8d:28:aa:48:ec:c6: 67:8c:7a:0b:12:65:33:af:cb:31:8d:ec:22:97:66: f8:cd:cb:9b:df:ed:45:78:17:31:f5:9f:47:f6:37: f1:54:4b:1d:f9:c3:13:5c:4c:60:fa:20:28:38:25: df:ff:f0:ed:89:31:e7:af:3b:cd:97:6e:bb:98:00: 70:71:b0:c9:d6:31:46:a9:91:fa:31:a7:62:e1:5d: 04:83:4a:05:df:6c:bb:30:5d:73:91:be:54:e9:f5: 8e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:AD:0A:56:6E:94:86:64:34:45:A7:1F:B9:13:FF:F1:5A:D4:C8:4F X509v3 Authority Key Identifier: keyid:D7:15:18:FC:6E:56:C7:C4:EC:A9:EA:18:B1:B5:41:D8:B0:C2:CA:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172D65/4F421F523B0B11ECAA25E33AC4F9AE02/1xUY_G5Wx8TsqeoYsbVB2LDCyiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1xUY_G5Wx8TsqeoYsbVB2LDCyiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172D65/4F421F523B0B11ECAA25E33AC4F9AE02/C808B8703B0F11ECA663EE27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.137.0/24 Signature Algorithm: sha256WithRSAEncryption 51:fb:36:2e:69:1f:e9:a7:ef:97:db:03:e7:0c:54:80:62:f0: 24:2d:44:8d:a9:7a:51:6b:d8:5a:a1:a1:cd:b0:b2:4c:87:8e: e2:3c:e5:61:e7:40:6d:78:97:5b:c9:f9:65:01:0a:b8:37:4e: 81:0e:26:54:dd:ac:53:29:93:55:98:d4:23:91:d7:92:18:0c: 78:d0:fa:3d:cb:58:80:b4:7c:9f:56:a9:ae:90:5e:1f:e8:f5: 4a:99:8c:17:e0:db:40:5f:b1:39:35:e5:f0:08:c4:02:f4:4b: b8:f3:21:93:0d:c3:db:40:f3:41:5f:63:45:6a:cd:de:04:4a: 73:b8:21:60:8b:09:9b:3a:ba:9e:4b:40:31:59:91:6e:7f:90: 8f:c2:f4:eb:e6:5b:66:45:c4:39:c0:7b:bb:ea:9a:55:35:4a: ad:01:1c:ee:20:c6:29:c7:42:1b:17:30:6f:37:1d:fb:43:47: 8a:5a:57:52:b6:56:6c:77:23:70:0a:ca:12:d9:a6:db:38:a4: 0b:89:51:78:d5:c0:22:bc:6d:34:37:8e:30:68:56:87:b4:8d: 0a:ec:92:94:81:0b:e6:2d:38:83:34:77:2f:84:66:60:cc:4b: d0:42:17:de:e2:f9:26:9f:8d:fe:8c:f4:2f:9b:e8:d2:4e:f7: 66:ce:de:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJENjUxMTAvBgNVBAUTKEQ3MTUxOEZDNkU1NkM3QzRFQ0E5RUExOEIxQjU0MUQ4 QjBDMkNBMjIwHhcNMjQxMDAxMDA0MzU4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZiNDVjZS0zNzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA12oSOFYi+iWHmQqfLs/+ldR6WO6KlK9cp5MRJHqidcQlnr2jUEGBxwMkWbhK tkmZzfWZPnIdknVDIa1QdFgPUmp6ec9wWxhozVvUuACgZ2ImHf0arlmMwutOgs8F xIhjLQtm8o6cZZ8hutLKdtEl0GfOBY542Pn6ab/la88reJleTaKEGEdDtvahIAJy EzLMSdjO0ELdxEuxJA5FFcqNKKpI7MZnjHoLEmUzr8sxjewil2b4zcub3+1FeBcx 9Z9H9jfxVEsd+cMTXExg+iAoOCXf//DtiTHnrzvNl267mABwcbDJ1jFGqZH6Madi 4V0Eg0oF32y7MF1zkb5U6fWO1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNetClZu lIZkNEWnH7kT//Fa1MhPMB8GA1UdIwQYMBaAFNcVGPxuVsfE7KnqGLG1Qdiwwsoi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkQ2NS80RjQyMUY1MjNC MEIxMUVDQUEyNUUzM0FDNEY5QUUwMi8xeFVZX0c1V3g4VHNxZW9Zc2JWQjJMREN5 aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzF4VVlfRzVXeDhUc3Flb1lzYlZCMkxEQ3lpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJENjUvNEY0MjFGNTIzQjBCMTFFQ0FBMjVFMzNBQzRGOUFFMDIvQzgwOEI4NzAz QjBGMTFFQ0E2NjNFRTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrIkwDQYJKoZIhvcNAQELBQADggEBAFH7Ni5pH+mn75fb A+cMVIBi8CQtRI2pelFr2Fqhoc2wskyHjuI85WHnQG14l1vJ+WUBCrg3ToEOJlTd rFMpk1WY1COR15IYDHjQ+j3LWIC0fJ9Wqa6QXh/o9UqZjBfg20BfsTk15fAIxAL0 S7jzIZMNw9tA80FfY0Vqzd4ESnO4IWCLCZs6up5LQDFZkW5/kI/C9OvmW2ZFxDnA e7vqmlU1Sq0BHO4gxinHQhsXMG83HftDR4paV1K2Vmx3I3AKyhLZpts4pAuJUXjV wCK8bTQ3jjBoVoe0jQrskpSBC+YtOIM0dy+EZmDMS9BCF97i+Safjf6M9C+b6NJO 92bO3oQ= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:35 2024 by rpki-client on console-fra.rpki-client.org