$ rpki-client -vvf rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa File: 9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa (raw, json) Hash identifier: Qjxn6w7Ee9ThTcgQANjHHala94faSmJcpibAc70oZYM= Subject key identifier: 62:75:A7:B9:64:C6:84:F3:E2:AB:10:BF:46:FF:24:9A:BA:47:26:8B Certificate issuer: /CN=A9173C8A/serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Certificate serial: 17FA Authority key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa Signing time: Fri 22 Dec 2023 17:04:21 +0000 ROA not before: Fri 22 Dec 2023 17:04:21 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136004 IP address blocks: 103.79.117.0/24 maxlen: 24 103.99.176.0/23 maxlen: 23 103.99.176.0/24 maxlen: 24 103.99.177.0/24 maxlen: 24 103.120.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:29:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6138 (0x17fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173C8A/serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E Validity Not Before: Dec 22 17:04:21 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6585c195-dbc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b2:cb:a5:86:61:25:d1:ec:7d:ee:91:8d:47: 3e:80:d1:51:52:fe:f4:85:cf:8d:a0:f2:c5:5a:11: b7:53:d3:af:06:69:12:4c:28:c3:46:b4:00:c7:9a: 84:2e:59:c4:cf:bf:b8:da:63:40:84:72:5f:c8:2b: e6:52:d6:05:6a:6a:3a:02:6b:bf:48:0f:1c:05:3c: 28:6a:70:74:e9:09:92:c8:ec:fa:bf:df:db:fe:08: 25:24:ee:8d:6b:b9:32:10:5f:b0:db:af:b2:36:94: c4:ea:dd:ec:02:aa:a8:93:a2:8f:b6:6e:9a:30:17: ed:58:fd:68:bc:99:3a:33:94:eb:a0:15:7e:e7:4c: b7:57:bd:6d:38:66:69:8f:77:f9:ac:04:3d:49:2f: 95:b2:2d:1f:de:94:01:87:ab:0d:2d:26:46:1b:0f: 68:ac:a9:fa:d2:dd:59:b0:19:0a:19:59:0d:59:80: 30:bf:be:8e:c3:a4:59:cf:18:49:36:97:09:34:b2: fd:3e:6f:f6:a8:e4:95:7f:85:50:e0:92:71:c5:09: 89:9e:6c:79:06:34:c1:82:fa:c0:91:be:68:3d:26: cf:62:0f:94:1e:8d:92:08:e3:36:10:04:2c:08:82: 10:e3:c4:0e:55:7f:cc:0a:d6:6a:d3:e3:eb:e9:af: 68:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:75:A7:B9:64:C6:84:F3:E2:AB:10:BF:46:FF:24:9A:BA:47:26:8B X509v3 Authority Key Identifier: keyid:4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/9FD5C8F48EFE11E88C6EBD37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.117.0/24 103.99.176.0/23 103.120.110.0/24 Signature Algorithm: sha256WithRSAEncryption 94:b9:67:29:55:21:bc:b2:73:af:79:e5:54:5e:b4:d2:3e:38: 42:3d:0d:d9:97:32:4c:d9:9c:9a:c4:cb:4a:2b:9a:c3:ee:00: 8b:20:bd:ce:4a:14:51:f8:6e:91:f3:ac:51:80:da:9b:33:a4: 44:1f:ff:d1:ef:5d:f8:02:7d:ea:b6:cd:ca:e8:e5:89:9a:bc: 50:fc:a9:19:35:a4:dc:63:a2:4d:14:91:03:5a:f2:55:af:6a: 1e:28:30:93:0c:00:b1:ad:2c:05:5a:71:a2:e5:4d:ae:e3:9f: 01:53:b1:26:c6:b7:a6:bf:d1:5b:de:80:ba:03:0f:87:f0:98: 76:3a:5f:6d:79:38:4b:3d:56:a1:32:f8:ff:d3:44:cf:c7:6c: a3:41:8a:e2:8f:f4:84:ce:c6:a2:5c:47:d1:94:c8:12:eb:7d: d5:46:de:e9:c2:62:1e:a4:64:58:dc:da:68:f4:a5:84:68:25: 30:42:9f:6b:83:61:87:32:cb:d4:16:8f:19:92:d7:9c:01:c4: 0b:de:e6:3a:34:f0:84:3a:82:59:4f:2c:f4:f7:ba:17:96:19: 56:81:53:02:84:2f:84:95:18:7a:be:2f:32:94:31:94:8c:21: f6:cb:0f:d6:d5:96:f1:39:81:93:c5:60:91:81:3b:e5:54:e6: 13:55:99:a1 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICF/owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDOEExMTAvBgNVBAUTKDRFMkIyMEQ5NTM3MzJCNzVFRUQxMkYxMjk5MjFBMEIx QjVFQjE1OEUwHhcNMjMxMjIyMTcwNDIxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg1YzE5NS1kYmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA37LLpYZhJdHsfe6RjUc+gNFRUv70hc+NoPLFWhG3U9OvBmkSTCjDRrQAx5qE LlnEz7+42mNAhHJfyCvmUtYFamo6Amu/SA8cBTwoanB06QmSyOz6v9/b/gglJO6N a7kyEF+w26+yNpTE6t3sAqqok6KPtm6aMBftWP1ovJk6M5TroBV+50y3V71tOGZp j3f5rAQ9SS+Vsi0f3pQBh6sNLSZGGw9orKn60t1ZsBkKGVkNWYAwv76Ow6RZzxhJ NpcJNLL9Pm/2qOSVf4VQ4JJxxQmJnmx5BjTBgvrAkb5oPSbPYg+UHo2SCOM2EAQs CIIQ48QOVX/MCtZq0+Pr6a9oswIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGJ1p7lk xoTz4qsQv0b/JJq6RyaLMB8GA1UdIwQYMBaAFE4rINlTcyt17tEvEpkhoLG16xWO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0M4QS9FN0ZGQzVGNDg2 RjcxMUU3ODYzNEVDN0VDNEY5QUUwMi9UaXNnMlZOekszWHUwUzhTbVNHZ3NiWHJG WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Rpc2cyVk56SzNYdTBTOFNtU0dnc2JYckZZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNDOEEvRTdGRkM1RjQ4NkY3MTFFNzg2MzRFQzdFQzRGOUFFMDIvOUZENUM4RjQ4 RUZFMTFFODhDNkVCRDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnT3UDBAFnY7ADBABneG4wDQYJKoZIhvcNAQELBQADggEB AJS5ZylVIbyyc6955VRetNI+OEI9DdmXMkzZnJrEy0ormsPuAIsgvc5KFFH4bpHz rFGA2pszpEQf/9HvXfgCfeq2zcro5YmavFD8qRk1pNxjok0UkQNa8lWvah4oMJMM ALGtLAVacaLlTa7jnwFTsSbGt6a/0VvegLoDD4fwmHY6X215OEs9VqEy+P/TRM/H bKNBiuKP9ITOxqJcR9GUyBLrfdVG3unCYh6kZFjc2mj0pYRoJTBCn2uDYYcyy9QW jxmS15wBxAve5jo08IQ6gllPLPT3uheWGVaBUwKEL4SVGHq+LzKUMZSMIfbLD9bV lvE5gZPFYJGBO+VU5hNVmaE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org