$ rpki-client -vvf rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/A6556900C0DF11EE9BA7B27AC4F9AE02.roa File: A6556900C0DF11EE9BA7B27AC4F9AE02.roa (raw, json) Hash identifier: EgfWV3bjapet1pWv+VKLGp7GszirbkxZGbTbDfXNKuw= Subject key identifier: C2:22:95:5D:2D:3E:D8:75:EB:59:54:D7:4A:9E:B3:2A:E3:FE:FE:5A Certificate issuer: /CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Certificate serial: 05F8 Authority key identifier: 47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/A6556900C0DF11EE9BA7B27AC4F9AE02.roa Signing time: Sat 02 Nov 2024 07:12:43 +0000 ROA not before: Sat 02 Nov 2024 07:12:43 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139325 IP address blocks: 103.164.255.0/24 maxlen: 24 2001:df6:5480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1528 (0x5f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173DB5/serialNumber=47EC53BFDD351320E89B2C541BACDD4D8D52A0B3 Validity Not Before: Nov 2 07:12:43 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6725d0eb-601b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b7:99:fe:1c:62:5a:18:ec:5a:48:69:f0:2f: 43:7c:17:fc:a2:ed:65:2f:3a:d6:c1:0d:3d:94:60: ac:c1:f2:de:ec:ba:9f:ba:70:6b:1f:70:52:5f:18: 21:e1:55:9d:5d:d0:45:99:24:18:78:08:c1:46:dc: 3f:6e:93:46:7a:3c:a4:ff:a6:13:b8:6c:e6:e7:15: 95:26:72:5e:b3:f3:ad:c7:46:b0:e9:56:46:11:e5: 56:c1:80:a5:87:f2:66:56:d5:4b:39:56:73:eb:04: 5e:aa:2c:b9:b8:61:c7:07:90:a9:44:72:98:9e:90: 5c:9e:11:f1:af:c3:82:ef:84:87:77:b8:dc:77:ff: b4:d1:37:1f:36:fa:ab:ac:8b:63:59:99:f5:dc:22: 7b:e3:f3:ff:85:09:f9:15:28:e2:52:cb:8b:d6:07: 92:92:85:f8:17:05:76:ae:89:f4:c6:28:31:12:53: 77:31:18:cf:02:9d:6f:0c:b9:cc:46:71:b4:4e:05: 27:56:1d:00:ec:65:5b:95:bc:91:2b:1c:97:aa:74: c5:a7:cd:49:93:1c:72:f5:87:3d:73:23:8e:7a:21: 22:bf:c7:2a:d1:86:5c:3a:48:5f:a8:c0:af:64:4c: 03:e5:b8:59:b6:95:d3:08:39:bf:65:97:91:0a:ef: 87:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:22:95:5D:2D:3E:D8:75:EB:59:54:D7:4A:9E:B3:2A:E3:FE:FE:5A X509v3 Authority Key Identifier: keyid:47:EC:53:BF:DD:35:13:20:E8:9B:2C:54:1B:AC:DD:4D:8D:52:A0:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/R-xTv901EyDomyxUG6zdTY1SoLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R-xTv901EyDomyxUG6zdTY1SoLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173DB5/0C999EC08FA111EBA220661EC4F9AE02/A6556900C0DF11EE9BA7B27AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.255.0/24 IPv6: 2001:df6:5480::/48 Signature Algorithm: sha256WithRSAEncryption 9d:fd:d2:db:55:05:64:fb:e5:2c:ec:fa:cb:71:2c:52:66:c7: 30:35:46:9c:fe:76:bb:56:76:a0:28:08:c4:58:b3:7a:05:2f: 10:b8:64:67:a0:12:c3:11:df:49:c5:81:86:67:08:91:b0:9d: 5e:5f:71:41:04:f0:08:1b:9f:e3:36:57:90:1e:07:99:6c:01: 74:df:e9:7d:f8:cd:44:17:8d:50:4b:9b:cc:63:b6:d2:8e:5d: e1:5a:bb:a1:84:16:97:be:05:74:cd:b7:c1:83:4a:7e:29:cc: bb:96:db:78:b6:b0:08:a6:0f:8f:2c:82:e0:df:e1:65:fb:01: 6d:2b:ec:49:0b:a6:37:fb:88:83:1b:e7:6f:a2:c5:a0:e3:a8: 08:88:af:78:20:51:94:ec:e4:f5:06:94:90:b4:c6:ea:9a:18: 92:ed:b2:ef:b7:d3:66:a1:5c:f6:88:b7:2e:f5:13:07:5d:ed: f2:cf:94:c6:7d:46:18:fd:8c:20:2c:ba:24:77:54:89:f7:87: ec:7b:ac:9e:4e:58:4a:57:8c:0b:80:31:1d:09:23:e3:7c:32: bc:33:5b:d9:1b:98:e1:d6:58:a4:05:c4:37:e0:10:d5:2c:3e: 78:3b:51:31:69:04:11:0c:f2:ca:79:72:4a:7d:ca:4f:a3:72: 46:c1:e4:56 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBfgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNEQjUxMTAvBgNVBAUTKDQ3RUM1M0JGREQzNTEzMjBFODlCMkM1NDFCQUNERDRE OEQ1MkEwQjMwHhcNMjQxMTAyMDcxMjQzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI1ZDBlYi02MDFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxbeZ/hxiWhjsWkhp8C9DfBf8ou1lLzrWwQ09lGCswfLe7LqfunBrH3BSXxgh 4VWdXdBFmSQYeAjBRtw/bpNGejyk/6YTuGzm5xWVJnJes/Otx0aw6VZGEeVWwYCl h/JmVtVLOVZz6wReqiy5uGHHB5CpRHKYnpBcnhHxr8OC74SHd7jcd/+00TcfNvqr rItjWZn13CJ74/P/hQn5FSjiUsuL1geSkoX4FwV2ron0xigxElN3MRjPAp1vDLnM RnG0TgUnVh0A7GVblbyRKxyXqnTFp81Jkxxy9Yc9cyOOeiEiv8cq0YZcOkhfqMCv ZEwD5bhZtpXTCDm/ZZeRCu+HEwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMIilV0t Pth161lU10qesyrj/v5aMB8GA1UdIwQYMBaAFEfsU7/dNRMg6JssVBus3U2NUqCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0RCNS8wQzk5OUVDMDhG QTExMUVCQTIyMDY2MUVDNEY5QUUwMi9SLXhUdjkwMUV5RG9teXhVRzZ6ZFRZMVNv TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IteFR2OTAxRXlEb215eFVHNnpkVFkxU29MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNEQjUvMEM5OTlFQzA4RkExMTFFQkEyMjA2NjFFQzRGOUFFMDIvQTY1NTY5MDBD MERGMTFFRTlCQTdCMjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnpP8wDwQCAAIwCQMHACABDfZUgDANBgkqhkiG9w0BAQsF AAOCAQEAnf3S21UFZPvlLOz6y3EsUmbHMDVGnP52u1Z2oCgIxFizegUvELhkZ6AS wxHfScWBhmcIkbCdXl9xQQTwCBuf4zZXkB4HmWwBdN/pffjNRBeNUEubzGO20o5d 4Vq7oYQWl74FdM23wYNKfinMu5bbeLawCKYPjyyC4N/hZfsBbSvsSQumN/uIgxvn b6LFoOOoCIiveCBRlOzk9QaUkLTG6poYku2y77fTZqFc9oi3LvUTB13t8s+Uxn1G GP2MICy6JHdUifeH7Husnk5YSleMC4AxHQkj43wyvDNb2RuY4dZYpAXEN+AQ1Sw+ eDtRMWkEEQzyynlySn3KT6NyRsHkVg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:42 2024 by rpki-client on console-ams.rpki-client.org