$ rpki-client -vvf rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/7592203EB1B111E999187E66C4F9AE02.roa File: 7592203EB1B111E999187E66C4F9AE02.roa (raw, json) Hash identifier: s8Tfq8O3npvmSnrIe4pOAYPUbkHMr5QUW6XBOTRm31w= Subject key identifier: 91:51:D1:28:28:E5:3B:BB:34:E7:7D:A8:03:69:94:D2:27:4A:ED:56 Certificate issuer: /CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Certificate serial: 0D72 Authority key identifier: 1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/7592203EB1B111E999187E66C4F9AE02.roa Signing time: Wed 04 Sep 2024 18:36:39 +0000 ROA not before: Wed 04 Sep 2024 18:36:39 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135366 IP address blocks: 103.99.160.0/22 maxlen: 22 103.99.160.0/23 maxlen: 23 103.99.160.0/24 maxlen: 24 103.99.161.0/24 maxlen: 24 103.99.162.0/23 maxlen: 23 103.99.162.0/24 maxlen: 24 103.99.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174A4F/serialNumber=1E0A938A4DC7D3BAD4F5F965DCD55E0B298C42DB Validity Not Before: Sep 4 18:36:39 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d8a8b7-b376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:2b:73:32:40:7b:08:8a:ee:59:5f:b5:6c:0e: 87:49:fc:7c:b4:66:30:9c:6a:1e:73:b1:eb:9c:82: 1a:45:a8:e0:ad:30:ee:be:13:40:cb:55:ee:19:68: b2:a8:10:a5:b3:05:d0:12:8e:29:0c:3b:2f:7b:9e: 55:6f:6b:1a:c7:0e:6e:e4:51:be:45:de:e2:6f:86: 14:74:9e:63:35:e3:0b:af:68:93:22:ca:8f:d0:5a: be:46:24:4d:0e:16:73:04:ca:11:5f:05:66:b9:b7: 30:3a:4a:7e:5d:20:d4:6c:99:7c:15:20:e9:2e:61: cc:7f:07:46:b1:0f:92:61:e3:04:47:f4:5c:b4:24: 29:61:16:a7:87:cc:7c:74:81:04:94:f4:9c:67:ce: 04:c8:41:dc:85:1d:aa:84:b1:38:48:74:47:06:23: 4a:de:d7:51:4b:5a:7a:1b:c0:b3:4f:6e:79:ac:ff: 58:7b:14:4b:5e:c0:5b:31:25:8e:70:d6:df:a0:9f: 1b:7a:c7:33:56:21:f7:8b:d7:5c:79:61:a5:02:8a: 17:f6:ae:68:6d:47:e6:3e:19:c8:93:17:3c:6b:af: ab:84:bc:76:b0:ab:9d:fc:cc:95:a6:21:0f:1d:b4: b5:83:56:e0:ff:2b:08:ac:8d:45:c2:15:36:aa:69: a0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:51:D1:28:28:E5:3B:BB:34:E7:7D:A8:03:69:94:D2:27:4A:ED:56 X509v3 Authority Key Identifier: keyid:1E:0A:93:8A:4D:C7:D3:BA:D4:F5:F9:65:DC:D5:5E:0B:29:8C:42:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/HgqTik3H07rU9fll3NVeCymMQts.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HgqTik3H07rU9fll3NVeCymMQts.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174A4F/E5295C48B1AF11E985975A63C4F9AE02/7592203EB1B111E999187E66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.160.0/22 Signature Algorithm: sha256WithRSAEncryption 00:ec:6c:17:2c:f8:34:8f:ef:ec:83:65:e1:45:82:80:ff:51: 0a:b5:08:57:9d:aa:5c:29:b7:dc:41:10:8f:4a:7b:60:12:5b: be:13:db:38:98:62:b3:27:f7:dd:cd:75:48:93:fb:9d:75:65: 13:41:cc:7e:9d:b5:ee:76:cf:f7:95:3e:72:e2:88:33:fa:73: 48:8b:d8:8b:3c:6b:16:00:c9:c8:69:43:4b:8c:b0:fa:40:08: 28:ac:4b:4f:f7:dc:fd:a7:1c:4f:ff:7c:0c:a3:6b:7e:e6:89: ae:ba:5f:ea:48:f6:e6:f3:f2:06:51:a7:b4:90:d3:53:89:a8: fc:51:dc:1a:47:6d:99:54:5b:fc:9f:20:e0:a1:d7:a1:f7:da: 79:44:c6:8a:5e:63:d0:43:c4:95:3c:59:1a:bc:2d:e7:5c:30: b7:62:79:3d:e2:fd:e6:4e:0d:0e:dc:86:bb:19:e8:a7:92:66: f9:e4:e5:38:c1:01:50:e2:f4:73:ed:33:8a:e9:69:68:50:4f: fa:e3:ee:a3:2d:88:d9:03:72:64:76:8a:83:34:a9:3d:9d:b6: bc:70:b6:6e:4a:e9:0c:8c:6f:c1:45:0b:8f:50:b3:8d:79:bc: 7e:d6:93:41:5a:42:5d:e0:96:c8:c4:5a:c8:9b:d1:69:b4:25: 83:a1:8d:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRBNEYxMTAvBgNVBAUTKDFFMEE5MzhBNERDN0QzQkFENEY1Rjk2NURDRDU1RTBC Mjk4QzQyREIwHhcNMjQwOTA0MTgzNjM5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4YThiNy1iMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCtzMkB7CIruWV+1bA6HSfx8tGYwnGoec7HrnIIaRajgrTDuvhNAy1XuGWiy qBClswXQEo4pDDsve55Vb2saxw5u5FG+Rd7ib4YUdJ5jNeMLr2iTIsqP0Fq+RiRN DhZzBMoRXwVmubcwOkp+XSDUbJl8FSDpLmHMfwdGsQ+SYeMER/RctCQpYRanh8x8 dIEElPScZ84EyEHchR2qhLE4SHRHBiNK3tdRS1p6G8CzT255rP9YexRLXsBbMSWO cNbfoJ8besczViH3i9dceWGlAooX9q5obUfmPhnIkxc8a6+rhLx2sKud/MyVpiEP HbS1g1bg/ysIrI1FwhU2qmmg/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJFR0Sgo 5Tu7NOd9qANplNInSu1WMB8GA1UdIwQYMBaAFB4Kk4pNx9O61PX5ZdzVXgspjELb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEE0Ri9FNTI5NUM0OEIx QUYxMUU5ODU5NzVBNjNDNEY5QUUwMi9IZ3FUaWszSDA3clU5ZmxsM05WZUN5bU1R dHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hncVRpazNIMDdyVTlmbGwzTlZlQ3ltTVF0cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRBNEYvRTUyOTVDNDhCMUFGMTFFOTg1OTc1QTYzQzRGOUFFMDIvNzU5MjIwM0VC MUIxMTFFOTk5MTg3RTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnY6AwDQYJKoZIhvcNAQELBQADggEBAADsbBcs+DSP7+yD ZeFFgoD/UQq1CFedqlwpt9xBEI9Ke2ASW74T2ziYYrMn993NdUiT+511ZRNBzH6d te52z/eVPnLiiDP6c0iL2Is8axYAychpQ0uMsPpACCisS0/33P2nHE//fAyja37m ia66X+pI9ubz8gZRp7SQ01OJqPxR3BpHbZlUW/yfIOCh16H32nlExopeY9BDxJU8 WRq8LedcMLdieT3i/eZODQ7chrsZ6KeSZvnk5TjBAVDi9HPtM4rpaWhQT/rj7qMt iNkDcmR2ioM0qT2dtrxwtm5K6QyMb8FFC49Qs415vH7Wk0FaQl3glsjEWsib0Wm0 JYOhjWE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org