$ rpki-client -vvf rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/CC5C527A0AA611EE84B0053DC4F9AE02.roa File: CC5C527A0AA611EE84B0053DC4F9AE02.roa (raw, json) Hash identifier: 2k3mmFRSm00PZ1eU/1nDOAndoGHlqgxcb+UsBjNPu14= Subject key identifier: F8:18:E7:0D:F4:BF:C5:6A:AB:31:AE:C9:34:97:A4:A4:C8:88:37:E1 Certificate issuer: /CN=A9174C15/serialNumber=C7B0004FF6B18688C197BC4B39FAC125D49FBCF9 Certificate serial: 0498 Authority key identifier: C7:B0:00:4F:F6:B1:86:88:C1:97:BC:4B:39:FA:C1:25:D4:9F:BC:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7AAT_axhojBl7xLOfrBJdSfvPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/CC5C527A0AA611EE84B0053DC4F9AE02.roa Signing time: Thu 19 Sep 2024 00:03:37 +0000 ROA not before: Thu 19 Sep 2024 00:03:37 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.172.141.0/24 maxlen: 24 2407:d4c0:1000::/40 maxlen: 40 2407:d4c0:1000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/x7AAT_axhojBl7xLOfrBJdSfvPk.crl rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/x7AAT_axhojBl7xLOfrBJdSfvPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7AAT_axhojBl7xLOfrBJdSfvPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174C15 Validity Not Before: Sep 19 00:03:37 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eb6a59-9d33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b4:56:fc:bd:e2:82:61:77:5d:02:ca:48:ba: 84:af:25:eb:f2:f9:88:9d:83:29:f5:99:97:48:54: 6e:79:6d:45:3c:1e:fc:51:03:4b:9d:25:c8:b9:ef: 55:47:f7:a4:db:b6:c4:e0:8c:95:da:79:ef:84:a9: f6:c3:90:8e:ea:a0:d5:46:6e:ab:e4:cd:65:e2:55: 53:a9:a0:c1:31:0f:5e:f0:2a:41:8e:68:17:e9:2a: 80:3d:1a:4c:c8:d7:01:17:b1:1e:64:84:cf:ff:f5: 89:5d:1f:ec:29:3d:91:6c:d5:d1:45:40:09:64:fa: 17:5c:e8:ba:43:e5:5f:d1:22:c9:b3:44:d6:46:a8: 2b:9b:1c:ce:3c:75:66:e8:60:d3:0b:0b:ac:9e:18: 8f:9b:1b:78:31:e3:26:29:5d:7e:20:70:0c:8e:4f: 3e:1f:74:61:fb:e6:c7:73:c1:6a:81:d8:91:28:63: 74:1e:13:35:09:49:79:bf:cc:1b:57:0c:53:f7:d3: dc:f8:37:e5:5d:c1:84:00:14:51:b1:16:0a:7d:06: 37:b5:2d:9c:5b:63:83:50:3f:1f:cc:88:bf:ea:92: 16:50:42:92:4d:25:c7:24:d8:2e:88:5f:72:06:a3: 45:44:1a:ff:b1:3a:91:73:9d:96:cf:1e:4b:b4:05: f4:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:18:E7:0D:F4:BF:C5:6A:AB:31:AE:C9:34:97:A4:A4:C8:88:37:E1 X509v3 Authority Key Identifier: keyid:C7:B0:00:4F:F6:B1:86:88:C1:97:BC:4B:39:FA:C1:25:D4:9F:BC:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/x7AAT_axhojBl7xLOfrBJdSfvPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7AAT_axhojBl7xLOfrBJdSfvPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174C15/AC9C6B500A4411EC94797E53C4F9AE02/CC5C527A0AA611EE84B0053DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.141.0/24 IPv6: 2407:d4c0:1000::/40 Signature Algorithm: sha256WithRSAEncryption 25:ab:26:ec:99:28:d1:9e:d2:2d:30:70:4a:7a:ba:38:25:01: d0:49:4d:69:b6:44:68:63:9a:b0:5a:2b:65:98:ce:77:cb:4f: 33:a9:b3:1d:5a:42:c9:f2:db:0b:49:b8:8f:49:b1:6a:d0:50: 8a:83:6b:27:57:c4:3f:d4:45:c9:ab:38:5e:47:d4:f1:32:af: f2:37:68:48:45:38:76:e8:af:09:24:13:f5:a5:29:89:84:e6: 1b:b7:28:be:c3:0d:b1:64:26:39:44:f6:52:89:08:17:f6:e1: 73:8d:86:92:ab:99:80:53:43:c6:9a:c2:b2:66:9b:19:61:6b: 5d:04:5b:a2:1b:2a:5b:93:ea:bf:f2:29:d8:90:57:3e:04:1f: 0c:bf:a8:2e:7e:95:fa:90:da:62:4d:aa:32:78:4b:e5:97:db: bb:56:7f:e8:38:5b:b3:40:c1:67:58:c8:11:e6:48:5b:e8:70: 2b:e8:b3:84:c8:81:83:56:2b:02:d4:7b:23:c7:ee:bd:26:a5: 4f:0a:5d:fa:d6:06:22:cb:d1:a9:18:16:e1:ae:12:60:d7:ed: 64:07:86:68:b5:7b:58:1f:11:57:d2:a7:4c:ec:9e:15:46:87: 1e:fc:e1:0b:66:c5:66:5f:d4:0b:46:ad:6f:84:6d:37:35:9d: 23:60:24:aa -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRDMTUxMTAvBgNVBAUTKEM3QjAwMDRGRjZCMTg2ODhDMTk3QkM0QjM5RkFDMTI1 RDQ5RkJDRjkwHhcNMjQwOTE5MDAwMzM3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmViNmE1OS05ZDMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrRW/L3igmF3XQLKSLqEryXr8vmInYMp9ZmXSFRueW1FPB78UQNLnSXIue9V R/ek27bE4IyV2nnvhKn2w5CO6qDVRm6r5M1l4lVTqaDBMQ9e8CpBjmgX6SqAPRpM yNcBF7EeZITP//WJXR/sKT2RbNXRRUAJZPoXXOi6Q+Vf0SLJs0TWRqgrmxzOPHVm 6GDTCwusnhiPmxt4MeMmKV1+IHAMjk8+H3Rh++bHc8FqgdiRKGN0HhM1CUl5v8wb VwxT99Pc+DflXcGEABRRsRYKfQY3tS2cW2ODUD8fzIi/6pIWUEKSTSXHJNguiF9y BqNFRBr/sTqRc52Wzx5LtAX0uQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFPgY5w30 v8VqqzGuyTSXpKTIiDfhMB8GA1UdIwQYMBaAFMewAE/2sYaIwZe8Szn6wSXUn7z5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEMxNS9BQzlDNkI1MDBB NDQxMUVDOTQ3OTdFNTNDNEY5QUUwMi94N0FBVF9heGhvakJsN3hMT2ZyQkpkU2Z2 UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3QUFUX2F4aG9qQmw3eExPZnJCSmRTZnZQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRDMTUvQUM5QzZCNTAwQTQ0MTFFQzk0Nzk3RTUzQzRGOUFFMDIvQ0M1QzUyN0Ew QUE2MTFFRTg0QjAwNTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnrI0wDgQCAAIwCAMGACQH1MAQMA0GCSqGSIb3DQEBCwUA A4IBAQAlqybsmSjRntItMHBKero4JQHQSU1ptkRoY5qwWitlmM53y08zqbMdWkLJ 8tsLSbiPSbFq0FCKg2snV8Q/1EXJqzheR9TxMq/yN2hIRTh26K8JJBP1pSmJhOYb tyi+ww2xZCY5RPZSiQgX9uFzjYaSq5mAU0PGmsKyZpsZYWtdBFuiGypbk+q/8inY kFc+BB8Mv6gufpX6kNpiTaoyeEvll9u7Vn/oOFuzQMFnWMgR5khb6HAr6LOEyIGD VisC1Hsjx+69JqVPCl361gYiy9GpGBbhrhJg1+1kB4ZotXtYHxFX0qdM7J4VRoce /OELZsVmX9QLRq1vhG03NZ0jYCSq -----END CERTIFICATE-----Generated at Sun Feb 16 15:19:25 2025 by rpki-client