$ rpki-client -vvf rpki.apnic.net/member_repository/A9174C93/C8E8B1F60C2611EA80EF4041C4F9AE02/C300B2460C2811EAA5153045C4F9AE02.roa File: C300B2460C2811EAA5153045C4F9AE02.roa (raw, json) Hash identifier: E0+Wetfx26FkfR/4N1Ow0BnaKFJugSEUCFgfURwthKE= Subject key identifier: A9:00:E5:5A:39:22:DB:73:F7:16:BB:74:7D:20:DE:13:45:35:46:E8 Certificate issuer: /CN=A9174C93/serialNumber=1B041605D6D8386CF7225D679B410348991FE233 Certificate serial: 0B9F Authority key identifier: 1B:04:16:05:D6:D8:38:6C:F7:22:5D:67:9B:41:03:48:99:1F:E2:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwQWBdbYOGz3Il1nm0EDSJkf4jM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174C93/C8E8B1F60C2611EA80EF4041C4F9AE02/C300B2460C2811EAA5153045C4F9AE02.roa Signing time: Tue 10 Sep 2024 19:57:43 +0000 ROA not before: Tue 10 Sep 2024 19:57:43 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132622 IP address blocks: 103.73.196.0/22 maxlen: 24 103.237.76.0/22 maxlen: 24 2405:85c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174C93/C8E8B1F60C2611EA80EF4041C4F9AE02/GwQWBdbYOGz3Il1nm0EDSJkf4jM.crl rsync://rpki.apnic.net/member_repository/A9174C93/C8E8B1F60C2611EA80EF4041C4F9AE02/GwQWBdbYOGz3Il1nm0EDSJkf4jM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwQWBdbYOGz3Il1nm0EDSJkf4jM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2975 (0xb9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174C93/serialNumber=1B041605D6D8386CF7225D679B410348991FE233 Validity Not Before: Sep 10 19:57:43 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e0a4b7-2b9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:13:09:99:30:d0:8f:c5:1d:38:79:ee:10:9d: aa:16:f4:a1:f0:c2:9d:0b:d2:33:47:1f:2c:7e:10: b7:a1:3b:25:2c:a2:b3:06:ed:34:45:16:9e:90:8e: f3:ae:e4:d5:6d:f1:54:0e:f8:47:52:8e:fc:b7:01: ec:e9:d2:5f:d5:4c:86:b2:02:93:a1:af:e4:34:f2: 3c:3c:44:01:8d:66:b3:69:c2:08:10:0b:ce:4c:5b: de:32:42:45:c0:68:b2:1f:3d:54:8b:01:7e:b2:f6: 2e:ce:5c:87:c3:9d:13:87:43:cb:eb:7f:8c:12:1e: 45:26:a0:21:64:f6:7a:73:63:78:4b:09:d1:e4:6f: d1:7a:42:c2:d8:75:f6:7d:d1:07:a5:f6:f2:09:26: d3:41:9e:f0:25:04:bc:9e:86:4b:b7:26:d0:e5:fc: ff:a1:93:02:1e:f6:6c:46:c2:fe:db:3d:4f:f1:c7: 0b:f9:f5:ba:d4:5f:68:b5:96:57:00:73:7b:d2:26: 4f:cc:6e:8d:6d:fa:4a:2c:51:26:7d:94:24:b7:98: b7:b4:5b:60:79:14:f7:0e:01:8f:c6:16:2c:d5:c2: a8:ad:ef:60:63:f6:18:e7:43:a6:52:b4:12:cf:7e: 2f:6e:ae:39:4a:16:b3:c9:9a:0f:bc:83:3b:23:70: 9c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:00:E5:5A:39:22:DB:73:F7:16:BB:74:7D:20:DE:13:45:35:46:E8 X509v3 Authority Key Identifier: keyid:1B:04:16:05:D6:D8:38:6C:F7:22:5D:67:9B:41:03:48:99:1F:E2:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174C93/C8E8B1F60C2611EA80EF4041C4F9AE02/GwQWBdbYOGz3Il1nm0EDSJkf4jM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GwQWBdbYOGz3Il1nm0EDSJkf4jM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174C93/C8E8B1F60C2611EA80EF4041C4F9AE02/C300B2460C2811EAA5153045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.196.0/22 103.237.76.0/22 IPv6: 2405:85c0::/32 Signature Algorithm: sha256WithRSAEncryption 7f:bd:77:3d:94:15:38:a5:f2:ae:ba:fb:5d:26:00:d1:9f:19: 50:d3:f4:33:49:77:9a:57:5f:d3:89:3c:83:23:c8:a7:a0:47: e9:c3:33:40:2b:13:e5:9c:13:c2:45:43:42:e4:16:82:0e:48: 3b:1b:e7:ef:cc:d7:bc:68:cc:cc:9d:cd:b9:96:bb:c6:d4:21: 3f:63:2f:f3:1a:67:3d:9d:0e:28:f7:c3:30:b8:13:7b:f0:bf: 1b:46:5a:6c:6d:a7:e2:98:57:4b:94:87:a7:4a:19:f0:1d:dc: 67:58:57:02:e0:55:7c:95:32:c3:8a:6a:04:83:9b:59:5f:34: 32:30:b2:2d:6b:fa:86:b4:c6:7b:f6:2b:72:91:67:0c:33:68: 44:a7:08:9b:a1:40:64:cf:68:29:33:b6:a8:7d:db:ac:0b:3f: 9c:2d:0b:b7:00:db:5c:0a:b1:97:7c:32:bc:bb:f3:40:22:c3: 90:95:f0:96:aa:b2:c7:91:b5:0e:d0:b8:32:34:8b:6e:09:fa: ec:28:73:c0:70:cc:81:d1:39:4a:0f:a7:53:bf:a1:df:32:32: 9d:ae:4a:4b:2b:36:e9:b5:8c:f2:f1:d4:3d:55:96:35:35:77: ea:2d:d4:92:9d:7c:90:1c:c6:62:07:a7:e9:d9:ef:56:71:f5: 9c:2d:37:2a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzRDOTMxMTAvBgNVBAUTKDFCMDQxNjA1RDZEODM4NkNGNzIyNUQ2NzlCNDEwMzQ4 OTkxRkUyMzMwHhcNMjQwOTEwMTk1NzQzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwYTRiNy0yYjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxMJmTDQj8UdOHnuEJ2qFvSh8MKdC9IzRx8sfhC3oTslLKKzBu00RRaekI7z ruTVbfFUDvhHUo78twHs6dJf1UyGsgKToa/kNPI8PEQBjWazacIIEAvOTFveMkJF wGiyHz1UiwF+svYuzlyHw50Th0PL63+MEh5FJqAhZPZ6c2N4SwnR5G/RekLC2HX2 fdEHpfbyCSbTQZ7wJQS8noZLtybQ5fz/oZMCHvZsRsL+2z1P8ccL+fW61F9otZZX AHN70iZPzG6NbfpKLFEmfZQkt5i3tFtgeRT3DgGPxhYs1cKore9gY/YY50OmUrQS z34vbq45ShazyZoPvIM7I3CceQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFKkA5Vo5 Ittz9xa7dH0g3hNFNUboMB8GA1UdIwQYMBaAFBsEFgXW2Dhs9yJdZ5tBA0iZH+Iz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NEM5My9DOEU4QjFGNjBD MjYxMUVBODBFRjQwNDFDNEY5QUUwMi9Hd1FXQmRiWU9HejNJbDFubTBFRFNKa2Y0 ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d3UVdCZGJZT0d6M0lsMW5tMEVEU0prZjRqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzRDOTMvQzhFOEIxRjYwQzI2MTFFQTgwRUY0MDQxQzRGOUFFMDIvQzMwMEIyNDYw QzI4MTFFQUE1MTUzMDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnScQDBAJn7UwwDQQCAAIwBwMFACQFhcAwDQYJKoZIhvcN AQELBQADggEBAH+9dz2UFTil8q66+10mANGfGVDT9DNJd5pXX9OJPIMjyKegR+nD M0ArE+WcE8JFQ0LkFoIOSDsb5+/M17xozMydzbmWu8bUIT9jL/MaZz2dDij3wzC4 E3vwvxtGWmxtp+KYV0uUh6dKGfAd3GdYVwLgVXyVMsOKagSDm1lfNDIwsi1r+oa0 xnv2K3KRZwwzaESnCJuhQGTPaCkztqh926wLP5wtC7cA21wKsZd8Mry780Aiw5CV 8JaqsseRtQ7QuDI0i24J+uwoc8BwzIHROUoPp1O/od8yMp2uSksrNum1jPLx1D1V ljU1d+ot1JKdfJAcxmIHp+nZ71Zx9ZwtNyo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org