$ rpki-client -vvf rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/4002E4BA5A3B11EBA4020D68C4F9AE02.roa File: 4002E4BA5A3B11EBA4020D68C4F9AE02.roa (raw, json) Hash identifier: lEAUzX5yromH9S256XNG7qzmeT220WB95GeuIqYuZYY= Subject key identifier: 72:78:41:4B:7A:0A:59:34:9D:AC:DA:25:D7:32:7D:2B:44:25:47:07 Certificate issuer: /CN=A917C11A/serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Certificate serial: 05C3 Authority key identifier: DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/4002E4BA5A3B11EBA4020D68C4F9AE02.roa Signing time: Thu 04 Jan 2024 23:41:50 +0000 ROA not before: Thu 04 Jan 2024 23:41:50 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134474 IP address blocks: 103.160.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1475 (0x5c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C11A/serialNumber=DE8173E7D28FEAD1EC3A92C97658DA73285093E5 Validity Not Before: Jan 4 23:41:50 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6597423e-a8cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:3a:80:85:c4:0d:86:0c:65:38:ee:c5:bd:2e: 7f:b8:74:a3:f7:18:02:75:ad:29:85:b4:32:4e:99: 70:91:c9:e5:ca:bb:c9:2a:f8:ad:03:28:da:51:2a: aa:13:5f:ec:6b:85:19:7a:7f:f2:59:6f:35:e9:db: f0:d1:30:f9:da:98:13:fa:f5:1c:e8:1c:8b:3d:6f: a5:80:01:16:d9:56:b5:f6:eb:b5:1a:68:2f:98:7c: c8:a7:10:cf:2f:4c:6d:4a:b4:15:d0:73:59:1a:f1: 64:f8:59:53:16:2b:f3:83:f0:e6:aa:b3:06:01:2a: 53:41:f4:38:57:9e:45:cd:9b:7c:5b:af:10:e1:77: 6e:4e:e9:ce:de:09:46:9d:5d:ea:ef:32:ab:7f:38: 42:8c:27:b2:16:29:ca:8d:c4:6a:9c:7c:4e:05:d0: c6:79:68:00:ae:ef:e4:30:20:36:f4:75:f8:aa:3a: 8c:d8:7f:76:f5:bc:84:09:36:f4:f1:54:0b:10:57: b7:8f:2f:4f:97:b8:0e:3e:a6:02:d9:02:e3:17:82: ba:68:37:13:f3:61:3d:a3:ed:21:b6:6b:63:f1:93: a9:39:f2:b4:3f:6a:aa:3b:79:5f:29:e8:0d:43:b7: fd:c8:36:6b:c0:8a:23:ad:d7:98:2a:b4:3b:ff:a8: 86:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:78:41:4B:7A:0A:59:34:9D:AC:DA:25:D7:32:7D:2B:44:25:47:07 X509v3 Authority Key Identifier: keyid:DE:81:73:E7:D2:8F:EA:D1:EC:3A:92:C9:76:58:DA:73:28:50:93:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/3oFz59KP6tHsOpLJdljacyhQk-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3oFz59KP6tHsOpLJdljacyhQk-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C11A/C086EA985A3911EB8E59C266C4F9AE02/4002E4BA5A3B11EBA4020D68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.66.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:c5:a4:6f:84:a9:bf:8a:92:23:53:47:d7:98:ff:68:90:98: a8:cd:79:43:b9:fb:32:5e:29:46:e7:c5:b3:82:92:4c:c0:0f: f7:25:b1:ce:b0:e9:f1:75:45:d5:e4:3c:49:75:bd:2b:0b:31: c5:2b:d3:12:90:83:a7:a5:e2:91:f5:c9:e8:06:20:69:51:2a: 1b:8d:e1:a4:eb:2d:dc:e4:5e:53:24:8c:83:4d:bb:fc:07:89: 3e:14:50:3c:48:71:df:39:87:65:2e:07:12:b0:85:07:a5:f1: 8c:03:b1:0f:99:e3:3a:b4:fb:bf:24:60:e4:0e:10:4b:db:59: 98:c3:eb:10:9c:87:88:14:2a:d2:ab:52:e1:72:97:7e:38:b6: 30:74:db:c6:4d:56:d9:f4:c1:ea:c8:02:54:07:19:ec:d1:e8: 5c:be:b1:0e:2d:7b:79:99:b9:a8:c6:b4:47:c9:85:fc:d3:46: b3:c1:c4:87:e1:bf:0c:5c:21:76:43:3c:d8:b9:7b:07:d6:32: f6:4f:98:82:c1:d2:71:6c:2c:c9:d8:c6:3d:13:17:89:48:f9: 85:81:1d:b7:7c:4c:8f:1a:a7:f7:ca:5d:90:f9:bc:a5:7e:a3: 5d:80:29:df:35:60:5f:a9:30:74:d0:80:99:c8:3f:97:82:ea: bd:a6:64:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0MxMUExMTAvBgNVBAUTKERFODE3M0U3RDI4RkVBRDFFQzNBOTJDOTc2NThEQTcz Mjg1MDkzRTUwHhcNMjQwMTA0MjM0MTUwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3NDIzZS1hOGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApjqAhcQNhgxlOO7FvS5/uHSj9xgCda0phbQyTplwkcnlyrvJKvitAyjaUSqq E1/sa4UZen/yWW816dvw0TD52pgT+vUc6ByLPW+lgAEW2Va19uu1GmgvmHzIpxDP L0xtSrQV0HNZGvFk+FlTFivzg/DmqrMGASpTQfQ4V55FzZt8W68Q4XduTunO3glG nV3q7zKrfzhCjCeyFinKjcRqnHxOBdDGeWgAru/kMCA29HX4qjqM2H929byECTb0 8VQLEFe3jy9Pl7gOPqYC2QLjF4K6aDcT82E9o+0htmtj8ZOpOfK0P2qqO3lfKegN Q7f9yDZrwIojrdeYKrQ7/6iGZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHJ4QUt6 Clk0nazaJdcyfStEJUcHMB8GA1UdIwQYMBaAFN6Bc+fSj+rR7DqSyXZY2nMoUJPl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzExQS9DMDg2RUE5ODVB MzkxMUVCOEU1OUMyNjZDNEY5QUUwMi8zb0Z6NTlLUDZ0SHNPcExKZGxqYWN5aFFr LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNvRno1OUtQNnRIc09wTEpkbGphY3loUWstVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0MxMUEvQzA4NkVBOTg1QTM5MTFFQjhFNTlDMjY2QzRGOUFFMDIvNDAwMkU0QkE1 QTNCMTFFQkE0MDIwRDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoEIwDQYJKoZIhvcNAQELBQADggEBAF7FpG+Eqb+KkiNT R9eY/2iQmKjNeUO5+zJeKUbnxbOCkkzAD/clsc6w6fF1RdXkPEl1vSsLMcUr0xKQ g6el4pH1yegGIGlRKhuN4aTrLdzkXlMkjINNu/wHiT4UUDxIcd85h2UuBxKwhQel 8YwDsQ+Z4zq0+78kYOQOEEvbWZjD6xCch4gUKtKrUuFyl344tjB028ZNVtn0werI AlQHGezR6Fy+sQ4te3mZuajGtEfJhfzTRrPBxIfhvwxcIXZDPNi5ewfWMvZPmILB 0nFsLMnYxj0TF4lI+YWBHbd8TI8ap/fKXZD5vKV+o12AKd81YF+pMHTQgJnIP5eC 6r2mZNQ= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org