$ rpki-client -vvf rpki.apnic.net/member_repository/A9182794/73DB77D095BE11EF84A82381C4F9AE02/C296778C95CB11EFA3BE9873C4F9AE02.roa File: C296778C95CB11EFA3BE9873C4F9AE02.roa (raw, json) Hash identifier: +UFQWnXReAket39ycprPx9UMMcj46jyJIl0XNC8+2yo= Subject key identifier: 4D:5B:AC:C9:75:31:28:BA:14:7B:CE:D4:7E:30:57:B7:31:EE:2D:71 Certificate issuer: /CN=A9182794/serialNumber=613ECBE03EBD75B0C9E5E96114F657CE5895B1F7 Certificate serial: 05 Authority key identifier: 61:3E:CB:E0:3E:BD:75:B0:C9:E5:E9:61:14:F6:57:CE:58:95:B1:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YT7L4D69dbDJ5elhFPZXzliVsfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182794/73DB77D095BE11EF84A82381C4F9AE02/C296778C95CB11EFA3BE9873C4F9AE02.roa Signing time: Tue 29 Oct 2024 07:59:45 +0000 ROA not before: Tue 29 Oct 2024 07:59:45 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 18206 IP address blocks: 203.10.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182794/73DB77D095BE11EF84A82381C4F9AE02/YT7L4D69dbDJ5elhFPZXzliVsfc.crl rsync://rpki.apnic.net/member_repository/A9182794/73DB77D095BE11EF84A82381C4F9AE02/YT7L4D69dbDJ5elhFPZXzliVsfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YT7L4D69dbDJ5elhFPZXzliVsfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182794 Validity Not Before: Oct 29 07:59:45 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=672095f0-0ca3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:80:84:40:68:b3:ba:59:5e:bd:90:95:27:cc: 28:c1:4e:e6:c6:66:be:b0:47:31:d7:cd:c3:a0:fb: 15:3f:3a:01:27:0f:00:e7:c9:a2:8b:e7:d1:0e:a8: ba:7d:4b:57:63:4b:af:23:e0:9c:81:5d:56:88:6c: 90:12:cb:10:a0:0b:98:e5:3e:73:17:37:71:ad:3b: b7:6e:fa:98:a7:ac:26:b8:7f:46:0c:b5:0c:b9:41: 67:68:80:d5:7a:5c:5c:7a:14:d7:3e:a7:4a:ea:1e: d1:dc:98:e8:2a:f0:4b:b9:e9:fe:92:2c:3c:a4:82: 65:42:dc:14:b8:15:af:1a:9a:83:fc:e2:89:e0:81: 83:d4:53:d2:d4:c5:89:db:93:a5:cb:95:4e:9d:47: c9:b7:f9:2a:d8:93:77:cb:64:51:b4:a5:47:06:db: 54:73:e0:f5:91:8d:9a:1d:a2:e5:b2:11:e1:88:b4: c7:76:e5:1f:98:d2:85:e8:54:6b:cc:ee:90:7c:e8: e2:19:a9:8f:05:78:00:6a:3e:60:34:79:54:cd:32: 65:fb:f7:7f:d9:cf:1f:08:b9:7d:6f:2d:56:1f:b5: ab:95:b1:6d:e0:91:9e:7d:81:1a:7e:15:4b:2a:97: df:99:82:01:21:8b:8f:a3:b6:b2:b2:92:ca:68:11: a1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:5B:AC:C9:75:31:28:BA:14:7B:CE:D4:7E:30:57:B7:31:EE:2D:71 X509v3 Authority Key Identifier: keyid:61:3E:CB:E0:3E:BD:75:B0:C9:E5:E9:61:14:F6:57:CE:58:95:B1:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182794/73DB77D095BE11EF84A82381C4F9AE02/YT7L4D69dbDJ5elhFPZXzliVsfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YT7L4D69dbDJ5elhFPZXzliVsfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182794/73DB77D095BE11EF84A82381C4F9AE02/C296778C95CB11EFA3BE9873C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.10.16.0/21 Signature Algorithm: sha256WithRSAEncryption 6a:a8:bb:2a:8e:2e:18:5e:91:6e:8c:01:c4:70:0e:af:30:d4: 7f:d7:5f:ef:98:a8:91:91:84:2f:15:a1:b7:b6:99:a7:65:b0: 53:fe:0d:d5:a1:a3:4c:40:52:f9:ce:c1:7a:4e:9c:e0:7d:88: 1d:17:9e:53:86:19:e0:0b:05:44:e5:74:35:09:7f:5f:7d:36: a1:c6:c7:5a:a7:c4:e7:40:12:ab:8a:a4:b5:be:80:f5:c7:81: ec:6f:be:9f:2c:f9:90:2a:c2:51:ee:f7:67:e4:09:c3:4b:88: 35:8c:ed:df:88:07:5f:a3:f8:df:db:a9:95:f7:ea:31:cc:72: 52:e5:de:62:ff:52:64:02:63:02:a5:1a:35:d0:34:e5:38:39: 61:59:36:f0:d9:87:0e:51:6b:28:e8:d3:69:4a:44:47:38:45: 39:45:a5:5e:2d:f0:e9:0f:8e:0e:67:d1:de:e4:95:85:88:b2: 03:c8:7f:fe:e4:98:f1:3f:5c:45:51:5f:e2:d8:a4:73:f0:83: 3d:fe:f7:a3:78:f1:26:48:23:0e:30:ae:11:e4:d1:ad:f4:2a: ef:6c:4d:f7:1a:e9:2b:e6:21:04:e2:ae:b7:b3:f5:da:a3:69: e7:3d:a9:db:f9:55:f4:2b:92:25:88:fd:35:9f:ab:fb:87:c5: d6:0a:86:5b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 Mjc5NDExMC8GA1UEBRMoNjEzRUNCRTAzRUJENzVCMEM5RTVFOTYxMTRGNjU3Q0U1 ODk1QjFGNzAeFw0yNDEwMjkwNzU5NDVaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjA5NWYwLTBjYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRgIRAaLO6WV69kJUnzCjBTubGZr6wRzHXzcOg+xU/OgEnDwDnyaKL59EOqLp9 S1djS68j4JyBXVaIbJASyxCgC5jlPnMXN3GtO7du+pinrCa4f0YMtQy5QWdogNV6 XFx6FNc+p0rqHtHcmOgq8Eu56f6SLDykgmVC3BS4Fa8amoP84onggYPUU9LUxYnb k6XLlU6dR8m3+SrYk3fLZFG0pUcG21Rz4PWRjZodouWyEeGItMd25R+Y0oXoVGvM 7pB86OIZqY8FeABqPmA0eVTNMmX793/Zzx8IuX1vLVYftauVsW3gkZ59gRp+FUsq l9+ZggEhi4+jtrKykspoEaGXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUTVusyXUx KLoUe87UfjBXtzHuLXEwHwYDVR0jBBgwFoAUYT7L4D69dbDJ5elhFPZXzliVsfcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyNzk0LzczREI3N0QwOTVC RTExRUY4NEE4MjM4MUM0RjlBRTAyL1lUN0w0RDY5ZGJESjVlbGhGUFpYemxpVnNm Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVQ3TDRENjlkYkRKNWVsaEZQWlh6bGlWc2ZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 Mjc5NC83M0RCNzdEMDk1QkUxMUVGODRBODIzODFDNEY5QUUwMi9DMjk2Nzc4Qzk1 Q0IxMUVGQTNCRTk4NzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA8sKEDANBgkqhkiG9w0BAQsFAAOCAQEAaqi7Ko4uGF6RbowB xHAOrzDUf9df75iokZGELxWht7aZp2WwU/4N1aGjTEBS+c7Bek6c4H2IHReeU4YZ 4AsFROV0NQl/X302ocbHWqfE50ASq4qktb6A9ceB7G++nyz5kCrCUe73Z+QJw0uI NYzt34gHX6P439uplffqMcxyUuXeYv9SZAJjAqUaNdA05Tg5YVk28NmHDlFrKOjT aUpERzhFOUWlXi3w6Q+ODmfR3uSVhYiyA8h//uSY8T9cRVFf4tikc/CDPf73o3jx JkgjDjCuEeTRrfQq72xN9xrpK+YhBOKut7P12qNp5z2p2/lV9CuSJYj9NZ+r+4fF 1gqGWw== -----END CERTIFICATE-----Generated at Mon Feb 17 07:57:20 2025 by rpki-client