$ rpki-client -vvf rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/A4B0D326F0A311ED99A1471CC4F9AE02.roa File: A4B0D326F0A311ED99A1471CC4F9AE02.roa (raw, json) Hash identifier: YT1DLrJvP+2w7lodtwm2stNsNaNoq+ytHid9uR561S8= Subject key identifier: 24:F6:F9:36:B0:0A:EC:0A:C5:42:A7:C0:9F:AD:FA:5F:7B:D7:45:76 Certificate issuer: /CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Certificate serial: D3 Authority key identifier: D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/A4B0D326F0A311ED99A1471CC4F9AE02.roa Signing time: Sat 15 Jun 2024 07:25:18 +0000 ROA not before: Sat 15 Jun 2024 07:25:18 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142409 IP address blocks: 103.167.230.0/23 maxlen: 23 2407:77c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185B5F/serialNumber=D87E02969546ADC55A7ACCA08CADB2879BC699C9 Validity Not Before: Jun 15 07:25:18 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666d41de-cd0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:0c:ef:af:b5:90:5c:66:f3:b5:5f:b8:e9:16: 98:78:7d:bf:10:73:db:e1:9e:16:6b:35:34:0e:1a: 20:e0:86:82:69:e8:43:33:16:f8:7e:f1:2d:da:77: 39:ca:7e:e7:3a:28:38:b9:b4:75:59:3b:1a:5b:e6: 60:04:66:91:cc:30:fe:9b:53:ee:c1:dd:4f:2b:b0: 80:11:d2:2b:45:c4:ba:3c:ba:27:ba:16:34:43:51: 57:eb:a2:32:72:49:0a:6b:d1:41:ae:6b:d1:62:eb: e0:c4:91:ea:6a:b1:be:0f:02:a3:28:2e:db:2f:97: be:25:5c:0f:4b:2c:bb:01:8a:3c:bc:07:5d:e5:6c: d2:88:5a:36:66:eb:cb:d4:89:ab:a9:0a:96:05:61: c1:e8:8e:6c:9f:1a:68:96:48:88:55:37:2c:b5:79: 0c:23:45:a5:9c:08:a6:d6:75:82:46:db:eb:6d:aa: f6:2e:87:6d:bf:b7:b4:d2:dd:a7:b3:cf:b9:73:28: cb:2e:f6:01:94:d6:cf:b1:1c:c1:83:01:3a:27:cc: f7:3b:67:49:7e:96:40:f7:f6:44:14:4d:79:c4:19: f6:54:b4:fa:23:de:9e:a1:b5:42:3f:c2:18:82:c0: 8a:f3:3f:f1:b7:55:db:f6:2a:dc:dd:d9:83:74:9f: 68:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:F6:F9:36:B0:0A:EC:0A:C5:42:A7:C0:9F:AD:FA:5F:7B:D7:45:76 X509v3 Authority Key Identifier: keyid:D8:7E:02:96:95:46:AD:C5:5A:7A:CC:A0:8C:AD:B2:87:9B:C6:99:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/2H4ClpVGrcVaesygjK2yh5vGmck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2H4ClpVGrcVaesygjK2yh5vGmck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185B5F/8E418020F09B11EDA606BD62C4F9AE02/A4B0D326F0A311ED99A1471CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.230.0/23 IPv6: 2407:77c0::/32 Signature Algorithm: sha256WithRSAEncryption 64:14:ec:4d:e8:06:16:c1:d5:d5:21:53:84:fc:fc:9d:2d:1c: b2:f7:37:42:9a:2e:e2:70:44:72:5d:34:f2:3c:bd:a3:b3:a5: 5d:71:89:fe:b1:b4:81:ea:5d:e1:8c:07:da:85:15:03:a7:9d: 75:25:3f:8a:86:b1:b4:db:a0:1d:d3:88:3e:88:9c:f1:ab:e3: 05:73:8c:25:cc:7a:79:b8:8a:30:f5:2f:51:e1:e4:d6:b2:24: 23:59:0a:ab:c5:d4:36:27:5d:8a:a9:c8:df:b1:af:42:86:53: 94:e6:f5:cc:e2:7c:c4:5a:96:51:5f:b6:f5:52:19:cf:6f:e4: f8:5c:91:6e:2a:80:a1:fb:f2:2c:0d:28:25:1a:7b:7f:98:30: d0:46:18:52:4b:c6:a7:78:6f:88:57:02:05:18:98:8e:04:c5: 17:2a:22:be:d8:73:f5:40:68:9f:d7:0a:51:a5:3b:5f:ad:cc: 03:a2:ea:2e:ae:c8:be:8d:9a:d6:04:1b:7a:4d:a5:cf:0c:c0: cf:f3:c5:0e:04:e9:db:1c:dc:24:73:81:e6:d5:41:4c:91:01: 7e:30:5a:58:d8:3f:8e:28:b1:dd:db:ac:d6:fd:60:3f:d3:75: 6d:62:7d:ef:89:63:1a:32:82:2f:89:f1:43:3f:4d:5c:58:d4: 27:a3:ed:cb -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVCNUYxMTAvBgNVBAUTKEQ4N0UwMjk2OTU0NkFEQzU1QTdBQ0NBMDhDQURCMjg3 OUJDNjk5QzkwHhcNMjQwNjE1MDcyNTE4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZkNDFkZS1jZDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgzvr7WQXGbztV+46RaYeH2/EHPb4Z4WazU0Dhog4IaCaehDMxb4fvEt2nc5 yn7nOig4ubR1WTsaW+ZgBGaRzDD+m1Puwd1PK7CAEdIrRcS6PLonuhY0Q1FX66Iy ckkKa9FBrmvRYuvgxJHqarG+DwKjKC7bL5e+JVwPSyy7AYo8vAdd5WzSiFo2ZuvL 1ImrqQqWBWHB6I5snxpolkiIVTcstXkMI0WlnAim1nWCRtvrbar2Lodtv7e00t2n s8+5cyjLLvYBlNbPsRzBgwE6J8z3O2dJfpZA9/ZEFE15xBn2VLT6I96eobVCP8IY gsCK8z/xt1Xb9irc3dmDdJ9o2QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCT2+Taw CuwKxUKnwJ+t+l9710V2MB8GA1UdIwQYMBaAFNh+ApaVRq3FWnrMoIytsoebxpnJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUI1Ri84RTQxODAyMEYw OUIxMUVEQTYwNkJENjJDNEY5QUUwMi8ySDRDbHBWR3JjVmFlc3lnaksyeWg1dkdt Y2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJINENscFZHcmNWYWVzeWdqSzJ5aDV2R21jay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVCNUYvOEU0MTgwMjBGMDlCMTFFREE2MDZCRDYyQzRGOUFFMDIvQTRCMEQzMjZG MEEzMTFFRDk5QTE0NzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnp+YwDQQCAAIwBwMFACQHd8AwDQYJKoZIhvcNAQELBQAD ggEBAGQU7E3oBhbB1dUhU4T8/J0tHLL3N0KaLuJwRHJdNPI8vaOzpV1xif6xtIHq XeGMB9qFFQOnnXUlP4qGsbTboB3TiD6InPGr4wVzjCXMenm4ijD1L1Hh5NayJCNZ CqvF1DYnXYqpyN+xr0KGU5Tm9czifMRallFftvVSGc9v5PhckW4qgKH78iwNKCUa e3+YMNBGGFJLxqd4b4hXAgUYmI4ExRcqIr7Yc/VAaJ/XClGlO1+tzAOi6i6uyL6N mtYEG3pNpc8MwM/zxQ4E6dsc3CRzgebVQUyRAX4wWljYP44osd3brNb9YD/TdW1i fe+JYxoygi+J8UM/TVxY1Cej7cs= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:44 2024 by rpki-client on console-ams.rpki-client.org