$ rpki-client -vvf rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/6CEF4F06697C11EEBAF2E544C4F9AE02.roa File: 6CEF4F06697C11EEBAF2E544C4F9AE02.roa (raw, json) Hash identifier: Zf62lP/wVBucTVDv//7CsthHyoB46FPVyR5yKdn9a8M= Subject key identifier: FE:62:1F:E1:02:A9:B5:8D:6E:FC:3B:06:05:56:BB:F9:06:99:7C:F5 Certificate issuer: /CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Certificate serial: 08F9 Authority key identifier: D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/6CEF4F06697C11EEBAF2E544C4F9AE02.roa Signing time: Sat 14 Sep 2024 22:09:41 +0000 ROA not before: Sat 14 Sep 2024 22:09:41 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151796 IP address blocks: 103.207.164.0/22 maxlen: 22 103.207.164.0/23 maxlen: 23 103.207.164.0/24 maxlen: 24 103.207.165.0/24 maxlen: 24 103.207.166.0/23 maxlen: 23 103.207.166.0/24 maxlen: 24 103.207.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:04:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2297 (0x8f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196DE5/serialNumber=D8392B0D915B9AC1F4D23BF9841971406FB61AC6 Validity Not Before: Sep 14 22:09:41 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e609a4-50e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:2e:30:0f:88:c0:83:0f:5d:88:41:66:26:f1: 41:4c:af:c2:2e:4e:25:d2:b1:46:dc:7f:40:74:9f: 5f:c7:95:94:5b:b7:e4:5c:ab:71:68:d8:11:0b:3c: 2f:42:1a:22:3b:ae:28:ff:78:7d:3d:59:86:53:ae: ac:1c:55:18:e9:73:52:f6:f9:f2:a2:b8:62:56:84: a7:df:08:54:48:ec:33:5e:53:fb:10:5a:09:07:4e: 1b:24:36:34:53:27:9d:04:78:52:c8:e3:6f:f9:d3: 04:ca:dd:19:4c:27:59:4b:9e:06:74:ef:c5:db:cc: b4:16:b7:e2:5a:55:14:81:bc:31:e3:f4:3e:90:c2: 0c:ff:b0:4e:26:4d:1b:fd:71:90:8a:01:88:18:b3: a0:ce:c4:c4:4a:84:ec:2f:dc:e6:90:df:e1:63:e9: 72:d5:06:0d:31:64:8e:70:18:77:3a:5c:f4:db:1f: 17:73:cb:a4:19:5f:bd:08:f3:19:a6:70:ad:1a:14: 6c:cd:7a:69:53:a4:bf:ef:5e:7d:02:4e:5d:8d:34: 9b:67:a3:30:19:f0:89:ad:ed:36:7c:dc:df:6b:85: 7d:9f:6f:58:e5:72:9a:e1:55:2a:2f:33:24:89:8c: 2c:ba:bb:9f:8f:70:e0:84:72:2d:8e:c7:1c:2b:ca: a4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:62:1F:E1:02:A9:B5:8D:6E:FC:3B:06:05:56:BB:F9:06:99:7C:F5 X509v3 Authority Key Identifier: keyid:D8:39:2B:0D:91:5B:9A:C1:F4:D2:3B:F9:84:19:71:40:6F:B6:1A:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/2DkrDZFbmsH00jv5hBlxQG-2GsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2DkrDZFbmsH00jv5hBlxQG-2GsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196DE5/72C5A9CC943011EABD75F983C4F9AE02/6CEF4F06697C11EEBAF2E544C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.164.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:f6:50:ba:ab:89:70:55:cf:f0:ff:e7:97:70:06:08:36:88: 0d:52:c9:29:3b:e1:87:d0:6e:2a:66:69:fe:20:eb:df:4d:7d: bf:42:3f:19:3d:69:09:19:87:ef:15:e2:0b:eb:62:5d:02:fd: 32:3b:ac:de:a8:bd:b6:a4:7c:2d:e8:4d:70:24:19:04:d3:5e: 64:6f:a7:17:ab:86:b9:51:ee:64:c6:51:c9:4f:83:f4:7d:54: 72:e6:51:8a:e5:e9:bf:ee:77:e6:56:21:8f:e9:e8:b6:6a:e3: 10:69:9f:47:ce:88:8e:5d:4e:f5:77:e0:5e:43:7d:70:68:6f: d6:b4:65:55:41:9c:45:c5:30:dd:05:25:92:42:4d:72:96:ec: 74:4d:39:c0:27:52:26:89:1d:f6:6b:11:38:1b:df:07:10:ba: 55:2f:a8:f3:10:a2:6f:3f:1d:bd:46:87:3e:84:58:20:99:2a: 7c:e7:19:56:01:43:2b:8c:f3:1e:4d:14:8f:c0:44:7a:b3:0a: 12:9d:59:6b:f9:85:4b:ef:87:ff:57:47:db:c2:f9:71:a8:a0: 62:7a:7d:18:fa:6a:60:87:19:f2:5c:81:67:42:fb:ff:a6:4b: a5:6c:4a:29:8c:50:32:3e:0e:fc:4f:bf:58:83:33:33:29:00: 07:ca:ca:23 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZERTUxMTAvBgNVBAUTKEQ4MzkyQjBEOTE1QjlBQzFGNEQyM0JGOTg0MTk3MTQw NkZCNjFBQzYwHhcNMjQwOTE0MjIwOTQxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU2MDlhNC01MGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0C4wD4jAgw9diEFmJvFBTK/CLk4l0rFG3H9AdJ9fx5WUW7fkXKtxaNgRCzwv QhoiO64o/3h9PVmGU66sHFUY6XNS9vnyorhiVoSn3whUSOwzXlP7EFoJB04bJDY0 UyedBHhSyONv+dMEyt0ZTCdZS54GdO/F28y0FrfiWlUUgbwx4/Q+kMIM/7BOJk0b /XGQigGIGLOgzsTESoTsL9zmkN/hY+ly1QYNMWSOcBh3Olz02x8Xc8ukGV+9CPMZ pnCtGhRszXppU6S/7159Ak5djTSbZ6MwGfCJre02fNzfa4V9n29Y5XKa4VUqLzMk iYwsurufj3DghHItjsccK8qkTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP5iH+EC qbWNbvw7BgVWu/kGmXz1MB8GA1UdIwQYMBaAFNg5Kw2RW5rB9NI7+YQZcUBvthrG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkRFNS83MkM1QTlDQzk0 MzAxMUVBQkQ3NUY5ODNDNEY5QUUwMi8yRGtyRFpGYm1zSDAwanY1aEJseFFHLTJH c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJEa3JEWkZibXNIMDBqdjVoQmx4UUctMkdzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZERTUvNzJDNUE5Q0M5NDMwMTFFQUJENzVGOTgzQzRGOUFFMDIvNkNFRjRGMDY2 OTdDMTFFRUJBRjJFNTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnz6QwDQYJKoZIhvcNAQELBQADggEBAG32ULqriXBVz/D/ 55dwBgg2iA1SySk74YfQbipmaf4g699Nfb9CPxk9aQkZh+8V4gvrYl0C/TI7rN6o vbakfC3oTXAkGQTTXmRvpxerhrlR7mTGUclPg/R9VHLmUYrl6b/ud+ZWIY/p6LZq 4xBpn0fOiI5dTvV34F5DfXBob9a0ZVVBnEXFMN0FJZJCTXKW7HRNOcAnUiaJHfZr ETgb3wcQulUvqPMQom8/Hb1Ghz6EWCCZKnznGVYBQyuM8x5NFI/ARHqzChKdWWv5 hUvvh/9XR9vC+XGooGJ6fRj6amCHGfJcgWdC+/+mS6VsSimMUDI+DvxPv1iDMzMp AAfKyiM= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:43 2024 by rpki-client on console-fra.rpki-client.org