$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/0FFD0884E94C11EDB883CD14C4F9AE02.roa File: 0FFD0884E94C11EDB883CD14C4F9AE02.roa (raw, json) Hash identifier: LOMVrGcpqBkYXud2B+9+0rUhLbtH2Vrj6cMlX58bV+A= Subject key identifier: EB:9C:6F:E6:3F:9E:47:0A:D2:3F:E4:A8:3B:52:5B:91:AC:BB:E4:5C Certificate issuer: /CN=A9199B5E/serialNumber=3DBB21B3358B085F0821B4DC06A91A9C45C42CBC Certificate serial: FD Authority key identifier: 3D:BB:21:B3:35:8B:08:5F:08:21:B4:DC:06:A9:1A:9C:45:C4:2C:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PbshszWLCF8IIbTcBqkanEXELLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/0FFD0884E94C11EDB883CD14C4F9AE02.roa Signing time: Sat 31 Aug 2024 05:56:20 +0000 ROA not before: Sat 31 Aug 2024 05:56:20 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 142579 IP address blocks: 103.170.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/PbshszWLCF8IIbTcBqkanEXELLw.crl rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/PbshszWLCF8IIbTcBqkanEXELLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PbshszWLCF8IIbTcBqkanEXELLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B5E/serialNumber=3DBB21B3358B085F0821B4DC06A91A9C45C42CBC Validity Not Before: Aug 31 05:56:20 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d2b083-d061 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:14:f9:dc:df:49:3b:53:8a:de:47:6d:c4:14: 52:95:05:a4:46:69:95:0e:c1:1c:69:04:17:32:34: d3:39:e8:47:f5:50:e4:85:15:51:6c:36:3f:ea:21: fd:f0:50:d4:43:cb:7e:b3:34:69:60:e9:fb:29:8b: 24:2c:06:d4:42:8a:73:b6:2f:27:5b:b3:f5:86:6e: 46:53:62:49:37:fa:63:34:eb:06:1a:3e:50:c4:67: d7:29:b7:6d:99:42:50:39:a5:fe:23:52:13:dd:10: cd:39:52:8a:bd:67:53:25:8f:5a:1c:cf:39:eb:62: 08:ec:61:21:29:fe:c7:04:80:e4:56:98:d7:84:67: 13:f3:13:b0:94:10:df:2f:32:8f:1a:85:42:3a:b0: 61:78:61:f9:b3:48:9e:30:49:d4:ac:4a:93:8b:fa: e4:e5:10:8d:b0:ab:88:2d:77:30:f5:09:9a:14:97: 8b:8c:f6:12:65:76:28:11:c5:bc:3c:d5:16:d4:eb: 04:83:f3:18:8d:96:fa:5c:a4:7c:da:39:63:13:76: 68:0e:96:05:aa:88:77:1e:88:b0:ae:f6:b0:a8:a1: 7f:c8:8b:f2:a9:cc:bb:c8:2f:95:b3:a1:42:48:3d: 47:42:2b:81:0f:37:3c:75:63:52:99:6b:e6:cd:d6: cf:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:9C:6F:E6:3F:9E:47:0A:D2:3F:E4:A8:3B:52:5B:91:AC:BB:E4:5C X509v3 Authority Key Identifier: keyid:3D:BB:21:B3:35:8B:08:5F:08:21:B4:DC:06:A9:1A:9C:45:C4:2C:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/PbshszWLCF8IIbTcBqkanEXELLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PbshszWLCF8IIbTcBqkanEXELLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B5E/F8723FE4E94711EDAD106909C4F9AE02/0FFD0884E94C11EDB883CD14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.2.0/24 Signature Algorithm: sha256WithRSAEncryption 95:5b:1a:9e:6b:66:8c:58:71:ae:48:c2:b6:b3:0c:7e:7f:3e: 1f:9f:3d:fe:05:8b:86:63:0d:cf:2e:e0:ef:10:b0:03:1d:26: 19:7d:f6:f1:02:bf:cf:10:10:9d:9f:58:8e:18:50:26:d7:e9: 97:8c:d7:81:db:1b:fb:a2:00:c2:81:c9:94:cf:82:9e:0c:b8: 56:76:74:12:4d:50:76:1c:6a:b5:aa:3e:69:17:57:19:b8:73: 14:6a:38:8d:90:45:da:28:30:36:e8:38:96:fa:a9:d5:16:03: aa:12:43:6d:a5:81:f0:c1:bf:a3:31:90:f0:bd:c2:72:81:9c: 19:bb:41:3f:15:cd:f9:dc:f1:7a:56:b8:b7:83:7a:59:e8:f9: 1b:d4:96:53:23:e5:39:7b:c3:7b:b6:2c:8a:0a:d4:c4:81:09: 2b:d3:ec:21:a7:f1:70:1b:46:c8:54:b5:72:9d:83:c1:19:33: 2d:29:cb:a1:bd:e2:7b:df:83:c2:f4:c1:4e:95:f7:cd:69:84: d6:9b:b4:72:77:a7:d3:65:e0:dd:9b:64:58:bf:ff:98:5e:e3: 17:9c:1f:e2:0b:d7:35:35:1f:96:95:cf:dd:27:95:3a:72:3b: 12:53:57:50:02:a0:33:a2:14:b5:b2:4e:92:48:d3:5b:0b:dc: 56:f2:04:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCNUUxMTAvBgNVBAUTKDNEQkIyMUIzMzU4QjA4NUYwODIxQjREQzA2QTkxQTlD NDVDNDJDQkMwHhcNMjQwODMxMDU1NjIwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyYjA4My1kMDYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhT53N9JO1OK3kdtxBRSlQWkRmmVDsEcaQQXMjTTOehH9VDkhRVRbDY/6iH9 8FDUQ8t+szRpYOn7KYskLAbUQopzti8nW7P1hm5GU2JJN/pjNOsGGj5QxGfXKbdt mUJQOaX+I1IT3RDNOVKKvWdTJY9aHM8562II7GEhKf7HBIDkVpjXhGcT8xOwlBDf LzKPGoVCOrBheGH5s0ieMEnUrEqTi/rk5RCNsKuILXcw9QmaFJeLjPYSZXYoEcW8 PNUW1OsEg/MYjZb6XKR82jljE3ZoDpYFqoh3HoiwrvawqKF/yIvyqcy7yC+Vs6FC SD1HQiuBDzc8dWNSmWvmzdbPTwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOucb+Y/ nkcK0j/kqDtSW5Gsu+RcMB8GA1UdIwQYMBaAFD27IbM1iwhfCCG03AapGpxFxCy8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUI1RS9GODcyM0ZFNEU5 NDcxMUVEQUQxMDY5MDlDNEY5QUUwMi9QYnNoc3pXTENGOElJYlRjQnFrYW5FWEVM THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Bic2hzeldMQ0Y4SUliVGNCcWthbkVYRUxMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlCNUUvRjg3MjNGRTRFOTQ3MTFFREFEMTA2OTA5QzRGOUFFMDIvMEZGRDA4ODRF OTRDMTFFREI4ODNDRDE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqgIwDQYJKoZIhvcNAQELBQADggEBAJVbGp5rZoxYca5I wrazDH5/Ph+fPf4Fi4ZjDc8u4O8QsAMdJhl99vECv88QEJ2fWI4YUCbX6ZeM14Hb G/uiAMKByZTPgp4MuFZ2dBJNUHYcarWqPmkXVxm4cxRqOI2QRdooMDboOJb6qdUW A6oSQ22lgfDBv6MxkPC9wnKBnBm7QT8Vzfnc8XpWuLeDelno+RvUllMj5Tl7w3u2 LIoK1MSBCSvT7CGn8XAbRshUtXKdg8EZMy0py6G94nvfg8L0wU6V981phNabtHJ3 p9Nl4N2bZFi//5he4xecH+IL1zU1H5aVz90nlTpyOxJTV1ACoDOiFLWyTpJI01sL 3FbyBMk= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org