$ rpki-client -vvf rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/788169BE3AAC11EBBEE1E81AC4F9AE02.roa File: 788169BE3AAC11EBBEE1E81AC4F9AE02.roa (raw, json) Hash identifier: qiBZQI2a1Ynnwr8NZC+JZxXJpm/2uK+g5xqt3jGkNKM= Subject key identifier: 4B:74:AB:FA:9D:87:D1:DC:46:52:4A:EE:94:A8:84:66:D0:AF:02:15 Certificate issuer: /CN=A919DD44/serialNumber=9F066CB85F5B88F823780D5F96625F4385481BBF Certificate serial: 0637 Authority key identifier: 9F:06:6C:B8:5F:5B:88:F8:23:78:0D:5F:96:62:5F:43:85:48:1B:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwZsuF9biPgjeA1flmJfQ4VIG78.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/788169BE3AAC11EBBEE1E81AC4F9AE02.roa Signing time: Wed 31 Jan 2024 23:41:44 +0000 ROA not before: Wed 31 Jan 2024 23:41:44 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138336 IP address blocks: 103.160.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/nwZsuF9biPgjeA1flmJfQ4VIG78.crl rsync://rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/nwZsuF9biPgjeA1flmJfQ4VIG78.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwZsuF9biPgjeA1flmJfQ4VIG78.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1591 (0x637) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DD44/serialNumber=9F066CB85F5B88F823780D5F96625F4385481BBF Validity Not Before: Jan 31 23:41:44 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65badab8-981c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:5f:1e:4d:b2:65:f4:e1:d5:23:5c:33:24:0d: bb:c0:c3:07:d3:3a:af:ed:da:15:74:2d:7b:cf:d8: 5f:4b:83:44:c2:9d:b7:dd:d3:77:ff:b2:4a:a7:0e: 30:9c:22:e1:9f:a5:08:ee:30:5f:d2:aa:bf:c3:b5: a0:db:d3:a0:ad:db:fc:eb:a2:62:3d:26:ba:44:87: 67:7c:4c:1f:08:eb:e3:c8:62:b3:d4:f4:42:05:af: 74:6e:d3:f4:3d:68:a3:4c:07:01:4c:e8:57:79:c8: a0:45:d7:a2:95:83:f5:11:21:84:d5:14:d7:be:9f: eb:2f:a4:c4:96:48:f2:76:24:69:67:9d:8b:6e:c7: 57:10:7a:73:5d:2b:eb:07:f5:46:ee:4b:67:6d:6e: 71:39:81:2e:bf:94:e1:27:d0:c5:cf:d6:ed:49:01: d8:fd:d8:fa:9a:1b:75:93:f4:d2:35:c2:8e:64:5b: 10:dc:45:25:0e:a6:aa:5f:d6:3e:92:eb:81:0e:c3: c3:f4:e5:50:35:e8:8d:b5:1a:0a:90:6c:22:a2:03: c4:3a:d9:2c:d9:97:59:89:66:27:88:b4:01:63:c2: fc:a8:d3:17:fc:39:51:fd:3a:fd:81:90:49:ac:74: 4d:44:b6:e3:89:35:94:cf:29:71:e8:52:a9:9c:9f: d7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:74:AB:FA:9D:87:D1:DC:46:52:4A:EE:94:A8:84:66:D0:AF:02:15 X509v3 Authority Key Identifier: keyid:9F:06:6C:B8:5F:5B:88:F8:23:78:0D:5F:96:62:5F:43:85:48:1B:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/nwZsuF9biPgjeA1flmJfQ4VIG78.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nwZsuF9biPgjeA1flmJfQ4VIG78.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DD44/D8E31E763A1E11EBAE4ED41AC4F9AE02/788169BE3AAC11EBBEE1E81AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.17.0/24 Signature Algorithm: sha256WithRSAEncryption c0:70:6f:c7:de:58:be:ae:f9:52:90:58:cb:fb:d4:6f:93:c7: 6d:b3:d5:b8:d4:9e:40:bd:e2:9e:0f:8d:22:45:92:80:37:fe: 3c:a9:25:33:c7:0d:71:1f:2a:17:db:7c:30:7c:61:1f:fc:aa: 87:30:99:84:e4:1a:b3:5b:bc:75:cb:5b:03:13:4b:8a:de:79: 2f:1b:28:d9:81:c3:8a:38:ae:24:99:df:16:44:2e:25:c2:80: bb:ac:1f:80:d1:7c:5b:7b:18:1b:d2:86:a7:33:c3:41:ca:1a: e6:c1:b8:30:36:2e:a6:4f:c4:bf:0c:4b:0c:39:7f:bb:0d:67: e7:b6:f8:be:71:7d:f0:c7:74:f2:9e:7e:cf:3e:c2:6c:14:41: 86:40:f8:9e:fa:a6:59:67:bb:55:48:52:c6:62:f0:8c:9a:e7: b3:35:08:f2:91:ec:e3:f7:18:d5:24:14:85:5e:c3:3a:64:09: 56:37:15:10:49:99:2e:99:b3:b7:f5:8a:64:22:ac:56:69:46: 34:2a:27:fe:27:cf:47:2e:79:68:3d:13:ec:0f:bc:91:4e:7f: b6:57:f6:84:db:ac:32:76:66:6a:37:cf:86:7f:31:32:9e:e5: 74:9c:38:f4:93:7f:21:bb:97:8e:e8:61:30:17:dc:58:b9:36: 67:8b:87:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURENDQxMTAvBgNVBAUTKDlGMDY2Q0I4NUY1Qjg4RjgyMzc4MEQ1Rjk2NjI1RjQz ODU0ODFCQkYwHhcNMjQwMTMxMjM0MTQ0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhZGFiOC05ODFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwF8eTbJl9OHVI1wzJA27wMMH0zqv7doVdC17z9hfS4NEwp233dN3/7JKpw4w nCLhn6UI7jBf0qq/w7Wg29Ogrdv866JiPSa6RIdnfEwfCOvjyGKz1PRCBa90btP0 PWijTAcBTOhXecigRdeilYP1ESGE1RTXvp/rL6TElkjydiRpZ52LbsdXEHpzXSvr B/VG7ktnbW5xOYEuv5ThJ9DFz9btSQHY/dj6mht1k/TSNcKOZFsQ3EUlDqaqX9Y+ kuuBDsPD9OVQNeiNtRoKkGwiogPEOtks2ZdZiWYniLQBY8L8qNMX/DlR/Tr9gZBJ rHRNRLbjiTWUzylx6FKpnJ/XPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEt0q/qd h9HcRlJK7pSohGbQrwIVMB8GA1UdIwQYMBaAFJ8GbLhfW4j4I3gNX5ZiX0OFSBu/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REQ0NC9EOEUzMUU3NjNB MUUxMUVCQUU0RUQ0MUFDNEY5QUUwMi9ud1pzdUY5YmlQZ2plQTFmbG1KZlE0VklH NzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL253WnN1RjliaVBnamVBMWZsbUpmUTRWSUc3OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURENDQvRDhFMzFFNzYzQTFFMTFFQkFFNEVENDFBQzRGOUFFMDIvNzg4MTY5QkUz QUFDMTFFQkJFRTFFODFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnoBEwDQYJKoZIhvcNAQELBQADggEBAMBwb8feWL6u+VKQ WMv71G+Tx22z1bjUnkC94p4PjSJFkoA3/jypJTPHDXEfKhfbfDB8YR/8qocwmYTk GrNbvHXLWwMTS4reeS8bKNmBw4o4riSZ3xZELiXCgLusH4DRfFt7GBvShqczw0HK GubBuDA2LqZPxL8MSww5f7sNZ+e2+L5xffDHdPKefs8+wmwUQYZA+J76pllnu1VI UsZi8Iya57M1CPKR7OP3GNUkFIVewzpkCVY3FRBJmS6Zs7f1imQirFZpRjQqJ/4n z0cueWg9E+wPvJFOf7ZX9oTbrDJ2Zmo3z4Z/MTKe5XScOPSTfyG7l47oYTAX3Fi5 NmeLhxQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org