$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa File: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (raw, json) Hash identifier: 3aOOVCELLHnIfGs7sXEbEZF8NuxhRTtgWUNx37B19jo= Subject key identifier: 83:33:EF:D7:44:31:58:AD:28:39:C9:AD:72:09:65:88:76:77:C8:1A Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 04A5 Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa Signing time: Wed 17 Jul 2024 01:02:26 +0000 ROA not before: Wed 17 Jul 2024 01:02:26 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140732 IP address blocks: 103.167.162.0/24 maxlen: 24 2001:df6:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1189 (0x4a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Jul 17 01:02:26 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66971822-4912 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:64:22:9f:60:cb:c7:0e:a2:f6:12:d4:f8:be: 6d:8b:25:60:c6:d5:dc:32:21:9e:52:14:2f:9d:ce: f5:2d:47:d1:3c:93:ff:37:e1:ae:9f:90:8e:5d:c5: 33:fc:7d:db:67:d7:96:12:55:6b:8f:19:ff:4b:86: 82:14:83:c1:3e:56:97:7a:2d:50:4c:64:fb:73:68: cb:f8:ed:24:56:a3:7b:44:cf:ff:8d:35:0e:3d:c7: a7:b7:6f:7d:a5:36:06:b2:02:2d:52:df:c1:d3:3d: eb:0e:26:8e:70:2c:49:f7:31:d6:d6:1a:77:c0:1a: 2a:49:a0:a1:cd:ed:fe:9e:a0:a2:c2:31:8b:13:df: 7c:45:7b:4b:e3:ac:57:2f:39:7a:4e:78:65:d6:c2: e8:45:05:68:3d:f7:53:2d:ad:0d:d9:51:6d:71:d0: 5c:00:7d:86:66:48:9b:6e:b5:6d:22:a8:12:c5:b7: c9:d5:40:f5:4e:48:fd:2d:11:a5:85:e4:7c:f7:70: df:44:6f:51:b9:76:6d:d0:d4:8f:88:88:54:2c:27: 89:fa:52:04:b1:b6:ca:b5:30:39:51:37:93:7a:5a: c7:cf:2b:2b:0d:e1:7a:a2:3a:7e:5e:d8:10:74:2b: e0:51:6a:49:b3:3f:5f:5c:2a:7c:98:d7:23:d7:5e: 6f:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:33:EF:D7:44:31:58:AD:28:39:C9:AD:72:09:65:88:76:77:C8:1A X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.162.0/24 IPv6: 2001:df6:b980::/48 Signature Algorithm: sha256WithRSAEncryption 90:23:67:e8:15:be:68:d4:71:e3:88:7f:b5:40:c1:d1:e4:67: 60:c8:52:91:95:1b:02:f5:ff:12:ed:81:b3:a4:0c:2e:0c:12: 35:33:eb:15:39:d7:6a:fd:ad:31:84:d1:7b:14:49:ff:5f:fb: 0d:ec:3e:8a:26:6a:3c:61:ab:51:0e:ee:de:4b:c3:b7:6c:25: 72:47:96:3c:93:36:f4:ae:69:2d:0f:e3:fa:5e:1f:b1:9c:3d: 49:ef:20:11:22:93:cb:a2:4f:f7:57:52:5a:5d:f2:9e:7f:a4: 3e:9c:46:e4:31:c6:8c:e1:d2:3d:f5:16:9b:5f:e3:1f:b2:0a: c1:54:19:62:0b:19:45:42:7e:6f:e2:30:a2:8e:03:e4:3d:00: f5:80:7a:67:90:f3:b3:f5:a0:7f:73:5a:41:c1:5d:11:6a:52: 27:9a:d2:ee:b0:50:e0:ed:b2:d7:a9:39:c7:83:bb:71:8f:db: 2a:85:06:c5:7a:25:a7:d5:9f:42:65:b0:e9:88:c6:7a:86:ef: 19:f8:8f:e7:32:ed:65:88:f3:f7:bf:73:50:1e:34:08:41:e4: f4:92:1b:13:82:30:d2:ea:fe:db:e3:a0:6e:25:5c:f3:8d:63: 3a:9a:89:1e:f0:ac:18:f5:6c:1c:15:50:1b:e6:06:f3:c8:58: b2:a0:75:d8 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjQwNzE3MDEwMjI2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3MTgyMi00OTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA82Qin2DLxw6i9hLU+L5tiyVgxtXcMiGeUhQvnc71LUfRPJP/N+Gun5COXcUz /H3bZ9eWElVrjxn/S4aCFIPBPlaXei1QTGT7c2jL+O0kVqN7RM//jTUOPcent299 pTYGsgItUt/B0z3rDiaOcCxJ9zHW1hp3wBoqSaChze3+nqCiwjGLE998RXtL46xX Lzl6Tnhl1sLoRQVoPfdTLa0N2VFtcdBcAH2GZkibbrVtIqgSxbfJ1UD1Tkj9LRGl heR893DfRG9RuXZt0NSPiIhULCeJ+lIEsbbKtTA5UTeTelrHzysrDeF6ojp+XtgQ dCvgUWpJsz9fXCp8mNcj115vLwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIMz79dE MVitKDnJrXIJZYh2d8gaMB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE3QTkvNUY4OUY2RUNGQjMxMTFFQjhGQkZBNTU5QzRGOUFFMDIvQzJDQUMxNkU1 QzlEMTFFQzk5RjdEMTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnp6IwDwQCAAIwCQMHACABDfa5gDANBgkqhkiG9w0BAQsF AAOCAQEAkCNn6BW+aNRx44h/tUDB0eRnYMhSkZUbAvX/Eu2Bs6QMLgwSNTPrFTnX av2tMYTRexRJ/1/7Dew+iiZqPGGrUQ7u3kvDt2wlckeWPJM29K5pLQ/j+l4fsZw9 Se8gESKTy6JP91dSWl3ynn+kPpxG5DHGjOHSPfUWm1/jH7IKwVQZYgsZRUJ+b+Iw oo4D5D0A9YB6Z5Dzs/Wgf3NaQcFdEWpSJ5rS7rBQ4O2y16k5x4O7cY/bKoUGxXol p9WfQmWw6YjGeobvGfiP5zLtZYjz979zUB40CEHk9JIbE4Iw0ur+2+OgbiVc841j OpqJHvCsGPVsHBVQG+YG88hYsqB12A== -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org