$ rpki-client -vvf rpki.apnic.net/member_repository/A91C92DC/C60578A0F99811EB8AF49C1DC4F9AE02/AD1469EC7A3911ECB5639D41C4F9AE02.roa File: AD1469EC7A3911ECB5639D41C4F9AE02.roa (raw, json) Hash identifier: 3HZy6lcIbmxJvukR156ukbCJwU755Be6EmYQo4zomEA= Subject key identifier: A0:C5:09:6B:ED:91:F7:0A:58:9D:5E:47:06:FC:C0:AF:07:90:7E:2E Certificate issuer: /CN=A91C92DC/serialNumber=8970A400CCCCF010933C330C3760A1EC5DB4E0AD Certificate serial: 0476 Authority key identifier: 89:70:A4:00:CC:CC:F0:10:93:3C:33:0C:37:60:A1:EC:5D:B4:E0:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXCkAMzM8BCTPDMMN2Ch7F204K0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C92DC/C60578A0F99811EB8AF49C1DC4F9AE02/AD1469EC7A3911ECB5639D41C4F9AE02.roa Signing time: Sun 05 May 2024 02:04:30 +0000 ROA not before: Sun 05 May 2024 02:04:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139263 IP address blocks: 103.166.70.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C92DC/C60578A0F99811EB8AF49C1DC4F9AE02/iXCkAMzM8BCTPDMMN2Ch7F204K0.crl rsync://rpki.apnic.net/member_repository/A91C92DC/C60578A0F99811EB8AF49C1DC4F9AE02/iXCkAMzM8BCTPDMMN2Ch7F204K0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXCkAMzM8BCTPDMMN2Ch7F204K0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1142 (0x476) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C92DC/serialNumber=8970A400CCCCF010933C330C3760A1EC5DB4E0AD Validity Not Before: May 5 02:04:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6636e92d-6952 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4e:a9:0b:54:92:05:51:4c:1c:2b:15:aa:e7: 00:ff:f1:1b:34:ff:6a:31:2a:55:18:4b:1d:59:04: 9c:44:61:1b:90:66:fa:62:8b:8b:18:3d:ac:89:51: 63:9a:20:ee:09:5b:f6:da:19:43:f1:80:ae:04:02: 20:c4:70:8f:68:5c:08:52:2d:50:23:f1:ac:09:cd: c9:fb:c6:85:e8:a1:4f:52:d9:84:50:3c:67:b3:ab: a1:26:67:07:e6:6e:3f:fb:9b:3d:e6:87:6a:33:a9: a2:9e:c4:e4:28:e8:7a:34:e7:d2:75:ef:06:79:e9: 53:c9:5c:99:df:58:df:9d:1c:91:06:4a:44:d3:01: 79:fd:6e:c5:9a:d1:c7:4f:b1:f1:27:f6:9d:62:c1: cd:93:93:d7:54:4a:10:a0:d9:47:3c:dd:42:7c:48: aa:e9:de:f0:dd:49:4e:4a:81:23:e5:64:24:02:96: f1:27:96:72:b1:ea:2d:14:dd:bc:78:61:e6:e2:97: 23:0c:e4:2f:c0:c8:aa:7d:08:3f:8f:cc:ee:3b:58: 54:5c:85:03:8d:df:d0:21:79:21:03:59:29:19:07: 64:ac:d2:d1:25:95:b4:d2:79:90:fd:82:db:44:5d: eb:45:28:d8:2f:c3:de:30:1f:ff:b6:15:4b:be:d9: 63:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:C5:09:6B:ED:91:F7:0A:58:9D:5E:47:06:FC:C0:AF:07:90:7E:2E X509v3 Authority Key Identifier: keyid:89:70:A4:00:CC:CC:F0:10:93:3C:33:0C:37:60:A1:EC:5D:B4:E0:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C92DC/C60578A0F99811EB8AF49C1DC4F9AE02/iXCkAMzM8BCTPDMMN2Ch7F204K0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXCkAMzM8BCTPDMMN2Ch7F204K0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C92DC/C60578A0F99811EB8AF49C1DC4F9AE02/AD1469EC7A3911ECB5639D41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.70.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:7d:53:a9:cf:e9:0e:51:93:86:34:06:20:e0:6b:5f:95:4c: 13:ac:36:7c:06:47:95:a8:61:ea:a7:8a:5c:32:33:b0:4e:8f: 2e:8f:d7:d3:4a:6d:c3:d7:6a:03:91:cc:78:66:79:d1:97:5c: 37:06:ca:40:59:b6:78:6f:72:18:e7:f3:21:9a:87:9e:2d:e6: 5d:be:2b:e3:26:c0:ab:82:82:57:a1:4e:40:33:33:15:50:30: 06:a3:cc:74:5b:e9:47:13:4b:6c:d6:0c:65:04:ee:34:14:3a: 15:b3:84:13:dd:c5:77:dc:e9:b5:48:8a:38:08:1c:e7:de:64: 63:5e:a8:50:7c:0b:9f:4d:53:56:3a:44:94:e0:fc:00:fd:5e: 4e:19:92:c2:97:e4:48:0f:23:92:42:44:76:45:01:ac:bb:99: da:ed:df:df:89:8e:7d:ed:5c:79:bd:77:f8:61:87:87:e9:d5: 38:29:8a:d2:04:7f:24:17:e2:0c:db:54:56:b7:07:c5:ee:d5: 6c:8a:30:4f:f3:72:45:04:67:ac:df:3d:d3:41:d4:b3:73:11: 32:64:1b:49:2f:1f:0a:e1:ab:5c:ba:20:3c:66:f1:b5:df:aa: a5:8d:c6:6f:c6:70:36:b9:53:ce:70:e9:b6:61:b2:ea:c4:6c: 2a:fe:9f:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBHYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkyREMxMTAvBgNVBAUTKDg5NzBBNDAwQ0NDQ0YwMTA5MzNDMzMwQzM3NjBBMUVD NURCNEUwQUQwHhcNMjQwNTA1MDIwNDMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM2ZTkyZC02OTUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtU6pC1SSBVFMHCsVqucA//EbNP9qMSpVGEsdWQScRGEbkGb6YouLGD2siVFj miDuCVv22hlD8YCuBAIgxHCPaFwIUi1QI/GsCc3J+8aF6KFPUtmEUDxns6uhJmcH 5m4/+5s95odqM6minsTkKOh6NOfSde8GeelTyVyZ31jfnRyRBkpE0wF5/W7FmtHH T7HxJ/adYsHNk5PXVEoQoNlHPN1CfEiq6d7w3UlOSoEj5WQkApbxJ5ZyseotFN28 eGHm4pcjDOQvwMiqfQg/j8zuO1hUXIUDjd/QIXkhA1kpGQdkrNLRJZW00nmQ/YLb RF3rRSjYL8PeMB//thVLvtljfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKDFCWvt kfcKWJ1eRwb8wK8HkH4uMB8GA1UdIwQYMBaAFIlwpADMzPAQkzwzDDdgoexdtOCt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTJEQy9DNjA1NzhBMEY5 OTgxMUVCOEFGNDlDMURDNEY5QUUwMi9pWENrQU16TThCQ1RQRE1NTjJDaDdGMjA0 SzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lYQ2tBTXpNOEJDVFBETU1OMkNoN0YyMDRLMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkyREMvQzYwNTc4QTBGOTk4MTFFQjhBRjQ5QzFEQzRGOUFFMDIvQUQxNDY5RUM3 QTM5MTFFQ0I1NjM5RDQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpkYwDQYJKoZIhvcNAQELBQADggEBADt9U6nP6Q5Rk4Y0 BiDga1+VTBOsNnwGR5WoYeqnilwyM7BOjy6P19NKbcPXagORzHhmedGXXDcGykBZ tnhvchjn8yGah54t5l2+K+MmwKuCglehTkAzMxVQMAajzHRb6UcTS2zWDGUE7jQU OhWzhBPdxXfc6bVIijgIHOfeZGNeqFB8C59NU1Y6RJTg/AD9Xk4ZksKX5EgPI5JC RHZFAay7mdrt39+Jjn3tXHm9d/hhh4fp1TgpitIEfyQX4gzbVFa3B8Xu1WyKME/z ckUEZ6zfPdNB1LNzETJkG0kvHwrhq1y6IDxm8bXfqqWNxm/GcDa5U85w6bZhsurE bCr+n2k= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:28 2024 by rpki-client on console-ams.rpki-client.org