$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/9682ACDE16A611ED86A3EF0CC4F9AE02.roa File: 9682ACDE16A611ED86A3EF0CC4F9AE02.roa (raw, json) Hash identifier: hcM9KSqr5HU++IAMZw2MNtwm3BZkVvg18KaHTZUpx4I= Subject key identifier: 2A:D8:0B:FE:A7:BF:63:57:E5:4C:A3:85:78:26:54:56:61:BC:F4:E8 Certificate issuer: /CN=A91EE0A0/serialNumber=4A2FBB460D1BD8F316F6642D9EB5F4C3B220189D Certificate serial: 0169 Authority key identifier: 4A:2F:BB:46:0D:1B:D8:F3:16:F6:64:2D:9E:B5:F4:C3:B2:20:18:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/9682ACDE16A611ED86A3EF0CC4F9AE02.roa Signing time: Thu 25 Jan 2024 04:25:49 +0000 ROA not before: Thu 25 Jan 2024 04:25:49 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 56294 IP address blocks: 103.177.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:36:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE0A0/serialNumber=4A2FBB460D1BD8F316F6642D9EB5F4C3B220189D Validity Not Before: Jan 25 04:25:49 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b1e2cd-6d51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bd:63:67:70:62:21:50:42:9b:e3:50:08:98: 57:9e:52:9c:68:df:1b:e3:a4:4a:c1:78:cc:36:56: 99:cd:8a:78:60:2a:a8:59:47:21:57:ce:c1:27:95: ee:b3:a6:9f:5b:ca:3f:71:47:fc:18:c7:f9:ac:b7: eb:1a:f0:46:be:4c:fc:10:98:e9:93:f4:99:ff:73: 62:cf:69:a8:58:5b:90:a6:bd:6c:79:0e:dc:12:b4: ff:31:f7:49:9c:db:c5:5b:8a:ef:50:30:d6:38:14: 82:d9:13:98:3f:b3:75:e7:f5:c7:75:72:08:cb:bf: 3c:cb:d1:58:87:2d:c4:59:ed:65:e8:a8:cd:af:d6: d7:ef:24:08:11:f4:a5:55:1c:5b:d1:41:ed:ba:9e: 34:19:cd:da:e7:d2:96:d9:c7:5c:f9:27:ca:60:ef: 4a:7e:cb:84:98:71:cd:95:32:3b:46:c5:32:4e:58: 1f:4a:52:7d:db:ab:8d:01:0a:d0:83:b6:ae:a0:46: c4:9e:cd:44:ec:19:5d:7d:b7:cf:52:7d:2b:27:15: ea:e4:3e:19:4c:73:b9:f5:0d:74:3b:b3:c7:b1:05: ea:72:42:18:86:a5:07:c6:c5:c7:97:84:9b:69:16: 51:58:5d:4e:d4:b2:63:dd:30:74:06:1c:c0:5a:c7: bf:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:D8:0B:FE:A7:BF:63:57:E5:4C:A3:85:78:26:54:56:61:BC:F4:E8 X509v3 Authority Key Identifier: keyid:4A:2F:BB:46:0D:1B:D8:F3:16:F6:64:2D:9E:B5:F4:C3:B2:20:18:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Si-7Rg0b2PMW9mQtnrX0w7IgGJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE0A0/A425756216A411ED8E37C70CC4F9AE02/9682ACDE16A611ED86A3EF0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.159.0/24 Signature Algorithm: sha256WithRSAEncryption 19:3b:bb:f9:90:09:9f:10:2a:1f:2b:7f:03:df:e2:76:d1:32: c8:c5:c2:8f:52:a7:5d:6b:97:b3:9e:a8:0b:7b:b7:f0:ff:3e: e6:25:f5:0f:7c:bf:9c:aa:fd:e8:da:c1:d1:e4:8c:1f:c5:fa: d0:42:d8:0e:bc:f0:06:3c:b9:3d:f8:85:77:77:c7:1a:18:96: 1b:77:ed:d1:8e:c1:8c:98:b8:e2:0f:ed:b6:a5:63:77:f6:7e: 4d:31:76:d4:4f:a9:ff:32:43:a6:fd:91:36:7e:42:3d:b2:da: 90:ce:9b:09:43:66:8a:a3:1e:62:db:4c:b3:12:db:94:49:63: bd:49:db:18:42:81:b0:c8:7e:3d:f9:00:90:6d:53:8a:30:1b: a8:04:fa:c0:b3:3a:ad:cc:ab:98:4e:44:e8:f4:8b:64:7f:a7: 1f:76:f2:38:8e:e9:e8:2e:a1:27:b3:9b:f0:ab:de:d8:31:d9: 17:83:81:26:75:7d:cf:59:7a:b2:0a:82:d9:4f:8b:3b:98:b8: 3e:ac:2f:f0:6c:17:de:cc:5b:a1:6b:24:51:14:db:b4:4a:d6: d0:c4:37:b8:f4:bc:46:9f:fe:c5:09:3c:53:cf:0e:c7:34:e2: e7:41:37:89:f6:1b:97:4f:b9:6e:b0:db:4f:f4:51:a9:ce:f7: 7c:ea:fb:1a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwQTAxMTAvBgNVBAUTKDRBMkZCQjQ2MEQxQkQ4RjMxNkY2NjQyRDlFQjVGNEMz QjIyMDE4OUQwHhcNMjQwMTI1MDQyNTQ5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWIxZTJjZC02ZDUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtb1jZ3BiIVBCm+NQCJhXnlKcaN8b46RKwXjMNlaZzYp4YCqoWUchV87BJ5Xu s6afW8o/cUf8GMf5rLfrGvBGvkz8EJjpk/SZ/3Niz2moWFuQpr1seQ7cErT/MfdJ nNvFW4rvUDDWOBSC2ROYP7N15/XHdXIIy788y9FYhy3EWe1l6KjNr9bX7yQIEfSl VRxb0UHtup40Gc3a59KW2cdc+SfKYO9KfsuEmHHNlTI7RsUyTlgfSlJ926uNAQrQ g7auoEbEns1E7BldfbfPUn0rJxXq5D4ZTHO59Q10O7PHsQXqckIYhqUHxsXHl4Sb aRZRWF1O1LJj3TB0BhzAWse/fwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCrYC/6n v2NX5UyjhXgmVFZhvPToMB8GA1UdIwQYMBaAFEovu0YNG9jzFvZkLZ619MOyIBid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTBBMC9BNDI1NzU2MjE2 QTQxMUVEOEUzN0M3MENDNEY5QUUwMi9TaS03UmcwYjJQTVc5bVF0bnJYMHc3SWdH SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NpLTdSZzBiMlBNVzltUXRuclgwdzdJZ0dKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwQTAvQTQyNTc1NjIxNkE0MTFFRDhFMzdDNzBDQzRGOUFFMDIvOTY4MkFDREUx NkE2MTFFRDg2QTNFRjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsZ8wDQYJKoZIhvcNAQELBQADggEBABk7u/mQCZ8QKh8r fwPf4nbRMsjFwo9Sp11rl7OeqAt7t/D/PuYl9Q98v5yq/ejawdHkjB/F+tBC2A68 8AY8uT34hXd3xxoYlht37dGOwYyYuOIP7balY3f2fk0xdtRPqf8yQ6b9kTZ+Qj2y 2pDOmwlDZoqjHmLbTLMS25RJY71J2xhCgbDIfj35AJBtU4owG6gE+sCzOq3Mq5hO ROj0i2R/px928jiO6eguoSezm/Cr3tgx2ReDgSZ1fc9ZerIKgtlPizuYuD6sL/Bs F97MW6FrJFEU27RK1tDEN7j0vEaf/sUJPFPPDsc04udBN4n2G5dPuW6w20/0UanO 93zq+xo= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:58 2024 by rpki-client on console-ams.rpki-client.org