$ rpki-client -vvf rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/991E066C1DB711EB95324E17C4F9AE02.roa File: 991E066C1DB711EB95324E17C4F9AE02.roa (raw, json) Hash identifier: /nPv0Yq4GGkQfcr8qvWam0XNmS67EN12p0o/3hMFLgs= Subject key identifier: 01:B1:FB:78:6C:95:A1:87:FD:2C:23:E2:29:DD:2C:17:B0:E8:1D:1D Certificate issuer: /CN=A9116119/serialNumber=54B6DE0691A9C6D565CD18011DD22B109E02379B Certificate serial: 1077 Authority key identifier: 54:B6:DE:06:91:A9:C6:D5:65:CD:18:01:1D:D2:2B:10:9E:02:37:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/991E066C1DB711EB95324E17C4F9AE02.roa Signing time: Wed 02 Oct 2024 17:55:24 +0000 ROA not before: Wed 02 Oct 2024 17:55:24 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138147 IP address blocks: 103.121.80.0/24 maxlen: 24 103.121.81.0/24 maxlen: 24 103.121.82.0/24 maxlen: 24 103.121.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.crl rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4215 (0x1077) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116119/serialNumber=54B6DE0691A9C6D565CD18011DD22B109E02379B Validity Not Before: Oct 2 17:55:24 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fd890c-d932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:8a:a2:94:a0:f4:bc:81:5f:c5:ac:c4:2e:f5: 20:33:d1:34:7a:4d:28:95:66:23:5d:74:08:82:de: e0:e5:3c:08:3f:e3:5d:0b:0f:b3:aa:95:63:e2:0d: 2c:d2:47:52:2f:84:83:04:68:77:eb:c7:3a:e0:d9: d6:09:2e:23:6f:d1:2e:24:1c:f8:ba:aa:2c:c8:54: 58:d5:1f:89:53:f5:79:eb:61:b1:27:da:14:82:fe: 62:b2:ba:eb:15:2a:18:11:ed:a7:13:fb:47:ab:5d: b7:f2:56:45:40:62:96:16:f5:00:21:ea:01:0d:d2: bd:90:81:2a:4f:7a:29:69:f0:fd:ce:6c:52:c1:32: f1:ba:b4:a5:b2:1d:c9:13:a0:92:7e:24:84:07:e7: d5:a3:28:15:bd:3a:dc:18:78:c5:6d:3b:f6:a8:d1: b5:8f:d5:d3:e4:16:fd:24:24:e4:cb:44:14:08:23: f1:0f:aa:71:6f:da:de:1a:8f:58:99:b2:31:5a:02: 13:1d:3a:53:22:e9:0c:b7:a0:1f:89:f8:93:00:53: bb:eb:5f:3f:87:9f:5c:c8:4a:8f:28:d7:fd:75:4d: 10:2e:98:b6:36:8b:30:c3:7e:76:9c:2a:f4:68:1a: ce:c4:9e:65:0b:a0:e3:b3:cd:15:9b:ce:84:26:47: 41:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B1:FB:78:6C:95:A1:87:FD:2C:23:E2:29:DD:2C:17:B0:E8:1D:1D X509v3 Authority Key Identifier: keyid:54:B6:DE:06:91:A9:C6:D5:65:CD:18:01:1D:D2:2B:10:9E:02:37:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VLbeBpGpxtVlzRgBHdIrEJ4CN5s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116119/5448179E1ABC11E9BDA4FC48C4F9AE02/991E066C1DB711EB95324E17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.80.0/22 Signature Algorithm: sha256WithRSAEncryption 17:aa:ec:e3:68:7d:2a:17:03:88:85:64:10:8e:f7:66:7c:64: 65:8f:26:c8:61:d0:54:f7:c7:10:4e:b8:57:10:aa:4d:d0:fa: 15:7c:6a:a8:c7:d3:4d:71:4d:38:85:4c:c9:d9:91:c6:93:c9: 09:fd:eb:04:ff:b9:86:33:49:12:b6:9d:23:0e:76:1c:84:4c: ae:d7:6f:0c:87:25:44:8d:cb:75:03:6e:fb:bb:23:74:55:fd: e1:a7:3f:e3:7a:ce:e0:e6:96:c1:0b:4e:88:92:82:4d:dc:72: 85:75:b6:90:60:1e:2e:46:a1:b8:6b:0a:f2:6c:5d:c8:d3:fe: 22:d0:73:ae:b3:f4:88:8f:11:aa:38:22:31:6e:5b:09:ba:be: 1f:41:63:eb:fc:55:c6:2d:ae:bd:03:a1:8d:58:f0:c2:0e:bd: 44:27:cc:82:21:3e:91:db:2f:7d:88:81:45:72:a8:4e:05:ae: 62:dc:c9:a8:34:48:1b:be:80:99:a8:72:9b:6f:96:4f:05:dc: 7d:8e:8d:28:e0:92:e2:0c:40:2d:2f:fd:80:e9:f3:dd:50:9e: fa:cf:0e:c0:8d:6a:e5:ee:4f:c0:f3:8f:ff:9b:a6:f1:e7:ea: 2b:69:59:f7:f5:ec:26:d3:1b:a0:47:59:3a:b0:e7:b1:0f:82: 31:93:8d:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEHcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTYxMTkxMTAvBgNVBAUTKDU0QjZERTA2OTFBOUM2RDU2NUNEMTgwMTFERDIyQjEw OUUwMjM3OUIwHhcNMjQxMDAyMTc1NTI0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkODkwYy1kOTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxYqilKD0vIFfxazELvUgM9E0ek0olWYjXXQIgt7g5TwIP+NdCw+zqpVj4g0s 0kdSL4SDBGh368c64NnWCS4jb9EuJBz4uqosyFRY1R+JU/V562GxJ9oUgv5isrrr FSoYEe2nE/tHq1238lZFQGKWFvUAIeoBDdK9kIEqT3opafD9zmxSwTLxurSlsh3J E6CSfiSEB+fVoygVvTrcGHjFbTv2qNG1j9XT5Bb9JCTky0QUCCPxD6pxb9reGo9Y mbIxWgITHTpTIukMt6AfifiTAFO7618/h59cyEqPKNf9dU0QLpi2Nosww352nCr0 aBrOxJ5lC6Djs80Vm86EJkdBewIDAQABo4IClTCCApEwHQYDVR0OBBYEFAGx+3hs laGH/Swj4indLBew6B0dMB8GA1UdIwQYMBaAFFS23gaRqcbVZc0YAR3SKxCeAjeb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjExOS81NDQ4MTc5RTFB QkMxMUU5QkRBNEZDNDhDNEY5QUUwMi9WTGJlQnBHcHh0Vmx6UmdCSGRJckVKNENO NXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZMYmVCcEdweHRWbHpSZ0JIZElyRUo0Q041cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTYxMTkvNTQ0ODE3OUUxQUJDMTFFOUJEQTRGQzQ4QzRGOUFFMDIvOTkxRTA2NkMx REI3MTFFQjk1MzI0RTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneVAwDQYJKoZIhvcNAQELBQADggEBABeq7ONofSoXA4iF ZBCO92Z8ZGWPJshh0FT3xxBOuFcQqk3Q+hV8aqjH001xTTiFTMnZkcaTyQn96wT/ uYYzSRK2nSMOdhyETK7XbwyHJUSNy3UDbvu7I3RV/eGnP+N6zuDmlsELToiSgk3c coV1tpBgHi5GobhrCvJsXcjT/iLQc66z9IiPEao4IjFuWwm6vh9BY+v8VcYtrr0D oY1Y8MIOvUQnzIIhPpHbL32IgUVyqE4FrmLcyag0SBu+gJmocptvlk8F3H2OjSjg kuIMQC0v/YDp891QnvrPDsCNauXuT8Dzj/+bpvHn6itpWff17CbTG6BHWTqw57EP gjGTjbk= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:16 2024 by rpki-client on console-fra.rpki-client.org