$ rpki-client -vvf rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/99AB821E859C11E7A1FEC80AC4F9AE02.roa File: 99AB821E859C11E7A1FEC80AC4F9AE02.roa (raw, json) Hash identifier: P4Ek16t0ZEw/MnJDtAJSlLMC0jHATAWAbBg4OWQTq78= Subject key identifier: 33:2C:44:3B:E3:F2:3B:77:86:65:5B:3F:F8:FD:16:03:8C:84:60:AE Certificate issuer: /CN=A9118799/serialNumber=E0CAAD17C068D8602BCCEB467B455510BC52390E Certificate serial: 18B1 Authority key identifier: E0:CA:AD:17:C0:68:D8:60:2B:CC:EB:46:7B:45:55:10:BC:52:39:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MqtF8Bo2GArzOtGe0VVELxSOQ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/99AB821E859C11E7A1FEC80AC4F9AE02.roa Signing time: Fri 20 Sep 2024 17:04:45 +0000 ROA not before: Fri 20 Sep 2024 17:04:45 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136909 IP address blocks: 103.98.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.crl rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MqtF8Bo2GArzOtGe0VVELxSOQ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:27:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6321 (0x18b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118799/serialNumber=E0CAAD17C068D8602BCCEB467B455510BC52390E Validity Not Before: Sep 20 17:04:45 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66edab2c-8a12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:82:fa:77:5d:c0:82:c3:94:eb:e8:c8:4e:71: 6e:1e:fc:71:50:8d:84:a3:97:6f:9f:7b:ec:8c:fe: b2:f8:c7:fb:51:81:67:35:f8:b6:8d:ec:b0:2f:e9: 2b:69:4c:c5:92:a8:23:77:99:dd:be:7d:68:ae:51: aa:11:73:24:a3:e2:e0:c3:47:a6:a8:0a:19:b5:b3: 94:dc:75:a0:f1:2a:52:a6:65:00:36:a5:30:e4:63: df:e7:41:2d:65:9a:1f:81:b1:54:13:90:4a:e5:b2: 36:56:38:55:f6:fd:47:4d:b3:1f:65:8c:c3:06:66: e7:bd:2c:e6:d1:12:5a:cc:d9:3c:e9:5b:90:8b:e0: cf:1f:9f:f8:96:3c:8f:e7:3b:f9:2d:fc:c9:0d:e4: df:c7:54:83:0d:58:de:c8:aa:17:00:bc:65:9c:52: bf:19:ed:6b:27:55:94:bc:c6:2d:0b:f7:11:3a:61: c5:12:e5:db:0f:11:64:da:03:e5:02:c7:63:69:57: 10:04:7e:8f:01:64:3a:ef:30:47:06:a8:1a:47:58: 76:c9:e1:eb:d6:48:34:05:62:6f:59:58:9d:5e:a4: ea:d3:27:d7:3e:be:a0:24:04:99:0b:a9:70:e0:c3: d2:16:78:65:17:ad:cb:e4:35:ee:aa:c3:02:76:0e: f6:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:2C:44:3B:E3:F2:3B:77:86:65:5B:3F:F8:FD:16:03:8C:84:60:AE X509v3 Authority Key Identifier: keyid:E0:CA:AD:17:C0:68:D8:60:2B:CC:EB:46:7B:45:55:10:BC:52:39:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/4MqtF8Bo2GArzOtGe0VVELxSOQ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4MqtF8Bo2GArzOtGe0VVELxSOQ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118799/3287BFA27EC711E7883E2E58C4F9AE02/99AB821E859C11E7A1FEC80AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.98.200.0/22 Signature Algorithm: sha256WithRSAEncryption 20:5a:12:02:71:92:2c:9e:05:17:64:4b:94:38:95:d6:d0:e2: be:56:51:b6:f3:a9:a8:42:60:69:a9:f4:73:db:df:8d:55:ad: 61:52:f7:60:e9:95:d7:d2:1b:e9:3c:c9:dc:9e:47:e5:72:8e: 5f:d2:3f:a8:7e:20:f4:d1:56:7f:2f:33:5b:80:ac:9b:3d:2f: db:4c:a8:a7:10:21:14:36:e1:f1:49:30:f9:7a:39:52:2e:25: 2a:dc:ed:ea:34:b9:18:38:4e:60:72:e1:1e:11:da:ad:0c:a8: 5a:43:85:cb:32:eb:25:e3:86:b3:47:9b:0f:5d:47:4d:21:d7: 26:ba:75:f5:4b:92:eb:68:f9:a0:79:dc:07:da:71:2e:55:e8: 18:27:3f:a5:a5:44:75:b9:1d:73:01:50:87:12:6c:eb:b2:8f: d0:b6:d1:39:02:66:ad:c4:fa:c1:98:6e:e3:c4:35:4a:ee:d5: da:97:3a:8e:63:11:dd:11:4b:33:ae:78:9f:5f:af:9a:a2:f4: b7:e2:86:24:11:d5:71:ba:64:3a:db:ec:bc:88:60:f6:40:8d: 67:e1:73:d4:aa:ef:13:6e:c2:e5:83:73:b0:6a:0d:3b:eb:84: dc:34:8a:c4:f1:64:44:8e:ed:3b:b7:e1:4e:58:91:74:42:10: 9a:83:68:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg3OTkxMTAvBgNVBAUTKEUwQ0FBRDE3QzA2OEQ4NjAyQkNDRUI0NjdCNDU1NTEw QkM1MjM5MEUwHhcNMjQwOTIwMTcwNDQ1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYWIyYy04YTEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo4L6d13AgsOU6+jITnFuHvxxUI2Eo5dvn3vsjP6y+Mf7UYFnNfi2jeywL+kr aUzFkqgjd5ndvn1orlGqEXMko+Lgw0emqAoZtbOU3HWg8SpSpmUANqUw5GPf50Et ZZofgbFUE5BK5bI2VjhV9v1HTbMfZYzDBmbnvSzm0RJazNk86VuQi+DPH5/4ljyP 5zv5LfzJDeTfx1SDDVjeyKoXALxlnFK/Ge1rJ1WUvMYtC/cROmHFEuXbDxFk2gPl AsdjaVcQBH6PAWQ67zBHBqgaR1h2yeHr1kg0BWJvWVidXqTq0yfXPr6gJASZC6lw 4MPSFnhlF63L5DXuqsMCdg72tQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDMsRDvj 8jt3hmVbP/j9FgOMhGCuMB8GA1UdIwQYMBaAFODKrRfAaNhgK8zrRntFVRC8UjkO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODc5OS8zMjg3QkZBMjdF QzcxMUU3ODgzRTJFNThDNEY5QUUwMi80TXF0RjhCbzJHQXJ6T3RHZTBWVkVMeFNP UTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRNcXRGOEJvMkdBcnpPdEdlMFZWRUx4U09RNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg3OTkvMzI4N0JGQTI3RUM3MTFFNzg4M0UyRTU4QzRGOUFFMDIvOTlBQjgyMUU4 NTlDMTFFN0ExRkVDODBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYsgwDQYJKoZIhvcNAQELBQADggEBACBaEgJxkiyeBRdk S5Q4ldbQ4r5WUbbzqahCYGmp9HPb341VrWFS92DpldfSG+k8ydyeR+Vyjl/SP6h+ IPTRVn8vM1uArJs9L9tMqKcQIRQ24fFJMPl6OVIuJSrc7eo0uRg4TmBy4R4R2q0M qFpDhcsy6yXjhrNHmw9dR00h1ya6dfVLkuto+aB53AfacS5V6BgnP6WlRHW5HXMB UIcSbOuyj9C20TkCZq3E+sGYbuPENUru1dqXOo5jEd0RSzOueJ9fr5qi9LfihiQR 1XG6ZDrb7LyIYPZAjWfhc9Sq7xNuwuWDc7BqDTvrhNw0isTxZESO7Tu34U5YkXRC EJqDaPo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:56 2024 by rpki-client on console-ams.rpki-client.org