$ rpki-client -vvf rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/F597C6BA0C3A11EA8BA9C679C4F9AE02.roa File: F597C6BA0C3A11EA8BA9C679C4F9AE02.roa (raw, json) Hash identifier: PP1F9ZvClDVlfvZcCQlDzNuUZds388uZxgQ32yiGu6I= Subject key identifier: 21:94:6E:80:55:4B:45:6C:70:BB:11:88:83:E1:42:05:44:82:B6:0D Certificate issuer: /CN=A9119010/serialNumber=6C05EEAF3F687041D59A49BA1709B83032B74CDC Certificate serial: 0BB9 Authority key identifier: 6C:05:EE:AF:3F:68:70:41:D5:9A:49:BA:17:09:B8:30:32:B7:4C:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAXurz9ocEHVmkm6Fwm4MDK3TNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/F597C6BA0C3A11EA8BA9C679C4F9AE02.roa Signing time: Tue 08 Oct 2024 10:21:28 +0000 ROA not before: Tue 08 Oct 2024 10:21:28 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139806 IP address blocks: 103.145.74.0/23 maxlen: 24 2001:df5:4680::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/bAXurz9ocEHVmkm6Fwm4MDK3TNw.crl rsync://rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/bAXurz9ocEHVmkm6Fwm4MDK3TNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAXurz9ocEHVmkm6Fwm4MDK3TNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119010/serialNumber=6C05EEAF3F687041D59A49BA1709B83032B74CDC Validity Not Before: Oct 8 10:21:28 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=670507a8-1caf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5f:71:3e:b5:55:9b:36:c5:82:99:52:f8:fb: 2e:c0:6b:e5:09:f2:34:a2:2a:6f:e8:68:f5:cf:ef: bc:69:64:e0:b5:8f:4d:ea:a9:96:fc:2c:85:ba:78: 16:0e:f0:7d:31:26:d2:f2:a9:5d:ce:cf:50:89:7b: 01:b1:38:55:1d:ec:57:f1:10:d9:57:67:cb:40:56: 20:20:2f:4c:fc:e6:48:39:7b:5c:5f:20:09:8d:dc: 47:29:7a:12:84:e0:e2:d9:23:8e:47:7c:0e:d6:66: 57:50:5e:79:6c:55:a6:14:b8:d1:fe:d3:a8:e6:d5: 30:8f:dc:22:87:84:b5:d2:d4:c4:45:b4:97:da:0c: 42:9a:8e:e7:42:1a:8f:31:cf:8b:07:79:8c:5e:9a: e9:57:db:0f:c1:b1:59:2b:77:b8:3a:6b:d5:f5:61: 97:1c:aa:b7:f3:e7:7c:6c:b1:75:de:8b:fe:1a:9d: 45:90:b3:9b:d0:86:80:f5:ba:f4:9a:5e:c5:9a:e0: 7d:d1:44:de:28:3e:40:e9:d1:74:89:28:01:62:69: 3d:d0:6e:e3:60:2b:20:d5:64:1e:0c:23:71:2e:b0: c4:8b:bc:7c:1e:ed:a3:83:1e:c5:b2:f4:23:6f:66: 41:56:ce:40:a0:fa:f0:8f:97:f9:b2:60:fe:29:1c: 97:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:94:6E:80:55:4B:45:6C:70:BB:11:88:83:E1:42:05:44:82:B6:0D X509v3 Authority Key Identifier: keyid:6C:05:EE:AF:3F:68:70:41:D5:9A:49:BA:17:09:B8:30:32:B7:4C:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/bAXurz9ocEHVmkm6Fwm4MDK3TNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAXurz9ocEHVmkm6Fwm4MDK3TNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119010/6A7E940A0C3A11EA93557C79C4F9AE02/F597C6BA0C3A11EA8BA9C679C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.74.0/23 IPv6: 2001:df5:4680::/48 Signature Algorithm: sha256WithRSAEncryption 03:bd:3a:97:00:20:63:54:6f:22:50:ee:98:e6:38:13:20:f2: 00:28:92:94:6d:d5:8c:f9:d3:f5:d6:a3:e6:20:44:19:0e:4b: f1:fc:60:b1:15:77:96:26:d9:21:0b:db:2f:70:68:8e:fd:b4: 26:f2:11:bb:20:70:ea:ac:7e:e9:ae:58:1f:a9:bd:a6:e3:ed: b5:9b:80:32:f4:06:a0:47:5b:d1:d6:b0:2b:fb:43:67:62:f5: c0:8c:6d:03:9f:83:a2:12:aa:92:87:97:36:dc:f7:4f:ae:e8: f6:ad:ff:0b:58:b3:c4:a5:34:87:f9:4d:73:3d:73:92:03:3d: c8:f0:98:de:a8:fb:e5:0e:41:b7:cc:70:38:48:a8:ee:04:f3: 9b:d3:f2:d3:0e:64:95:50:c0:5e:47:35:60:18:dd:00:d1:4b: 24:51:dd:a0:5d:35:34:54:61:32:2e:80:ee:90:af:17:c8:79: a1:ee:42:15:4a:14:de:ec:f9:a3:64:dd:8b:a6:e7:45:84:5a: de:ed:88:2e:b6:14:cf:fa:d9:90:d2:a6:37:23:c0:6c:57:47: 84:30:85:a3:cf:c7:ba:a8:e0:c6:a5:47:12:92:33:12:a5:cf: d1:1f:fb:11:15:34:99:dc:1f:5d:a0:17:ae:73:01:73:b8:09: 71:44:f4:79 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTkwMTAxMTAvBgNVBAUTKDZDMDVFRUFGM0Y2ODcwNDFENTlBNDlCQTE3MDlCODMw MzJCNzRDREMwHhcNMjQxMDA4MTAyMTI4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1MDdhOC0xY2FmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1V9xPrVVmzbFgplS+PsuwGvlCfI0oipv6Gj1z++8aWTgtY9N6qmW/CyFungW DvB9MSbS8qldzs9QiXsBsThVHexX8RDZV2fLQFYgIC9M/OZIOXtcXyAJjdxHKXoS hODi2SOOR3wO1mZXUF55bFWmFLjR/tOo5tUwj9wih4S10tTERbSX2gxCmo7nQhqP Mc+LB3mMXprpV9sPwbFZK3e4OmvV9WGXHKq38+d8bLF13ov+Gp1FkLOb0IaA9br0 ml7FmuB90UTeKD5A6dF0iSgBYmk90G7jYCsg1WQeDCNxLrDEi7x8Hu2jgx7FsvQj b2ZBVs5AoPrwj5f5smD+KRyXEwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCGUboBV S0VscLsRiIPhQgVEgrYNMB8GA1UdIwQYMBaAFGwF7q8/aHBB1ZpJuhcJuDAyt0zc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOTAxMC82QTdFOTQwQTBD M0ExMUVBOTM1NTdDNzlDNEY5QUUwMi9iQVh1cno5b2NFSFZta202RndtNE1ESzNU TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JBWHVyejlvY0VIVm1rbTZGd200TURLM1ROdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTkwMTAvNkE3RTk0MEEwQzNBMTFFQTkzNTU3Qzc5QzRGOUFFMDIvRjU5N0M2QkEw QzNBMTFFQThCQTlDNjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkUowDwQCAAIwCQMHACABDfVGgDANBgkqhkiG9w0BAQsF AAOCAQEAA706lwAgY1RvIlDumOY4EyDyACiSlG3VjPnT9daj5iBEGQ5L8fxgsRV3 libZIQvbL3Bojv20JvIRuyBw6qx+6a5YH6m9puPttZuAMvQGoEdb0dawK/tDZ2L1 wIxtA5+DohKqkoeXNtz3T67o9q3/C1izxKU0h/lNcz1zkgM9yPCY3qj75Q5Bt8xw OEio7gTzm9Py0w5klVDAXkc1YBjdANFLJFHdoF01NFRhMi6A7pCvF8h5oe5CFUoU 3uz5o2Tdi6bnRYRa3u2ILrYUz/rZkNKmNyPAbFdHhDCFo8/HuqjgxqVHEpIzEqXP 0R/7ERU0mdwfXaAXrnMBc7gJcUT0eQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:56 2024 by rpki-client on console-ams.rpki-client.org