$ rpki-client -vvf rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/41121A8C9F5211EFA8F8A056C4F9AE02.roa File: 41121A8C9F5211EFA8F8A056C4F9AE02.roa (raw, json) Hash identifier: Cu6EvKx5+axic2G9t78jCRZobiDqkcq6DwLktnKvujw= Subject key identifier: 9C:0C:FF:66:7F:17:4A:A0:3A:B0:19:0C:CE:AD:BB:26:7A:87:9A:50 Certificate issuer: /CN=A911A739/serialNumber=0C1BCE024B43FDDA87F39615D994BA3706246C50 Certificate serial: 02 Authority key identifier: 0C:1B:CE:02:4B:43:FD:DA:87:F3:96:15:D9:94:BA:37:06:24:6C:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DBvOAktD_dqH85YV2ZS6NwYkbFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/41121A8C9F5211EFA8F8A056C4F9AE02.roa Signing time: Sun 10 Nov 2024 10:55:10 +0000 ROA not before: Sun 10 Nov 2024 10:55:10 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139230 IP address blocks: 103.140.94.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/DBvOAktD_dqH85YV2ZS6NwYkbFA.crl rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/DBvOAktD_dqH85YV2ZS6NwYkbFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DBvOAktD_dqH85YV2ZS6NwYkbFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A739/serialNumber=0C1BCE024B43FDDA87F39615D994BA3706246C50 Validity Not Before: Nov 10 10:55:10 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6730910e-553f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:15:5c:bc:1c:34:86:f6:2a:60:19:e0:c6:6d: a0:91:6a:29:d9:0d:3b:08:d0:af:8d:98:95:5c:f9: a8:83:00:ff:db:85:6e:1f:5c:3b:d1:49:23:da:2b: cc:86:3d:cb:ac:f4:08:45:73:39:58:e3:a5:6f:c6: 15:74:b3:0d:ea:75:80:47:7f:07:55:a2:37:e5:60: 75:bb:ea:b5:a8:31:e5:26:24:f0:b1:cd:f1:46:2f: 5a:07:79:17:5e:15:42:8e:bd:24:c7:2a:37:bc:57: 6a:76:b1:44:d9:8e:74:fd:20:e6:12:ae:21:64:97: 1e:d7:1c:e2:a9:9c:fe:a7:10:2e:a2:fa:80:a7:2b: 91:19:d7:1d:38:76:88:17:97:a2:0b:b8:ae:39:c2: 4e:fe:c4:c2:1e:c4:be:59:d6:21:95:0f:12:ae:5c: e2:d1:ce:72:53:38:90:54:07:05:0d:03:8c:43:85: 89:64:7f:f6:15:9c:f2:b7:22:b6:39:b1:3b:23:12: 82:14:b4:18:9c:b6:44:74:1b:ff:b8:ff:c1:31:bd: 94:6b:73:f4:b3:b4:e6:0d:42:9b:bd:62:79:7e:9f: 42:66:76:d5:71:57:8b:b9:39:66:3a:ea:c6:c3:83: 39:95:4b:55:6f:45:e8:da:22:c7:ca:54:74:84:d8: c1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:0C:FF:66:7F:17:4A:A0:3A:B0:19:0C:CE:AD:BB:26:7A:87:9A:50 X509v3 Authority Key Identifier: keyid:0C:1B:CE:02:4B:43:FD:DA:87:F3:96:15:D9:94:BA:37:06:24:6C:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/DBvOAktD_dqH85YV2ZS6NwYkbFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DBvOAktD_dqH85YV2ZS6NwYkbFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A739/C95D397C9F5111EF9B63CC55C4F9AE02/41121A8C9F5211EFA8F8A056C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.94.0/23 Signature Algorithm: sha256WithRSAEncryption 4a:d8:7d:06:b8:84:e1:09:9d:48:27:75:c7:c3:3c:bc:ed:ce: 34:c1:78:53:3c:fb:9e:af:47:2e:92:95:90:0a:6d:c7:36:a9: 6b:8a:7f:6f:97:e3:32:73:11:d4:7e:71:37:db:df:83:17:f6: bf:9f:62:dc:0c:3f:55:0d:4d:92:0c:a8:9f:a5:f3:4a:14:6e: 7b:f5:f7:83:d2:7d:1c:f9:e4:78:1c:ce:d1:1b:e3:60:fa:00: 3a:80:58:9c:df:5f:d3:1f:6f:0f:30:f7:f3:e5:01:61:39:4b: fa:0b:bc:c7:0c:2d:0c:a5:5d:9b:9a:69:12:83:07:cb:0e:43: c9:02:5b:51:4c:3f:f7:d1:5a:9d:20:b3:65:f6:bc:d1:75:95: ca:15:5b:c4:da:b4:fe:24:ea:83:89:0b:1a:3f:e3:bc:6c:1b: 47:83:7d:8b:e3:48:0d:96:e4:d9:5e:f5:a5:f8:0d:8b:8b:40: 72:68:9b:bc:55:a6:c7:d7:64:bf:82:ed:08:a3:54:b7:5d:13: a3:31:c9:fd:c7:88:03:62:45:b2:95:75:fc:10:f8:be:d6:d0: 07:5f:1b:c3:af:1e:f5:2d:55:fa:06:7a:d7:88:a5:02:1c:2c: 95:27:b9:b2:24:ef:f0:7c:7c:4a:e3:33:cc:c6:08:43:85:1b: ee:2e:e1:e4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QTczOTExMC8GA1UEBRMoMEMxQkNFMDI0QjQzRkREQTg3RjM5NjE1RDk5NEJBMzcw NjI0NkM1MDAeFw0yNDExMTAxMDU1MTBaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MzA5MTBlLTU1M2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYFVy8HDSG9ipgGeDGbaCRainZDTsI0K+NmJVc+aiDAP/bhW4fXDvRSSPaK8yG Pcus9AhFczlY46VvxhV0sw3qdYBHfwdVojflYHW76rWoMeUmJPCxzfFGL1oHeRde FUKOvSTHKje8V2p2sUTZjnT9IOYSriFklx7XHOKpnP6nEC6i+oCnK5EZ1x04dogX l6ILuK45wk7+xMIexL5Z1iGVDxKuXOLRznJTOJBUBwUNA4xDhYlkf/YVnPK3IrY5 sTsjEoIUtBictkR0G/+4/8ExvZRrc/SztOYNQpu9Ynl+n0JmdtVxV4u5OWY66sbD gzmVS1VvRejaIsfKVHSE2MEtAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUnAz/Zn8X SqA6sBkMzq27JnqHmlAwHwYDVR0jBBgwFoAUDBvOAktD/dqH85YV2ZS6NwYkbFAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBNzM5L0M5NUQzOTdDOUY1 MTExRUY5QjYzQ0M1NUM0RjlBRTAyL0RCdk9Ba3REX2RxSDg1WVYyWlM2TndZa2JG QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvREJ2T0FrdERfZHFIODVZVjJaUzZOd1lrYkZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QTczOS9DOTVEMzk3QzlGNTExMUVGOUI2M0NDNTVDNEY5QUUwMi80MTEyMUE4QzlG NTIxMUVGQThGOEEwNTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeMXjANBgkqhkiG9w0BAQsFAAOCAQEASth9BriE4QmdSCd1 x8M8vO3ONMF4Uzz7nq9HLpKVkAptxzapa4p/b5fjMnMR1H5xN9vfgxf2v59i3Aw/ VQ1Nkgyon6XzShRue/X3g9J9HPnkeBzO0RvjYPoAOoBYnN9f0x9vDzD38+UBYTlL +gu8xwwtDKVdm5ppEoMHyw5DyQJbUUw/99FanSCzZfa80XWVyhVbxNq0/iTqg4kL Gj/jvGwbR4N9i+NIDZbk2V71pfgNi4tAcmibvFWmx9dkv4LtCKNUt10TozHJ/ceI A2JFspV1/BD4vtbQB18bw68e9S1V+gZ614ilAhwslSe5siTv8Hx8SuMzzMYIQ4Ub 7i7h5A== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org