$ rpki-client -vvf rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/EF260118D54211EEA18A7234C4F9AE02.roa File: EF260118D54211EEA18A7234C4F9AE02.roa (raw, json) Hash identifier: 2TNI2Bme8Dtnxp1P56AVS7vS8btEgm8hcjowYVLO74I= Subject key identifier: DA:AB:BF:59:19:C3:6B:CA:95:EA:69:EB:E2:A4:BE:0B:AB:38:A9:50 Certificate issuer: /CN=A9122010/serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Certificate serial: 02 Authority key identifier: A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/EF260118D54211EEA18A7234C4F9AE02.roa Signing time: Tue 27 Feb 2024 07:36:35 +0000 ROA not before: Tue 27 Feb 2024 07:36:35 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134461 IP address blocks: 103.160.140.0/24 maxlen: 24 103.160.141.0/24 maxlen: 24 2001:df5:a080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122010/serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Validity Not Before: Feb 27 07:36:35 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65dd9103-2fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:39:b7:78:ae:8f:ab:64:89:e9:d2:45:07:de: 90:a6:92:77:52:43:ac:54:14:c3:a4:7f:1f:1c:51: 55:fe:aa:9f:5a:e9:29:e4:f5:0f:da:6a:be:c5:82: 76:1a:d3:25:71:ba:52:e6:65:55:e2:41:36:e4:32: 62:ca:77:a6:42:ae:d4:cd:79:54:1c:0a:53:cd:8e: aa:47:0c:76:29:dc:52:56:c9:06:d5:8f:b2:71:46: fe:7d:fb:bd:f2:0a:57:57:93:52:44:a6:c9:30:aa: 0b:12:3d:fb:0a:30:48:4e:1b:d3:b7:06:f4:81:1e: 37:0b:6b:8f:68:b2:91:e9:dd:72:73:5c:f5:31:55: 35:45:6c:79:c8:79:aa:c7:74:c4:41:cf:34:08:53: 68:82:bd:7b:b0:72:25:c1:8b:7e:81:0a:5e:bb:0d: 09:59:62:00:ce:b7:31:bd:f0:52:09:4b:7b:c4:1d: 37:96:2d:b4:c9:94:37:37:66:7a:e9:51:cf:ff:be: ed:a5:b8:c4:f1:5a:f0:f9:86:d9:e1:44:c4:50:70: 38:a6:f6:01:13:da:9d:33:b7:a0:3e:67:56:ab:a0: da:a4:57:81:28:2e:cf:c3:32:2c:1e:db:d1:87:33: 79:65:ca:40:6e:ab:3c:ea:8c:cd:61:d6:90:4a:65: ad:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:AB:BF:59:19:C3:6B:CA:95:EA:69:EB:E2:A4:BE:0B:AB:38:A9:50 X509v3 Authority Key Identifier: keyid:A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/EF260118D54211EEA18A7234C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.140.0/23 IPv6: 2001:df5:a080::/48 Signature Algorithm: sha256WithRSAEncryption b2:76:71:a8:6b:c6:ea:a2:c4:01:4f:ae:2c:08:65:ec:e0:14: 76:5f:71:79:c0:05:62:e8:e9:29:01:62:61:0d:89:2f:7d:49: 32:f7:80:02:79:68:e4:36:63:2f:c5:2d:2d:f5:9c:39:b4:22: 06:29:dc:10:95:06:e7:ed:c1:54:ce:93:25:ae:b7:6b:b3:34: 8c:2d:41:32:cf:74:d6:dd:f1:1f:e7:2c:46:f3:8e:bb:81:a7: ae:9b:50:9e:72:ce:81:00:15:36:f2:9e:4b:88:68:2a:9b:dd: 09:1d:34:22:f3:f1:9a:3e:c6:c4:e3:5b:53:8c:db:fd:0e:b9: 1d:a5:dc:87:34:7f:98:6c:d9:be:14:dc:69:c8:21:ac:d3:dc: 7d:51:4c:75:5c:61:57:36:f8:e2:22:03:8c:13:f0:4b:67:e5: b5:a3:dc:3c:d1:f3:e1:30:74:41:26:42:9e:1f:95:e5:7e:cd: 66:f8:4b:ea:b1:2c:e9:b7:69:b3:71:e2:12:cc:d0:d9:c3:00: 29:bf:b3:3c:1f:a2:70:98:4e:19:38:48:8d:45:ef:57:4c:99: 14:a1:54:50:b1:50:45:2d:8c:79:15:fb:05:55:e0:e1:3c:49: 9f:3b:fb:f1:e9:e1:c3:00:04:37:77:30:78:1f:47:00:95:8f: dd:71:e3:1d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MjAxMDExMC8GA1UEBRMoQTYwOUE5NEU2QTIxMDFCQUY5NUM4QzJGNTVDRUM0MTc5 MjVCRUZDRjAeFw0yNDAyMjcwNzM2MzVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZGQ5MTAzLTJmZWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRObd4ro+rZInp0kUH3pCmkndSQ6xUFMOkfx8cUVX+qp9a6Snk9Q/aar7FgnYa 0yVxulLmZVXiQTbkMmLKd6ZCrtTNeVQcClPNjqpHDHYp3FJWyQbVj7JxRv59+73y CldXk1JEpskwqgsSPfsKMEhOG9O3BvSBHjcLa49ospHp3XJzXPUxVTVFbHnIearH dMRBzzQIU2iCvXuwciXBi36BCl67DQlZYgDOtzG98FIJS3vEHTeWLbTJlDc3Znrp Uc//vu2luMTxWvD5htnhRMRQcDim9gET2p0zt6A+Z1aroNqkV4EoLs/DMiwe29GH M3llykBuqzzqjM1h1pBKZa1vAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU2qu/WRnD a8qV6mnr4qS+C6s4qVAwHwYDVR0jBBgwFoAUpgmpTmohAbr5XIwvVc7EF5Jb788w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyMDEwL0VBMDIxQTk0RDUz RjExRUVBOEQ2MjQwRkM0RjlBRTAyL3BnbXBUbW9oQWJyNVhJd3ZWYzdFRjVKYjc4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGdtcFRtb2hBYnI1WEl3dlZjN0VGNUpiNzg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjAxMC9FQTAyMUE5NEQ1M0YxMUVFQThENjI0MEZDNEY5QUUwMi9FRjI2MDExOEQ1 NDIxMUVFQTE4QTcyMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWegjDAPBAIAAjAJAwcAIAEN9aCAMA0GCSqGSIb3DQEBCwUA A4IBAQCydnGoa8bqosQBT64sCGXs4BR2X3F5wAVi6OkpAWJhDYkvfUky94ACeWjk NmMvxS0t9Zw5tCIGKdwQlQbn7cFUzpMlrrdrszSMLUEyz3TW3fEf5yxG8467gaeu m1Cecs6BABU28p5LiGgqm90JHTQi8/GaPsbE41tTjNv9DrkdpdyHNH+YbNm+FNxp yCGs09x9UUx1XGFXNvjiIgOME/BLZ+W1o9w80fPhMHRBJkKeH5Xlfs1m+EvqsSzp t2mzceISzNDZwwApv7M8H6JwmE4ZOEiNRe9XTJkUoVRQsVBFLYx5FfsFVeDhPEmf O/vx6eHDAAQ3dzB4H0cAlY/dceMd -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org