$ rpki-client -vvf rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/8BFE9EA6335911EDBC60AC44C4F9AE02.roa File: 8BFE9EA6335911EDBC60AC44C4F9AE02.roa (raw, json) Hash identifier: PkaRAOyxeuH2U7UkwpCaJHtr/yLJ/iuQhH7B44HKa84= Subject key identifier: 4E:BC:95:FC:1C:1A:A7:E8:EE:48:56:54:AF:C8:06:44:08:22:97:12 Certificate issuer: /CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Certificate serial: 019C Authority key identifier: 06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/8BFE9EA6335911EDBC60AC44C4F9AE02.roa Signing time: Wed 25 Sep 2024 02:36:22 +0000 ROA not before: Wed 25 Sep 2024 02:36:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 146954 IP address blocks: 103.25.220.0/24 maxlen: 24 2001:df1:2a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 412 (0x19c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122905/serialNumber=0646C52291D5CD4DF4A0FF786784FCF528346324 Validity Not Before: Sep 25 02:36:22 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f37726-d994 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:93:0f:6e:06:72:26:1d:29:fb:7c:98:55:ae: 19:9a:7a:98:b5:60:1e:5b:95:92:00:f2:bc:ed:79: 0c:1a:50:49:5f:bf:e8:d2:ac:01:e2:12:9e:06:28: 4c:0f:86:cc:f8:b4:b2:57:ab:9c:f3:3e:cf:e6:7e: 98:33:be:60:b4:18:d1:c1:9d:ca:b0:84:d7:d4:4f: ff:3a:79:74:46:d2:dd:60:8c:71:45:d6:99:8c:78: 5f:06:96:9f:ff:44:60:05:83:27:4d:98:5b:e6:07: 5e:36:80:26:dd:ad:03:64:6d:09:a8:41:ea:11:66: 93:fc:19:f4:73:bd:df:c0:8b:b1:25:8d:92:ca:a6: 42:4d:d3:b3:ae:8a:9b:41:60:cf:a1:e6:30:39:e6: d9:20:34:fd:9e:88:45:e0:bd:ad:22:42:ce:51:b0: aa:79:7e:b5:c0:dc:04:d7:58:5a:56:82:9b:72:01: 7a:16:6b:b2:f9:0e:2c:27:05:a1:4e:fa:f6:c1:00: 6f:9e:86:fd:dc:3e:6e:e8:94:13:c8:76:f3:60:fa: 48:b9:4e:87:71:55:b8:28:69:c1:1e:10:d7:85:c9: 4c:f3:3e:8b:ab:83:be:ea:e7:0f:bf:10:2e:2d:81: b4:cc:9e:b4:2f:1b:6b:7c:e3:c6:7c:12:c5:82:17: 95:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:BC:95:FC:1C:1A:A7:E8:EE:48:56:54:AF:C8:06:44:08:22:97:12 X509v3 Authority Key Identifier: keyid:06:46:C5:22:91:D5:CD:4D:F4:A0:FF:78:67:84:FC:F5:28:34:63:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/BkbFIpHVzU30oP94Z4T89Sg0YyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BkbFIpHVzU30oP94Z4T89Sg0YyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122905/11EB086A335511ED943FA53BC4F9AE02/8BFE9EA6335911EDBC60AC44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.25.220.0/24 IPv6: 2001:df1:2a40::/48 Signature Algorithm: sha256WithRSAEncryption 3b:e2:d6:0e:a9:d0:e4:a5:5a:13:be:7e:74:3a:42:c0:8a:6d: 73:dc:1b:da:82:0e:90:94:c4:7a:48:0b:a2:7a:81:f9:0d:b6: 05:a5:c2:3a:d5:0b:f1:f6:25:45:44:1e:d5:a2:a7:d5:b8:c1: af:32:f6:08:82:1b:ee:dd:96:60:85:90:2f:1e:7f:8a:29:55: 01:37:d9:bb:34:b6:8d:7d:4b:bc:93:72:98:68:37:6f:ed:80: af:7d:4a:88:54:d1:9c:df:24:1f:5a:66:62:06:2a:ba:aa:36: d7:83:4d:b4:0a:f1:b3:1d:1c:da:a3:30:6b:12:8f:b1:f3:02: fe:8c:f0:ed:07:24:33:c0:47:fc:ce:76:b9:65:ea:e0:09:db: bf:c5:2c:8f:a0:50:5b:6f:f5:ee:9f:05:a8:c9:92:16:7f:bd: 84:29:24:24:fc:48:bf:93:e9:fb:ca:b6:85:e5:c1:9d:c4:e7: 93:c2:fe:30:56:6c:33:11:b5:71:a6:96:0d:6d:02:1f:1b:2e: 6d:5a:fb:06:11:59:9b:83:57:8c:50:33:83:c9:b9:06:cf:a7: d1:da:6e:b7:6e:1b:34:7d:b6:15:51:03:6e:17:82:99:d2:b8: bd:25:15:e1:0c:14:8a:00:2e:11:28:34:0a:85:31:99:76:08: 8c:11:2b:e3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjI5MDUxMTAvBgNVBAUTKDA2NDZDNTIyOTFENUNENERGNEEwRkY3ODY3ODRGQ0Y1 MjgzNDYzMjQwHhcNMjQwOTI1MDIzNjIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzNzcyNi1kOTk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5pMPbgZyJh0p+3yYVa4ZmnqYtWAeW5WSAPK87XkMGlBJX7/o0qwB4hKeBihM D4bM+LSyV6uc8z7P5n6YM75gtBjRwZ3KsITX1E//Onl0RtLdYIxxRdaZjHhfBpaf /0RgBYMnTZhb5gdeNoAm3a0DZG0JqEHqEWaT/Bn0c73fwIuxJY2SyqZCTdOzroqb QWDPoeYwOebZIDT9nohF4L2tIkLOUbCqeX61wNwE11haVoKbcgF6Fmuy+Q4sJwWh Tvr2wQBvnob93D5u6JQTyHbzYPpIuU6HcVW4KGnBHhDXhclM8z6Lq4O+6ucPvxAu LYG0zJ60LxtrfOPGfBLFgheVnQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFE68lfwc Gqfo7khWVK/IBkQIIpcSMB8GA1UdIwQYMBaAFAZGxSKR1c1N9KD/eGeE/PUoNGMk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjkwNS8xMUVCMDg2QTMz NTUxMUVEOTQzRkE1M0JDNEY5QUUwMi9Ca2JGSXBIVnpVMzBvUDk0WjRUODlTZzBZ eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JrYkZJcEhWelUzMG9QOTRaNFQ4OVNnMFl5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjI5MDUvMTFFQjA4NkEzMzU1MTFFRDk0M0ZBNTNCQzRGOUFFMDIvOEJGRTlFQTYz MzU5MTFFREJDNjBBQzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnGdwwDwQCAAIwCQMHACABDfEqQDANBgkqhkiG9w0BAQsF AAOCAQEAO+LWDqnQ5KVaE75+dDpCwIptc9wb2oIOkJTEekgLonqB+Q22BaXCOtUL 8fYlRUQe1aKn1bjBrzL2CIIb7t2WYIWQLx5/iilVATfZuzS2jX1LvJNymGg3b+2A r31KiFTRnN8kH1pmYgYquqo214NNtArxsx0c2qMwaxKPsfMC/ozw7QckM8BH/M52 uWXq4Anbv8Usj6BQW2/17p8FqMmSFn+9hCkkJPxIv5Pp+8q2heXBncTnk8L+MFZs MxG1caaWDW0CHxsubVr7BhFZm4NXjFAzg8m5Bs+n0dput24bNH22FVEDbheCmdK4 vSUV4QwUigAuESg0CoUxmXYIjBEr4w== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:31 2024 by rpki-client on console-fra.rpki-client.org