$ rpki-client -vvf rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/650CB2EE081C11EFA47C4687C4F9AE02.roa File: 650CB2EE081C11EFA47C4687C4F9AE02.roa (raw, json) Hash identifier: A1/zPNq14u99ArX0Q61KCnQwIFfKUwlpWUZD/5n5WfY= Subject key identifier: 80:C3:A4:25:EC:C2:5A:C4:4F:F8:0D:DB:04:EA:3E:E8:4F:1C:5F:15 Certificate issuer: /CN=A9122B0D/serialNumber=3E9358DCF2C53F6621052B3AA852454E2FB31C18 Certificate serial: CD Authority key identifier: 3E:93:58:DC:F2:C5:3F:66:21:05:2B:3A:A8:52:45:4E:2F:B3:1C:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PpNY3PLFP2YhBSs6qFJFTi-zHBg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/650CB2EE081C11EFA47C4687C4F9AE02.roa Signing time: Fri 03 May 2024 06:49:57 +0000 ROA not before: Fri 03 May 2024 06:49:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151054 IP address blocks: 103.121.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/PpNY3PLFP2YhBSs6qFJFTi-zHBg.crl rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/PpNY3PLFP2YhBSs6qFJFTi-zHBg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PpNY3PLFP2YhBSs6qFJFTi-zHBg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122B0D/serialNumber=3E9358DCF2C53F6621052B3AA852454E2FB31C18 Validity Not Before: May 3 06:49:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66348915-dc2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ba:00:dc:84:14:e2:f2:e8:52:e5:e2:de:d1: b2:79:54:c2:e2:05:31:dc:42:f4:c2:63:5a:5f:2f: bb:81:6a:33:e8:37:08:42:36:31:d2:98:78:b4:be: bd:d8:87:4a:bd:70:21:0b:31:e0:39:34:cf:58:b8: bb:a2:5a:e2:e4:7d:ae:d5:41:83:27:03:91:a1:f2: 2c:6e:44:7e:6f:1e:e3:d5:08:25:a0:e2:31:a0:22: f0:0f:6f:5d:2a:f0:bb:65:64:5c:82:76:20:d9:c8: f2:c5:7c:89:e9:08:86:d4:7f:1f:99:14:0c:fb:cf: 0d:35:67:4f:12:f8:89:84:d0:6c:9c:bc:28:7d:ee: 02:39:23:f4:99:e7:0e:a2:3e:62:12:a3:69:8f:bc: a1:78:33:64:17:fa:f5:6b:cc:ca:ba:d8:5d:7c:98: b6:58:1f:01:fe:fa:9e:f2:e5:49:27:70:3c:4e:f5: ad:b8:d1:ab:00:8a:cf:33:a0:27:15:fa:7b:22:73: 0e:ee:37:2d:bb:29:5d:e4:1c:5d:70:3d:37:71:53: 4a:97:7c:25:ae:b1:49:00:aa:97:23:49:55:8c:ec: 1d:86:82:0e:e4:46:78:30:dc:68:c0:15:6c:30:81: 6e:4f:70:8e:18:0b:3f:03:6e:07:af:15:72:e4:0f: d1:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:C3:A4:25:EC:C2:5A:C4:4F:F8:0D:DB:04:EA:3E:E8:4F:1C:5F:15 X509v3 Authority Key Identifier: keyid:3E:93:58:DC:F2:C5:3F:66:21:05:2B:3A:A8:52:45:4E:2F:B3:1C:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/PpNY3PLFP2YhBSs6qFJFTi-zHBg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PpNY3PLFP2YhBSs6qFJFTi-zHBg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122B0D/909B79F0E52B11EDB2EB6585C4F9AE02/650CB2EE081C11EFA47C4687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.184.0/24 Signature Algorithm: sha256WithRSAEncryption 96:49:c1:a1:c9:9f:d3:c9:92:88:11:10:81:66:d4:f2:89:18: 8f:ba:82:5b:b9:de:f5:9f:0e:6e:d3:a5:84:d9:98:34:df:23: 36:25:89:8d:8c:e6:4e:0c:cc:13:23:40:a4:a5:d1:35:d5:63: 97:e6:65:ed:d3:c5:5e:74:ad:9e:2d:7e:e5:e3:50:3d:47:4b: aa:41:cb:3f:df:86:bd:27:c6:26:bd:44:49:de:47:ad:71:06: d6:ac:84:3c:fb:13:3d:4b:a1:de:0d:8c:23:52:68:99:96:c0: 63:4a:e4:a4:f0:15:8f:ea:7a:e6:74:2d:1f:0c:4a:f0:5a:ea: 9e:8f:3f:68:71:22:ec:48:71:30:8a:62:d9:b1:86:e8:dd:1b: 25:3a:44:22:4f:66:cf:af:7c:1f:7d:e9:85:c4:fa:ee:8e:92: 0c:f2:75:4e:1e:f3:1c:9d:02:85:67:41:ad:45:e9:2e:b6:cc: d2:02:a2:b1:47:9f:41:26:8e:34:75:52:41:e9:4b:a8:44:ae: da:7a:00:89:b1:8f:ab:d9:6c:72:2a:5d:a5:40:4d:d8:ff:4c: 44:a4:b6:e0:2a:08:45:86:fd:e6:14:ae:25:9e:b5:a1:5b:92: 11:20:24:34:aa:bc:17:18:b8:f2:87:f6:11:a1:f9:fb:14:73: 1e:79:eb:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJCMEQxMTAvBgNVBAUTKDNFOTM1OERDRjJDNTNGNjYyMTA1MkIzQUE4NTI0NTRF MkZCMzFDMTgwHhcNMjQwNTAzMDY0OTU3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0ODkxNS1kYzJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLoA3IQU4vLoUuXi3tGyeVTC4gUx3EL0wmNaXy+7gWoz6DcIQjYx0ph4tL69 2IdKvXAhCzHgOTTPWLi7olri5H2u1UGDJwORofIsbkR+bx7j1QgloOIxoCLwD29d KvC7ZWRcgnYg2cjyxXyJ6QiG1H8fmRQM+88NNWdPEviJhNBsnLwofe4COSP0mecO oj5iEqNpj7yheDNkF/r1a8zKuthdfJi2WB8B/vqe8uVJJ3A8TvWtuNGrAIrPM6An Ffp7InMO7jctuyld5BxdcD03cVNKl3wlrrFJAKqXI0lVjOwdhoIO5EZ4MNxowBVs MIFuT3COGAs/A24HrxVy5A/RJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIDDpCXs wlrET/gN2wTqPuhPHF8VMB8GA1UdIwQYMBaAFD6TWNzyxT9mIQUrOqhSRU4vsxwY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkIwRC85MDlCNzlGMEU1 MkIxMUVEQjJFQjY1ODVDNEY5QUUwMi9QcE5ZM1BMRlAyWWhCU3M2cUZKRlRpLXpI QmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BwTlkzUExGUDJZaEJTczZxRkpGVGktekhCZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJCMEQvOTA5Qjc5RjBFNTJCMTFFREIyRUI2NTg1QzRGOUFFMDIvNjUwQ0IyRUUw ODFDMTFFRkE0N0M0Njg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnebgwDQYJKoZIhvcNAQELBQADggEBAJZJwaHJn9PJkogR EIFm1PKJGI+6glu53vWfDm7TpYTZmDTfIzYliY2M5k4MzBMjQKSl0TXVY5fmZe3T xV50rZ4tfuXjUD1HS6pByz/fhr0nxia9REneR61xBtashDz7Ez1Lod4NjCNSaJmW wGNK5KTwFY/qeuZ0LR8MSvBa6p6PP2hxIuxIcTCKYtmxhujdGyU6RCJPZs+vfB99 6YXE+u6OkgzydU4e8xydAoVnQa1F6S62zNICorFHn0EmjjR1UkHpS6hErtp6AImx j6vZbHIqXaVATdj/TESktuAqCEWG/eYUriWetaFbkhEgJDSqvBcYuPKH9hGh+fsU cx556zI= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org