$ rpki-client -vvf rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/62CCFF308C7211EB98A6DD43C4F9AE02.roa File: 62CCFF308C7211EB98A6DD43C4F9AE02.roa (raw, json) Hash identifier: gunOvJOlbGjXfJHFh/SepIdDyMi1uvKafrROfkiVnXI= Subject key identifier: 19:EA:E5:B9:59:DF:F2:03:53:BA:34:73:C9:5C:7A:16:89:9F:2B:04 Certificate issuer: /CN=A9124803/serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Certificate serial: 057A Authority key identifier: 1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/62CCFF308C7211EB98A6DD43C4F9AE02.roa Signing time: Fri 05 Apr 2024 01:03:41 +0000 ROA not before: Fri 05 Apr 2024 01:03:41 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138689 IP address blocks: 103.136.164.0/22 maxlen: 22 103.136.164.0/24 maxlen: 24 103.136.165.0/24 maxlen: 24 103.136.166.0/24 maxlen: 24 103.136.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9124803/serialNumber=1B8DEEDB1D3C48CC1C4C217B969C798541A4CC77 Validity Not Before: Apr 5 01:03:41 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f4ded-8bca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:6f:41:13:13:56:42:ae:a5:2e:4f:6d:9e:63: fa:2a:f0:54:1b:b7:f7:9c:6e:2e:28:07:cb:d8:92: 30:d1:e5:11:58:91:d2:8a:1a:c1:2f:ac:aa:45:bf: 56:70:e7:85:f6:f5:7c:07:3d:8f:08:80:34:f6:8d: 42:82:42:f3:b9:fe:00:2d:3e:2f:63:1d:cb:f8:17: 40:60:62:c2:5a:a1:1b:89:04:b5:85:f5:38:12:a9: dd:a0:35:04:fb:02:82:f9:34:f0:20:31:e8:92:39: f7:2c:ce:2b:1e:22:e4:f5:bf:06:a8:30:e8:37:38: a1:ba:ce:54:b7:56:e5:f1:ad:35:f5:06:05:a7:99: b8:76:b5:ae:61:b7:8d:9a:9f:c8:d1:73:b7:2b:43: 38:18:d7:b1:ae:3e:bb:69:5d:f5:d8:51:04:82:68: d0:e2:31:ba:92:c9:e3:3c:d3:40:78:3d:10:76:30: 90:6e:cc:08:ac:2a:27:1c:cd:99:f3:37:7a:2b:51: 1c:98:27:69:7c:e0:07:36:a3:36:24:60:59:75:cc: 65:df:c3:6f:45:40:9a:18:52:dc:66:0e:8a:27:fa: f0:18:b8:7d:45:c0:c0:fc:10:f6:66:02:f2:c6:dd: 49:bd:8e:7a:77:d2:e9:00:e4:a3:d3:0c:bd:7b:5d: 10:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:EA:E5:B9:59:DF:F2:03:53:BA:34:73:C9:5C:7A:16:89:9F:2B:04 X509v3 Authority Key Identifier: keyid:1B:8D:EE:DB:1D:3C:48:CC:1C:4C:21:7B:96:9C:79:85:41:A4:CC:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/G43u2x08SMwcTCF7lpx5hUGkzHc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G43u2x08SMwcTCF7lpx5hUGkzHc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9124803/977D73608C7011EBAEA11341C4F9AE02/62CCFF308C7211EB98A6DD43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.164.0/22 Signature Algorithm: sha256WithRSAEncryption db:c5:33:5c:b8:29:09:5d:5f:5e:31:d8:63:bd:b8:97:e1:66: 4d:b0:b8:c6:04:89:1f:c7:f7:62:d7:dd:cc:5e:64:a5:29:1b: fd:fe:c4:77:e9:be:b1:e6:d2:78:3b:83:f7:83:39:ba:56:d5: 29:e1:fc:5e:db:9e:0e:71:a3:33:3a:78:6f:c3:4b:fa:51:0e: b2:af:2b:6d:62:11:ac:e2:b5:bd:74:f9:dd:06:06:5b:61:82: a4:f9:c6:35:7a:10:e1:bd:42:1c:c9:01:8c:e0:eb:45:f7:72: 9e:c0:b9:d2:1a:bd:6a:b4:e9:a2:ba:e1:e0:dd:e9:4f:a8:b8: 91:ff:c2:da:7a:56:ed:c2:98:9d:e1:9c:9c:17:1e:2f:89:ef: 01:4f:b2:55:03:43:f7:f9:05:03:b7:bb:94:2f:3b:57:39:93: 03:4e:ba:90:b7:e8:35:27:d8:a0:c5:3f:55:fe:0d:33:9d:9d: 57:c9:12:36:65:32:3f:d2:ff:d6:38:cb:d8:19:15:28:b8:16: 40:c7:49:51:cf:1e:6f:f9:43:96:b3:bc:2e:12:1a:c6:22:a6: fc:a3:e7:ac:24:15:ed:84:ef:50:c0:f3:59:f1:1a:60:9d:ce: c7:8e:56:db:c4:c7:1b:00:c5:89:34:6a:79:1e:de:8c:3d:9b: 74:58:df:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ4MDMxMTAvBgNVBAUTKDFCOERFRURCMUQzQzQ4Q0MxQzRDMjE3Qjk2OUM3OTg1 NDFBNENDNzcwHhcNMjQwNDA1MDEwMzQxWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmNGRlZC04YmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvW9BExNWQq6lLk9tnmP6KvBUG7f3nG4uKAfL2JIw0eURWJHSihrBL6yqRb9W cOeF9vV8Bz2PCIA09o1CgkLzuf4ALT4vYx3L+BdAYGLCWqEbiQS1hfU4EqndoDUE +wKC+TTwIDHokjn3LM4rHiLk9b8GqDDoNzihus5Ut1bl8a019QYFp5m4drWuYbeN mp/I0XO3K0M4GNexrj67aV312FEEgmjQ4jG6ksnjPNNAeD0QdjCQbswIrConHM2Z 8zd6K1EcmCdpfOAHNqM2JGBZdcxl38NvRUCaGFLcZg6KJ/rwGLh9RcDA/BD2ZgLy xt1JvY56d9LpAOSj0wy9e10Q5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBnq5blZ 3/IDU7o0c8lcehaJnysEMB8GA1UdIwQYMBaAFBuN7tsdPEjMHEwhe5aceYVBpMx3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDgwMy85NzdENzM2MDhD NzAxMUVCQUVBMTEzNDFDNEY5QUUwMi9HNDN1MngwOFNNd2NUQ0Y3bHB4NWhVR2t6 SGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0c0M3UyeDA4U013Y1RDRjdscHg1aFVHa3pIYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ4MDMvOTc3RDczNjA4QzcwMTFFQkFFQTExMzQxQzRGOUFFMDIvNjJDQ0ZGMzA4 QzcyMTFFQjk4QTZERDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJniKQwDQYJKoZIhvcNAQELBQADggEBANvFM1y4KQldX14x 2GO9uJfhZk2wuMYEiR/H92LX3cxeZKUpG/3+xHfpvrHm0ng7g/eDObpW1Snh/F7b ng5xozM6eG/DS/pRDrKvK21iEazitb10+d0GBlthgqT5xjV6EOG9QhzJAYzg60X3 cp7AudIavWq06aK64eDd6U+ouJH/wtp6Vu3CmJ3hnJwXHi+J7wFPslUDQ/f5BQO3 u5QvO1c5kwNOupC36DUn2KDFP1X+DTOdnVfJEjZlMj/S/9Y4y9gZFSi4FkDHSVHP Hm/5Q5azvC4SGsYipvyj56wkFe2E71DA81nxGmCdzseOVtvExxsAxYk0anke3ow9 m3RY3+I= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:23 2024 by rpki-client on console-fra.rpki-client.org