$ rpki-client -vvf rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/DB27568209DA11EEBA18A082C4F9AE02.roa File: DB27568209DA11EEBA18A082C4F9AE02.roa (raw, json) Hash identifier: xkDRTRjpJ44DAm2KH+GLlFrHbbkGeE4AN4OlC0H4zYI= Subject key identifier: A6:9D:A8:93:38:19:9B:EE:EB:6E:C5:B1:5D:46:D5:4C:85:BE:AC:F1 Certificate issuer: /CN=A912720E/serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Certificate serial: 50 Authority key identifier: A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/DB27568209DA11EEBA18A082C4F9AE02.roa Signing time: Sat 11 Nov 2023 05:55:54 +0000 ROA not before: Sat 11 Nov 2023 05:55:54 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 150389 IP address blocks: 103.29.8.0/23 maxlen: 23 103.29.8.0/24 maxlen: 24 103.29.9.0/24 maxlen: 24 2001:df1:74c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912720E/serialNumber=A28DA0BE901D983A433D833589D167BF486F64FC Validity Not Before: Nov 11 05:55:54 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654f176a-8ee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:02:36:f7:20:de:65:51:ef:57:5f:14:3d:2e: 01:0b:d6:51:01:56:27:49:47:b4:33:37:cd:26:25: bc:56:b1:02:f8:7b:96:df:58:33:3f:9a:03:8d:ff: 5a:80:a9:a3:68:b2:01:4c:3c:3e:81:20:d3:e5:4d: 13:ff:1b:b6:f5:fb:b4:72:3b:85:d0:41:bc:19:50: e8:b3:1a:78:1d:f0:ea:ac:5c:7d:d4:9f:6e:a6:a6: 1c:64:a8:78:2e:1c:8b:50:8c:9e:2f:d4:d3:9c:fd: 4d:08:c5:ca:85:be:31:ff:ba:30:80:ed:28:76:e9: 45:62:1a:9c:de:fa:fe:0d:49:6b:fc:99:b7:e0:51: 99:42:36:69:01:bc:8e:da:5e:1d:25:19:80:95:1f: 99:3e:87:0d:84:6a:3d:8c:96:bf:a2:e2:77:83:3e: 31:b2:36:17:0b:32:a6:1c:a6:45:e6:49:50:d6:ba: 66:63:9c:ad:3f:b5:23:1d:22:8a:c0:2b:d7:49:58: ed:65:8c:41:a4:8f:b5:41:7e:1e:a6:4d:6d:e2:7e: 71:36:02:a2:ea:10:86:72:b7:13:5a:ec:33:3f:3b: 04:15:22:07:79:84:ec:c2:db:b2:cd:7b:3c:9a:c6: 6c:6d:61:bf:d2:29:bc:2c:d7:86:ff:35:9e:a2:f0: 86:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:9D:A8:93:38:19:9B:EE:EB:6E:C5:B1:5D:46:D5:4C:85:BE:AC:F1 X509v3 Authority Key Identifier: keyid:A2:8D:A0:BE:90:1D:98:3A:43:3D:83:35:89:D1:67:BF:48:6F:64:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/oo2gvpAdmDpDPYM1idFnv0hvZPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oo2gvpAdmDpDPYM1idFnv0hvZPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912720E/5E51D45C09D511EEA38A7480C4F9AE02/DB27568209DA11EEBA18A082C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.8.0/23 IPv6: 2001:df1:74c0::/48 Signature Algorithm: sha256WithRSAEncryption ac:d9:b5:6a:86:7e:84:e3:9e:fd:70:fd:f4:1d:35:79:84:54: 6c:10:70:4c:b1:e6:b1:53:04:96:c4:68:ec:69:aa:d7:6b:e3: 7c:81:30:ce:b5:b7:97:cc:82:ba:07:82:05:dd:36:dd:82:3b: ab:4e:6d:9b:fa:63:6b:66:9c:ce:4e:ab:a5:7f:4f:c9:c3:7e: 95:b9:26:7a:af:73:ff:62:83:e6:8c:5f:23:da:fe:6e:e9:8e: fb:23:b7:4a:10:b5:d5:fc:15:da:73:fd:02:96:a4:5b:25:a7: 0d:28:85:c8:ae:76:aa:0c:5b:98:59:14:46:f1:76:7e:94:da: 34:a2:46:df:de:aa:fc:40:48:95:8f:f3:c4:17:34:63:06:66: 66:3d:76:fe:38:a7:3e:5b:cb:0f:82:c3:4d:72:6c:23:7c:59: 4b:14:35:f3:39:29:95:ae:ab:d1:f2:b5:00:94:d8:e2:a1:a7: e3:ca:d7:4c:df:4d:84:85:d7:bf:8f:d2:b4:df:2e:f9:39:db: 98:f7:e9:58:ab:51:89:38:3a:78:39:f1:ca:0e:e6:5d:b0:36: 76:26:72:37:8c:2a:79:ee:57:a0:7e:74:01:1c:62:c8:91:3a: d6:4b:4c:91:ac:d6:1c:41:04:3f:75:ef:0f:bc:8f:24:92:38: b5:86:70:6d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBUDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NzIwRTExMC8GA1UEBRMoQTI4REEwQkU5MDFEOTgzQTQzM0Q4MzM1ODlEMTY3QkY0 ODZGNjRGQzAeFw0yMzExMTEwNTU1NTRaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NGYxNzZhLThlZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCfAjb3IN5lUe9XXxQ9LgEL1lEBVidJR7QzN80mJbxWsQL4e5bfWDM/mgON/1qA qaNosgFMPD6BINPlTRP/G7b1+7RyO4XQQbwZUOizGngd8OqsXH3Un26mphxkqHgu HItQjJ4v1NOc/U0IxcqFvjH/ujCA7Sh26UViGpze+v4NSWv8mbfgUZlCNmkBvI7a Xh0lGYCVH5k+hw2Eaj2Mlr+i4neDPjGyNhcLMqYcpkXmSVDWumZjnK0/tSMdIorA K9dJWO1ljEGkj7VBfh6mTW3ifnE2AqLqEIZytxNa7DM/OwQVIgd5hOzC27LNezya xmxtYb/SKbws14b/NZ6i8IZZAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUpp2okzgZ m+7rbsWxXUbVTIW+rPEwHwYDVR0jBBgwFoAUoo2gvpAdmDpDPYM1idFnv0hvZPww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI3MjBFLzVFNTFENDVDMDlE NTExRUVBMzhBNzQ4MEM0RjlBRTAyL29vMmd2cEFkbURwRFBZTTFpZEZudjBodlpQ dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb28yZ3ZwQWRtRHBEUFlNMWlkRm52MGh2WlB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NzIwRS81RTUxRDQ1QzA5RDUxMUVFQTM4QTc0ODBDNEY5QUUwMi9EQjI3NTY4MjA5 REExMUVFQkExOEEwODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWcdCDAPBAIAAjAJAwcAIAEN8XTAMA0GCSqGSIb3DQEBCwUA A4IBAQCs2bVqhn6E4579cP30HTV5hFRsEHBMseaxUwSWxGjsaarXa+N8gTDOtbeX zIK6B4IF3TbdgjurTm2b+mNrZpzOTqulf0/Jw36VuSZ6r3P/YoPmjF8j2v5u6Y77 I7dKELXV/BXac/0ClqRbJacNKIXIrnaqDFuYWRRG8XZ+lNo0okbf3qr8QEiVj/PE FzRjBmZmPXb+OKc+W8sPgsNNcmwjfFlLFDXzOSmVrqvR8rUAlNjioafjytdM302E hde/j9K03y75OduY9+lYq1GJODp4OfHKDuZdsDZ2JnI3jCp57legfnQBHGLIkTrW S0yRrNYcQQQ/de8PvI8kkji1hnBt -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org