$ rpki-client -vvf rpki.apnic.net/member_repository/A9127342/6DDBC7FC932711E5A81F303EC4F9AE02/DA37C95AB14511E5B83D2120C4F9AE02.roa File: DA37C95AB14511E5B83D2120C4F9AE02.roa (raw, json) Hash identifier: cZn5O6pwF59j4Vw66uQCp/27di7yfzcFOwcEYvP1wx8= Subject key identifier: C6:1F:0D:B4:9F:16:D4:56:AD:E2:FF:11:EA:8F:66:32:76:8E:5A:88 Certificate issuer: /CN=A9127342/serialNumber=C49663D96BC932D743840BC67FD87BF8E015467C Certificate serial: 2206 Authority key identifier: C4:96:63:D9:6B:C9:32:D7:43:84:0B:C6:7F:D8:7B:F8:E0:15:46:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJZj2WvJMtdDhAvGf9h7-OAVRnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127342/6DDBC7FC932711E5A81F303EC4F9AE02/DA37C95AB14511E5B83D2120C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:13:01 +0000 ROA not before: Tue 02 Jan 2024 16:13:01 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134831 IP address blocks: 103.222.238.0/24 maxlen: 24 103.247.180.0/24 maxlen: 24 2001:df7:a400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127342/6DDBC7FC932711E5A81F303EC4F9AE02/xJZj2WvJMtdDhAvGf9h7-OAVRnw.crl rsync://rpki.apnic.net/member_repository/A9127342/6DDBC7FC932711E5A81F303EC4F9AE02/xJZj2WvJMtdDhAvGf9h7-OAVRnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJZj2WvJMtdDhAvGf9h7-OAVRnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8710 (0x2206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127342/serialNumber=C49663D96BC932D743840BC67FD87BF8E015467C Validity Not Before: Jan 2 16:13:01 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6594360d-50e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e7:d6:37:29:85:3f:97:24:3a:b3:61:9d:8a: 36:d3:f7:00:1f:ee:24:21:a6:42:62:dc:4b:26:65: 2f:1b:eb:cc:c9:bc:9e:4a:2c:ca:bc:8f:2f:4b:1b: d5:8d:00:a9:40:06:a2:c3:7f:81:c9:66:ff:a8:88: 52:fb:de:d8:c5:6d:40:fe:02:0a:c5:8f:e8:aa:96: 1b:33:41:bd:9a:a6:06:56:86:4e:e9:80:2d:14:d1: 98:7f:fe:73:e9:8e:77:05:54:87:e2:e6:9c:38:2a: 45:98:58:cf:c3:fe:34:72:76:2e:cf:6d:c5:92:02: b7:f9:71:d3:cc:22:64:4e:64:af:5c:9f:7c:3d:e9: c4:20:4d:c7:22:5d:a0:fe:9f:64:27:b0:c6:67:32: e0:64:bc:b0:9c:b6:fa:e8:2b:99:77:30:90:99:b9: 07:22:1f:1b:50:50:ee:24:2d:47:cf:93:f9:f7:e2: 04:02:4b:61:64:c9:7a:85:70:59:ff:ab:e1:f4:85: 92:1f:cc:2b:e5:2d:92:34:85:16:b8:3c:9d:3f:86: e9:5d:58:83:98:49:df:d6:9b:25:26:3e:f0:65:0a: ea:6a:a0:1a:6e:8c:0a:94:7b:ab:f6:a8:0b:64:01: bb:c6:19:98:65:18:88:44:28:06:cd:79:df:8c:22: af:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:1F:0D:B4:9F:16:D4:56:AD:E2:FF:11:EA:8F:66:32:76:8E:5A:88 X509v3 Authority Key Identifier: keyid:C4:96:63:D9:6B:C9:32:D7:43:84:0B:C6:7F:D8:7B:F8:E0:15:46:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127342/6DDBC7FC932711E5A81F303EC4F9AE02/xJZj2WvJMtdDhAvGf9h7-OAVRnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xJZj2WvJMtdDhAvGf9h7-OAVRnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127342/6DDBC7FC932711E5A81F303EC4F9AE02/DA37C95AB14511E5B83D2120C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.222.238.0/24 103.247.180.0/24 IPv6: 2001:df7:a400::/48 Signature Algorithm: sha256WithRSAEncryption 0e:87:1b:44:84:08:34:ae:ae:94:b8:60:54:1a:0d:da:db:5b: 0e:65:5f:7e:88:c8:b5:02:1c:3b:7e:44:47:4f:6c:82:cb:22: 32:04:96:7e:a3:ce:1a:69:58:a6:9b:58:59:e6:5d:a6:c0:81: 3b:39:38:0a:5b:aa:f9:ab:d0:e0:3b:01:77:6c:cf:ec:e9:8c: cb:b9:f2:c6:f8:23:40:fe:25:f5:a1:28:cd:02:3e:35:4f:01: 05:95:01:e7:66:6d:e6:71:04:29:ec:e7:94:2c:0c:75:e8:10: 53:00:dc:ba:7d:16:99:94:71:b8:30:14:68:29:46:65:49:c8: 26:36:d2:71:0d:35:a8:19:e2:1b:30:69:21:8c:79:c1:3c:ab: 19:5c:33:71:7d:df:c7:47:30:88:b6:78:03:ff:e0:ba:de:1a: a3:68:ca:0b:1c:31:a6:70:3f:29:dc:a1:65:e3:3c:4a:a7:7b: 12:72:18:6e:b5:8b:e2:00:1c:78:88:90:85:8f:ad:9e:0c:1b: 3c:7c:5b:0b:f0:19:3e:b2:86:11:45:d4:be:28:31:dd:4d:fe: 86:9d:50:17:00:37:75:3c:94:42:6a:39:59:5b:9d:e5:16:45: 75:23:10:e0:03:96:c2:ee:b7:aa:36:d6:89:1b:eb:ec:70:95: 17:44:8b:da -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICIgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjczNDIxMTAvBgNVBAUTKEM0OTY2M0Q5NkJDOTMyRDc0Mzg0MEJDNjdGRDg3QkY4 RTAxNTQ2N0MwHhcNMjQwMTAyMTYxMzAxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0MzYwZC01MGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtefWNymFP5ckOrNhnYo20/cAH+4kIaZCYtxLJmUvG+vMybyeSizKvI8vSxvV jQCpQAaiw3+ByWb/qIhS+97YxW1A/gIKxY/oqpYbM0G9mqYGVoZO6YAtFNGYf/5z 6Y53BVSH4uacOCpFmFjPw/40cnYuz23FkgK3+XHTzCJkTmSvXJ98PenEIE3HIl2g /p9kJ7DGZzLgZLywnLb66CuZdzCQmbkHIh8bUFDuJC1Hz5P59+IEAkthZMl6hXBZ /6vh9IWSH8wr5S2SNIUWuDydP4bpXViDmEnf1pslJj7wZQrqaqAabowKlHur9qgL ZAG7xhmYZRiIRCgGzXnfjCKvKwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMYfDbSf FtRWreL/EeqPZjJ2jlqIMB8GA1UdIwQYMBaAFMSWY9lryTLXQ4QLxn/Ye/jgFUZ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzM0Mi82RERCQzdGQzkz MjcxMUU1QTgxRjMwM0VDNEY5QUUwMi94SlpqMld2Sk10ZERoQXZHZjloNy1PQVZS bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hKWmoyV3ZKTXRkRGhBdkdmOWg3LU9BVlJudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjczNDIvNkREQkM3RkM5MzI3MTFFNUE4MUYzMDNFQzRGOUFFMDIvREEzN0M5NUFC MTQ1MTFFNUI4M0QyMTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABn3u4DBABn97QwDwQCAAIwCQMHACABDfekADANBgkqhkiG 9w0BAQsFAAOCAQEADocbRIQINK6ulLhgVBoN2ttbDmVffojItQIcO35ER09sgssi MgSWfqPOGmlYpptYWeZdpsCBOzk4Cluq+avQ4DsBd2zP7OmMy7nyxvgjQP4l9aEo zQI+NU8BBZUB52Zt5nEEKeznlCwMdegQUwDcun0WmZRxuDAUaClGZUnIJjbScQ01 qBniGzBpIYx5wTyrGVwzcX3fx0cwiLZ4A//gut4ao2jKCxwxpnA/KdyhZeM8Sqd7 EnIYbrWL4gAceIiQhY+tngwbPHxbC/AZPrKGEUXUvigx3U3+hp1QFwA3dTyUQmo5 WVud5RZFdSMQ4AOWwu63qjbWiRvr7HCVF0SL2g== -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org