$ rpki-client -vvf rpki.apnic.net/member_repository/A9129DCB/7C9EC9BA8C4C11EAA0518582C4F9AE02/BAA6E77E852D11ED9A1A8D47C4F9AE02.roa File: BAA6E77E852D11ED9A1A8D47C4F9AE02.roa (raw, json) Hash identifier: ucsG3JUlQ5ojNwMw0vdbiiFMM62lab8Xx2ffPDkDaVA= Subject key identifier: 80:E2:15:F7:C6:B3:9B:EF:BB:0D:50:3F:0D:9F:EB:4B:71:DB:69:D5 Certificate issuer: /CN=A9129DCB/serialNumber=07A607DCA933321FF78FEC68CD7A4C1495437A5F Certificate serial: 0890 Authority key identifier: 07:A6:07:DC:A9:33:32:1F:F7:8F:EC:68:CD:7A:4C:14:95:43:7A:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6YH3KkzMh_3j-xozXpMFJVDel8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129DCB/7C9EC9BA8C4C11EAA0518582C4F9AE02/BAA6E77E852D11ED9A1A8D47C4F9AE02.roa Signing time: Sat 02 Dec 2023 21:29:07 +0000 ROA not before: Sat 02 Dec 2023 21:29:07 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138523 IP address blocks: 103.127.180.0/24 maxlen: 24 103.127.181.0/24 maxlen: 24 103.127.182.0/24 maxlen: 24 103.127.183.0/24 maxlen: 24 2404:2640:4000::/34 maxlen: 34 2404:2640:8000::/36 maxlen: 36 2404:2640:9000::/36 maxlen: 36 2404:2640:a000::/36 maxlen: 36 2404:2640:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129DCB/7C9EC9BA8C4C11EAA0518582C4F9AE02/B6YH3KkzMh_3j-xozXpMFJVDel8.crl rsync://rpki.apnic.net/member_repository/A9129DCB/7C9EC9BA8C4C11EAA0518582C4F9AE02/B6YH3KkzMh_3j-xozXpMFJVDel8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6YH3KkzMh_3j-xozXpMFJVDel8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:02:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129DCB/serialNumber=07A607DCA933321FF78FEC68CD7A4C1495437A5F Validity Not Before: Dec 2 21:29:07 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=656ba1a3-f8bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e9:ea:eb:c7:40:19:c9:f1:b5:98:2c:5a:0f: 5b:ae:47:7f:de:8c:ca:a7:a9:fe:3c:e6:35:02:d5: 2f:8a:03:2e:83:f2:7d:51:14:d5:58:37:53:cc:17: 75:63:3a:3c:69:8c:76:3f:46:29:30:f9:7e:cc:b7: 4a:53:2f:7f:e3:b2:68:3c:a6:40:4e:51:aa:da:7e: 9d:6b:05:82:90:c3:1c:0a:54:46:95:d5:4d:d8:20: 69:64:fd:b6:8b:e1:c7:4e:c4:58:1a:ac:36:fe:b1: 61:ba:c8:72:6a:27:e2:26:a7:f2:2b:a4:bd:92:b8: a8:b3:71:1a:23:2d:8c:77:59:f1:e8:dd:3b:0d:c2: ab:cf:b1:44:c4:dd:d1:96:a6:e5:db:97:c0:9e:8d: 8b:4a:17:f5:b4:71:df:88:6f:a8:c8:0c:58:c4:01: b3:a7:7c:1c:27:89:89:27:f8:65:db:60:0b:58:84: 19:b3:70:1b:10:45:8a:fa:8c:94:a5:b4:ef:4a:2a: a6:38:ce:85:46:01:26:dc:44:07:62:d6:13:0c:35: 5b:0a:bf:b4:8d:90:bb:1b:bf:f8:b1:d2:81:1f:52: 64:4e:2c:a0:3a:e1:6a:e4:78:71:4c:a5:e5:d7:4f: 74:d5:64:c4:f0:e7:5f:31:16:2b:b4:41:00:bf:2d: 0b:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E2:15:F7:C6:B3:9B:EF:BB:0D:50:3F:0D:9F:EB:4B:71:DB:69:D5 X509v3 Authority Key Identifier: keyid:07:A6:07:DC:A9:33:32:1F:F7:8F:EC:68:CD:7A:4C:14:95:43:7A:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129DCB/7C9EC9BA8C4C11EAA0518582C4F9AE02/B6YH3KkzMh_3j-xozXpMFJVDel8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6YH3KkzMh_3j-xozXpMFJVDel8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129DCB/7C9EC9BA8C4C11EAA0518582C4F9AE02/BAA6E77E852D11ED9A1A8D47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.127.180.0/22 IPv6: 2404:2640:4000::-2404:2640:bfff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 66:6e:92:40:7d:eb:c3:61:90:cb:48:a7:46:76:f7:e7:71:86: 60:92:a0:fd:17:13:33:d5:93:6d:97:97:7b:e9:52:d2:fd:ec: 26:28:28:0f:b1:f6:ad:81:ff:cf:df:03:43:8a:99:74:a3:2e: 4f:7f:b5:72:9c:50:e6:f6:99:6d:b9:93:53:87:5f:13:71:1c: f1:5d:01:42:42:b7:72:ca:84:b8:19:0e:17:45:84:91:0c:cc: 28:ae:e5:5f:87:64:73:ca:e7:fc:b0:e4:e1:53:d5:23:5c:89: 28:76:5e:16:f3:9e:20:4c:4a:d6:7f:88:c6:bf:ad:3b:de:78: cb:58:99:62:c3:26:90:8e:46:57:a4:f2:81:4f:9e:a2:fe:c9: bd:45:36:62:0b:49:f6:d4:e9:50:d1:36:a8:2d:4d:5d:22:59: 1b:7b:d0:76:13:08:90:78:c7:24:83:d8:a6:c0:53:23:d8:c5: e6:33:09:dc:16:a7:7f:69:44:bc:c4:80:aa:6e:b9:6b:ef:1a: 55:74:6f:c8:35:a1:8c:80:b3:b0:fd:72:45:6b:98:42:55:72: fc:6b:38:89:fb:d5:74:dd:53:9d:9d:4b:43:61:a3:8c:66:26: 73:bf:ed:8d:a6:eb:b1:cd:12:00:a8:7d:98:51:28:c9:99:ea: 16:08:56:94 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlEQ0IxMTAvBgNVBAUTKDA3QTYwN0RDQTkzMzMyMUZGNzhGRUM2OENEN0E0QzE0 OTU0MzdBNUYwHhcNMjMxMjAyMjEyOTA3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiYTFhMy1mOGJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuenq68dAGcnxtZgsWg9brkd/3ozKp6n+POY1AtUvigMug/J9URTVWDdTzBd1 Yzo8aYx2P0YpMPl+zLdKUy9/47JoPKZATlGq2n6dawWCkMMcClRGldVN2CBpZP22 i+HHTsRYGqw2/rFhushyaifiJqfyK6S9krios3EaIy2Md1nx6N07DcKrz7FExN3R lqbl25fAno2LShf1tHHfiG+oyAxYxAGzp3wcJ4mJJ/hl22ALWIQZs3AbEEWK+oyU pbTvSiqmOM6FRgEm3EQHYtYTDDVbCr+0jZC7G7/4sdKBH1JkTiygOuFq5HhxTKXl 10901WTE8OdfMRYrtEEAvy0LpQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFIDiFffG s5vvuw1QPw2f60tx22nVMB8GA1UdIwQYMBaAFAemB9ypMzIf94/saM16TBSVQ3pf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOURDQi83QzlFQzlCQThD NEMxMUVBQTA1MTg1ODJDNEY5QUUwMi9CNllIM0trek1oXzNqLXhvelhwTUZKVkRl bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I2WUgzS2t6TWhfM2oteG96WHBNRkpWRGVsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlEQ0IvN0M5RUM5QkE4QzRDMTFFQUEwNTE4NTgyQzRGOUFFMDIvQkFBNkU3N0U4 NTJEMTFFRDlBMUE4RDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAJnf7QwGAQCAAIwEjAQAwYGJAQmQEADBgYkBCZAgDANBgkq hkiG9w0BAQsFAAOCAQEAZm6SQH3rw2GQy0inRnb353GGYJKg/RcTM9WTbZeXe+lS 0v3sJigoD7H2rYH/z98DQ4qZdKMuT3+1cpxQ5vaZbbmTU4dfE3Ec8V0BQkK3csqE uBkOF0WEkQzMKK7lX4dkc8rn/LDk4VPVI1yJKHZeFvOeIExK1n+Ixr+tO954y1iZ YsMmkI5GV6TygU+eov7JvUU2YgtJ9tTpUNE2qC1NXSJZG3vQdhMIkHjHJIPYpsBT I9jF5jMJ3Banf2lEvMSAqm65a+8aVXRvyDWhjICzsP1yRWuYQlVy/Gs4ifvVdN1T nZ1LQ2GjjGYmc7/tjabrsc0SAKh9mFEoyZnqFghWlA== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:22 2024 by rpki-client on console-ams.rpki-client.org