$ rpki-client -vvf rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/7DB1A01E769511EBBF193769C4F9AE02.roa File: 7DB1A01E769511EBBF193769C4F9AE02.roa (raw, json) Hash identifier: 5XbFDEbqdzdfK6bXl6kTUlRCISf9y8xCl7Mg0GE6eCE= Subject key identifier: 83:DE:F4:55:B8:FD:66:78:CE:AE:2E:A5:5B:C6:42:0A:BB:9F:13:E0 Certificate issuer: /CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Certificate serial: 131D Authority key identifier: 84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/7DB1A01E769511EBBF193769C4F9AE02.roa Signing time: Sat 02 Nov 2024 17:25:10 +0000 ROA not before: Sat 02 Nov 2024 17:25:10 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138042 IP address blocks: 103.120.144.0/22 maxlen: 24 2403:5940::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:01:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4893 (0x131d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914AF32/serialNumber=8470731B899A8DEEB29FEA51B90DC158DBDA2AF0 Validity Not Before: Nov 2 17:25:10 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67266075-dba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:87:f9:64:b9:14:3f:07:69:f8:fc:3b:85:9b: 2e:ef:da:b8:82:34:4c:6e:cc:25:5d:48:b1:68:61: 92:b6:56:7d:15:20:f7:30:98:80:c2:9b:10:c7:41: f9:63:64:51:f2:72:e0:07:d8:22:b2:43:a2:cf:e2: 6b:72:cb:7a:5b:01:57:0f:23:0b:93:d2:94:ff:08: c0:f1:04:a0:a0:31:db:2d:8c:0f:f3:2b:84:48:cf: 84:4d:cb:75:5e:0c:a0:f5:26:2b:fb:04:b2:cf:d8: cc:83:62:62:28:3f:5e:4d:9c:6f:91:4c:f0:90:20: d5:3f:b2:9c:ae:5d:d8:64:09:2e:35:dc:d0:f8:fb: ad:1b:40:0f:e4:6d:8d:03:4d:7e:ec:0f:70:57:3f: b0:f5:40:99:d7:fa:c3:22:93:b7:29:1e:f9:86:30: c3:04:80:1c:8b:24:e9:ba:70:ca:14:cd:6e:b3:bd: bf:36:a9:2b:5f:52:83:3d:d8:92:14:5c:25:e8:61: d1:cc:20:32:a9:0f:23:cb:b0:31:75:fb:71:5f:5c: 9b:1d:fc:04:07:2f:cd:31:00:e5:e3:77:8c:3d:0d: fb:d2:3b:47:fb:2c:33:b6:d5:55:23:ba:0b:1d:be: 31:0e:5c:66:d1:64:04:ee:13:d6:0e:df:aa:29:41: 44:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:DE:F4:55:B8:FD:66:78:CE:AE:2E:A5:5B:C6:42:0A:BB:9F:13:E0 X509v3 Authority Key Identifier: keyid:84:70:73:1B:89:9A:8D:EE:B2:9F:EA:51:B9:0D:C1:58:DB:DA:2A:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/hHBzG4maje6yn-pRuQ3BWNvaKvA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hHBzG4maje6yn-pRuQ3BWNvaKvA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914AF32/9DEC07409E5011E89803D826C4F9AE02/7DB1A01E769511EBBF193769C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.144.0/22 IPv6: 2403:5940::/32 Signature Algorithm: sha256WithRSAEncryption 54:33:83:23:a3:3b:16:4d:5a:71:3d:85:f5:ed:a1:7e:45:98: d2:62:da:dc:3d:cb:7f:6c:67:39:09:70:98:0c:b0:c5:54:22: 14:1b:12:d9:11:f1:12:55:4a:55:ee:91:0f:88:b9:32:f8:5f: e7:d4:11:fe:c7:f2:79:ca:66:b0:be:58:4a:25:05:7d:e4:29: 6f:96:71:fd:ee:de:5e:34:13:75:60:95:aa:35:77:55:ff:22: 39:cf:ed:51:cb:e6:38:3a:75:ad:8d:59:46:56:f0:3b:e6:f7: 3e:61:99:cb:dd:d0:4d:44:1b:69:0f:f5:78:e9:09:1e:23:7e: b9:29:a8:1b:8d:05:28:84:2e:ac:e3:08:45:22:0f:07:f4:da: a3:11:39:bb:fa:14:3e:97:dc:59:58:32:07:58:39:20:1a:2c: 91:b7:27:1a:20:ce:d5:df:9d:6a:d1:49:42:83:64:99:62:27: fc:36:6d:b9:18:73:67:86:6e:f2:bb:85:2d:ea:4e:e9:c5:82: db:e2:a8:94:62:61:f9:a7:66:e7:f4:a6:87:35:21:cc:03:99: af:92:f6:bd:b1:3b:2b:a3:1b:aa:71:9b:5f:65:c8:77:fa:58: 55:8e:dd:0c:34:f9:c0:ca:78:93:df:44:08:27:50:0a:6e:36: 9b:f1:2f:b7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICEx0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEFGMzIxMTAvBgNVBAUTKDg0NzA3MzFCODk5QThERUVCMjlGRUE1MUI5MERDMTU4 REJEQTJBRjAwHhcNMjQxMTAyMTcyNTEwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NjA3NS1kYmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0If5ZLkUPwdp+Pw7hZsu79q4gjRMbswlXUixaGGStlZ9FSD3MJiAwpsQx0H5 Y2RR8nLgB9giskOiz+Jrcst6WwFXDyMLk9KU/wjA8QSgoDHbLYwP8yuESM+ETct1 Xgyg9SYr+wSyz9jMg2JiKD9eTZxvkUzwkCDVP7Kcrl3YZAkuNdzQ+PutG0AP5G2N A01+7A9wVz+w9UCZ1/rDIpO3KR75hjDDBIAciyTpunDKFM1us72/NqkrX1KDPdiS FFwl6GHRzCAyqQ8jy7AxdftxX1ybHfwEBy/NMQDl43eMPQ370jtH+ywzttVVI7oL Hb4xDlxm0WQE7hPWDt+qKUFEQQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIPe9FW4 /WZ4zq4upVvGQgq7nxPgMB8GA1UdIwQYMBaAFIRwcxuJmo3usp/qUbkNwVjb2irw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QUYzMi85REVDMDc0MDlF NTAxMUU4OTgwM0Q4MjZDNEY5QUUwMi9oSEJ6RzRtYWplNnluLXBSdVEzQldOdmFL dkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hIQnpHNG1hamU2eW4tcFJ1UTNCV052YUt2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEFGMzIvOURFQzA3NDA5RTUwMTFFODk4MDNEODI2QzRGOUFFMDIvN0RCMUEwMUU3 Njk1MTFFQkJGMTkzNzY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJneJAwDQQCAAIwBwMFACQDWUAwDQYJKoZIhvcNAQELBQAD ggEBAFQzgyOjOxZNWnE9hfXtoX5FmNJi2tw9y39sZzkJcJgMsMVUIhQbEtkR8RJV SlXukQ+IuTL4X+fUEf7H8nnKZrC+WEolBX3kKW+Wcf3u3l40E3Vglao1d1X/IjnP 7VHL5jg6da2NWUZW8Dvm9z5hmcvd0E1EG2kP9XjpCR4jfrkpqBuNBSiELqzjCEUi Dwf02qMRObv6FD6X3FlYMgdYOSAaLJG3JxogztXfnWrRSUKDZJliJ/w2bbkYc2eG bvK7hS3qTunFgtviqJRiYfmnZuf0poc1IcwDma+S9r2xOyujG6pxm19lyHf6WFWO 3Qw0+cDKeJPfRAgnUApuNpvxL7c= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org