$ rpki-client -vvf rpki.apnic.net/member_repository/A9155AD0/099AA7DECC7E11ED97E4532BC4F9AE02/EB732812CC8211ED9420A757C4F9AE02.roa File: EB732812CC8211ED9420A757C4F9AE02.roa (raw, json) Hash identifier: n6K4D2BF6Z/jg8pmMgx23T1tIpkzmfvCsXfhNFPSXIM= Subject key identifier: A3:1F:F7:06:77:35:99:3B:AC:B2:B5:1F:C8:68:86:60:89:1A:4E:EC Certificate issuer: /CN=A9155AD0/serialNumber=7BD36954C4D0C305AB4FA1C225C0F3D732D67714 Certificate serial: DC Authority key identifier: 7B:D3:69:54:C4:D0:C3:05:AB:4F:A1:C2:25:C0:F3:D7:32:D6:77:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9NpVMTQwwWrT6HCJcDz1zLWdxQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155AD0/099AA7DECC7E11ED97E4532BC4F9AE02/EB732812CC8211ED9420A757C4F9AE02.roa Signing time: Fri 17 May 2024 06:40:15 +0000 ROA not before: Fri 17 May 2024 06:40:15 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151050 IP address blocks: 103.121.176.0/23 maxlen: 23 103.121.176.0/24 maxlen: 24 103.121.177.0/24 maxlen: 24 2001:df2:2e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155AD0/099AA7DECC7E11ED97E4532BC4F9AE02/e9NpVMTQwwWrT6HCJcDz1zLWdxQ.crl rsync://rpki.apnic.net/member_repository/A9155AD0/099AA7DECC7E11ED97E4532BC4F9AE02/e9NpVMTQwwWrT6HCJcDz1zLWdxQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9NpVMTQwwWrT6HCJcDz1zLWdxQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:44:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155AD0/serialNumber=7BD36954C4D0C305AB4FA1C225C0F3D732D67714 Validity Not Before: May 17 06:40:15 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6646fbcf-102d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:74:3c:66:8a:7c:96:87:9d:52:a1:56:13:56: e7:2a:cd:3f:b8:5a:8e:71:3d:bb:5b:b6:b7:14:32: 51:06:18:43:67:a2:c3:1f:cf:37:6e:3d:f2:f4:86: 25:92:c5:58:29:b5:b4:ef:5c:54:c0:81:f2:3a:92: 55:e0:a5:10:73:b9:0d:ce:8c:ef:ee:dc:9f:9d:f1: 1f:6e:c0:7a:23:f6:d8:10:25:7e:ab:02:04:3a:95: b3:a5:74:cb:b5:cd:f7:27:63:bc:4a:9e:8a:84:ec: b0:04:75:09:5e:6c:87:17:26:96:c6:26:f8:09:e2: 5c:28:5f:8c:34:2c:5a:fc:7a:8f:0e:c6:28:fe:b2: 37:29:fb:01:cd:d8:7b:ab:a6:bc:dc:3e:d0:84:12: 2f:f0:db:79:7a:95:ce:23:17:d3:58:ef:5e:46:ba: 2d:ee:9c:83:a4:6e:6b:bb:73:fd:8f:71:4a:0b:eb: ce:fb:8a:52:ad:e3:73:4a:dd:a5:5e:8e:8c:28:6a: 40:7d:a5:3d:b2:de:60:37:f3:d9:4c:d9:fc:81:0a: 63:72:3c:ae:36:e9:31:92:12:7b:a5:fa:18:54:66: 70:a4:28:53:94:c3:6c:ad:1a:5f:a0:31:b3:49:ff: 40:37:8d:91:c5:d1:f8:ba:c7:49:3f:9b:12:71:2d: 50:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:1F:F7:06:77:35:99:3B:AC:B2:B5:1F:C8:68:86:60:89:1A:4E:EC X509v3 Authority Key Identifier: keyid:7B:D3:69:54:C4:D0:C3:05:AB:4F:A1:C2:25:C0:F3:D7:32:D6:77:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155AD0/099AA7DECC7E11ED97E4532BC4F9AE02/e9NpVMTQwwWrT6HCJcDz1zLWdxQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e9NpVMTQwwWrT6HCJcDz1zLWdxQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155AD0/099AA7DECC7E11ED97E4532BC4F9AE02/EB732812CC8211ED9420A757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.176.0/23 IPv6: 2001:df2:2e40::/48 Signature Algorithm: sha256WithRSAEncryption 0b:a0:b9:bd:35:a5:60:43:15:95:79:63:b9:c2:eb:e5:e8:a5: 33:e8:9f:bc:36:b5:7b:57:08:1a:bb:c0:34:62:75:66:5c:92: 62:5c:b4:a8:c5:36:2e:5f:55:92:53:a4:99:63:31:3a:5c:a2: 96:f4:83:ff:70:8e:b7:90:45:68:18:90:1b:9f:56:96:80:be: 72:ea:71:98:6d:a7:1c:da:e5:94:c5:5b:ed:8e:33:51:7a:03: 1a:0d:f4:ba:82:6b:fc:04:58:42:96:3e:85:24:77:e4:40:40: 2b:8a:be:de:99:0a:23:34:20:67:db:b5:77:72:8a:3f:d7:d8: 67:ec:2d:de:c4:5c:06:55:36:76:fa:a0:c6:6d:ae:82:e9:bf: 9f:51:79:60:af:0a:f4:ab:68:c2:9b:1e:d7:3e:0c:f6:9d:11: 3f:97:17:9b:1c:58:00:52:9e:4e:fc:72:f2:55:ae:3e:ea:3c: cd:3e:ed:79:d6:39:d5:2b:64:51:e7:11:3d:bd:8d:58:ca:0f: b5:29:bd:5e:a6:b9:a6:c5:0b:23:e4:ae:c1:eb:3b:6c:86:92: 3b:f4:37:2f:b1:9a:2c:78:09:b5:1f:5b:d8:ee:e5:34:44:3a: 29:17:09:c5:af:90:bd:2b:bb:cc:76:fb:87:43:74:21:0f:2c: ce:d5:74:5c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTVBRDAxMTAvBgNVBAUTKDdCRDM2OTU0QzREMEMzMDVBQjRGQTFDMjI1QzBGM0Q3 MzJENjc3MTQwHhcNMjQwNTE3MDY0MDE1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2ZmJjZi0xMDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7XQ8Zop8loedUqFWE1bnKs0/uFqOcT27W7a3FDJRBhhDZ6LDH883bj3y9IYl ksVYKbW071xUwIHyOpJV4KUQc7kNzozv7tyfnfEfbsB6I/bYECV+qwIEOpWzpXTL tc33J2O8Sp6KhOywBHUJXmyHFyaWxib4CeJcKF+MNCxa/HqPDsYo/rI3KfsBzdh7 q6a83D7QhBIv8Nt5epXOIxfTWO9eRrot7pyDpG5ru3P9j3FKC+vO+4pSreNzSt2l Xo6MKGpAfaU9st5gN/PZTNn8gQpjcjyuNukxkhJ7pfoYVGZwpChTlMNsrRpfoDGz Sf9AN42RxdH4usdJP5sScS1Q3wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKMf9wZ3 NZk7rLK1H8hohmCJGk7sMB8GA1UdIwQYMBaAFHvTaVTE0MMFq0+hwiXA89cy1ncU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NUFEMC8wOTlBQTdERUND N0UxMUVEOTdFNDUzMkJDNEY5QUUwMi9lOU5wVk1UUXd3V3JUNkhDSmNEejF6TFdk eFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2U5TnBWTVRRd3dXclQ2SENKY0R6MXpMV2R4US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTVBRDAvMDk5QUE3REVDQzdFMTFFRDk3RTQ1MzJCQzRGOUFFMDIvRUI3MzI4MTJD QzgyMTFFRDk0MjBBNzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnebAwDwQCAAIwCQMHACABDfIuQDANBgkqhkiG9w0BAQsF AAOCAQEAC6C5vTWlYEMVlXljucLr5eilM+ifvDa1e1cIGrvANGJ1ZlySYly0qMU2 Ll9VklOkmWMxOlyilvSD/3COt5BFaBiQG59WloC+cupxmG2nHNrllMVb7Y4zUXoD Gg30uoJr/ARYQpY+hSR35EBAK4q+3pkKIzQgZ9u1d3KKP9fYZ+wt3sRcBlU2dvqg xm2ugum/n1F5YK8K9Ktowpse1z4M9p0RP5cXmxxYAFKeTvxy8lWuPuo8zT7tedY5 1StkUecRPb2NWMoPtSm9Xqa5psULI+Suwes7bIaSO/Q3L7GaLHgJtR9b2O7lNEQ6 KRcJxa+QvSu7zHb7h0N0IQ8sztV0XA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:48 2024 by rpki-client on console-fra.rpki-client.org