$ rpki-client -vvf rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/759C16DC577711EE96F5F775C4F9AE02.roa File: 759C16DC577711EE96F5F775C4F9AE02.roa (raw, json) Hash identifier: Pojppps22r3xRUUOYA4Lq5WqJQ1e2Svo0KKFdlUH1VY= Subject key identifier: B7:B8:BB:32:69:F8:1D:89:54:7A:01:E2:21:15:DD:A5:52:07:EF:15 Certificate issuer: /CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Certificate serial: CA Authority key identifier: 28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/759C16DC577711EE96F5F775C4F9AE02.roa Signing time: Wed 09 Oct 2024 04:48:20 +0000 ROA not before: Wed 09 Oct 2024 04:48:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133778 IP address blocks: 103.42.92.0/22 maxlen: 22 103.42.92.0/24 maxlen: 24 103.42.93.0/24 maxlen: 24 103.42.94.0/24 maxlen: 24 103.42.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194677/serialNumber=2876825F77C24A167DC41215350F688792981A67 Validity Not Before: Oct 9 04:48:20 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67060b13-311c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:22:c3:31:4a:67:47:ca:4a:02:28:31:bb:11: b9:e1:cd:d1:04:c7:b3:32:09:50:b5:37:8f:70:49: 9c:f2:57:ea:66:16:d9:a2:2d:15:5e:c4:d8:c9:60: 8c:49:e7:0b:6d:29:5a:0b:45:4c:09:22:f7:22:d2: f1:2f:e7:78:fd:e5:5d:5b:7c:96:65:67:96:b5:fa: 60:70:d4:9f:f6:52:1e:2f:96:2f:8c:92:b3:4f:cb: 88:fc:36:88:d4:4a:bb:42:a6:dc:86:cd:3b:be:83: b7:0f:cb:d6:3a:57:96:e4:5c:c3:f9:7d:01:da:5f: 6c:cd:df:51:86:41:4b:9a:80:8e:49:57:15:0e:72: 9b:c4:96:dd:e5:fc:18:1c:7a:44:10:67:84:bf:c7: f2:ea:55:ca:8a:ec:de:74:eb:0c:29:f7:00:af:e7: 72:aa:52:39:b0:e2:6a:ee:71:bf:0d:3a:cf:1e:6a: 6e:cc:91:38:25:bd:88:1f:26:f3:28:a3:94:0f:e6: aa:73:7f:40:23:21:84:a3:e1:5c:40:ae:c0:75:5b: 01:a9:33:eb:ec:16:41:5f:c4:78:30:01:90:62:49: 73:0c:6e:e3:33:23:99:c9:73:70:0c:74:4a:ce:54: b0:a2:fb:ba:f6:61:34:59:59:08:9f:d2:0f:c1:70: c4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B8:BB:32:69:F8:1D:89:54:7A:01:E2:21:15:DD:A5:52:07:EF:15 X509v3 Authority Key Identifier: keyid:28:76:82:5F:77:C2:4A:16:7D:C4:12:15:35:0F:68:87:92:98:1A:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KHaCX3fCShZ9xBIVNQ9oh5KYGmc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194677/0227F786577511EE92ACA759C4F9AE02/759C16DC577711EE96F5F775C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.92.0/22 Signature Algorithm: sha256WithRSAEncryption 0d:b4:b0:3d:a3:f7:42:9b:b8:3d:85:00:1b:a1:46:44:ea:89: 0a:3b:c2:4c:46:dd:ac:5c:9e:51:ca:bf:35:01:0e:a0:9c:e6: 72:96:e8:76:45:23:44:ea:4c:e4:6f:b3:ce:af:ac:8e:61:9f: 60:59:e0:eb:e6:55:b3:97:c5:93:ba:77:a7:15:fc:78:b9:b7: fb:23:58:8d:45:f6:e2:e5:49:7b:94:d3:96:a2:af:e6:3d:ae: 39:90:e1:03:c3:fd:2e:ad:5e:58:90:1f:57:61:77:36:0c:6c: db:3b:84:6a:45:0c:9c:86:ee:c3:36:2e:68:ca:d5:10:d5:52: 99:24:8e:6d:e0:dc:9f:5e:f4:45:3c:e1:bb:a8:be:3a:09:e5: 84:3e:fb:b5:2b:ff:28:67:73:c8:b9:12:8f:27:a2:81:1e:5e: 80:ef:0a:93:16:75:e1:95:04:4c:02:41:76:7d:7c:fd:b9:57: 90:4d:13:d1:62:07:4b:c5:11:87:06:0e:1e:2b:a9:86:2f:61: e3:86:3d:6f:2b:3a:51:8d:d2:36:68:e1:9c:69:b1:31:41:c3: f5:b8:74:88:48:9c:7a:85:90:68:eb:26:d9:cb:0e:0d:62:8d: 4a:60:13:21:5e:d2:34:e5:e7:9b:5c:2a:8d:95:6a:67:ee:d5: a0:b1:ec:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQ2NzcxMTAvBgNVBAUTKDI4NzY4MjVGNzdDMjRBMTY3REM0MTIxNTM1MEY2ODg3 OTI5ODFBNjcwHhcNMjQxMDA5MDQ0ODIwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA2MGIxMy0zMTFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxSLDMUpnR8pKAigxuxG54c3RBMezMglQtTePcEmc8lfqZhbZoi0VXsTYyWCM SecLbSlaC0VMCSL3ItLxL+d4/eVdW3yWZWeWtfpgcNSf9lIeL5YvjJKzT8uI/DaI 1Eq7Qqbchs07voO3D8vWOleW5FzD+X0B2l9szd9RhkFLmoCOSVcVDnKbxJbd5fwY HHpEEGeEv8fy6lXKiuzedOsMKfcAr+dyqlI5sOJq7nG/DTrPHmpuzJE4Jb2IHybz KKOUD+aqc39AIyGEo+FcQK7AdVsBqTPr7BZBX8R4MAGQYklzDG7jMyOZyXNwDHRK zlSwovu69mE0WVkIn9IPwXDEGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLe4uzJp +B2JVHoB4iEV3aVSB+8VMB8GA1UdIwQYMBaAFCh2gl93wkoWfcQSFTUPaIeSmBpn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDY3Ny8wMjI3Rjc4NjU3 NzUxMUVFOTJBQ0E3NTlDNEY5QUUwMi9LSGFDWDNmQ1NoWjl4QklWTlE5b2g1S1lH bWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tIYUNYM2ZDU2haOXhCSVZOUTlvaDVLWUdtYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQ2NzcvMDIyN0Y3ODY1Nzc1MTFFRTkyQUNBNzU5QzRGOUFFMDIvNzU5QzE2REM1 Nzc3MTFFRTk2RjVGNzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnKlwwDQYJKoZIhvcNAQELBQADggEBAA20sD2j90KbuD2F ABuhRkTqiQo7wkxG3axcnlHKvzUBDqCc5nKW6HZFI0TqTORvs86vrI5hn2BZ4Ovm VbOXxZO6d6cV/Hi5t/sjWI1F9uLlSXuU05air+Y9rjmQ4QPD/S6tXliQH1dhdzYM bNs7hGpFDJyG7sM2LmjK1RDVUpkkjm3g3J9e9EU84buovjoJ5YQ++7Ur/yhnc8i5 Eo8nooEeXoDvCpMWdeGVBEwCQXZ9fP25V5BNE9FiB0vFEYcGDh4rqYYvYeOGPW8r OlGN0jZo4ZxpsTFBw/W4dIhInHqFkGjrJtnLDg1ijUpgEyFe0jTl55tcKo2Vamfu 1aCx7O8= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:14 2024 by rpki-client on console-ams.rpki-client.org