$ rpki-client -vvf rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa File: 42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa (raw, json) Hash identifier: WFmZvmOIKNk0az+zKPBYrOXakumFbE34A1nRoyLlGgY= Subject key identifier: 87:35:81:CA:40:D9:6B:3F:BA:16:BF:8D:C5:6F:1C:3B:1C:B6:31:BD Certificate issuer: /CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Certificate serial: 17CB Authority key identifier: 40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa Signing time: Fri 18 Oct 2024 16:54:23 +0000 ROA not before: Fri 18 Oct 2024 16:54:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137023 IP address blocks: 103.102.27.0/24 maxlen: 24 103.130.11.0/24 maxlen: 24 103.131.180.0/24 maxlen: 24 103.131.181.0/24 maxlen: 24 2401:dec0::/32 maxlen: 32 2401:dec0::/33 maxlen: 33 2401:dec0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6091 (0x17cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194A58/serialNumber=40BD25A2D6031873E55DFCDDAD3A48F7BCF88C8B Validity Not Before: Oct 18 16:54:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=671292bf-bf1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:77:df:7f:a4:49:37:5d:68:be:21:4a:ac:20: 99:c5:81:00:e3:3c:c8:7c:5f:11:95:30:62:5a:1c: 96:71:2f:0f:b2:35:3e:df:dd:6b:30:7c:25:a4:31: d6:64:65:91:fe:ef:cd:e8:ff:7c:ce:c2:f7:1f:f2: 4d:df:c0:a6:4d:a4:b9:08:47:96:19:eb:05:75:24: 2a:be:c5:23:70:b8:c9:89:da:53:32:1d:b0:9e:12: d2:a9:bf:1c:a8:ba:a8:c4:da:15:8a:f8:dd:0b:23: 8b:88:24:33:71:f9:8b:92:a7:94:0b:2c:4c:b5:99: c9:b8:44:ac:6d:f2:86:14:99:51:80:b2:8c:e3:99: 62:50:23:7b:23:df:7c:86:83:99:87:95:30:9c:97: 2f:cf:cf:ea:05:9a:4d:c9:6c:b0:51:0d:fa:fe:f6: 4a:43:40:db:e5:5c:fd:bc:7e:2f:5e:cf:10:40:67: 28:a2:6b:d0:f2:fa:41:41:aa:58:91:e2:36:0f:cb: 2c:70:9b:a0:3f:4a:65:96:4d:87:ad:d4:b8:d2:db: 0e:9b:ed:27:a4:fb:43:eb:ba:f7:d4:b8:ff:67:9b: 8e:69:42:6f:ed:c6:72:37:78:c2:70:5d:30:b3:31: 74:5a:45:a3:83:bb:4c:29:5d:c1:75:6b:32:f9:ab: 7e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:35:81:CA:40:D9:6B:3F:BA:16:BF:8D:C5:6F:1C:3B:1C:B6:31:BD X509v3 Authority Key Identifier: keyid:40:BD:25:A2:D6:03:18:73:E5:5D:FC:DD:AD:3A:48:F7:BC:F8:8C:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/QL0lotYDGHPlXfzdrTpI97z4jIs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QL0lotYDGHPlXfzdrTpI97z4jIs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194A58/4EACE490AE4311E7881C6416C4F9AE02/42D0E9A4AFD911E7B8A7E96CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.27.0/24 103.130.11.0/24 103.131.180.0/23 IPv6: 2401:dec0::/32 Signature Algorithm: sha256WithRSAEncryption 3b:7d:88:56:da:1d:01:99:1b:e0:2e:7d:61:1f:32:5e:c3:e5: 44:60:99:3d:12:a4:f4:59:71:e2:7f:08:73:db:a5:f5:ff:9f: 94:c8:6a:f6:c4:7e:73:c5:8a:e6:3a:7e:0d:ec:fa:96:dc:23: e5:7e:d6:0c:71:9f:7f:e5:44:d7:1f:c6:14:58:04:80:06:0a: 84:7c:c3:9f:93:4b:4f:53:7f:f5:06:11:b6:97:4d:c1:1f:32: fe:2e:e0:06:d6:c4:d0:8c:e1:d3:63:7c:c8:ae:ab:6b:58:b4: 85:b9:0d:ef:58:87:86:0e:1f:5b:fd:14:57:6f:24:2a:0c:36: 3a:c2:d1:eb:99:9b:ab:fb:50:e8:77:b7:53:e7:52:cc:5f:88: a9:13:f3:7b:3f:7d:ec:23:9f:e9:f8:c9:22:f5:7e:c4:bd:3e: 36:c7:8d:f8:16:0c:b7:08:fd:fa:5c:49:c2:85:36:01:ad:22: 97:44:2c:32:28:c2:8b:d6:2a:99:05:5c:17:0b:72:3c:fb:04: d7:17:f2:3b:a2:0e:89:f0:35:10:0f:a0:7a:a5:22:46:09:fc: ed:35:6f:f0:c4:a1:52:18:2a:d3:0f:aa:95:26:1d:3f:70:f3: ab:e0:ca:62:ba:dc:9a:03:1a:dc:54:bd:c1:5e:14:e3:35:40: c9:8c:27:6f -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICF8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRBNTgxMTAvBgNVBAUTKDQwQkQyNUEyRDYwMzE4NzNFNTVERkNEREFEM0E0OEY3 QkNGODhDOEIwHhcNMjQxMDE4MTY1NDIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEyOTJiZi1iZjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAonfff6RJN11oviFKrCCZxYEA4zzIfF8RlTBiWhyWcS8PsjU+391rMHwlpDHW ZGWR/u/N6P98zsL3H/JN38CmTaS5CEeWGesFdSQqvsUjcLjJidpTMh2wnhLSqb8c qLqoxNoVivjdCyOLiCQzcfmLkqeUCyxMtZnJuESsbfKGFJlRgLKM45liUCN7I998 hoOZh5UwnJcvz8/qBZpNyWywUQ36/vZKQ0Db5Vz9vH4vXs8QQGcoomvQ8vpBQapY keI2D8sscJugP0pllk2HrdS40tsOm+0npPtD67r31Lj/Z5uOaUJv7cZyN3jCcF0w szF0WkWjg7tMKV3BdWsy+at+tQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFIc1gcpA 2Ws/uha/jcVvHDsctjG9MB8GA1UdIwQYMBaAFEC9JaLWAxhz5V383a06SPe8+IyL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEE1OC80RUFDRTQ5MEFF NDMxMUU3ODgxQzY0MTZDNEY5QUUwMi9RTDBsb3RZREdIUGxYZnpkclRwSTk3ejRq SXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMMGxvdFlER0hQbFhmemRyVHBJOTd6NGpJcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTRBNTgvNEVBQ0U0OTBBRTQzMTFFNzg4MUM2NDE2QzRGOUFFMDIvNDJEMEU5QTRB RkQ5MTFFN0I4QTdFOTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABnZhsDBABnggsDBAFng7QwDQQCAAIwBwMFACQB3sAwDQYJ KoZIhvcNAQELBQADggEBADt9iFbaHQGZG+AufWEfMl7D5URgmT0SpPRZceJ/CHPb pfX/n5TIavbEfnPFiuY6fg3s+pbcI+V+1gxxn3/lRNcfxhRYBIAGCoR8w5+TS09T f/UGEbaXTcEfMv4u4AbWxNCM4dNjfMiuq2tYtIW5De9Yh4YOH1v9FFdvJCoMNjrC 0euZm6v7UOh3t1PnUsxfiKkT83s/fewjn+n4ySL1fsS9PjbHjfgWDLcI/fpcScKF NgGtIpdELDIowovWKpkFXBcLcjz7BNcX8juiDonwNRAPoHqlIkYJ/O01b/DEoVIY KtMPqpUmHT9w86vgymK63JoDGtxUvcFeFOM1QMmMJ28= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:08 2024 by rpki-client on console-ams.rpki-client.org