$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/12F0D72E7BC111EA8503D815C4F9AE02.roa File: 12F0D72E7BC111EA8503D815C4F9AE02.roa (raw, json) Hash identifier: xGtgEmqtoxW1ZnFqrfdXZFVQbRuwiMqE40Ohns82lks= Subject key identifier: 9F:83:15:E5:35:44:CD:3E:65:20:57:01:4E:DD:DB:C0:79:04:6E:3C Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0DC2 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/12F0D72E7BC111EA8503D815C4F9AE02.roa Signing time: Fri 06 Sep 2024 18:37:04 +0000 ROA not before: Fri 06 Sep 2024 18:37:04 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 2914 IP address blocks: 103.142.140.0/23 maxlen: 23 103.142.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3522 (0xdc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 6 18:37:04 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db4bd0-9707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ba:96:49:d3:48:da:20:9b:02:8f:3a:b7:ce: 37:95:d7:12:c1:6a:b6:ae:52:50:26:11:9e:85:86: 3a:38:11:29:ad:fb:10:bf:93:74:66:26:57:f5:02: 98:78:b2:d4:3b:fd:0e:c9:58:44:aa:8f:63:20:b6: d6:49:b8:7e:2c:d4:43:c3:32:57:2e:bb:7e:a9:62: b5:c4:30:c2:cf:fd:80:f2:7c:55:ef:17:73:8f:fb: 58:28:41:d5:f8:8b:cd:c6:b7:99:89:da:9f:c3:c1: 09:9c:2a:9e:24:c6:67:a8:86:6f:6c:37:fa:0d:02: d4:b9:ef:ea:9c:91:a6:c1:f3:63:77:23:e0:3c:65: 12:95:8b:a5:41:1b:0f:4d:aa:78:d6:29:1d:95:7a: aa:05:ae:f7:33:0c:72:43:85:39:ca:b8:7a:76:f5: 02:dd:17:35:11:55:c3:05:f1:90:c2:f9:08:70:65: f6:c6:dc:d4:db:55:45:51:81:1f:cc:e2:1a:1c:86: 26:2a:f3:5e:3e:aa:85:98:ad:1f:46:03:0b:b4:1b: 4a:43:9c:ad:30:74:24:f4:04:67:fd:c4:51:31:b7: 40:95:0b:61:c6:cc:26:49:d9:b1:4b:da:a9:ad:af: c7:be:20:dd:6d:fe:f7:e7:db:f4:a1:87:5e:95:50: d7:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:83:15:E5:35:44:CD:3E:65:20:57:01:4E:DD:DB:C0:79:04:6E:3C X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/12F0D72E7BC111EA8503D815C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.140.0/23 Signature Algorithm: sha256WithRSAEncryption 91:f1:d7:4e:f2:bf:1d:25:63:bc:ff:b9:b2:b6:9f:9f:52:ca: dd:1c:e2:30:d0:5f:82:9d:83:9c:73:84:2d:c7:c4:95:37:ba: fc:20:0a:17:fa:d3:b3:9d:75:e2:fa:09:9b:d6:22:20:4d:ba: 1b:ff:62:da:9a:e2:d0:1b:0f:ca:8a:5a:f0:a6:2d:6e:bb:f7: 29:9f:b7:5c:b3:6c:91:16:88:c6:6b:cc:53:25:0d:79:dd:21: 28:c9:00:e2:33:22:65:24:94:2f:64:3a:47:e0:b9:a9:bf:8f: ba:ad:da:94:23:e0:49:a5:4b:34:71:7a:e1:26:da:e0:4b:73: c3:8f:80:73:3a:57:1a:3a:2d:f8:46:c2:20:7d:69:e1:f1:7e: 08:98:a7:1c:b2:b6:96:38:23:4b:b0:6f:04:df:62:67:85:41: 53:2e:8e:6e:c2:26:ff:17:d4:5a:0a:03:39:a2:af:b6:ad:df: bd:a4:64:a4:02:8b:05:ec:80:65:f6:30:9c:6e:2e:b2:30:a2: 82:b7:1b:2a:5e:a9:fc:8d:b3:4b:f3:90:e9:24:67:db:8d:ce: 3d:29:63:71:68:01:e9:45:35:2e:1b:61:b5:db:cf:76:0f:6c: a6:99:98:5a:d2:e9:96:1d:73:c6:2a:72:0f:5d:16:c4:95:c5: 83:61:04:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjQwOTA2MTgzNzA0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNGJkMC05NzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtLqWSdNI2iCbAo86t843ldcSwWq2rlJQJhGehYY6OBEprfsQv5N0ZiZX9QKY eLLUO/0OyVhEqo9jILbWSbh+LNRDwzJXLrt+qWK1xDDCz/2A8nxV7xdzj/tYKEHV +IvNxreZidqfw8EJnCqeJMZnqIZvbDf6DQLUue/qnJGmwfNjdyPgPGUSlYulQRsP Tap41ikdlXqqBa73MwxyQ4U5yrh6dvUC3Rc1EVXDBfGQwvkIcGX2xtzU21VFUYEf zOIaHIYmKvNePqqFmK0fRgMLtBtKQ5ytMHQk9ARn/cRRMbdAlQthxswmSdmxS9qp ra/HviDdbf7359v0oYdelVDXXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ+DFeU1 RM0+ZSBXAU7d28B5BG48MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvMTJGMEQ3MkU3 QkMxMTFFQTg1MDNEODE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjowwDQYJKoZIhvcNAQELBQADggEBAJHx107yvx0lY7z/ ubK2n59Syt0c4jDQX4Kdg5xzhC3HxJU3uvwgChf607OddeL6CZvWIiBNuhv/Ytqa 4tAbD8qKWvCmLW679ymft1yzbJEWiMZrzFMlDXndISjJAOIzImUklC9kOkfguam/ j7qt2pQj4EmlSzRxeuEm2uBLc8OPgHM6Vxo6LfhGwiB9aeHxfgiYpxyytpY4I0uw bwTfYmeFQVMujm7CJv8X1FoKAzmir7at372kZKQCiwXsgGX2MJxuLrIwooK3Gype qfyNs0vzkOkkZ9uNzj0pY3FoAelFNS4bYbXbz3YPbKaZmFrS6ZYdc8Yqcg9dFsSV xYNhBDI= -----END CERTIFICATE-----Generated at Wed Nov 20 19:06:04 2024 by rpki-client on console-ams.rpki-client.org