$ rpki-client -vvf rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/2979BC38B09411EAA964465EC4F9AE02.roa File: 2979BC38B09411EAA964465EC4F9AE02.roa (raw, json) Hash identifier: +18yq2xZTw1zNdRNhQgJ06UGJFn1sQJ6NgJ5C0aSZ+I= Subject key identifier: 9A:A0:18:6D:73:9A:79:F1:91:49:AB:BF:28:4B:17:39:D7:7D:62:FC Certificate issuer: /CN=A91C20AB/serialNumber=1B566DEF5F78E319BFC0D1400DE755E264A82BBC Certificate serial: 07C8 Authority key identifier: 1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/2979BC38B09411EAA964465EC4F9AE02.roa Signing time: Tue 28 Nov 2023 21:48:37 +0000 ROA not before: Tue 28 Nov 2023 21:48:36 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138035 IP address blocks: 103.120.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:22:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1992 (0x7c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C20AB/serialNumber=1B566DEF5F78E319BFC0D1400DE755E264A82BBC Validity Not Before: Nov 28 21:48:36 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65666034-42df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:af:ff:0f:51:7b:07:06:af:89:f3:a5:41:80: d7:d0:7d:e4:16:f9:58:32:72:6b:ae:b7:a2:03:1c: de:60:7b:68:a2:39:a1:11:a3:9a:7a:3e:0f:c8:fc: 3b:5d:a9:cf:58:80:b2:53:80:78:ee:79:08:2b:ff: 0d:46:20:b9:58:cb:ca:9c:56:b5:08:a8:49:46:69: 51:62:36:bf:cc:83:66:eb:ae:34:4b:b5:45:59:c3: e2:1c:47:af:ff:97:54:c2:0a:e2:4a:1f:83:11:62: 38:3c:a7:94:6d:7d:01:a6:af:0b:c2:af:60:ad:e3: d3:3c:56:21:19:ca:ea:4f:95:df:77:be:a4:51:f3: 44:a8:0d:a6:42:62:91:07:37:f5:31:e9:82:09:b0: d9:88:14:77:09:8c:88:b5:e9:c7:c0:71:57:a2:98: 72:5a:bf:d1:11:d7:8a:87:aa:94:f8:99:e8:bc:00: 6f:ab:8a:b8:f9:a9:66:02:bb:2d:10:ab:4c:e6:88: 18:73:9f:25:2e:70:48:6e:f0:a6:ab:99:53:3a:03: 4c:16:d7:b7:a0:ae:04:74:63:ac:e2:e9:01:0d:29: 70:4f:52:5a:ff:14:7e:46:da:30:b3:e1:fd:fe:6b: 43:c7:0b:6c:61:42:b2:d6:a5:f2:0f:bd:9c:d7:c7: cd:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A0:18:6D:73:9A:79:F1:91:49:AB:BF:28:4B:17:39:D7:7D:62:FC X509v3 Authority Key Identifier: keyid:1B:56:6D:EF:5F:78:E3:19:BF:C0:D1:40:0D:E7:55:E2:64:A8:2B:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/G1Zt71944xm_wNFADedV4mSoK7w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G1Zt71944xm_wNFADedV4mSoK7w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C20AB/6BE550B0B09311EA8AF3175EC4F9AE02/2979BC38B09411EAA964465EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.41.0/24 Signature Algorithm: sha256WithRSAEncryption 35:b1:3f:df:78:f5:41:b8:c5:9d:87:98:c3:24:04:aa:a4:82: b8:ea:1e:1f:b4:73:99:16:a1:4b:06:21:3b:f0:d9:5d:e4:4f: fc:77:13:e4:2f:9f:7f:66:8b:a5:b6:99:df:2c:1c:fc:20:b6: 72:ce:35:0d:00:6b:33:ff:32:b6:95:7b:18:04:80:48:d4:2f: 51:91:8f:c1:f8:9f:13:e2:94:67:8c:64:98:2c:60:1c:56:27: 63:a1:fb:4c:f8:cc:2c:21:bc:bb:e3:9a:3b:0c:b2:9c:82:85: f4:f5:dd:2a:ca:07:b2:cf:60:a1:d0:b9:c7:30:98:fb:56:ca: 33:5c:e5:cd:6f:15:43:00:81:c0:6f:33:dd:d6:2c:26:9c:16: fc:38:d2:d7:eb:97:6f:77:a4:a6:0e:8e:9d:25:a8:11:da:59: 01:06:c0:5b:91:e6:69:b9:9e:59:cb:9d:07:55:3c:75:df:3b: 87:a5:66:b0:d8:af:a0:fa:50:8f:59:f8:65:ae:43:69:c2:0e: 0e:92:29:3a:f6:df:27:e5:e7:d2:8a:17:38:be:03:e4:d4:21: bb:d0:41:90:07:68:18:73:31:67:ea:3d:72:66:eb:aa:38:e4: 44:a1:92:98:e3:eb:bf:25:1c:f7:79:c8:96:0c:f7:49:ad:71: a9:96:7e:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIwQUIxMTAvBgNVBAUTKDFCNTY2REVGNUY3OEUzMTlCRkMwRDE0MDBERTc1NUUy NjRBODJCQkMwHhcNMjMxMTI4MjE0ODM2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2NjAzNC00MmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6a//D1F7BwavifOlQYDX0H3kFvlYMnJrrreiAxzeYHtoojmhEaOaej4PyPw7 XanPWICyU4B47nkIK/8NRiC5WMvKnFa1CKhJRmlRYja/zINm6640S7VFWcPiHEev /5dUwgriSh+DEWI4PKeUbX0Bpq8Lwq9grePTPFYhGcrqT5Xfd76kUfNEqA2mQmKR Bzf1MemCCbDZiBR3CYyItenHwHFXophyWr/REdeKh6qU+JnovABvq4q4+almArst EKtM5ogYc58lLnBIbvCmq5lTOgNMFte3oK4EdGOs4ukBDSlwT1Ja/xR+Rtows+H9 /mtDxwtsYUKy1qXyD72c18fNjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJqgGG1z mnnxkUmrvyhLFznXfWL8MB8GA1UdIwQYMBaAFBtWbe9feOMZv8DRQA3nVeJkqCu8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjBBQi82QkU1NTBCMEIw OTMxMUVBOEFGMzE3NUVDNEY5QUUwMi9HMVp0NzE5NDR4bV93TkZBRGVkVjRtU29L N3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cxWnQ3MTk0NHhtX3dORkFEZWRWNG1Tb0s3dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIwQUIvNkJFNTUwQjBCMDkzMTFFQThBRjMxNzVFQzRGOUFFMDIvMjk3OUJDMzhC MDk0MTFFQUE5NjQ0NjVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneCkwDQYJKoZIhvcNAQELBQADggEBADWxP9949UG4xZ2H mMMkBKqkgrjqHh+0c5kWoUsGITvw2V3kT/x3E+Qvn39mi6W2md8sHPwgtnLONQ0A azP/MraVexgEgEjUL1GRj8H4nxPilGeMZJgsYBxWJ2Oh+0z4zCwhvLvjmjsMspyC hfT13SrKB7LPYKHQuccwmPtWyjNc5c1vFUMAgcBvM93WLCacFvw40tfrl293pKYO jp0lqBHaWQEGwFuR5mm5nlnLnQdVPHXfO4elZrDYr6D6UI9Z+GWuQ2nCDg6SKTr2 3yfl59KKFzi+A+TUIbvQQZAHaBhzMWfqPXJm66o45EShkpjj678lHPd5yJYM90mt camWfv4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:39 2024 by rpki-client on console-ams.rpki-client.org