$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8E33/AD2CF21EA97F11EABF43EF4AC4F9AE02/9C3E2D18A98111EAB4B3FD50C4F9AE02.roa File: 9C3E2D18A98111EAB4B3FD50C4F9AE02.roa (raw, json) Hash identifier: uVDqEWvFSoFCutjWZ+pfrsUVRlgkPu0drLynarAKc08= Subject key identifier: 0A:FF:2E:66:5C:38:D2:1B:2D:07:B3:D9:BB:2D:E4:D5:F7:D5:3C:18 Certificate issuer: /CN=A91C8E33/serialNumber=9DA83D78152F56644712F4A580BA95355F888147 Certificate serial: 086E Authority key identifier: 9D:A8:3D:78:15:2F:56:64:47:12:F4:A5:80:BA:95:35:5F:88:81:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nag9eBUvVmRHEvSlgLqVNV-IgUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8E33/AD2CF21EA97F11EABF43EF4AC4F9AE02/9C3E2D18A98111EAB4B3FD50C4F9AE02.roa Signing time: Fri 16 Aug 2024 21:09:21 +0000 ROA not before: Fri 16 Aug 2024 21:09:21 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138022 IP address blocks: 103.120.32.0/22 maxlen: 24 2403:51c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8E33/AD2CF21EA97F11EABF43EF4AC4F9AE02/nag9eBUvVmRHEvSlgLqVNV-IgUc.crl rsync://rpki.apnic.net/member_repository/A91C8E33/AD2CF21EA97F11EABF43EF4AC4F9AE02/nag9eBUvVmRHEvSlgLqVNV-IgUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nag9eBUvVmRHEvSlgLqVNV-IgUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2158 (0x86e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8E33/serialNumber=9DA83D78152F56644712F4A580BA95355F888147 Validity Not Before: Aug 16 21:09:21 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bfc001-ebad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:61:13:9b:73:3e:f8:e7:7c:8c:88:ad:f3:bb: f5:79:71:e3:af:64:db:a1:62:93:9f:2c:34:91:d1: 30:b4:3f:12:55:e7:ea:56:ed:66:ea:cf:cc:71:c3: a4:8b:d2:4c:04:9a:93:ac:13:ff:25:7a:07:94:d6: d2:bc:38:5c:41:74:aa:95:a8:9e:81:fe:50:4f:18: 83:a2:c5:12:a4:10:5c:ac:05:38:55:9c:38:01:44: 57:6e:ef:e5:a0:eb:d2:ce:65:5a:83:d8:8b:cc:e6: 33:b3:bf:15:af:73:aa:9e:34:e9:80:36:c2:47:8d: d4:e8:8a:b0:8c:3a:b7:d2:63:83:c6:55:79:3f:e9: 70:58:02:44:97:6e:4d:a3:20:81:da:12:a7:57:94: 95:83:dd:3d:73:a7:bc:f6:34:c2:71:9a:1e:3a:cd: 37:1d:e9:79:02:0b:ab:f7:bc:ad:2c:f6:e2:a7:cd: 21:de:1c:ff:a0:1d:04:69:34:6b:6f:5e:a8:cc:f1: 1a:d0:2d:67:28:34:34:b2:41:40:a8:0f:72:a3:a2: 80:6c:9d:e1:09:68:fe:b6:13:7c:d0:f5:b7:94:42: 7b:a9:1d:ef:55:d0:e4:a5:dd:2f:39:77:18:77:ad: 1c:2e:81:44:33:02:7c:b1:b4:2e:91:be:1b:41:c3: 5c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:FF:2E:66:5C:38:D2:1B:2D:07:B3:D9:BB:2D:E4:D5:F7:D5:3C:18 X509v3 Authority Key Identifier: keyid:9D:A8:3D:78:15:2F:56:64:47:12:F4:A5:80:BA:95:35:5F:88:81:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8E33/AD2CF21EA97F11EABF43EF4AC4F9AE02/nag9eBUvVmRHEvSlgLqVNV-IgUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nag9eBUvVmRHEvSlgLqVNV-IgUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8E33/AD2CF21EA97F11EABF43EF4AC4F9AE02/9C3E2D18A98111EAB4B3FD50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.32.0/22 IPv6: 2403:51c0::/32 Signature Algorithm: sha256WithRSAEncryption 5a:c9:40:7f:22:31:53:9e:02:02:90:f3:1d:14:d0:00:12:8e: aa:f6:52:25:89:5a:7b:fb:48:1c:b4:fd:ee:26:82:6b:96:37: f4:0c:cf:4c:39:93:16:e9:73:cd:ce:3d:25:87:37:0e:eb:74: 96:4d:8a:74:f8:e0:2e:b0:dd:b4:f0:ae:3d:87:4c:eb:07:d3: af:e7:1e:d9:5d:18:f9:ae:67:c0:1d:23:dd:ae:64:e6:7e:f5: 1b:e9:7e:6c:82:19:39:ba:35:68:b3:aa:03:69:62:4a:c2:1f: 76:95:dc:1e:1e:10:51:06:a5:bf:e3:fd:d2:13:0d:47:89:b5: 4e:98:64:23:b7:8b:92:0c:8f:69:fc:3f:42:71:e8:5c:95:30: 77:65:be:1d:f0:5f:67:28:ca:06:e7:88:fb:91:68:91:8d:9b: a7:d3:1b:c1:da:dd:99:cd:9e:25:f7:71:27:51:ef:ae:30:03: 35:70:76:04:1a:95:e8:19:16:90:95:65:1c:dd:cb:8e:ee:a8: 6e:56:d4:44:3d:d2:ce:27:62:97:d1:55:65:42:44:e4:84:38: 0a:9f:6e:01:40:ab:03:f6:89:b7:9f:2d:f7:97:b5:21:64:04: d6:0b:76:48:1b:fe:49:66:90:9c:7b:e3:40:56:bc:57:52:c9: 98:6e:3c:03 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCG4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzhFMzMxMTAvBgNVBAUTKDlEQTgzRDc4MTUyRjU2NjQ0NzEyRjRBNTgwQkE5NTM1 NUY4ODgxNDcwHhcNMjQwODE2MjEwOTIxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmYzAwMS1lYmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7WETm3M++Od8jIit87v1eXHjr2TboWKTnyw0kdEwtD8SVefqVu1m6s/MccOk i9JMBJqTrBP/JXoHlNbSvDhcQXSqlaiegf5QTxiDosUSpBBcrAU4VZw4AURXbu/l oOvSzmVag9iLzOYzs78Vr3OqnjTpgDbCR43U6IqwjDq30mODxlV5P+lwWAJEl25N oyCB2hKnV5SVg909c6e89jTCcZoeOs03Hel5Agur97ytLPbip80h3hz/oB0EaTRr b16ozPEa0C1nKDQ0skFAqA9yo6KAbJ3hCWj+thN80PW3lEJ7qR3vVdDkpd0vOXcY d60cLoFEMwJ8sbQukb4bQcNcHQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAr/LmZc ONIbLQez2bst5NX31TwYMB8GA1UdIwQYMBaAFJ2oPXgVL1ZkRxL0pYC6lTVfiIFH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOEUzMy9BRDJDRjIxRUE5 N0YxMUVBQkY0M0VGNEFDNEY5QUUwMi9uYWc5ZUJVdlZtUkhFdlNsZ0xxVk5WLUln VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25hZzllQlV2Vm1SSEV2U2xnTHFWTlYtSWdVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzhFMzMvQUQyQ0YyMUVBOTdGMTFFQUJGNDNFRjRBQzRGOUFFMDIvOUMzRTJEMThB OTgxMTFFQUI0QjNGRDUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJneCAwDQQCAAIwBwMFACQDUcAwDQYJKoZIhvcNAQELBQAD ggEBAFrJQH8iMVOeAgKQ8x0U0AASjqr2UiWJWnv7SBy0/e4mgmuWN/QMz0w5kxbp c83OPSWHNw7rdJZNinT44C6w3bTwrj2HTOsH06/nHtldGPmuZ8AdI92uZOZ+9Rvp fmyCGTm6NWizqgNpYkrCH3aV3B4eEFEGpb/j/dITDUeJtU6YZCO3i5IMj2n8P0Jx 6FyVMHdlvh3wX2coygbniPuRaJGNm6fTG8Ha3ZnNniX3cSdR764wAzVwdgQalegZ FpCVZRzdy47uqG5W1EQ90s4nYpfRVWVCROSEOAqfbgFAqwP2ibefLfeXtSFkBNYL dkgb/klmkJx740BWvFdSyZhuPAM= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org