$ rpki-client -vvf rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/0CAF01A6C6C811E8AECD6165C4F9AE02.roa File: 0CAF01A6C6C811E8AECD6165C4F9AE02.roa (raw, json) Hash identifier: n2FBgQHuh988fwkOcnAooQ/jXQmiLgbdWeucP9Cz7sg= Subject key identifier: 5D:CA:98:BA:33:F9:18:CE:E4:30:8D:87:F9:66:34:21:5C:0B:5C:DD Certificate issuer: /CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Certificate serial: 1200 Authority key identifier: B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/0CAF01A6C6C811E8AECD6165C4F9AE02.roa Signing time: Fri 02 Aug 2024 18:05:27 +0000 ROA not before: Fri 02 Aug 2024 18:05:27 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45766 IP address blocks: 103.121.8.0/22 maxlen: 22 103.121.8.0/23 maxlen: 23 103.121.8.0/24 maxlen: 24 103.121.9.0/24 maxlen: 24 103.121.10.0/23 maxlen: 23 103.121.10.0/24 maxlen: 24 103.121.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:05:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4608 (0x1200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91116C7/serialNumber=B67C245E4B2BEEAD23C1F05DD30FF9077D87B8E6 Validity Not Before: Aug 2 18:05:27 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ad1fe7-6d46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:83:24:24:b6:d6:e0:f1:a3:b1:57:65:a8:3d: e7:c4:48:14:97:74:19:1e:8b:b9:58:f2:f8:34:68: c8:14:c1:8f:b2:e9:c4:82:ef:85:13:bc:0a:b4:98: a5:76:93:4b:60:09:a9:cb:ed:df:68:6a:a2:d4:77: 06:0b:8d:9e:74:45:c1:0e:e2:e5:af:c5:1a:58:b9: 7d:67:34:1e:3f:8d:6a:e4:59:6a:e7:eb:fc:58:a1: 5f:10:50:08:2d:3a:e4:c1:df:b3:81:ce:d9:32:9d: fa:90:42:4d:8d:e1:dc:ef:58:9c:c4:53:05:e6:d6: c8:a2:4d:8c:60:ab:ed:76:ba:29:84:60:c9:59:5e: a9:54:7e:bf:cc:fd:aa:be:21:7c:22:2a:41:6f:2d: 53:94:e3:7f:a0:23:82:2b:41:3e:51:3c:ce:ef:38: 33:3f:44:01:22:ca:71:67:70:e1:e2:e7:8f:1f:d8: dc:09:0f:6b:00:d7:6e:53:1f:33:c2:0f:7a:25:74: 62:90:0b:44:5d:ee:6b:d6:ee:fc:b0:93:15:1c:4d: ad:75:9c:32:3e:e1:db:34:20:a6:a6:42:a3:d2:54: e1:b4:b3:e6:54:0d:29:f6:ee:8a:78:27:76:ce:53: 43:f6:92:c8:ac:2c:26:99:c6:60:3c:45:cf:8b:05: 55:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:CA:98:BA:33:F9:18:CE:E4:30:8D:87:F9:66:34:21:5C:0B:5C:DD X509v3 Authority Key Identifier: keyid:B6:7C:24:5E:4B:2B:EE:AD:23:C1:F0:5D:D3:0F:F9:07:7D:87:B8:E6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/tnwkXksr7q0jwfBd0w_5B32HuOY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tnwkXksr7q0jwfBd0w_5B32HuOY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91116C7/C856D6C4C6C611E882A41260C4F9AE02/0CAF01A6C6C811E8AECD6165C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.8.0/22 Signature Algorithm: sha256WithRSAEncryption 20:cd:bb:41:a3:42:8a:41:e6:4f:63:32:a2:98:ac:11:64:24: 5b:68:93:9d:4a:12:04:f5:41:4d:37:9f:3c:1f:af:51:8a:f0: f8:78:df:60:80:e5:04:6c:ac:e2:13:95:47:35:d0:01:09:9e: b5:de:0a:5d:98:e5:a1:73:9b:1a:fa:75:46:6a:1f:9a:2e:36: b6:48:f4:f7:16:34:d6:b4:d8:83:d0:44:d2:91:33:4a:22:af: 1d:22:d1:4e:b0:73:c8:9c:25:78:4f:b9:ec:f3:55:7b:ef:8a: 8f:74:07:8d:92:74:08:d8:9f:94:25:a6:b4:bf:27:2f:1c:1a: 3d:e3:e2:6d:0c:c1:c7:7a:63:a3:c7:b8:95:fb:90:64:fc:ae: d8:9e:a4:fd:a1:94:37:63:7c:82:38:84:60:5c:68:fc:c7:3d: bc:80:68:24:bb:a6:0e:21:62:84:97:da:98:96:5d:15:35:74: 77:0c:50:61:10:0d:14:4c:bd:50:bc:18:ec:c8:b4:9b:90:ee: 16:f8:b4:6b:c7:52:b7:79:c8:59:73:e1:00:29:35:f8:2c:ce: 15:9a:c4:81:61:a5:38:5b:c8:5d:72:63:79:d4:91:68:27:d8: fe:38:82:9d:fe:60:57:62:4e:80:8b:3d:51:1e:71:cb:64:70: 7d:b8:7f:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE2QzcxMTAvBgNVBAUTKEI2N0MyNDVFNEIyQkVFQUQyM0MxRjA1REQzMEZGOTA3 N0Q4N0I4RTYwHhcNMjQwODAyMTgwNTI3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkMWZlNy02ZDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYMkJLbW4PGjsVdlqD3nxEgUl3QZHou5WPL4NGjIFMGPsunEgu+FE7wKtJil dpNLYAmpy+3faGqi1HcGC42edEXBDuLlr8UaWLl9ZzQeP41q5Flq5+v8WKFfEFAI LTrkwd+zgc7ZMp36kEJNjeHc71icxFMF5tbIok2MYKvtdrophGDJWV6pVH6/zP2q viF8IipBby1TlON/oCOCK0E+UTzO7zgzP0QBIspxZ3Dh4uePH9jcCQ9rANduUx8z wg96JXRikAtEXe5r1u78sJMVHE2tdZwyPuHbNCCmpkKj0lThtLPmVA0p9u6KeCd2 zlND9pLIrCwmmcZgPEXPiwVVEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF3KmLoz +RjO5DCNh/lmNCFcC1zdMB8GA1UdIwQYMBaAFLZ8JF5LK+6tI8HwXdMP+Qd9h7jm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTZDNy9DODU2RDZDNEM2 QzYxMUU4ODJBNDEyNjBDNEY5QUUwMi90bndrWGtzcjdxMGp3ZkJkMHdfNUIzMkh1 T1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rud2tYa3NyN3EwandmQmQwd181QjMySHVPWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTE2QzcvQzg1NkQ2QzRDNkM2MTFFODgyQTQxMjYwQzRGOUFFMDIvMENBRjAxQTZD NkM4MTFFOEFFQ0Q2MTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneQgwDQYJKoZIhvcNAQELBQADggEBACDNu0GjQopB5k9j MqKYrBFkJFtok51KEgT1QU03nzwfr1GK8Ph432CA5QRsrOITlUc10AEJnrXeCl2Y 5aFzmxr6dUZqH5ouNrZI9PcWNNa02IPQRNKRM0oirx0i0U6wc8icJXhPuezzVXvv io90B42SdAjYn5QlprS/Jy8cGj3j4m0Mwcd6Y6PHuJX7kGT8rtiepP2hlDdjfII4 hGBcaPzHPbyAaCS7pg4hYoSX2piWXRU1dHcMUGEQDRRMvVC8GOzItJuQ7hb4tGvH Urd5yFlz4QApNfgszhWaxIFhpThbyF1yY3nUkWgn2P44gp3+YFdiToCLPVEecctk cH24f+Y= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:10 2024 by rpki-client on console-ams.rpki-client.org