$ rpki-client -vvf rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/34DED1A2798711EEA7D73423C4F9AE02.roa File: 34DED1A2798711EEA7D73423C4F9AE02.roa (raw, json) Hash identifier: SUwPdVpyD78LluiuQbCbX3WP+GiH5YDeeAZtixdrMe0= Subject key identifier: BF:7A:20:23:38:CF:D0:F2:52:CF:22:96:28:D8:C0:D6:01:FF:03:7D Certificate issuer: /CN=A9116AC6/serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Certificate serial: 7D Authority key identifier: B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/34DED1A2798711EEA7D73423C4F9AE02.roa Signing time: Sat 15 Jun 2024 08:48:37 +0000 ROA not before: Sat 15 Jun 2024 08:48:37 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 133466 IP address blocks: 103.221.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116AC6/serialNumber=B4EDB0D6CCB5F00C9304374EE81F5E261AE671C9 Validity Not Before: Jun 15 08:48:37 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666d5565-f749 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:df:6b:84:0c:c6:67:7a:94:06:a7:0d:e9:45: db:6b:d9:68:c8:4d:ce:dd:f2:72:74:f8:f9:59:f3: 56:73:8c:53:6c:42:b2:43:bd:7e:f4:b2:4a:46:ae: 48:ce:1c:97:8e:d9:77:83:b6:74:57:e3:ff:a1:d4: 21:0e:82:32:a1:70:c6:13:2b:46:d8:fa:0a:1d:07: b7:cd:1e:2e:7f:d3:c0:65:85:72:b2:f5:22:42:7f: 04:e5:d5:2d:b3:06:aa:42:58:0d:1f:8a:f9:61:e5: 33:b4:90:6a:c0:01:e9:49:97:2c:e8:2d:82:86:6d: 63:70:9e:60:7c:ed:c0:dc:81:c7:7a:9c:a2:69:b7: c1:5f:40:d2:44:bd:f4:73:eb:b0:aa:e3:60:62:14: 57:e6:7d:f5:ce:f4:39:a6:7e:0a:c2:c0:ca:43:3c: 12:ae:bc:ba:95:89:94:1a:9c:d6:db:f9:0d:f3:49: fc:c9:b1:69:cf:03:5e:2c:26:37:03:72:63:e9:8c: f4:d9:5d:ef:f5:5d:a2:ce:22:4c:df:eb:7d:0b:84: 23:28:bd:84:a6:fe:11:6b:d7:27:2a:54:f0:6b:c3: 17:a2:17:04:08:9c:de:79:a3:f7:37:7e:25:78:8b: 81:f6:9c:11:1d:99:67:aa:91:31:6e:50:cf:7c:07: 2b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:7A:20:23:38:CF:D0:F2:52:CF:22:96:28:D8:C0:D6:01:FF:03:7D X509v3 Authority Key Identifier: keyid:B4:ED:B0:D6:CC:B5:F0:0C:93:04:37:4E:E8:1F:5E:26:1A:E6:71:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/tO2w1sy18AyTBDdO6B9eJhrmcck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tO2w1sy18AyTBDdO6B9eJhrmcck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116AC6/A1B6CBEA797D11EE9949B073C4F9AE02/34DED1A2798711EEA7D73423C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.221.240.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:f6:9f:c5:c4:76:c4:c1:26:11:5e:11:01:2d:5d:8d:df:f7: 31:7c:36:6c:13:d4:80:4d:74:71:fe:57:d8:8e:89:0d:1f:28: 34:48:f1:8d:89:a5:e2:01:20:e5:2f:a8:7c:0e:f0:35:2f:2d: 4a:74:7b:67:e5:16:5f:f7:23:ba:15:3b:ee:c2:6a:b5:2c:45: 98:3e:e0:62:52:4b:91:5e:91:73:a0:2e:48:87:b9:8e:a0:78: 2b:39:85:eb:af:d3:b3:32:e7:71:dd:ae:23:61:c7:9c:0d:6d: e8:c0:b0:78:58:15:c3:32:2c:d8:8e:a1:70:c6:ad:15:e8:7a: 3f:71:ee:c8:b5:39:08:2b:6a:66:13:04:6b:8c:60:9d:c8:25: af:cf:d6:f5:1b:33:c9:ff:20:d7:08:37:e4:b1:ed:a4:6b:05: 84:91:15:42:66:89:e5:98:6a:ba:07:28:46:f6:d0:7f:8c:7c: bb:ea:49:95:de:51:55:a4:cd:91:30:2f:c2:b7:6d:1c:9f:f4: ea:03:7b:b4:72:b7:16:67:ca:8b:e8:78:9a:51:bf:b0:4b:80: ac:0f:5a:e4:28:b8:45:2d:b8:5a:18:ed:8f:c3:fd:7b:94:68: 45:a0:d6:c0:30:9c:09:50:67:14:3d:fa:29:49:5d:eb:71:b8: 8e:1a:00:b4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NkFDNjExMC8GA1UEBRMoQjRFREIwRDZDQ0I1RjAwQzkzMDQzNzRFRTgxRjVFMjYx QUU2NzFDOTAeFw0yNDA2MTUwODQ4MzdaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NmQ1NTY1LWY3NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCl32uEDMZnepQGpw3pRdtr2WjITc7d8nJ0+PlZ81ZzjFNsQrJDvX70skpGrkjO HJeO2XeDtnRX4/+h1CEOgjKhcMYTK0bY+godB7fNHi5/08BlhXKy9SJCfwTl1S2z BqpCWA0fivlh5TO0kGrAAelJlyzoLYKGbWNwnmB87cDcgcd6nKJpt8FfQNJEvfRz 67Cq42BiFFfmffXO9DmmfgrCwMpDPBKuvLqViZQanNbb+Q3zSfzJsWnPA14sJjcD cmPpjPTZXe/1XaLOIkzf630LhCMovYSm/hFr1ycqVPBrwxeiFwQInN55o/c3fiV4 i4H2nBEdmWeqkTFuUM98BytfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUv3ogIzjP 0PJSzyKWKNjA1gH/A30wHwYDVR0jBBgwFoAUtO2w1sy18AyTBDdO6B9eJhrmcckw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE2QUM2L0ExQjZDQkVBNzk3 RDExRUU5OTQ5QjA3M0M0RjlBRTAyL3RPMncxc3kxOEF5VEJEZE82QjllSmhybWNj ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdE8ydzFzeTE4QXlUQkRkTzZCOWVKaHJtY2NrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NkFDNi9BMUI2Q0JFQTc5N0QxMUVFOTk0OUIwNzNDNEY5QUUwMi8zNERFRDFBMjc5 ODcxMUVFQTdENzM0MjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmfd8DANBgkqhkiG9w0BAQsFAAOCAQEAO/afxcR2xMEmEV4R AS1djd/3MXw2bBPUgE10cf5X2I6JDR8oNEjxjYml4gEg5S+ofA7wNS8tSnR7Z+UW X/cjuhU77sJqtSxFmD7gYlJLkV6Rc6AuSIe5jqB4KzmF66/TszLncd2uI2HHnA1t 6MCweFgVwzIs2I6hcMatFeh6P3HuyLU5CCtqZhMEa4xgncglr8/W9Rszyf8g1wg3 5LHtpGsFhJEVQmaJ5ZhqugcoRvbQf4x8u+pJld5RVaTNkTAvwrdtHJ/06gN7tHK3 FmfKi+h4mlG/sEuArA9a5Ci4RS24Whjtj8P9e5RoRaDWwDCcCVBnFD36KUld63G4 jhoAtA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org