$ rpki-client -vvf rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/2100BD70343611EF97A95F35C4F9AE02.roa File: 2100BD70343611EF97A95F35C4F9AE02.roa (raw, json) Hash identifier: HQq1GzHEuZXBL5FuTD7w79nd+cfPjMIfL9rjnRYfJPw= Subject key identifier: 64:23:88:F5:51:77:5E:69:B0:DF:2D:CA:01:FB:AB:C0:51:ED:61:63 Certificate issuer: /CN=A9116BB8/serialNumber=8AE9CDE10BE0B77F091B0D38EBC1967C8BC0919E Certificate serial: 06A4 Authority key identifier: 8A:E9:CD:E1:0B:E0:B7:7F:09:1B:0D:38:EB:C1:96:7C:8B:C0:91:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iunN4Qvgt38JGw0468GWfIvAkZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/2100BD70343611EF97A95F35C4F9AE02.roa Signing time: Wed 02 Oct 2024 22:32:06 +0000 ROA not before: Wed 02 Oct 2024 22:32:06 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133448 IP address blocks: 103.108.184.0/24 maxlen: 24 103.116.132.0/24 maxlen: 24 103.116.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/iunN4Qvgt38JGw0468GWfIvAkZ4.crl rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/iunN4Qvgt38JGw0468GWfIvAkZ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iunN4Qvgt38JGw0468GWfIvAkZ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1700 (0x6a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9116BB8/serialNumber=8AE9CDE10BE0B77F091B0D38EBC1967C8BC0919E Validity Not Before: Oct 2 22:32:06 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fdc9e6-6237 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:52:5f:e9:be:e8:e4:9d:1c:2f:69:17:c3:43: d4:3d:c5:2c:f2:84:92:1e:23:85:91:9d:44:4f:d1: a4:65:1d:68:b9:fd:0a:a7:96:59:23:7d:65:b9:ff: d4:3f:11:42:62:a6:08:9b:58:de:d8:1c:69:f5:22: e9:07:62:0c:58:c2:26:3f:66:74:8b:0b:9e:c4:4f: a3:7e:4b:06:e9:2e:6d:d7:f1:38:99:f7:18:d6:0e: 4d:fc:f9:ef:a7:cb:49:f5:5c:61:29:8d:a5:d3:a8: ab:b3:61:17:fa:00:f1:c8:6c:c0:67:b6:52:42:00: 1e:32:1a:57:32:c2:45:e3:df:35:ef:90:29:a7:65: 02:f8:48:41:d1:db:3e:33:84:a5:38:8a:03:05:e1: 8e:bf:3e:05:86:57:46:ce:ac:83:69:be:37:80:64: d5:f0:6e:61:f5:99:83:1f:f3:35:78:bc:c7:b3:ce: 8b:79:d1:4e:56:57:0f:cd:8d:3b:1b:63:da:18:86: a5:29:c6:43:93:84:30:4b:9e:0b:b5:f7:37:a5:85: 63:47:02:b4:a6:cb:26:9c:14:9a:6e:92:b2:aa:2b: 43:cc:dc:ee:de:e1:6d:df:b0:36:19:b4:44:f9:99: a7:be:a7:f6:08:b7:7e:29:c1:e2:11:de:06:07:99: 55:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:23:88:F5:51:77:5E:69:B0:DF:2D:CA:01:FB:AB:C0:51:ED:61:63 X509v3 Authority Key Identifier: keyid:8A:E9:CD:E1:0B:E0:B7:7F:09:1B:0D:38:EB:C1:96:7C:8B:C0:91:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/iunN4Qvgt38JGw0468GWfIvAkZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iunN4Qvgt38JGw0468GWfIvAkZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9116BB8/39DCF75442F011EB8A09C75AC4F9AE02/2100BD70343611EF97A95F35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.184.0/24 103.116.132.0/23 Signature Algorithm: sha256WithRSAEncryption 99:31:54:67:fd:77:60:e2:15:a3:d1:39:bd:9b:59:9d:db:8d: bb:a3:b1:6c:3d:c1:af:94:56:35:fc:09:94:95:3f:65:4b:0c: 2f:0c:1d:40:6d:c8:4d:3b:17:59:a7:8d:ce:ac:0a:7b:12:53: c6:73:3e:8d:f3:fd:2f:7a:c8:db:9e:da:6c:b4:87:c7:b2:80: 3f:c4:98:a4:da:85:1a:d0:29:f0:9a:c9:e0:b7:0e:d9:60:fb: c0:3b:ef:22:99:5c:b6:77:80:4a:ee:c4:04:7c:ca:e6:12:35: 9a:98:57:99:70:1b:fa:8c:2f:70:45:99:91:1a:4d:e9:4e:8a: f4:b4:d4:5e:7e:19:86:e6:c6:12:07:67:95:92:86:92:20:80: 5b:c2:07:8c:f1:ce:cc:7d:3e:32:78:4e:e8:43:d9:c5:d9:66: f4:59:9b:a4:b5:45:e9:a2:ff:03:d4:96:9e:41:d6:95:39:a4: ac:fd:a1:f5:f7:08:f5:db:77:1d:ac:b0:19:fa:89:32:52:52: 4c:ff:62:ed:f3:a8:e4:07:23:a9:69:ac:77:91:cc:0d:62:11: c8:cb:71:0f:6a:56:55:54:0d:6c:e4:de:50:1b:31:7f:51:0a: 30:fd:55:ef:2b:33:c1:ef:c6:ce:25:f4:b7:31:c9:06:a0:c7: c2:33:16:fb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBqQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTZCQjgxMTAvBgNVBAUTKDhBRTlDREUxMEJFMEI3N0YwOTFCMEQzOEVCQzE5NjdD OEJDMDkxOUUwHhcNMjQxMDAyMjIzMjA2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkYzllNi02MjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx1Jf6b7o5J0cL2kXw0PUPcUs8oSSHiOFkZ1ET9GkZR1ouf0Kp5ZZI31luf/U PxFCYqYIm1je2Bxp9SLpB2IMWMImP2Z0iwuexE+jfksG6S5t1/E4mfcY1g5N/Pnv p8tJ9VxhKY2l06irs2EX+gDxyGzAZ7ZSQgAeMhpXMsJF498175App2UC+EhB0ds+ M4SlOIoDBeGOvz4FhldGzqyDab43gGTV8G5h9ZmDH/M1eLzHs86LedFOVlcPzY07 G2PaGIalKcZDk4QwS54Ltfc3pYVjRwK0pssmnBSabpKyqitDzNzu3uFt37A2GbRE +Zmnvqf2CLd+KcHiEd4GB5lV2wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGQjiPVR d15psN8tygH7q8BR7WFjMB8GA1UdIwQYMBaAFIrpzeEL4Ld/CRsNOOvBlnyLwJGe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNkJCOC8zOURDRjc1NDQy RjAxMUVCOEEwOUM3NUFDNEY5QUUwMi9pdW5ONFF2Z3QzOEpHdzA0NjhHV2ZJdkFr WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2l1bk40UXZndDM4Skd3MDQ2OEdXZkl2QWtaNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTZCQjgvMzlEQ0Y3NTQ0MkYwMTFFQjhBMDlDNzVBQzRGOUFFMDIvMjEwMEJENzAz NDM2MTFFRjk3QTk1RjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnbLgDBAFndIQwDQYJKoZIhvcNAQELBQADggEBAJkxVGf9 d2DiFaPROb2bWZ3bjbujsWw9wa+UVjX8CZSVP2VLDC8MHUBtyE07F1mnjc6sCnsS U8ZzPo3z/S96yNue2my0h8eygD/EmKTahRrQKfCayeC3Dtlg+8A77yKZXLZ3gEru xAR8yuYSNZqYV5lwG/qML3BFmZEaTelOivS01F5+GYbmxhIHZ5WShpIggFvCB4zx zsx9PjJ4TuhD2cXZZvRZm6S1Remi/wPUlp5B1pU5pKz9ofX3CPXbdx2ssBn6iTJS Ukz/Yu3zqOQHI6lprHeRzA1iEcjLcQ9qVlVUDWzk3lAbMX9RCjD9Ve8rM8Hvxs4l 9LcxyQagx8IzFvs= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:42 2024 by rpki-client on console-fra.rpki-client.org