$ rpki-client -vvf rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/C2D236E6B70E11EAAE6CE049C4F9AE02.roa File: C2D236E6B70E11EAAE6CE049C4F9AE02.roa (raw, json) Hash identifier: /Mx3d0Z7c2OKLIky6yATaeUHAoc7j+jEdKfqglnvKk8= Subject key identifier: 10:12:64:C9:F9:E1:72:A3:98:87:C0:7C:B1:53:52:C4:F0:4F:77:94 Certificate issuer: /CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Certificate serial: 0847 Authority key identifier: 11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/C2D236E6B70E11EAAE6CE049C4F9AE02.roa Signing time: Fri 20 Sep 2024 21:11:32 +0000 ROA not before: Fri 20 Sep 2024 21:11:32 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 63399 IP address blocks: 103.35.126.0/24 maxlen: 24 2402:c580::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:22:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2119 (0x847) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911849D/serialNumber=11C9727CA5292CE5DA5D70BA882BC2D643F41085 Validity Not Before: Sep 20 21:11:32 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66ede503-8075 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ab:34:ce:a5:52:1f:2d:15:21:13:55:83:33: 05:f8:9d:6d:2a:9e:1c:88:59:dc:fc:52:83:e6:03: 88:4e:3c:5c:ec:a3:b7:93:93:42:45:66:9e:db:2e: 6a:fb:fc:83:97:94:41:93:01:63:d0:a1:6a:57:2c: 08:0c:ce:d1:3f:b6:dc:67:68:02:14:18:92:f0:7d: c8:b0:4f:82:af:62:5d:47:ce:66:84:28:5a:5c:66: 1c:7a:6e:e1:16:e4:0a:92:39:f5:80:8e:c6:5d:77: a5:0c:b7:92:63:89:f2:ce:5e:7b:1a:f3:16:40:81: 63:d2:ea:de:2d:11:e9:f1:14:a7:5e:62:94:3c:fd: 41:1d:70:b8:85:83:2e:ac:f9:d1:e0:93:8e:3e:a3: 3c:23:c3:97:90:98:2b:25:81:89:e4:28:52:45:d4: 3c:04:43:5a:24:0a:dd:c2:e7:47:d8:3c:e8:8e:b6: ef:00:76:93:00:11:b0:c6:6a:3e:a4:9f:57:f6:f1: 8a:ef:e7:40:8e:06:81:5a:40:58:c3:ed:bd:7c:ad: 7b:2b:00:a9:cb:7a:e5:70:60:d9:a4:37:2a:19:b9: 97:6e:76:cd:a5:24:97:ce:2c:87:02:78:c5:a5:cf: 0d:55:6e:36:64:37:88:8d:56:23:6c:11:42:0a:e9: 69:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:12:64:C9:F9:E1:72:A3:98:87:C0:7C:B1:53:52:C4:F0:4F:77:94 X509v3 Authority Key Identifier: keyid:11:C9:72:7C:A5:29:2C:E5:DA:5D:70:BA:88:2B:C2:D6:43:F4:10:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/EclyfKUpLOXaXXC6iCvC1kP0EIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EclyfKUpLOXaXXC6iCvC1kP0EIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911849D/441A7264B66E11EA9B087247C4F9AE02/C2D236E6B70E11EAAE6CE049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.35.126.0/24 IPv6: 2402:c580::/32 Signature Algorithm: sha256WithRSAEncryption 9a:09:23:ef:47:33:8e:05:9e:8b:77:d6:af:a1:17:a5:af:c2: 83:46:27:7e:14:ec:06:52:2f:bf:5a:e2:c4:4e:bc:56:ed:d3: d0:cb:a5:17:49:d6:9f:2f:63:40:4c:d1:3d:e0:b9:c4:38:8f: c4:72:50:57:51:32:03:23:cb:5a:32:4c:79:8e:e4:77:7f:a3: 5e:8f:04:ab:75:64:c5:72:c6:c1:3e:a5:af:43:29:9b:df:f7: c8:86:9a:4d:dc:2d:19:9d:07:3a:95:34:77:bb:3c:e1:fc:92: 5d:c1:46:c1:4a:a6:5e:25:6a:94:34:43:22:3a:03:7d:b6:38: 31:68:4c:f7:9c:70:b5:77:7f:43:3e:a5:a4:b9:03:c9:73:5b: cb:c4:9c:79:d9:4a:27:60:a9:bd:01:84:02:a4:06:fc:20:b7: 4a:4b:6b:fe:5b:b4:b7:29:ed:e5:63:ff:bb:c1:c6:0b:43:7f: 30:97:0a:38:f8:80:06:81:b7:8b:09:bf:03:11:d4:78:27:3a: 98:9b:05:15:3a:94:9c:65:f2:82:71:c1:1e:2e:07:be:bd:14: e8:0d:ec:36:e2:62:39:a3:e0:40:47:16:38:a2:3c:2d:2f:d6: ac:f9:4d:a4:21:fd:de:40:47:6e:a3:6c:dc:18:9b:62:41:9f: 3d:88:32:75 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCEcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg0OUQxMTAvBgNVBAUTKDExQzk3MjdDQTUyOTJDRTVEQTVENzBCQTg4MkJDMkQ2 NDNGNDEwODUwHhcNMjQwOTIwMjExMTMyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkZTUwMy04MDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsas0zqVSHy0VIRNVgzMF+J1tKp4ciFnc/FKD5gOITjxc7KO3k5NCRWae2y5q +/yDl5RBkwFj0KFqVywIDM7RP7bcZ2gCFBiS8H3IsE+Cr2JdR85mhChaXGYcem7h FuQKkjn1gI7GXXelDLeSY4nyzl57GvMWQIFj0ureLRHp8RSnXmKUPP1BHXC4hYMu rPnR4JOOPqM8I8OXkJgrJYGJ5ChSRdQ8BENaJArdwudH2DzojrbvAHaTABGwxmo+ pJ9X9vGK7+dAjgaBWkBYw+29fK17KwCpy3rlcGDZpDcqGbmXbnbNpSSXziyHAnjF pc8NVW42ZDeIjVYjbBFCCulprwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBASZMn5 4XKjmIfAfLFTUsTwT3eUMB8GA1UdIwQYMBaAFBHJcnylKSzl2l1wuogrwtZD9BCF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODQ5RC80NDFBNzI2NEI2 NkUxMUVBOUIwODcyNDdDNEY5QUUwMi9FY2x5ZktVcExPWGFYWEM2aUN2QzFrUDBF SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VjbHlmS1VwTE9YYVhYQzZpQ3ZDMWtQMEVJVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg0OUQvNDQxQTcyNjRCNjZFMTFFQTlCMDg3MjQ3QzRGOUFFMDIvQzJEMjM2RTZC NzBFMTFFQUFFNkNFMDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnI34wDQQCAAIwBwMFACQCxYAwDQYJKoZIhvcNAQELBQAD ggEBAJoJI+9HM44Fnot31q+hF6WvwoNGJ34U7AZSL79a4sROvFbt09DLpRdJ1p8v Y0BM0T3gucQ4j8RyUFdRMgMjy1oyTHmO5Hd/o16PBKt1ZMVyxsE+pa9DKZvf98iG mk3cLRmdBzqVNHe7POH8kl3BRsFKpl4lapQ0QyI6A322ODFoTPeccLV3f0M+paS5 A8lzW8vEnHnZSidgqb0BhAKkBvwgt0pLa/5btLcp7eVj/7vBxgtDfzCXCjj4gAaB t4sJvwMR1HgnOpibBRU6lJxl8oJxwR4uB769FOgN7DbiYjmj4EBHFjiiPC0v1qz5 TaQh/d5AR26jbNwYm2JBnz2IMnU= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:36 2024 by rpki-client on console-fra.rpki-client.org