$ rpki-client -vvf rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/2C6BA5E82EB511EFBCC65925C4F9AE02.roa File: 2C6BA5E82EB511EFBCC65925C4F9AE02.roa (raw, json) Hash identifier: 9SfUJfJUPtuZxpNRWiY6Pmy+Ome8ao9OIJR1s6GbHE8= Subject key identifier: 42:A1:B7:07:DA:35:F2:90:D9:65:46:8A:03:91:83:C1:7C:C9:42:2F Certificate issuer: /CN=A9118FFA/serialNumber=9FE881D8BD32AD15AB7BE7B4EC4F752212546C76 Certificate serial: 3F Authority key identifier: 9F:E8:81:D8:BD:32:AD:15:AB:7B:E7:B4:EC:4F:75:22:12:54:6C:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n-iB2L0yrRWre-e07E91IhJUbHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/2C6BA5E82EB511EFBCC65925C4F9AE02.roa Signing time: Thu 03 Oct 2024 06:40:16 +0000 ROA not before: Thu 03 Oct 2024 06:40:16 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138194 IP address blocks: 103.122.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/n-iB2L0yrRWre-e07E91IhJUbHY.crl rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/n-iB2L0yrRWre-e07E91IhJUbHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n-iB2L0yrRWre-e07E91IhJUbHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63 (0x3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118FFA/serialNumber=9FE881D8BD32AD15AB7BE7B4EC4F752212546C76 Validity Not Before: Oct 3 06:40:16 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fe3c50-7e53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:0b:79:39:26:a9:a6:63:df:eb:b2:d8:bd:fa: fb:de:e9:47:eb:f0:3e:86:f6:c7:1a:fa:38:f9:6e: 2d:23:02:c8:63:59:83:f2:60:2e:6f:b3:c9:7e:e7: dc:64:c3:be:31:54:7b:50:d2:3c:55:9f:b3:4f:a1: 84:65:cf:56:e9:f5:ef:5c:8a:74:96:63:a0:72:de: 34:b8:9c:f8:38:c5:aa:a6:31:19:08:01:05:48:ba: cc:0a:a5:b8:e2:f0:d1:52:ec:f3:27:df:d3:2c:90: d8:d7:bc:37:b2:b3:72:4c:64:98:4b:2c:59:c1:32: b3:9b:2d:a3:d5:36:bb:00:b6:ba:be:f1:79:8c:59: 17:5f:79:ab:e5:91:88:a9:7c:b6:87:36:fb:58:6d: 96:28:a5:4b:96:6e:21:eb:88:dd:56:1a:55:5e:a2: 43:77:f9:ab:04:a0:89:2c:9d:3a:46:84:dd:4d:65: 3a:98:32:7c:d6:d3:9a:7d:1b:6a:24:b0:b0:c4:04: ad:ff:b5:0c:53:cb:9a:63:0e:6f:7d:54:3e:e5:06: 0f:5c:f6:fb:2c:5a:3e:af:07:d8:9d:72:99:89:7e: 91:a1:02:07:52:d6:e5:56:77:ae:02:01:2b:f4:d1: e4:45:7f:22:0e:52:4d:20:29:52:20:84:1c:c2:b9: cb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:A1:B7:07:DA:35:F2:90:D9:65:46:8A:03:91:83:C1:7C:C9:42:2F X509v3 Authority Key Identifier: keyid:9F:E8:81:D8:BD:32:AD:15:AB:7B:E7:B4:EC:4F:75:22:12:54:6C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/n-iB2L0yrRWre-e07E91IhJUbHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n-iB2L0yrRWre-e07E91IhJUbHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/2C6BA5E82EB511EFBCC65925C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.4.0/24 Signature Algorithm: sha256WithRSAEncryption af:8a:2b:74:2d:98:2c:69:6b:4c:8f:17:dc:78:43:8d:79:f0: cf:f3:cd:53:bd:2b:8a:41:02:c0:79:3d:77:c9:f9:e0:8a:f5: 78:39:f0:73:75:6f:76:f7:b1:82:e3:6f:56:3e:5d:05:0d:07: 60:96:c9:05:17:e7:73:37:de:f7:d1:9d:cf:53:27:83:c3:a1: 1b:34:60:f6:fb:12:40:95:ee:c3:05:4f:dc:20:10:cd:c7:68: 6c:2b:1e:93:4b:23:47:09:87:f9:50:7f:27:1f:80:23:f6:5f: 31:c1:09:dd:b7:5a:98:6e:6d:ab:50:de:48:fc:5d:94:31:6b: 99:71:bc:c3:3e:de:98:81:cb:49:91:93:6c:2a:0b:22:2a:ec: f3:5d:6f:b2:e0:84:ab:55:7e:6e:08:4b:60:c6:1a:b3:23:74: 43:6b:82:e9:5a:82:90:45:83:d8:dc:89:76:62:e3:57:ed:c2: 8d:fa:26:0b:79:2d:b4:64:7d:2a:91:af:5c:ff:25:fb:28:d7: 4c:56:34:05:7e:3b:1c:d5:5e:0e:79:d6:95:d8:67:7a:f8:39: a7:64:a0:1a:2a:8e:71:70:dc:70:8c:c9:b7:e5:70:f3:02:f0: 11:ea:65:5e:33:a4:33:c3:9a:5b:2a:dd:dc:d2:d4:14:ad:80: 19:32:de:52 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBPzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OEZGQTExMC8GA1UEBRMoOUZFODgxRDhCRDMyQUQxNUFCN0JFN0I0RUM0Rjc1MjIx MjU0NkM3NjAeFw0yNDEwMDMwNjQwMTZaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZmUzYzUwLTdlNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDYC3k5JqmmY9/rsti9+vve6Ufr8D6G9sca+jj5bi0jAshjWYPyYC5vs8l+59xk w74xVHtQ0jxVn7NPoYRlz1bp9e9cinSWY6By3jS4nPg4xaqmMRkIAQVIuswKpbji 8NFS7PMn39MskNjXvDeys3JMZJhLLFnBMrObLaPVNrsAtrq+8XmMWRdfeavlkYip fLaHNvtYbZYopUuWbiHriN1WGlVeokN3+asEoIksnTpGhN1NZTqYMnzW05p9G2ok sLDEBK3/tQxTy5pjDm99VD7lBg9c9vssWj6vB9idcpmJfpGhAgdS1uVWd64CASv0 0eRFfyIOUk0gKVIghBzCucttAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQqG3B9o1 8pDZZUaKA5GDwXzJQi8wHwYDVR0jBBgwFoAUn+iB2L0yrRWre+e07E91IhJUbHYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4RkZBLzA1ODYwNjhBMkI3 QzExRUY4OUU4NDE0NEM0RjlBRTAyL24taUIyTDB5clJXcmUtZTA3RTkxSWhKVWJI WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbi1pQjJMMHlyUldyZS1lMDdFOTFJaEpVYkhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEZGQS8wNTg2MDY4QTJCN0MxMUVGODlFODQxNDRDNEY5QUUwMi8yQzZCQTVFODJF QjUxMUVGQkNDNjU5MjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGd6BDANBgkqhkiG9w0BAQsFAAOCAQEAr4ordC2YLGlrTI8X 3HhDjXnwz/PNU70rikECwHk9d8n54Ir1eDnwc3VvdvexguNvVj5dBQ0HYJbJBRfn czfe99Gdz1Mng8OhGzRg9vsSQJXuwwVP3CAQzcdobCsek0sjRwmH+VB/Jx+AI/Zf McEJ3bdamG5tq1DeSPxdlDFrmXG8wz7emIHLSZGTbCoLIirs811vsuCEq1V+bghL YMYasyN0Q2uC6VqCkEWD2NyJdmLjV+3CjfomC3kttGR9KpGvXP8l+yjXTFY0BX47 HNVeDnnWldhnevg5p2SgGiqOcXDccIzJt+Vw8wLwEeplXjOkM8OaWyrd3NLUFK2A GTLeUg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:21 2024 by rpki-client on console-fra.rpki-client.org