$ rpki-client -vvf rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/2C6BA5E82EB511EFBCC65925C4F9AE02.roa File: 2C6BA5E82EB511EFBCC65925C4F9AE02.roa (raw, json) Hash identifier: PKMO3hGXZJ5ZfonCkOu47bLYRvkMSYU7rqJ4eTuNP/Y= Subject key identifier: F0:3E:32:9A:1A:F3:1A:CA:A9:36:6F:DE:FD:5A:52:5B:18:88:FE:DB Certificate issuer: /CN=A9118FFA/serialNumber=9FE881D8BD32AD15AB7BE7B4EC4F752212546C76 Certificate serial: 07 Authority key identifier: 9F:E8:81:D8:BD:32:AD:15:AB:7B:E7:B4:EC:4F:75:22:12:54:6C:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n-iB2L0yrRWre-e07E91IhJUbHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/2C6BA5E82EB511EFBCC65925C4F9AE02.roa Signing time: Thu 20 Jun 2024 03:28:34 +0000 ROA not before: Thu 20 Jun 2024 03:28:34 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 138194 IP address blocks: 103.122.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/n-iB2L0yrRWre-e07E91IhJUbHY.crl rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/n-iB2L0yrRWre-e07E91IhJUbHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n-iB2L0yrRWre-e07E91IhJUbHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118FFA/serialNumber=9FE881D8BD32AD15AB7BE7B4EC4F752212546C76 Validity Not Before: Jun 20 03:28:34 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6673a1e2-598b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a2:8a:60:60:1e:5c:ed:3b:5f:ba:85:f8:e7: 57:1b:98:6f:e9:83:bf:75:78:de:13:3a:00:6d:31: bd:0f:2c:af:e6:ac:1c:0f:33:79:1d:a5:10:c8:6c: 99:1f:b4:f4:74:27:ed:62:84:d9:77:d0:95:28:b1: 83:6e:3b:e5:c7:ff:c0:f1:cb:dc:75:d2:31:89:a4: 30:a3:3c:1a:e8:c6:bb:8c:44:03:77:44:56:00:56: ec:c9:38:4e:64:ec:4e:3f:63:dd:8b:87:a8:aa:a3: fb:c5:0f:7c:54:15:1f:35:f3:14:45:83:24:f6:b9: a3:1e:22:1c:72:a0:2b:b1:39:3b:51:60:6a:0d:c0: 35:85:1a:2f:18:23:92:82:98:90:b9:09:e5:75:18: 34:21:00:1a:e2:9e:76:7f:b6:42:13:f1:c1:b1:93: a8:63:9f:96:a3:cb:7d:30:a9:d4:7a:b2:30:95:1e: e9:aa:00:ff:e7:4a:d0:88:2d:fc:ef:ee:b8:21:0f: 5f:6d:ef:94:dd:83:ce:a9:fe:d3:29:4e:b7:5f:a0: 46:05:d4:6d:a9:c0:1e:2c:e9:a8:63:b0:e4:18:06: f1:68:36:f3:80:45:73:ac:62:00:72:79:1e:3e:9f: 4b:f5:7e:2b:b7:94:be:20:3c:ee:ea:c8:15:9c:72: 67:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:3E:32:9A:1A:F3:1A:CA:A9:36:6F:DE:FD:5A:52:5B:18:88:FE:DB X509v3 Authority Key Identifier: keyid:9F:E8:81:D8:BD:32:AD:15:AB:7B:E7:B4:EC:4F:75:22:12:54:6C:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/n-iB2L0yrRWre-e07E91IhJUbHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n-iB2L0yrRWre-e07E91IhJUbHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118FFA/0586068A2B7C11EF89E84144C4F9AE02/2C6BA5E82EB511EFBCC65925C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.4.0/24 Signature Algorithm: sha256WithRSAEncryption 45:eb:7e:40:fd:8f:f4:42:05:e7:29:86:9c:d1:4b:af:94:85: 5d:de:bf:1b:56:8b:c2:11:f1:9d:c1:67:7d:33:96:d6:0e:7d: a0:a0:6c:d0:61:4b:d3:84:2b:c4:72:56:85:a4:cd:9b:ed:09: ba:4c:43:cc:34:02:26:fb:1a:4a:e0:6b:61:3e:eb:c8:69:83: c3:d6:52:0a:27:cc:e7:1e:da:f6:b0:9e:6c:ef:a5:13:9e:ed: 72:d9:22:ba:72:5f:29:a3:bf:9f:c6:03:9f:43:19:ed:4e:fe: 9e:3b:45:7f:5a:ca:f3:f9:62:f4:45:15:06:17:c5:7a:08:7a: 46:0e:82:9d:05:05:75:56:f0:70:5f:6a:a4:78:e5:15:b3:7d: d8:c7:89:dc:32:09:bd:f5:cd:a6:a5:0e:5c:65:5d:80:ee:f6: e8:db:b5:f0:58:a1:b5:64:e6:ca:b8:6b:df:02:2c:18:f3:52: 7c:90:ce:77:53:1f:b6:23:65:62:f8:c2:30:48:b1:52:35:a3: d3:a5:c4:78:c0:2c:38:01:71:52:22:7c:69:43:54:c5:ea:ae: cb:35:95:bd:4e:db:16:e9:f4:b2:78:4a:05:35:0d:8b:50:ed: 8a:02:fc:55:3e:9a:3e:22:9a:a7:e9:b4:c9:12:6c:2b:7d:de: 5d:34:5d:7b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx OEZGQTExMC8GA1UEBRMoOUZFODgxRDhCRDMyQUQxNUFCN0JFN0I0RUM0Rjc1MjIx MjU0NkM3NjAeFw0yNDA2MjAwMzI4MzRaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzNhMWUyLTU5OGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+oopgYB5c7TtfuoX451cbmG/pg791eN4TOgBtMb0PLK/mrBwPM3kdpRDIbJkf tPR0J+1ihNl30JUosYNuO+XH/8Dxy9x10jGJpDCjPBroxruMRAN3RFYAVuzJOE5k 7E4/Y92Lh6iqo/vFD3xUFR818xRFgyT2uaMeIhxyoCuxOTtRYGoNwDWFGi8YI5KC mJC5CeV1GDQhABrinnZ/tkIT8cGxk6hjn5ajy30wqdR6sjCVHumqAP/nStCILfzv 7rghD19t75Tdg86p/tMpTrdfoEYF1G2pwB4s6ahjsOQYBvFoNvOARXOsYgByeR4+ n0v1fiu3lL4gPO7qyBWccmdZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8D4ymhrz GsqpNm/e/VpSWxiI/tswHwYDVR0jBBgwFoAUn+iB2L0yrRWre+e07E91IhJUbHYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4RkZBLzA1ODYwNjhBMkI3 QzExRUY4OUU4NDE0NEM0RjlBRTAyL24taUIyTDB5clJXcmUtZTA3RTkxSWhKVWJI WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbi1pQjJMMHlyUldyZS1lMDdFOTFJaEpVYkhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx OEZGQS8wNTg2MDY4QTJCN0MxMUVGODlFODQxNDRDNEY5QUUwMi8yQzZCQTVFODJF QjUxMUVGQkNDNjU5MjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGd6BDANBgkqhkiG9w0BAQsFAAOCAQEARet+QP2P9EIF5ymG nNFLr5SFXd6/G1aLwhHxncFnfTOW1g59oKBs0GFL04QrxHJWhaTNm+0JukxDzDQC JvsaSuBrYT7ryGmDw9ZSCifM5x7a9rCebO+lE57tctkiunJfKaO/n8YDn0MZ7U7+ njtFf1rK8/li9EUVBhfFegh6Rg6CnQUFdVbwcF9qpHjlFbN92MeJ3DIJvfXNpqUO XGVdgO726Nu18FihtWTmyrhr3wIsGPNSfJDOd1MftiNlYvjCMEixUjWj06XEeMAs OAFxUiJ8aUNUxequyzWVvU7bFun0snhKBTUNi1DtigL8VT6aPiKap+m0yRJsK33e XTRdew== -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:24 2024 by rpki-client on console-fra.rpki-client.org