$ rpki-client -vvf rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/AD46C158EDA911EA977E1C36C4F9AE02.roa File: AD46C158EDA911EA977E1C36C4F9AE02.roa (raw, json) Hash identifier: Fb8k8+AedY7WXxvThRoDU2Yv91zXaAiC2+Ql7v0J/eM= Subject key identifier: C2:6E:5A:78:50:77:90:D3:9B:84:B5:72:7A:3A:10:99:3E:61:2C:86 Certificate issuer: /CN=A9120119/serialNumber=9A44030403D50B71B998463B3AE56843B92595E1 Certificate serial: 0742 Authority key identifier: 9A:44:03:04:03:D5:0B:71:B9:98:46:3B:3A:E5:68:43:B9:25:95:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mkQDBAPVC3G5mEY7OuVoQ7klleE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/AD46C158EDA911EA977E1C36C4F9AE02.roa Signing time: Wed 26 Jun 2024 17:48:19 +0000 ROA not before: Wed 26 Jun 2024 17:48:19 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135553 IP address blocks: 103.65.188.0/22 maxlen: 24 202.3.75.0/24 maxlen: 24 203.20.63.0/24 maxlen: 24 203.28.143.0/24 maxlen: 24 203.34.154.0/24 maxlen: 24 2405:d680::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/mkQDBAPVC3G5mEY7OuVoQ7klleE.crl rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/mkQDBAPVC3G5mEY7OuVoQ7klleE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mkQDBAPVC3G5mEY7OuVoQ7klleE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1858 (0x742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120119/serialNumber=9A44030403D50B71B998463B3AE56843B92595E1 Validity Not Before: Jun 26 17:48:19 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667c5463-3d40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5c:8a:1b:7a:89:b3:56:4c:87:09:70:79:3a: e3:9d:cc:3f:41:aa:c1:ab:8a:18:55:12:8c:60:5d: dd:b8:cf:ce:b8:52:4d:fd:dc:65:bc:57:f6:93:f0: ed:d6:96:7d:c7:98:ad:2f:69:cc:cd:84:a9:f2:71: 54:99:a8:7c:42:b7:89:e6:15:13:06:28:08:3e:3d: f5:e4:a1:7f:a7:cc:c4:1e:db:d8:56:ee:a0:00:c3: 1a:c2:aa:97:01:5e:ba:3a:e7:c0:c3:f3:e6:2b:fa: d3:58:9d:6d:11:5c:ad:8f:b7:78:67:4a:6c:7a:11: 70:5d:ab:06:05:28:74:46:75:b9:d6:14:24:22:8b: fb:39:80:c5:f5:b5:7f:04:2f:0c:e7:a6:d2:36:58: 66:3f:12:8d:47:fd:b4:57:f1:52:2d:ff:83:77:eb: 27:70:76:74:ec:31:d0:b9:eb:d8:75:e7:16:e2:24: e0:c4:44:e5:13:ac:42:70:dc:a6:9a:61:2f:48:84: bf:17:f4:fc:c5:03:aa:b4:cd:3a:9e:b6:0a:18:f1: 94:98:5f:c9:a6:6c:9c:b3:c1:3b:6e:18:5a:2f:9c: ad:fa:6f:ba:31:2e:89:11:eb:24:78:89:ef:b5:f7: 51:56:94:c2:31:b7:30:14:a6:b1:a7:40:74:f6:18: 7a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:6E:5A:78:50:77:90:D3:9B:84:B5:72:7A:3A:10:99:3E:61:2C:86 X509v3 Authority Key Identifier: keyid:9A:44:03:04:03:D5:0B:71:B9:98:46:3B:3A:E5:68:43:B9:25:95:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/mkQDBAPVC3G5mEY7OuVoQ7klleE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mkQDBAPVC3G5mEY7OuVoQ7klleE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120119/EEB71BE213F311E9882F9B67C4F9AE02/AD46C158EDA911EA977E1C36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.188.0/22 202.3.75.0/24 203.20.63.0/24 203.28.143.0/24 203.34.154.0/24 IPv6: 2405:d680::/32 Signature Algorithm: sha256WithRSAEncryption 03:e8:3b:dd:fa:c6:43:67:20:75:6f:be:e0:01:21:19:10:f6: 66:2a:2f:46:8d:6c:83:d6:5e:49:26:3a:25:60:a4:9f:67:b7: 93:a0:f5:16:c6:52:e5:a9:03:7e:c3:ea:df:dd:55:d0:e6:fb: 34:c9:a4:c7:1f:6b:4c:c9:52:a3:5a:52:9e:9b:aa:af:7b:b6: 4e:e1:1c:87:62:f0:fc:53:41:da:20:60:52:55:2a:56:f6:28: 91:6e:eb:1a:cd:ef:b3:a6:3d:3a:6a:90:91:25:40:05:bf:20: d8:2b:86:44:83:fd:d7:4b:20:8d:e7:6f:58:bd:17:78:10:23: 24:b6:54:22:fb:63:64:5e:5c:59:20:f7:6f:a3:40:97:a7:1f: f2:a3:38:25:5e:ca:7b:74:d2:cb:be:20:1c:25:72:d3:7c:73: e5:6a:a6:47:bd:e9:8e:97:7c:55:96:11:de:35:bd:26:88:ab: a4:49:ee:02:0a:bf:d7:55:f5:f5:86:94:3a:4d:4f:90:30:e1: ea:f1:cc:59:b6:d3:4a:d5:45:d4:b1:b2:e6:1a:df:77:3f:50: 65:d8:d3:10:71:57:29:d2:62:99:23:cf:a3:f5:2a:a7:0f:a3: 39:25:f1:41:99:5d:8e:68:7f:36:04:21:38:a0:49:55:ce:4e: f3:ef:2c:7e -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICB0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAxMTkxMTAvBgNVBAUTKDlBNDQwMzA0MDNENTBCNzFCOTk4NDYzQjNBRTU2ODQz QjkyNTk1RTEwHhcNMjQwNjI2MTc0ODE5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjNTQ2My0zZDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVyKG3qJs1ZMhwlweTrjncw/QarBq4oYVRKMYF3duM/OuFJN/dxlvFf2k/Dt 1pZ9x5itL2nMzYSp8nFUmah8QreJ5hUTBigIPj315KF/p8zEHtvYVu6gAMMawqqX AV66OufAw/PmK/rTWJ1tEVytj7d4Z0psehFwXasGBSh0RnW51hQkIov7OYDF9bV/ BC8M56bSNlhmPxKNR/20V/FSLf+Dd+sncHZ07DHQuevYdecW4iTgxETlE6xCcNym mmEvSIS/F/T8xQOqtM06nrYKGPGUmF/Jpmycs8E7bhhaL5yt+m+6MS6JEeskeInv tfdRVpTCMbcwFKaxp0B09hh6/QIDAQABo4ICvDCCArgwHQYDVR0OBBYEFMJuWnhQ d5DTm4S1cno6EJk+YSyGMB8GA1UdIwQYMBaAFJpEAwQD1QtxuZhGOzrlaEO5JZXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDExOS9FRUI3MUJFMjEz RjMxMUU5ODgyRjlCNjdDNEY5QUUwMi9ta1FEQkFQVkMzRzVtRVk3T3VWb1E3a2xs ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21rUURCQVBWQzNHNW1FWTdPdVZvUTdrbGxlRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjAxMTkvRUVCNzFCRTIxM0YzMTFFOTg4MkY5QjY3QzRGOUFFMDIvQUQ0NkMxNThF REE5MTFFQTk3N0UxQzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAJnQbwDBADKA0sDBADLFD8DBADLHI8DBADLIpowDQQCAAIw BwMFACQF1oAwDQYJKoZIhvcNAQELBQADggEBAAPoO936xkNnIHVvvuABIRkQ9mYq L0aNbIPWXkkmOiVgpJ9nt5Og9RbGUuWpA37D6t/dVdDm+zTJpMcfa0zJUqNaUp6b qq97tk7hHIdi8PxTQdogYFJVKlb2KJFu6xrN77OmPTpqkJElQAW/INgrhkSD/ddL II3nb1i9F3gQIyS2VCL7Y2ReXFkg92+jQJenH/KjOCVeynt00su+IBwlctN8c+Vq pke96Y6XfFWWEd41vSaIq6RJ7gIKv9dV9fWGlDpNT5Aw4erxzFm200rVRdSxsuYa 33c/UGXY0xBxVynSYpkjz6P1KqcPozkl8UGZXY5ofzYEITigSVXOTvPvLH4= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org