$ rpki-client -vvf rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/73A346A24D5D11EAA811C368C4F9AE02.roa File: 73A346A24D5D11EAA811C368C4F9AE02.roa (raw, json) Hash identifier: r+qFQ3fN+c4Grex+TON5FzY+8r6Nkc1WSkFRkqt8yC8= Subject key identifier: FB:E1:2C:3F:60:41:99:B4:79:81:56:39:05:9B:BC:60:EB:6E:F2:85 Certificate issuer: /CN=A9120A29/serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Certificate serial: 09FC Authority key identifier: 41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/73A346A24D5D11EAA811C368C4F9AE02.roa Signing time: Sun 31 Mar 2024 21:29:27 +0000 ROA not before: Sun 31 Mar 2024 21:29:27 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140093 IP address blocks: 103.148.114.0/23 maxlen: 24 2001:df2:d180::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:23:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2556 (0x9fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120A29/serialNumber=41B31A68C9278A4D44748E2DF8C6ACA81578ECB5 Validity Not Before: Mar 31 21:29:27 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6609d5b7-9688 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c1:e7:b1:bd:d9:b7:06:95:73:34:88:6b:68: cb:91:56:d1:3f:a9:56:18:d8:b2:b6:19:f5:39:57: 74:a2:af:33:2b:9f:71:51:d6:25:e9:d7:04:59:50: e4:ab:7d:89:27:b3:cd:c6:2e:c2:5b:dc:b6:0b:13: 35:f4:74:02:99:ea:fe:f3:47:7f:25:39:d5:1f:52: 9e:a3:af:c4:3f:1d:75:2d:07:e8:c3:2d:01:69:58: 03:79:81:aa:4a:a9:c3:ce:d2:14:b5:8c:6d:a2:b8: 0f:50:1b:6b:bb:b8:bd:7e:5d:88:49:a0:47:a9:02: 42:96:90:50:d7:b8:b4:61:f4:b1:60:a5:f2:b0:0d: 75:87:15:0d:e4:16:4c:4a:0d:a3:9e:9f:a7:5c:17: cc:9d:34:91:97:f7:bf:c8:0d:86:f2:49:42:5a:5c: dd:7f:13:5f:b0:0c:07:f2:92:0b:95:c4:c2:cd:01: a0:20:5f:26:67:d8:34:98:06:a6:a3:98:6e:43:93: 1a:35:94:9c:31:34:cc:c3:f7:c1:39:c1:3e:af:23: e8:78:52:a0:09:c6:4f:a1:f5:51:10:66:56:a5:bd: e1:cc:be:df:8c:3b:ab:3f:eb:c9:3b:95:9a:38:80: cd:6a:63:04:d1:a3:4b:11:99:f7:d6:21:fa:ef:61: d7:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E1:2C:3F:60:41:99:B4:79:81:56:39:05:9B:BC:60:EB:6E:F2:85 X509v3 Authority Key Identifier: keyid:41:B3:1A:68:C9:27:8A:4D:44:74:8E:2D:F8:C6:AC:A8:15:78:EC:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/QbMaaMknik1EdI4t-MasqBV47LU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QbMaaMknik1EdI4t-MasqBV47LU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120A29/0E06DBA24D5C11EAA8088A66C4F9AE02/73A346A24D5D11EAA811C368C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.114.0/23 IPv6: 2001:df2:d180::/48 Signature Algorithm: sha256WithRSAEncryption 91:25:23:a9:e0:3d:2a:eb:2f:92:53:99:63:26:05:75:54:6d: 17:b2:17:5e:cd:1c:bb:4f:16:b9:68:0f:6a:20:2e:c6:13:61: 7b:64:68:19:23:55:4b:1b:ed:44:93:21:42:61:64:8b:b5:7b: 29:e6:da:6f:32:10:e5:7b:bd:ea:80:64:96:fa:1a:96:e2:ae: 6c:a3:5f:76:1e:aa:d0:9e:48:6e:03:c7:f1:b1:22:74:7a:0f: 1c:5f:50:b8:d8:08:9f:a3:50:6b:32:7d:12:59:e4:08:2a:8b: 68:84:fb:37:cc:c4:8e:41:6e:fe:a6:74:6f:96:9d:bd:e7:0f: bb:7c:18:94:16:96:0b:d5:84:5c:39:91:06:52:f8:51:76:74: 49:1b:69:68:32:11:89:99:db:4a:45:3f:25:cf:e7:e5:7b:27: dc:c9:68:95:6b:8f:dc:a7:68:15:3f:79:4b:cf:6b:54:db:f3: 60:03:b3:19:48:36:df:af:99:8e:24:5b:4f:be:af:0e:d0:05: 54:87:af:7f:22:14:3a:cb:ec:d7:65:00:3a:ed:c0:d0:26:ed: a5:a1:2f:91:83:86:c3:bc:10:cd:55:d4:1d:48:17:20:78:3e: 53:60:2e:60:95:a8:87:5e:d0:5a:4f:c9:98:77:5b:6d:e7:e9: ff:06:2e:0c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBMjkxMTAvBgNVBAUTKDQxQjMxQTY4QzkyNzhBNEQ0NDc0OEUyREY4QzZBQ0E4 MTU3OEVDQjUwHhcNMjQwMzMxMjEyOTI3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA5ZDViNy05Njg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcHnsb3ZtwaVczSIa2jLkVbRP6lWGNiythn1OVd0oq8zK59xUdYl6dcEWVDk q32JJ7PNxi7CW9y2CxM19HQCmer+80d/JTnVH1Keo6/EPx11LQfowy0BaVgDeYGq SqnDztIUtYxtorgPUBtru7i9fl2ISaBHqQJClpBQ17i0YfSxYKXysA11hxUN5BZM Sg2jnp+nXBfMnTSRl/e/yA2G8klCWlzdfxNfsAwH8pILlcTCzQGgIF8mZ9g0mAam o5huQ5MaNZScMTTMw/fBOcE+ryPoeFKgCcZPofVREGZWpb3hzL7fjDurP+vJO5Wa OIDNamME0aNLEZn31iH672HXZQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPvhLD9g QZm0eYFWOQWbvGDrbvKFMB8GA1UdIwQYMBaAFEGzGmjJJ4pNRHSOLfjGrKgVeOy1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEEyOS8wRTA2REJBMjRE NUMxMUVBQTgwODhBNjZDNEY5QUUwMi9RYk1hYU1rbmlrMUVkSTR0LU1hc3FCVjQ3 TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FiTWFhTWtuaWsxRWRJNHQtTWFzcUJWNDdMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBMjkvMEUwNkRCQTI0RDVDMTFFQUE4MDg4QTY2QzRGOUFFMDIvNzNBMzQ2QTI0 RDVEMTFFQUE4MTFDMzY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnlHIwDwQCAAIwCQMHACABDfLRgDANBgkqhkiG9w0BAQsF AAOCAQEAkSUjqeA9KusvklOZYyYFdVRtF7IXXs0cu08WuWgPaiAuxhNhe2RoGSNV SxvtRJMhQmFki7V7KebabzIQ5Xu96oBklvoaluKubKNfdh6q0J5IbgPH8bEidHoP HF9QuNgIn6NQazJ9ElnkCCqLaIT7N8zEjkFu/qZ0b5advecPu3wYlBaWC9WEXDmR BlL4UXZ0SRtpaDIRiZnbSkU/Jc/n5Xsn3MlolWuP3KdoFT95S89rVNvzYAOzGUg2 36+ZjiRbT76vDtAFVIevfyIUOsvs12UAOu3A0CbtpaEvkYOGw7wQzVXUHUgXIHg+ U2AuYJWoh17QWk/JmHdbbefp/wYuDA== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org