$ rpki-client -vvf rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/E56024B49A7D11EF99ECF636C4F9AE02.roa File: E56024B49A7D11EF99ECF636C4F9AE02.roa (raw, json) Hash identifier: uEmwwGXbLGwcgl1RlF9qOwgmZadJbirI6oSO1IuzJso= Subject key identifier: 2B:4E:84:7A:8D:E7:17:16:89:03:93:DC:8A:3D:9F:DD:73:C1:CB:FC Certificate issuer: /CN=A9120F0D/serialNumber=67F54C39C111E7DF7E7076C5C715B28B35E859F9 Certificate serial: 1332 Authority key identifier: 67:F5:4C:39:C1:11:E7:DF:7E:70:76:C5:C7:15:B2:8B:35:E8:59:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_VMOcER599-cHbFxxWyizXoWfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/E56024B49A7D11EF99ECF636C4F9AE02.roa Signing time: Mon 04 Nov 2024 07:24:58 +0000 ROA not before: Mon 04 Nov 2024 07:24:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135542 IP address blocks: 103.116.44.0/24 maxlen: 24 103.116.46.0/24 maxlen: 24 103.116.47.0/24 maxlen: 24 103.129.196.0/24 maxlen: 24 103.129.197.0/24 maxlen: 24 103.129.198.0/24 maxlen: 24 103.129.199.0/24 maxlen: 24 2402:f5c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/Z_VMOcER599-cHbFxxWyizXoWfk.crl rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/Z_VMOcER599-cHbFxxWyizXoWfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_VMOcER599-cHbFxxWyizXoWfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4914 (0x1332) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120F0D Validity Not Before: Nov 4 07:24:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=672876ca-c9d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:96:77:58:ff:1f:d4:7f:02:ea:51:ca:48:3f: 67:30:23:36:c5:f5:80:df:2b:9b:cf:84:8b:c3:2c: 53:e1:fc:60:e4:0a:1d:0a:4d:a3:98:d3:aa:83:ee: b7:5f:a9:60:27:d8:ac:1f:5e:4e:94:84:49:c0:e5: 1f:87:d6:62:93:27:b0:6c:7a:4c:a1:e7:53:e7:5e: 7a:89:be:d5:7f:b3:43:c5:9d:67:e2:9c:72:07:c1: f2:1f:a8:0f:8d:e9:a8:8e:68:fd:12:9a:31:ba:e0: 99:9e:c7:ef:d8:3f:85:1f:9e:8f:95:f9:23:ec:09: 58:b3:42:be:17:63:c1:85:f4:83:05:d7:aa:fa:34: a5:ca:67:4d:96:fe:4d:3f:c7:c6:65:3f:9f:83:02: b2:e3:58:45:55:c8:ae:8b:cf:f9:b6:6f:21:55:a1: c7:9a:29:4d:62:e6:73:79:80:d6:e8:bb:db:3f:0b: e9:82:bf:d9:48:a5:00:1f:63:d3:c1:20:52:c4:fa: 8b:9e:d1:0d:15:c6:93:ff:c1:6f:47:8c:29:6e:25: ab:f3:6b:f8:32:5e:14:17:95:df:07:4b:c8:eb:7b: ea:98:61:9c:1c:a8:67:35:10:e5:34:5d:85:18:2b: 67:9e:8e:fb:e4:fb:80:3d:02:b2:f2:3c:b6:a9:5f: bb:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4E:84:7A:8D:E7:17:16:89:03:93:DC:8A:3D:9F:DD:73:C1:CB:FC X509v3 Authority Key Identifier: keyid:67:F5:4C:39:C1:11:E7:DF:7E:70:76:C5:C7:15:B2:8B:35:E8:59:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/Z_VMOcER599-cHbFxxWyizXoWfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_VMOcER599-cHbFxxWyizXoWfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120F0D/08EC2B0CA36E11E8B896662BC4F9AE02/E56024B49A7D11EF99ECF636C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.44.0/24 103.116.46.0/23 103.129.196.0/22 IPv6: 2402:f5c0::/32 Signature Algorithm: sha256WithRSAEncryption 3b:07:09:3d:7f:f1:94:48:d3:a7:f4:80:36:5c:d8:4e:9e:5a: a8:48:02:91:98:95:e2:80:14:50:1f:73:6b:40:b9:90:a2:b9: b6:99:02:3e:20:ed:49:af:52:b4:77:1b:3c:53:7a:ea:bb:27: 06:10:66:5f:0e:d4:fd:a6:59:39:7c:85:a7:b7:c8:ac:7e:ba: 4b:7c:4b:0e:45:e9:a6:68:67:50:90:5b:20:cc:b4:bb:0e:c0: 2b:07:d3:e4:d8:d2:8c:d7:8a:f0:e4:38:28:84:f9:35:d5:0a: f1:87:a3:48:ac:c5:c4:0d:12:a6:a6:d5:ea:fd:2a:6a:af:b8: 91:61:17:86:7a:10:33:37:a0:b0:a0:af:72:ad:4f:da:a8:08: 5a:51:6b:b5:28:c8:21:dd:48:58:c7:2f:8f:80:7c:19:b9:78: b0:45:eb:d6:02:17:7c:53:11:04:e2:49:47:a3:14:bc:92:72: e0:9c:36:83:29:c2:42:0f:03:da:b8:65:b4:41:64:ff:a7:c3: 05:bb:47:f4:44:fb:77:65:a3:1b:cd:02:fb:3b:f5:d3:c7:c7: 34:f3:69:bc:f9:48:2f:5e:3a:a7:94:5e:a3:33:e8:39:7c:92: b8:53:b6:a0:df:44:57:27:d2:f5:9b:c3:f8:61:96:99:7b:5c: 4d:27:15:4e -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICEzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGMEQxMTAvBgNVBAUTKDY3RjU0QzM5QzExMUU3REY3RTcwNzZDNUM3MTVCMjhC MzVFODU5RjkwHhcNMjQxMTA0MDcyNDU4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI4NzZjYS1jOWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArpZ3WP8f1H8C6lHKSD9nMCM2xfWA3yubz4SLwyxT4fxg5AodCk2jmNOqg+63 X6lgJ9isH15OlIRJwOUfh9ZikyewbHpMoedT5156ib7Vf7NDxZ1n4pxyB8HyH6gP jemojmj9EpoxuuCZnsfv2D+FH56Plfkj7AlYs0K+F2PBhfSDBdeq+jSlymdNlv5N P8fGZT+fgwKy41hFVciui8/5tm8hVaHHmilNYuZzeYDW6LvbPwvpgr/ZSKUAH2PT wSBSxPqLntENFcaT/8FvR4wpbiWr82v4Ml4UF5XfB0vI63vqmGGcHKhnNRDlNF2F GCtnno775PuAPQKy8jy2qV+7ywIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFCtOhHqN 5xcWiQOT3Io9n91zwcv8MB8GA1UdIwQYMBaAFGf1TDnBEefffnB2xccVsos16Fn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEYwRC8wOEVDMkIwQ0Ez NkUxMUU4Qjg5NjY2MkJDNEY5QUUwMi9aX1ZNT2NFUjU5OS1jSGJGeHhXeWl6WG9X ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pfVk1PY0VSNTk5LWNIYkZ4eFd5aXpYb1dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBGMEQvMDhFQzJCMENBMzZFMTFFOEI4OTY2NjJCQzRGOUFFMDIvRTU2MDI0QjQ5 QTdEMTFFRjk5RUNGNjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBABndCwDBAFndC4DBAJngcQwDQQCAAIwBwMFACQC9cAwDQYJ KoZIhvcNAQELBQADggEBADsHCT1/8ZRI06f0gDZc2E6eWqhIApGYleKAFFAfc2tA uZCiubaZAj4g7UmvUrR3GzxTeuq7JwYQZl8O1P2mWTl8hae3yKx+ukt8Sw5F6aZo Z1CQWyDMtLsOwCsH0+TY0ozXivDkOCiE+TXVCvGHo0isxcQNEqam1er9KmqvuJFh F4Z6EDM3oLCgr3KtT9qoCFpRa7UoyCHdSFjHL4+AfBm5eLBF69YCF3xTEQTiSUej FLyScuCcNoMpwkIPA9q4ZbRBZP+nwwW7R/RE+3dloxvNAvs79dPHxzTzabz5SC9e OqeUXqMz6Dl8krhTtqDfRFcn0vWbw/hhlpl7XE0nFU4= -----END CERTIFICATE-----Generated at Sun Feb 16 21:53:27 2025 by rpki-client