$ rpki-client -vvf rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/4154E51AC91311EBA6226F45C4F9AE02.roa File: 4154E51AC91311EBA6226F45C4F9AE02.roa (raw, json) Hash identifier: rw/6Yklw4cGXV0mWiatxLdQBYPtW24oE7vNbKVTifmI= Subject key identifier: 1E:07:3D:9C:DF:86:BA:77:E5:49:32:7E:16:4C:87:DC:43:68:48:C9 Certificate issuer: /CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Certificate serial: 0BA7 Authority key identifier: 62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/4154E51AC91311EBA6226F45C4F9AE02.roa Signing time: Wed 10 Jan 2024 19:17:03 +0000 ROA not before: Wed 10 Jan 2024 19:17:03 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58768 IP address blocks: 103.140.116.0/23 maxlen: 24 203.190.8.0/21 maxlen: 24 2400:fa40::/32 maxlen: 32 2400:fa40::/48 maxlen: 48 2400:fa40:1::/48 maxlen: 48 2400:fa40:2::/48 maxlen: 48 2400:fa40:3::/48 maxlen: 48 2400:fa40:4::/48 maxlen: 48 2400:fa40:5::/48 maxlen: 48 2400:fa40:a::/48 maxlen: 48 2400:fa40:b::/48 maxlen: 48 2400:fa40:a00::/40 maxlen: 40 2400:fa40:e000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:13:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120FD4/serialNumber=62C6B1A0B2C3A614F3CB43FABB31BF81616B54B4 Validity Not Before: Jan 10 19:17:03 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659eed2e-34a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:87:f6:77:41:f2:cc:af:2e:16:43:03:0b:66: 53:c5:e7:03:1d:53:3e:dc:89:6f:f0:51:e9:ae:0c: 1e:79:33:85:6a:25:38:27:85:3a:46:e7:75:86:bb: b0:7d:77:ec:05:a7:94:17:a5:57:62:49:cc:d7:ce: de:ba:8f:db:c4:37:00:04:73:fd:96:cf:89:55:e5: 80:6c:a5:31:36:92:fc:f0:f5:ef:41:74:db:6a:fe: 61:5b:60:fc:66:5d:cd:d3:d3:66:a6:80:40:c5:70: e9:ab:a7:d8:af:21:62:26:e3:70:f3:c2:04:c2:1d: 95:fc:b9:83:b1:f0:74:30:1a:1c:a2:8f:07:87:cb: ad:e7:f0:9d:92:c2:7c:2c:95:3f:b4:85:2d:c8:87: f0:62:79:4b:46:3d:ba:ea:85:a8:8f:a3:0c:85:4e: 9c:3e:e2:3d:77:af:18:0f:ed:d2:8f:6f:06:d4:55: 10:c4:8c:60:9d:3d:05:af:19:42:dd:43:50:40:9b: 85:9f:af:8d:a9:8c:0c:a4:ab:21:ab:fe:2f:7c:fc: e9:f2:61:89:f9:3e:35:26:36:51:86:83:87:2c:48: f1:c6:50:8f:9a:e2:37:31:45:e2:e3:62:a9:2b:f3: fe:75:13:9e:d7:fa:b6:fa:e0:85:50:9f:28:65:f6: dc:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:07:3D:9C:DF:86:BA:77:E5:49:32:7E:16:4C:87:DC:43:68:48:C9 X509v3 Authority Key Identifier: keyid:62:C6:B1:A0:B2:C3:A6:14:F3:CB:43:FA:BB:31:BF:81:61:6B:54:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/YsaxoLLDphTzy0P6uzG_gWFrVLQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YsaxoLLDphTzy0P6uzG_gWFrVLQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120FD4/809C24D2F55111E99D5B7D3DC4F9AE02/4154E51AC91311EBA6226F45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.116.0/23 203.190.8.0/21 IPv6: 2400:fa40::/32 Signature Algorithm: sha256WithRSAEncryption 3b:a8:f9:dd:03:97:8c:2b:b6:5b:80:5b:e2:3b:b1:a7:c3:d8: d7:15:0f:63:98:45:76:d5:65:fc:1f:4d:54:2e:48:92:56:d1: e3:b1:85:b7:5f:d5:8e:2c:57:ce:8f:12:71:2a:1f:47:62:ea: 1e:88:b8:c2:c9:76:27:61:f7:ce:1e:b2:e5:56:e6:59:33:f1: ae:3e:d4:ba:b4:e8:56:1b:0f:c3:32:6f:e7:7d:5c:12:d3:63: 42:8b:fb:b6:dd:49:14:bb:93:68:71:99:25:11:d6:a3:c6:1a: f1:9a:7d:f1:da:78:45:52:21:67:77:53:7f:29:56:94:d0:7a: 7b:9c:ce:c6:bc:26:76:94:c8:96:2a:27:05:27:bb:bc:2d:74: 22:5a:6a:f4:6b:77:3f:ac:72:ac:b8:88:0f:42:51:6c:c4:a0: df:17:cf:09:5f:14:af:27:dc:b3:e0:db:66:a0:25:a4:5e:09: a1:e7:d6:92:7b:07:b8:e2:4f:44:74:38:4d:57:62:cd:7f:05: 07:bc:f3:93:17:56:3a:24:a8:24:e0:1e:71:66:17:f3:2a:16: 90:0b:e2:01:15:39:b4:44:10:37:df:0c:9b:20:ef:36:d2:04: e7:c0:b8:5a:c7:43:a7:6b:54:54:15:3b:f4:b6:e4:99:ca:c4: 4a:b5:50:68 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBGRDQxMTAvBgNVBAUTKDYyQzZCMUEwQjJDM0E2MTRGM0NCNDNGQUJCMzFCRjgx NjE2QjU0QjQwHhcNMjQwMTEwMTkxNzAzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTllZWQyZS0zNGE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwYf2d0HyzK8uFkMDC2ZTxecDHVM+3Ilv8FHprgweeTOFaiU4J4U6Rud1hruw fXfsBaeUF6VXYknM187euo/bxDcABHP9ls+JVeWAbKUxNpL88PXvQXTbav5hW2D8 Zl3N09NmpoBAxXDpq6fYryFiJuNw88IEwh2V/LmDsfB0MBocoo8Hh8ut5/CdksJ8 LJU/tIUtyIfwYnlLRj266oWoj6MMhU6cPuI9d68YD+3Sj28G1FUQxIxgnT0FrxlC 3UNQQJuFn6+NqYwMpKshq/4vfPzp8mGJ+T41JjZRhoOHLEjxxlCPmuI3MUXi42Kp K/P+dROe1/q2+uCFUJ8oZfbczQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFB4HPZzf hrp35UkyfhZMh9xDaEjJMB8GA1UdIwQYMBaAFGLGsaCyw6YU88tD+rsxv4Fha1S0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEZENC84MDlDMjREMkY1 NTExMUU5OUQ1QjdEM0RDNEY5QUUwMi9Zc2F4b0xMRHBoVHp5MFA2dXpHX2dXRnJW TFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzYXhvTExEcGhUenkwUDZ1ekdfZ1dGclZMUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBGRDQvODA5QzI0RDJGNTUxMTFFOTlENUI3RDNEQzRGOUFFMDIvNDE1NEU1MUFD OTEzMTFFQkE2MjI2RjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnjHQDBAPLvggwDQQCAAIwBwMFACQA+kAwDQYJKoZIhvcN AQELBQADggEBADuo+d0Dl4wrtluAW+I7safD2NcVD2OYRXbVZfwfTVQuSJJW0eOx hbdf1Y4sV86PEnEqH0di6h6IuMLJdidh984esuVW5lkz8a4+1Lq06FYbD8Myb+d9 XBLTY0KL+7bdSRS7k2hxmSUR1qPGGvGaffHaeEVSIWd3U38pVpTQenuczsa8JnaU yJYqJwUnu7wtdCJaavRrdz+scqy4iA9CUWzEoN8XzwlfFK8n3LPg22agJaReCaHn 1pJ7B7jiT0R0OE1XYs1/BQe885MXVjokqCTgHnFmF/MqFpAL4gEVObREEDffDJsg 7zbSBOfAuFrHQ6drVFQVO/S25JnKxEq1UGg= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org