$ rpki-client -vvf rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/2E03458EA14211EDA566785DC4F9AE02.roa File: 2E03458EA14211EDA566785DC4F9AE02.roa (raw, json) Hash identifier: X4f4JpNrLXW6Kc1FSQUgNny44PNWQc3+/3wUXFRNjBI= Subject key identifier: 6B:1B:69:6E:AB:10:F2:35:60:6C:C1:FF:43:6A:6A:D9:FE:28:AB:F7 Certificate issuer: /CN=A9121071/serialNumber=94C2F46A32D10775E1649BA250F697FF47AC063D Certificate serial: F9 Authority key identifier: 94:C2:F4:6A:32:D1:07:75:E1:64:9B:A2:50:F6:97:FF:47:AC:06:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lML0ajLRB3XhZJuiUPaX_0esBj0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/2E03458EA14211EDA566785DC4F9AE02.roa Signing time: Fri 22 Mar 2024 15:55:26 +0000 ROA not before: Fri 22 Mar 2024 15:55:26 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 149419 IP address blocks: 103.59.216.0/24 maxlen: 24 103.59.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/lML0ajLRB3XhZJuiUPaX_0esBj0.crl rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/lML0ajLRB3XhZJuiUPaX_0esBj0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lML0ajLRB3XhZJuiUPaX_0esBj0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 05:34:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 249 (0xf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121071/serialNumber=94C2F46A32D10775E1649BA250F697FF47AC063D Validity Not Before: Mar 22 15:55:26 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65fda9ee-366d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:29:e5:b4:af:19:a6:fa:03:08:3d:52:cf:60: 27:74:84:51:a0:52:b3:62:54:73:e1:bd:92:37:36: 90:98:0d:56:13:5a:05:31:7b:f1:eb:91:c4:20:a6: 9a:4a:78:0e:2b:e4:4b:bc:9b:52:eb:00:fd:b6:35: 32:b3:74:a5:dd:e0:77:77:2c:c8:77:c2:cd:5e:a9: 5f:5a:cf:76:48:18:21:f6:62:b6:92:56:09:aa:da: 6a:39:d3:39:a4:6c:15:2b:1f:94:00:b1:ec:6f:81: 22:85:cc:fd:3e:36:1a:47:0c:33:8d:e2:f5:e9:ef: 4e:02:2e:13:29:ff:29:97:f4:d2:3c:1e:df:20:07: 63:80:f3:ce:f3:34:67:1b:85:db:17:0a:7f:e0:ca: 50:42:81:9c:00:fc:00:d7:de:ba:e8:81:86:9a:50: 64:52:b5:95:ce:ce:dc:f2:be:78:99:a2:da:fb:8c: c4:af:0a:91:3e:55:5e:b0:7c:64:89:c8:a6:17:e2: 06:62:ac:6f:88:9a:cb:65:05:93:5d:34:43:78:33: e3:44:7c:96:7d:36:fb:89:13:22:45:39:96:11:e7: c5:b0:ff:e7:6e:a9:2e:58:fb:56:38:6f:03:b2:d3: 9c:81:9c:52:2c:e3:fe:af:ef:f5:b0:ad:b5:86:1f: e0:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:1B:69:6E:AB:10:F2:35:60:6C:C1:FF:43:6A:6A:D9:FE:28:AB:F7 X509v3 Authority Key Identifier: keyid:94:C2:F4:6A:32:D1:07:75:E1:64:9B:A2:50:F6:97:FF:47:AC:06:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/lML0ajLRB3XhZJuiUPaX_0esBj0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lML0ajLRB3XhZJuiUPaX_0esBj0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121071/2F0F7A4886B611EDAA3B2B33C4F9AE02/2E03458EA14211EDA566785DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.59.216.0/23 Signature Algorithm: sha256WithRSAEncryption 51:b0:f2:7f:ed:57:9a:a3:13:df:d1:fe:d4:60:fc:db:74:0d: 38:82:78:d4:05:55:c6:19:7a:49:c6:52:3f:1f:13:7a:b2:43: b8:81:c9:83:d9:4d:69:60:85:cc:50:17:8d:b3:fb:4c:85:3e: 71:b4:af:3c:1f:c6:07:22:51:32:56:ca:ec:f9:05:bf:5a:3f: 68:95:25:6a:76:3e:35:3f:05:f4:f6:f8:fe:9a:55:31:93:1f: 67:a0:3c:d5:ce:4a:f6:e3:b0:1a:6f:a0:2a:18:76:5f:20:f6: d7:77:09:99:0d:b5:71:a5:24:e8:b5:6b:ea:5f:74:28:b9:a0: 8a:98:ab:8d:fe:47:92:88:22:58:83:66:44:11:52:e0:53:aa: 4f:c7:2f:7f:b1:1f:7d:77:e1:4e:d8:b2:7a:57:df:df:4b:92: 21:5f:b1:5e:09:e8:17:07:1a:46:ef:f7:8a:11:b2:c8:03:a9: 57:69:32:f7:72:23:b1:4e:79:c0:49:8c:e4:36:d7:2d:94:ec: 3f:43:e4:62:de:05:c7:d7:24:a7:80:e0:74:f4:33:be:2c:5b: fa:08:9d:fb:7d:ee:d9:e8:f1:fd:36:d1:e3:7f:88:0d:99:5a: cb:ae:d7:cc:37:80:e8:ec:a5:e9:ed:49:13:8c:01:ea:ec:52: 82:4c:69:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjEwNzExMTAvBgNVBAUTKDk0QzJGNDZBMzJEMTA3NzVFMTY0OUJBMjUwRjY5N0ZG NDdBQzA2M0QwHhcNMjQwMzIyMTU1NTI2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZkYTllZS0zNjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6inltK8ZpvoDCD1Sz2AndIRRoFKzYlRz4b2SNzaQmA1WE1oFMXvx65HEIKaa SngOK+RLvJtS6wD9tjUys3Sl3eB3dyzId8LNXqlfWs92SBgh9mK2klYJqtpqOdM5 pGwVKx+UALHsb4Eihcz9PjYaRwwzjeL16e9OAi4TKf8pl/TSPB7fIAdjgPPO8zRn G4XbFwp/4MpQQoGcAPwA19666IGGmlBkUrWVzs7c8r54maLa+4zErwqRPlVesHxk icimF+IGYqxviJrLZQWTXTRDeDPjRHyWfTb7iRMiRTmWEefFsP/nbqkuWPtWOG8D stOcgZxSLOP+r+/1sK21hh/g2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGsbaW6r EPI1YGzB/0Nqatn+KKv3MB8GA1UdIwQYMBaAFJTC9Goy0Qd14WSbolD2l/9HrAY9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTA3MS8yRjBGN0E0ODg2 QjYxMUVEQUEzQjJCMzNDNEY5QUUwMi9sTUwwYWpMUkIzWGhaSnVpVVBhWF8wZXNC ajAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xNTDBhakxSQjNYaFpKdWlVUGFYXzBlc0JqMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjEwNzEvMkYwRjdBNDg4NkI2MTFFREFBM0IyQjMzQzRGOUFFMDIvMkUwMzQ1OEVB MTQyMTFFREE1NjY3ODVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnO9gwDQYJKoZIhvcNAQELBQADggEBAFGw8n/tV5qjE9/R /tRg/Nt0DTiCeNQFVcYZeknGUj8fE3qyQ7iByYPZTWlghcxQF42z+0yFPnG0rzwf xgciUTJWyuz5Bb9aP2iVJWp2PjU/BfT2+P6aVTGTH2egPNXOSvbjsBpvoCoYdl8g 9td3CZkNtXGlJOi1a+pfdCi5oIqYq43+R5KIIliDZkQRUuBTqk/HL3+xH3134U7Y snpX399LkiFfsV4J6BcHGkbv94oRssgDqVdpMvdyI7FOecBJjOQ21y2U7D9D5GLe BcfXJKeA4HT0M74sW/oInft97tno8f020eN/iA2ZWsuu18w3gOjspentSROMAers UoJMaSY= -----END CERTIFICATE-----Generated at Fri May 17 06:46:20 2024 by rpki-client on console-ams.rpki-client.org