$ rpki-client -vvf rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/63DC5AA6C67611EEB1126C70C4F9AE02.roa File: 63DC5AA6C67611EEB1126C70C4F9AE02.roa (raw, json) Hash identifier: 8Baf5eHeRnNrGmSSDb+55e+ExZ2m5tnzgHIxbW3wB58= Subject key identifier: 4E:0A:D6:C7:84:16:8E:B5:D8:CC:9B:81:39:D1:91:BF:C1:05:88:97 Certificate issuer: /CN=A9121836/serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Certificate serial: 0129 Authority key identifier: 66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/63DC5AA6C67611EEB1126C70C4F9AE02.roa Signing time: Sat 05 Oct 2024 04:07:45 +0000 ROA not before: Sat 05 Oct 2024 04:07:45 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 4851 IP address blocks: 103.74.217.0/24 maxlen: 24 103.74.218.0/23 maxlen: 23 103.194.229.0/24 maxlen: 24 103.206.187.0/24 maxlen: 24 2407:3280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121836/serialNumber=66B214D11C7F961A95C4256703428E93CBA72986 Validity Not Before: Oct 5 04:07:45 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6700bb91-de72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:db:9a:9f:c1:15:15:0d:14:b4:32:56:72:71: 93:72:17:be:b9:0a:fe:7e:19:63:58:3f:94:04:54: af:ab:1e:04:2c:11:ff:65:e6:9d:5d:6a:a5:44:3e: 67:61:27:b6:3b:db:ec:a7:92:b3:da:f7:25:3b:10: 9e:9b:9c:b2:f3:93:44:e0:df:ec:ea:10:35:6a:33: 22:b8:92:a4:b7:db:8c:f7:56:9b:9d:1d:09:2e:87: c9:e5:17:f0:d9:97:50:74:7d:81:99:9e:ad:46:be: c9:ba:eb:2c:61:1d:cb:10:19:df:2b:be:d3:58:de: 27:d5:b1:8f:4a:51:49:a3:a0:ff:21:a6:d1:3d:7d: 9d:b8:2f:cb:94:ad:d4:89:e2:ed:f9:69:6f:b5:4b: a3:c7:b3:a7:c8:1f:c0:57:b8:0e:1d:26:d2:3d:13: 55:f9:f0:6d:b4:81:55:62:af:fa:c9:b6:9f:83:0c: 7f:37:ec:d7:34:f2:af:42:ca:32:b0:8f:48:13:6f: 28:d4:4f:57:58:02:1e:fd:79:04:93:47:a9:bc:35: 2c:28:8a:08:3f:b9:97:1b:f3:6f:cd:22:8a:14:bf: 51:b4:7c:75:eb:2c:bc:97:50:62:6d:c0:8b:ca:75: 0d:53:c7:c9:d1:a8:4c:05:03:48:57:66:f3:81:17: 35:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:0A:D6:C7:84:16:8E:B5:D8:CC:9B:81:39:D1:91:BF:C1:05:88:97 X509v3 Authority Key Identifier: keyid:66:B2:14:D1:1C:7F:96:1A:95:C4:25:67:03:42:8E:93:CB:A7:29:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrIU0Rx_lhqVxCVnA0KOk8unKYY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121836/F1DB1D44F4FB11ED938F9447C4F9AE02/63DC5AA6C67611EEB1126C70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.74.217.0-103.74.219.255 103.194.229.0/24 103.206.187.0/24 IPv6: 2407:3280::/32 Signature Algorithm: sha256WithRSAEncryption 4e:04:e8:96:2d:02:58:3a:b6:18:f4:a7:c9:5c:a7:14:c1:d0: ab:17:be:0d:9d:8e:ac:bd:42:11:e8:d6:ea:7c:ff:fc:2d:9c: 20:80:84:cf:0e:14:8f:c3:fd:17:12:4e:b6:0c:bd:5f:a8:d1: 01:f1:ca:07:04:9a:c7:66:e2:49:2e:89:98:34:58:72:44:bf: 4c:18:90:f7:5a:4c:28:bd:b1:8d:aa:8b:33:01:13:db:07:6e: 2f:bf:ab:94:ee:39:a9:c2:88:a5:f9:3e:12:63:68:ef:1c:f5: 63:8f:55:aa:d8:a8:50:a8:a2:4a:70:ae:bb:33:17:93:37:0b: 54:62:7e:bd:43:7b:4c:0c:66:95:f8:38:53:56:fe:1c:0f:7d: 0d:8f:b7:7b:9b:10:e3:26:42:16:ff:c6:3b:37:a8:59:e1:43: 21:9c:1b:1f:13:a6:72:18:a2:01:54:c6:b0:41:3c:4d:de:aa: c4:bb:b6:27:a3:8f:92:3e:26:27:23:f9:4f:e4:77:bc:34:72: 30:fd:8e:83:91:4b:9a:88:07:2b:b2:91:82:8c:1c:a1:f7:3f: 4e:0e:84:59:51:f1:69:be:c7:95:d9:9b:43:8a:d7:68:63:e3: f3:b7:91:5f:16:4d:ca:f0:a1:4a:fb:a4:f0:57:01:5b:08:41: 54:d6:34:53 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4MzYxMTAvBgNVBAUTKDY2QjIxNEQxMUM3Rjk2MUE5NUM0MjU2NzAzNDI4RTkz Q0JBNzI5ODYwHhcNMjQxMDA1MDQwNzQ1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYmI5MS1kZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoduan8EVFQ0UtDJWcnGTche+uQr+fhljWD+UBFSvqx4ELBH/ZeadXWqlRD5n YSe2O9vsp5Kz2vclOxCem5yy85NE4N/s6hA1ajMiuJKkt9uM91abnR0JLofJ5Rfw 2ZdQdH2BmZ6tRr7JuussYR3LEBnfK77TWN4n1bGPSlFJo6D/IabRPX2duC/LlK3U ieLt+WlvtUujx7OnyB/AV7gOHSbSPRNV+fBttIFVYq/6ybafgwx/N+zXNPKvQsoy sI9IE28o1E9XWAIe/XkEk0epvDUsKIoIP7mXG/NvzSKKFL9RtHx16yy8l1BibcCL ynUNU8fJ0ahMBQNIV2bzgRc1CwIDAQABo4ICuDCCArQwHQYDVR0OBBYEFE4K1seE Fo612MybgTnRkb/BBYiXMB8GA1UdIwQYMBaAFGayFNEcf5YalcQlZwNCjpPLpymG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTgzNi9GMURCMUQ0NEY0 RkIxMUVEOTM4Rjk0NDdDNEY5QUUwMi9acklVMFJ4X2xocVZ4Q1ZuQTBLT2s4dW5L WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pySVUwUnhfbGhxVnhDVm5BMEtPazh1bktZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE4MzYvRjFEQjFENDRGNEZCMTFFRDkzOEY5NDQ3QzRGOUFFMDIvNjNEQzVBQTZD Njc2MTFFRUIxMTI2QzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBowDAMEAGdK2QMEAmdK2AMEAGfC5QMEAGfOuzANBAIAAjAHAwUA JAcygDANBgkqhkiG9w0BAQsFAAOCAQEATgToli0CWDq2GPSnyVynFMHQqxe+DZ2O rL1CEejW6nz//C2cIICEzw4Uj8P9FxJOtgy9X6jRAfHKBwSax2biSS6JmDRYckS/ TBiQ91pMKL2xjaqLMwET2wduL7+rlO45qcKIpfk+EmNo7xz1Y49VqtioUKiiSnCu uzMXkzcLVGJ+vUN7TAxmlfg4U1b+HA99DY+3e5sQ4yZCFv/GOzeoWeFDIZwbHxOm chiiAVTGsEE8Td6qxLu2J6OPkj4mJyP5T+R3vDRyMP2Og5FLmogHK7KRgowcofc/ Tg6EWVHxab7HldmbQ4rXaGPj87eRXxZNyvChSvuk8FcBWwhBVNY0Uw== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org