$ rpki-client -vvf rpki.apnic.net/member_repository/A9121865/76B6A0D2650811EB8F26150DC4F9AE02/602D049AC1DE11EB98E1AD43C4F9AE02.roa File: 602D049AC1DE11EB98E1AD43C4F9AE02.roa (raw, json) Hash identifier: IkoHdpVlxdIl46fOT8NBBySZgHvdRvmbZVUTNCLg7JQ= Subject key identifier: FB:BA:4F:CF:86:CE:D4:AC:62:B3:D4:69:04:E2:87:3A:A4:6C:E6:92 Certificate issuer: /CN=A9121865/serialNumber=63E37CE0D00C20D86870A73FD6ECBC899C1B9E0B Certificate serial: 05F5 Authority key identifier: 63:E3:7C:E0:D0:0C:20:D8:68:70:A7:3F:D6:EC:BC:89:9C:1B:9E:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-N84NAMINhocKc_1uy8iZwbngs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121865/76B6A0D2650811EB8F26150DC4F9AE02/602D049AC1DE11EB98E1AD43C4F9AE02.roa Signing time: Tue 14 May 2024 09:37:16 +0000 ROA not before: Tue 14 May 2024 09:37:16 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 21859 IP address blocks: 103.122.176.0/24 maxlen: 24 103.122.177.0/24 maxlen: 24 103.122.178.0/24 maxlen: 24 103.122.179.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121865/76B6A0D2650811EB8F26150DC4F9AE02/Y-N84NAMINhocKc_1uy8iZwbngs.crl rsync://rpki.apnic.net/member_repository/A9121865/76B6A0D2650811EB8F26150DC4F9AE02/Y-N84NAMINhocKc_1uy8iZwbngs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-N84NAMINhocKc_1uy8iZwbngs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1525 (0x5f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121865/serialNumber=63E37CE0D00C20D86870A73FD6ECBC899C1B9E0B Validity Not Before: May 14 09:37:16 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=664330cc-0ad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:68:36:32:3d:18:0e:aa:d3:1b:b5:ec:62:f3: 4b:07:cb:52:2c:6b:ae:52:a3:58:d9:72:5b:3a:a0: d0:38:4c:3d:d0:57:56:a7:45:d0:8c:82:db:81:e3: 00:12:19:24:d3:f7:06:f9:cb:6d:74:52:e4:50:32: a6:0a:f8:6b:38:81:e6:b6:9e:47:24:01:e7:1c:ac: 6c:4f:10:c4:5e:ac:34:11:68:30:3f:a7:bd:02:a6: 36:87:1b:3f:8d:1d:c0:f3:08:0c:52:c4:09:bb:e1: b8:4c:bf:90:8b:ce:79:6e:42:bf:c2:ac:10:2d:37: a2:31:16:cf:43:d1:de:2a:78:fd:db:6b:39:31:29: c7:48:94:80:4a:26:8b:57:a3:79:e1:2c:01:8b:a7: 06:82:d7:a5:b4:0e:f7:2a:eb:1a:6f:a9:e9:72:32: 2e:58:fd:c2:97:8b:3b:f8:12:95:f8:07:c8:3e:c3: 1b:6f:28:8f:a9:d1:a5:87:b1:5c:a6:89:9e:37:23: a5:44:ff:8f:42:b1:c0:97:cc:ae:10:1c:09:2d:c1: 0c:fd:2c:22:79:36:72:b8:41:c9:47:d1:ac:a4:b7: ae:f8:1f:a9:f6:29:b3:16:60:16:ef:23:db:c9:a9: 27:35:16:c6:bd:8f:3f:d7:bc:74:7f:fe:0d:b4:a4: f3:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:BA:4F:CF:86:CE:D4:AC:62:B3:D4:69:04:E2:87:3A:A4:6C:E6:92 X509v3 Authority Key Identifier: keyid:63:E3:7C:E0:D0:0C:20:D8:68:70:A7:3F:D6:EC:BC:89:9C:1B:9E:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121865/76B6A0D2650811EB8F26150DC4F9AE02/Y-N84NAMINhocKc_1uy8iZwbngs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y-N84NAMINhocKc_1uy8iZwbngs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121865/76B6A0D2650811EB8F26150DC4F9AE02/602D049AC1DE11EB98E1AD43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.176.0/22 Signature Algorithm: sha256WithRSAEncryption 00:73:64:52:74:ca:5b:93:c7:fa:23:f8:d9:b5:5b:fe:e3:2f: cc:dd:b7:7c:f2:cb:16:27:5f:af:c3:2a:c7:4a:71:4e:15:6e: 4f:d6:45:0a:38:02:20:2f:00:99:48:5c:52:66:db:00:c8:22: 53:4e:2f:b0:d1:fa:1a:e2:a3:c8:29:f8:f5:fa:6a:fe:b4:e3: 03:95:f8:c8:00:ad:14:4c:83:df:57:80:ee:5c:22:0f:89:d8: 7f:b4:fe:17:25:32:b0:c8:95:65:85:21:14:9d:69:59:2a:65: dd:1d:2d:72:fb:fd:11:99:30:4a:43:f9:9b:ef:11:71:f7:79: 37:99:f1:a9:9c:ff:5a:41:5c:04:21:0c:f7:50:76:aa:8b:e0: b3:3e:cb:32:a4:ed:0b:69:76:a2:a5:c3:d4:72:25:a0:ba:19: e7:b0:68:0a:97:34:6c:c8:55:7f:3c:50:0b:b8:16:41:83:6d: 43:d3:63:92:b5:c4:19:fc:bb:4c:da:ce:c1:0d:e7:00:9c:cb: de:c6:74:15:81:df:e8:a6:e1:cb:d7:a9:95:01:f7:b7:85:ac: 58:ec:fa:3c:7d:a1:b2:9c:dc:fb:3c:e6:14:73:44:9c:40:c3: 0e:34:fb:58:32:02:44:a1:2b:c4:5c:12:83:f0:ac:92:18:d3: 51:2c:08:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjE4NjUxMTAvBgNVBAUTKDYzRTM3Q0UwRDAwQzIwRDg2ODcwQTczRkQ2RUNCQzg5 OUMxQjlFMEIwHhcNMjQwNTE0MDkzNzE2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzMzBjYy0wYWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmg2Mj0YDqrTG7XsYvNLB8tSLGuuUqNY2XJbOqDQOEw90FdWp0XQjILbgeMA Ehkk0/cG+cttdFLkUDKmCvhrOIHmtp5HJAHnHKxsTxDEXqw0EWgwP6e9AqY2hxs/ jR3A8wgMUsQJu+G4TL+Qi855bkK/wqwQLTeiMRbPQ9HeKnj922s5MSnHSJSASiaL V6N54SwBi6cGgteltA73Kusab6npcjIuWP3Cl4s7+BKV+AfIPsMbbyiPqdGlh7Fc pomeNyOlRP+PQrHAl8yuEBwJLcEM/SwieTZyuEHJR9GspLeu+B+p9imzFmAW7yPb yaknNRbGvY8/17x0f/4NtKTzcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPu6T8+G ztSsYrPUaQTihzqkbOaSMB8GA1UdIwQYMBaAFGPjfODQDCDYaHCnP9bsvImcG54L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMTg2NS83NkI2QTBEMjY1 MDgxMUVCOEYyNjE1MERDNEY5QUUwMi9ZLU44NE5BTUlOaG9jS2NfMXV5OGlad2Ju Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ktTjg0TkFNSU5ob2NLY18xdXk4aVp3Ym5ncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjE4NjUvNzZCNkEwRDI2NTA4MTFFQjhGMjYxNTBEQzRGOUFFMDIvNjAyRDA0OUFD MURFMTFFQjk4RTFBRDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnerAwDQYJKoZIhvcNAQELBQADggEBAABzZFJ0yluTx/oj +Nm1W/7jL8zdt3zyyxYnX6/DKsdKcU4Vbk/WRQo4AiAvAJlIXFJm2wDIIlNOL7DR +hrio8gp+PX6av604wOV+MgArRRMg99XgO5cIg+J2H+0/hclMrDIlWWFIRSdaVkq Zd0dLXL7/RGZMEpD+ZvvEXH3eTeZ8amc/1pBXAQhDPdQdqqL4LM+yzKk7QtpdqKl w9RyJaC6GeewaAqXNGzIVX88UAu4FkGDbUPTY5K1xBn8u0zazsEN5wCcy97GdBWB 3+im4cvXqZUB97eFrFjs+jx9obKc3Ps85hRzRJxAww40+1gyAkShK8RcEoPwrJIY 01EsCAg= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:43 2024 by rpki-client on console-fra.rpki-client.org