$ rpki-client -vvf rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/2FA91770D61A11EE9BDDD627C4F9AE02.roa File: 2FA91770D61A11EE9BDDD627C4F9AE02.roa (raw, json) Hash identifier: LhQg3v+DKEuqfQ1guUzcTe46O/GbPPONw8o80pMgN8E= Subject key identifier: 14:3E:C6:C2:71:82:DF:D5:61:37:47:90:AD:0F:C9:A3:87:7D:B5:B8 Certificate issuer: /CN=A9122010/serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Certificate serial: 04 Authority key identifier: A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/2FA91770D61A11EE9BDDD627C4F9AE02.roa Signing time: Wed 28 Feb 2024 09:17:25 +0000 ROA not before: Wed 28 Feb 2024 09:17:25 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 13335 IP address blocks: 103.160.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 08:04:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122010/serialNumber=A609A94E6A2101BAF95C8C2F55CEC417925BEFCF Validity Not Before: Feb 28 09:17:25 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65defa25-bc53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cc:8e:16:75:b0:d4:da:25:af:e8:b5:9b:18: 67:d5:01:eb:78:79:e4:53:fc:26:e9:d0:41:44:70: 45:5e:70:b7:93:27:8f:f8:5e:ad:d0:30:c3:b9:3b: 6f:f3:aa:a0:0f:ea:49:63:28:7a:e3:16:39:6c:1a: 31:f7:b7:27:4a:4f:80:9b:03:60:a3:b6:45:61:48: 51:23:51:5a:44:af:22:8c:27:1e:63:41:fd:fb:e9: 17:8a:6d:fd:4f:e3:67:2a:92:9e:b5:44:22:9a:eb: e0:00:b9:8f:0f:a5:c0:0f:c3:7c:f4:94:e6:51:14: 55:b4:5c:17:b9:bf:3c:c0:a1:4b:4b:47:e7:01:09: 49:62:89:53:3b:a7:22:6a:98:da:34:df:40:af:74: d4:67:ed:b2:bb:83:fa:e3:18:25:07:d3:f0:83:d5: a0:83:b7:3f:45:13:95:89:f2:9a:0a:e9:82:d2:f9: 10:33:30:be:f3:dc:e9:e0:b4:7f:05:19:7b:23:53: a7:87:e7:3b:16:c2:f8:5b:cf:bf:64:9b:9e:bb:b3: 33:ed:b7:09:ec:af:3b:2a:b9:84:ed:41:07:fd:a6: d0:3a:3f:26:2f:de:85:89:58:1c:32:1e:f9:f8:30: f2:8a:df:71:dc:18:0b:03:0a:05:08:7e:07:07:7d: 94:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:3E:C6:C2:71:82:DF:D5:61:37:47:90:AD:0F:C9:A3:87:7D:B5:B8 X509v3 Authority Key Identifier: keyid:A6:09:A9:4E:6A:21:01:BA:F9:5C:8C:2F:55:CE:C4:17:92:5B:EF:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/pgmpTmohAbr5XIwvVc7EF5Jb788.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pgmpTmohAbr5XIwvVc7EF5Jb788.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122010/EA021A94D53F11EEA8D6240FC4F9AE02/2FA91770D61A11EE9BDDD627C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.141.0/24 Signature Algorithm: sha256WithRSAEncryption d5:0d:bd:e0:4f:5c:e4:5e:a4:67:53:1d:68:38:cb:38:54:95: b6:2f:8d:fd:c1:d9:cf:14:f4:33:72:b5:c5:23:08:0a:a9:a8: 99:49:10:50:55:68:5c:5b:65:8b:57:fd:af:83:d9:6f:35:f9: 0e:5c:f2:4c:00:9f:ef:91:dc:27:ac:14:c1:b4:62:3d:3f:16: b2:c4:0b:2d:f1:3a:c1:80:51:61:ea:c9:a7:a5:6e:ac:21:28: 9b:63:6e:fd:8a:21:23:85:8c:3f:9a:5b:95:ad:22:c9:de:48: ee:67:ea:96:25:20:a9:81:8a:a2:57:37:24:6e:f3:2c:6f:14: d4:76:e0:2c:fb:a2:81:95:4d:ef:bb:bc:7d:c1:79:a3:79:3d: 56:22:98:44:7d:e3:25:de:00:aa:a7:35:5c:8b:7a:18:7b:64: 05:89:28:db:50:a6:8a:11:d4:b8:22:11:67:49:45:1d:33:f7: 13:df:8f:ae:6d:1f:ad:59:85:31:4c:d2:a8:60:29:bc:0a:41: 06:95:5b:b9:fa:77:78:0d:35:57:4a:0a:d2:24:43:be:45:5b: 8c:53:6d:f4:6a:1c:d1:8c:cf:55:99:7c:30:c6:70:a0:86:10: b4:b3:e7:1e:81:92:48:63:f7:22:ef:3e:43:32:96:8e:b8:75: a1:fe:bd:ea -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MjAxMDExMC8GA1UEBRMoQTYwOUE5NEU2QTIxMDFCQUY5NUM4QzJGNTVDRUM0MTc5 MjVCRUZDRjAeFw0yNDAyMjgwOTE3MjVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZGVmYTI1LWJjNTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6zI4WdbDU2iWv6LWbGGfVAet4eeRT/Cbp0EFEcEVecLeTJ4/4Xq3QMMO5O2/z qqAP6kljKHrjFjlsGjH3tydKT4CbA2CjtkVhSFEjUVpEryKMJx5jQf376ReKbf1P 42cqkp61RCKa6+AAuY8PpcAPw3z0lOZRFFW0XBe5vzzAoUtLR+cBCUliiVM7pyJq mNo030CvdNRn7bK7g/rjGCUH0/CD1aCDtz9FE5WJ8poK6YLS+RAzML7z3OngtH8F GXsjU6eH5zsWwvhbz79km567szPttwnsrzsquYTtQQf9ptA6PyYv3oWJWBwyHvn4 MPKK33HcGAsDCgUIfgcHfZT5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFD7GwnGC 39VhN0eQrQ/Jo4d9tbgwHwYDVR0jBBgwFoAUpgmpTmohAbr5XIwvVc7EF5Jb788w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyMDEwL0VBMDIxQTk0RDUz RjExRUVBOEQ2MjQwRkM0RjlBRTAyL3BnbXBUbW9oQWJyNVhJd3ZWYzdFRjVKYjc4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGdtcFRtb2hBYnI1WEl3dlZjN0VGNUpiNzg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjAxMC9FQTAyMUE5NEQ1M0YxMUVFQThENjI0MEZDNEY5QUUwMi8yRkE5MTc3MEQ2 MUExMUVFOUJEREQ2MjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGegjTANBgkqhkiG9w0BAQsFAAOCAQEA1Q294E9c5F6kZ1Md aDjLOFSVti+N/cHZzxT0M3K1xSMICqmomUkQUFVoXFtli1f9r4PZbzX5DlzyTACf 75HcJ6wUwbRiPT8WssQLLfE6wYBRYerJp6VurCEom2Nu/YohI4WMP5pbla0iyd5I 7mfqliUgqYGKolc3JG7zLG8U1HbgLPuigZVN77u8fcF5o3k9ViKYRH3jJd4Aqqc1 XIt6GHtkBYko21CmihHUuCIRZ0lFHTP3E9+Prm0frVmFMUzSqGApvApBBpVbufp3 eA01V0oK0iRDvkVbjFNt9Goc0YzPVZl8MMZwoIYQtLPnHoGSSGP3Iu8+QzKWjrh1 of696g== -----END CERTIFICATE-----Generated at Tue May 7 09:19:43 2024 by rpki-client on console-ams.rpki-client.org