$ rpki-client -vvf rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/5BF797081CF411EBB5ADE642C4F9AE02.roa File: 5BF797081CF411EBB5ADE642C4F9AE02.roa (raw, json) Hash identifier: AwRksKXITHLfRHPDls3Dox6LPqS08ltsptsGuhqXo1I= Subject key identifier: 80:FA:A1:FE:65:8C:92:00:27:AA:50:DE:26:E1:4F:9F:3E:8E:C8:FE Certificate issuer: /CN=A9122C94/serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Certificate serial: 06EE Authority key identifier: 50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/5BF797081CF411EBB5ADE642C4F9AE02.roa Signing time: Tue 24 Sep 2024 22:11:35 +0000 ROA not before: Tue 24 Sep 2024 22:11:35 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 133066 IP address blocks: 103.241.156.0/22 maxlen: 22 103.241.156.0/24 maxlen: 24 103.241.157.0/24 maxlen: 24 103.241.158.0/24 maxlen: 24 103.241.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122C94/serialNumber=50CDD60CF8F3123FDEBCE90882AF37BBE3EF5C48 Validity Not Before: Sep 24 22:11:35 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f33917-78ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:27:77:ab:ff:4d:b5:fe:13:b4:2f:a7:88:ab: 62:24:ae:0d:f7:7b:12:34:e7:4a:ce:f8:64:5a:42: 80:b7:bd:65:28:c8:c0:a5:62:a9:d2:52:41:84:33: e7:b2:8e:05:9c:18:5a:76:ab:d4:56:83:fa:ba:7a: 82:33:86:59:5b:f2:90:01:b3:f7:1b:30:42:a6:61: c0:ba:d5:2c:17:18:81:aa:96:46:e2:1e:bc:8a:21: e2:21:c7:77:4f:07:e9:59:a1:d0:eb:48:4d:ab:d0: a6:72:b7:fd:9a:63:9e:3e:c8:9f:ae:63:02:17:f4: b0:be:96:61:d0:42:3e:84:19:2b:fe:56:b9:7d:70: 07:b4:02:38:0f:a9:61:4d:53:dc:b5:a8:bf:b9:72: a6:cb:cf:d6:3f:b1:6e:4b:18:71:c5:c2:5b:e0:84: 97:7a:f7:8f:f9:94:b6:ba:39:7e:79:ac:38:fe:fd: c5:32:74:fb:f7:77:3a:c1:f7:93:d7:d6:aa:ef:9c: e9:b7:75:a2:49:1e:b8:16:56:26:19:5b:29:d8:c8: 0e:36:47:1e:3c:1e:96:e2:a3:35:2a:50:f2:2a:71: fa:19:65:d2:30:3c:53:6e:46:dd:76:80:7d:e9:2a: 5f:45:8d:25:f8:8b:d1:55:03:b8:11:61:5e:ec:96: 4c:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:FA:A1:FE:65:8C:92:00:27:AA:50:DE:26:E1:4F:9F:3E:8E:C8:FE X509v3 Authority Key Identifier: keyid:50:CD:D6:0C:F8:F3:12:3F:DE:BC:E9:08:82:AF:37:BB:E3:EF:5C:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/UM3WDPjzEj_evOkIgq83u-PvXEg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UM3WDPjzEj_evOkIgq83u-PvXEg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122C94/8222C27E1CF211EB84209540C4F9AE02/5BF797081CF411EBB5ADE642C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.156.0/22 Signature Algorithm: sha256WithRSAEncryption 5b:59:65:2f:6c:d8:78:53:19:fd:6b:66:0e:b1:5f:01:79:99: 8a:1a:92:6c:6f:c8:2d:be:28:d0:af:aa:de:8a:a7:70:a0:31: 02:d6:b9:a2:a5:a0:b0:28:10:b3:38:38:34:83:63:52:6f:e0: 5e:de:ab:f3:a6:ca:77:38:2f:11:fc:47:8b:bd:2f:85:ed:c8: ed:f9:e4:60:ba:2c:c5:16:d9:dc:21:88:fc:d2:9f:98:c5:7b: d0:16:48:07:8f:24:39:dd:a0:81:9d:9e:07:65:c5:7f:f7:16: c2:c3:d9:f3:88:4c:7a:37:63:9c:86:74:b0:0f:ed:14:d8:d1: 39:89:2b:a3:a5:aa:16:fc:0e:49:7e:a1:5a:8e:cb:3b:8b:60: b0:ad:17:d6:18:e5:a8:87:18:96:c3:d1:38:c8:78:f8:68:f7: 92:c9:f8:c9:9c:1b:ba:9b:77:3f:93:96:27:96:03:24:67:24: a8:ce:34:19:d1:fa:53:34:a6:bd:3f:2f:eb:f4:30:d1:69:9f: 53:b9:0f:52:41:64:b1:13:4a:b8:2f:9c:f9:46:0e:b0:4e:aa: 02:e4:5c:2b:80:50:50:9c:29:39:3d:55:28:a8:d8:93:a5:89: f2:07:ca:a7:13:17:ae:4f:6c:16:53:98:27:57:fa:e9:5e:38: 88:ea:e3:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjJDOTQxMTAvBgNVBAUTKDUwQ0RENjBDRjhGMzEyM0ZERUJDRTkwODgyQUYzN0JC RTNFRjVDNDgwHhcNMjQwOTI0MjIxMTM1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzMzkxNy03OGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCd3q/9Ntf4TtC+niKtiJK4N93sSNOdKzvhkWkKAt71lKMjApWKp0lJBhDPn so4FnBhadqvUVoP6unqCM4ZZW/KQAbP3GzBCpmHAutUsFxiBqpZG4h68iiHiIcd3 TwfpWaHQ60hNq9Cmcrf9mmOePsifrmMCF/SwvpZh0EI+hBkr/la5fXAHtAI4D6lh TVPctai/uXKmy8/WP7FuSxhxxcJb4ISXeveP+ZS2ujl+eaw4/v3FMnT793c6wfeT 19aq75zpt3WiSR64FlYmGVsp2MgONkcePB6W4qM1KlDyKnH6GWXSMDxTbkbddoB9 6SpfRY0l+IvRVQO4EWFe7JZMfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFID6of5l jJIAJ6pQ3ibhT58+jsj+MB8GA1UdIwQYMBaAFFDN1gz48xI/3rzpCIKvN7vj71xI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMkM5NC84MjIyQzI3RTFD RjIxMUVCODQyMDk1NDBDNEY5QUUwMi9VTTNXRFBqekVqX2V2T2tJZ3E4M3UtUHZY RWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VNM1dEUGp6RWpfZXZPa0lncTgzdS1QdlhFZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjJDOTQvODIyMkMyN0UxQ0YyMTFFQjg0MjA5NTQwQzRGOUFFMDIvNUJGNzk3MDgx Q0Y0MTFFQkI1QURFNjQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn8ZwwDQYJKoZIhvcNAQELBQADggEBAFtZZS9s2HhTGf1r Zg6xXwF5mYoakmxvyC2+KNCvqt6Kp3CgMQLWuaKloLAoELM4ODSDY1Jv4F7eq/Om ync4LxH8R4u9L4XtyO355GC6LMUW2dwhiPzSn5jFe9AWSAePJDndoIGdngdlxX/3 FsLD2fOITHo3Y5yGdLAP7RTY0TmJK6Olqhb8Dkl+oVqOyzuLYLCtF9YY5aiHGJbD 0TjIePho95LJ+MmcG7qbdz+TlieWAyRnJKjONBnR+lM0pr0/L+v0MNFpn1O5D1JB ZLETSrgvnPlGDrBOqgLkXCuAUFCcKTk9VSio2JOlifIHyqcTF65PbBZTmCdX+ule OIjq4xA= -----END CERTIFICATE-----Generated at Sun Nov 24 23:07:47 2024 by rpki-client on console-ams.rpki-client.org