$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/4DF99E0E934311ED882FFE24C4F9AE02.roa File: 4DF99E0E934311ED882FFE24C4F9AE02.roa (raw, json) Hash identifier: nBUoblotDyN0/Ui1SLb2Vd1fmIjqvsKS8zhy8qSXzhY= Subject key identifier: 98:51:7C:E7:4C:E5:F0:5F:56:04:6E:39:29:4A:DC:DD:64:0A:A1:FB Certificate issuer: /CN=A9123F5D/serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Certificate serial: 09C5 Authority key identifier: BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/4DF99E0E934311ED882FFE24C4F9AE02.roa Signing time: Wed 12 Jun 2024 21:17:15 +0000 ROA not before: Wed 12 Jun 2024 21:17:15 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 59362 IP address blocks: 103.92.216.0/23 maxlen: 24 103.92.218.0/23 maxlen: 24 123.253.97.0/24 maxlen: 24 123.253.98.0/24 maxlen: 24 123.253.99.0/24 maxlen: 24 2401:21c0::/32 maxlen: 35 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2501 (0x9c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F5D/serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Validity Not Before: Jun 12 21:17:15 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666a105b-c0c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:52:27:18:09:f5:8a:3b:24:c1:ca:27:26:67: ba:49:e3:9a:29:aa:f8:2c:94:84:02:e0:ed:93:19: 63:65:4c:a3:cf:de:21:4a:04:df:9d:8e:f5:2c:af: f8:1e:46:1f:a8:5e:a2:c7:18:f8:e9:fd:d1:33:b0: 14:fa:96:68:40:14:13:e8:9c:a4:ad:74:78:10:96: 38:08:04:cf:b4:8f:6f:25:23:2b:f6:5a:4e:a0:e7: 91:07:43:db:2b:66:d0:67:cf:19:53:fc:31:16:76: 5e:8b:7d:fc:bb:3e:49:43:66:a7:39:df:97:cf:e2: 96:a6:d5:5d:62:3d:c2:96:fd:be:81:91:42:0b:05: 01:04:c6:ad:e0:0e:59:b1:e1:d3:c8:52:eb:7f:a5: 35:00:f6:3b:7b:db:f3:21:be:d2:4e:96:b0:e2:d6: 0a:64:63:8c:85:3f:3b:c0:46:1d:86:73:5f:65:95: fd:15:5c:a9:37:42:18:64:da:e8:69:08:21:18:55: 97:f6:e5:07:50:1f:94:c6:1b:5a:e5:83:a4:74:f5: fe:75:0e:13:1a:23:9d:9c:e8:74:5c:7c:4a:76:b6: 69:5a:52:99:bb:63:16:6d:f2:91:2e:9a:84:b9:8f: 9c:f8:ea:c0:59:ac:74:d0:50:22:a7:00:df:3f:09: c5:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:51:7C:E7:4C:E5:F0:5F:56:04:6E:39:29:4A:DC:DD:64:0A:A1:FB X509v3 Authority Key Identifier: keyid:BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/4DF99E0E934311ED882FFE24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.216.0/22 123.253.97.0-123.253.99.255 IPv6: 2401:21c0::/32 Signature Algorithm: sha256WithRSAEncryption 1e:de:99:20:b5:74:0d:b1:c6:68:3c:a6:d6:84:b7:f1:25:1d: cd:e4:85:15:f4:b8:d9:b0:d8:66:af:d7:0d:fd:b5:94:d6:8b: 58:5c:7f:eb:ea:65:00:85:d1:cd:69:46:74:01:bb:36:1d:a3: 46:79:d6:c3:ff:bc:a8:eb:be:47:e1:e2:b5:db:87:2c:ab:f4: 9a:8b:39:cd:5a:b2:7e:08:e3:34:d6:af:20:b5:44:30:5f:4a: 73:6a:85:de:c5:86:92:bb:ee:42:26:90:58:e4:20:4a:50:7e: 98:ff:1d:7c:1c:29:74:4c:8e:de:78:e3:5c:e3:f0:80:08:f3: 59:4d:49:06:0f:01:95:ac:cc:93:f0:cf:7e:fd:d5:53:5e:a6: 53:18:e2:92:d2:4c:53:51:98:4d:e7:9c:57:dc:cb:08:e9:ad: 71:1b:ec:48:33:9a:02:ec:b8:8b:c1:28:a0:17:72:e9:f9:7f: 64:8d:9b:74:7d:13:18:f1:28:e6:5c:98:48:16:96:9b:5b:2c: 53:0b:29:a9:3c:b1:8d:31:bf:84:24:b8:fb:a2:d8:e4:fd:28: a4:18:7d:1a:68:5f:58:55:97:7a:7e:20:e9:0b:29:f2:5f:fb: 31:94:73:c9:7b:e9:14:7c:54:3a:50:03:7c:c5:1d:85:13:f3: 55:8a:11:a8 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICCcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGNUQxMTAvBgNVBAUTKEJGNTIyRDk5MjVBNTg0NjI4MEY2MDUzMEFEMzlENzY2 RTRBQkYwOTMwHhcNMjQwNjEyMjExNzE1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZhMTA1Yi1jMGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu1InGAn1ijskwconJme6SeOaKar4LJSEAuDtkxljZUyjz94hSgTfnY71LK/4 HkYfqF6ixxj46f3RM7AU+pZoQBQT6JykrXR4EJY4CATPtI9vJSMr9lpOoOeRB0Pb K2bQZ88ZU/wxFnZei338uz5JQ2anOd+Xz+KWptVdYj3Clv2+gZFCCwUBBMat4A5Z seHTyFLrf6U1APY7e9vzIb7STpaw4tYKZGOMhT87wEYdhnNfZZX9FVypN0IYZNro aQghGFWX9uUHUB+Uxhta5YOkdPX+dQ4TGiOdnOh0XHxKdrZpWlKZu2MWbfKRLpqE uY+c+OrAWax00FAipwDfPwnF0wIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFJhRfOdM 5fBfVgRuOSlK3N1kCqH7MB8GA1UdIwQYMBaAFL9SLZklpYRigPYFMK0512bkq/CT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y1RC83NUY4NzVGMjY2 OTAxMUVBOTY4M0ZCMkZDNEY5QUUwMi92MUl0bVNXbGhHS0E5Z1V3clRuWFp1U3I4 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxSXRtU1dsaEdLQTlnVXdyVG5YWnVTcjhKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGNUQvNzVGODc1RjI2NjkwMTFFQTk2ODNGQjJGQzRGOUFFMDIvNERGOTlFMEU5 MzQzMTFFRDg4MkZGRTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBoEAgABMBQDBAJnXNgwDAMEAHv9YQMEAnv9YDANBAIAAjAHAwUAJAEhwDAN BgkqhkiG9w0BAQsFAAOCAQEAHt6ZILV0DbHGaDym1oS38SUdzeSFFfS42bDYZq/X Df21lNaLWFx/6+plAIXRzWlGdAG7Nh2jRnnWw/+8qOu+R+HitduHLKv0mos5zVqy fgjjNNavILVEMF9Kc2qF3sWGkrvuQiaQWOQgSlB+mP8dfBwpdEyO3njjXOPwgAjz WU1JBg8BlazMk/DPfv3VU16mUxjiktJMU1GYTeecV9zLCOmtcRvsSDOaAuy4i8Eo oBdy6fl/ZI2bdH0TGPEo5lyYSBaWm1ssUwspqTyxjTG/hCS4+6LY5P0opBh9Gmhf WFWXen4g6Qsp8l/7MZRzyXvpFHxUOlADfMUdhRPzVYoRqA== -----END CERTIFICATE-----Generated at Sun Nov 24 20:58:09 2024 by rpki-client on console-fra.rpki-client.org