$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/ABC651E668F611EFBDC1C345C4F9AE02.roa File: ABC651E668F611EFBDC1C345C4F9AE02.roa (raw, json) Hash identifier: jm6wvVZTPS4Ylu1IOIJjjFteaZ3jIetgqAXu9aSx79c= Subject key identifier: BE:05:93:67:2F:16:90:F6:78:03:DA:73:78:15:8B:65:CB:91:80:F7 Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 02A9 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/ABC651E668F611EFBDC1C345C4F9AE02.roa Signing time: Wed 04 Sep 2024 04:15:12 +0000 ROA not before: Wed 04 Sep 2024 04:15:12 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45796 IP address blocks: 103.23.120.0/22 maxlen: 24 115.31.158.0/24 maxlen: 24 115.31.164.0/24 maxlen: 24 223.27.200.0/24 maxlen: 24 223.27.232.0/24 maxlen: 24 223.27.237.0/24 maxlen: 24 2402:9b00::/32 maxlen: 32 2402:9b00:80::/48 maxlen: 48 2402:9b00:82::/48 maxlen: 48 2402:9b00:83::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 681 (0x2a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Sep 4 04:15:12 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66d7decf-f894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:68:e5:7c:22:5c:9f:79:c6:98:e5:8c:fd:24: 8a:87:cb:72:61:0b:86:7d:56:1b:17:33:84:16:35: cf:e5:b6:7f:bc:fb:8a:26:ef:fe:f4:5b:e4:76:6c: f7:7c:49:76:a5:22:d9:54:a0:14:44:fe:f9:96:08: 31:50:96:d5:6d:df:c8:1f:6e:5e:21:02:93:c0:10: 85:42:46:03:2b:af:c6:f9:3f:7a:ec:bf:03:e7:9f: 8f:99:78:70:cc:79:db:5a:95:2a:fc:2a:f4:60:dc: d8:97:d0:7a:48:02:0d:34:51:2c:92:bc:97:8d:30: b5:09:bb:15:59:21:fb:0d:5f:2b:ff:fd:85:0d:07: 1c:f6:96:5b:b9:d7:34:8c:36:0e:6b:61:64:0b:5b: e2:27:19:55:66:ed:e6:d7:e7:44:77:68:83:94:bf: 75:95:92:c5:a1:8f:ff:67:f0:b9:db:27:f9:47:48: 24:bb:70:c1:b4:94:e1:8e:dc:c6:59:45:e1:cc:d7: e2:ab:c1:0e:86:40:ad:52:a9:9b:65:97:01:0e:70: 9c:3d:4e:37:04:3d:5e:51:ba:af:bb:83:6a:b3:a1: 3b:a9:cf:4f:f7:72:2b:b5:2b:14:2e:48:63:d4:9e: a5:3a:d8:64:54:ac:43:9c:8f:21:a3:fc:6a:88:53: 0b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:05:93:67:2F:16:90:F6:78:03:DA:73:78:15:8B:65:CB:91:80:F7 X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/ABC651E668F611EFBDC1C345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.120.0/22 115.31.158.0/24 115.31.164.0/24 223.27.200.0/24 223.27.232.0/24 223.27.237.0/24 IPv6: 2402:9b00::/32 Signature Algorithm: sha256WithRSAEncryption 21:88:8b:2c:29:2c:38:ab:e2:02:84:7b:b6:69:92:cc:05:6e: 3f:3f:37:48:6a:69:78:85:4a:97:f6:49:ee:fa:b8:1b:42:28: 5a:50:87:6f:16:90:aa:9f:a6:6b:7e:0a:07:8e:e8:ca:ce:93: c1:9b:36:e6:ba:7d:7f:56:3d:e4:66:19:de:5f:09:e8:ac:92: ce:a7:96:29:59:24:f2:03:20:4e:35:72:c5:e4:72:dd:33:e5: 92:17:c2:6b:0c:1e:be:ce:f5:ac:b3:d0:b1:2b:00:df:4b:b2: fb:61:b8:6d:25:ca:25:eb:53:2b:4f:30:b0:72:ff:6e:b7:b1: 05:1c:87:07:66:21:ff:0f:e9:27:6c:d4:16:d4:8c:f4:09:7f: 60:15:72:f0:32:c2:a9:f9:60:d9:51:19:0f:a1:8e:1d:74:de: 39:ef:1b:17:98:c8:b2:fc:7c:b9:90:ed:73:f7:2f:36:4c:68: 76:73:58:2d:96:53:e8:fe:31:4a:6e:56:0f:30:c1:70:52:46: 26:3f:90:44:9d:5d:1a:50:df:72:a4:b9:f9:56:78:31:50:57: 60:0a:5c:d6:d9:1e:f4:ab:93:2d:f4:b6:dc:ac:03:87:50:6c: e4:3e:b7:1f:6d:52:c7:77:d3:f6:9b:f7:44:9d:6e:dc:92:5d: 77:b0:df:8e -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICAqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQwOTA0MDQxNTEyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ3ZGVjZi1mODk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2jlfCJcn3nGmOWM/SSKh8tyYQuGfVYbFzOEFjXP5bZ/vPuKJu/+9Fvkdmz3 fEl2pSLZVKAURP75lggxUJbVbd/IH25eIQKTwBCFQkYDK6/G+T967L8D55+PmXhw zHnbWpUq/Cr0YNzYl9B6SAINNFEskryXjTC1CbsVWSH7DV8r//2FDQcc9pZbudc0 jDYOa2FkC1viJxlVZu3m1+dEd2iDlL91lZLFoY//Z/C52yf5R0gku3DBtJThjtzG WUXhzNfiq8EOhkCtUqmbZZcBDnCcPU43BD1eUbqvu4Nqs6E7qc9P93IrtSsULkhj 1J6lOthkVKxDnI8ho/xqiFML1QIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFL4Fk2cv FpD2eAPac3gVi2XLkYD3MB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvQUJDNjUxRTY2 OEY2MTFFRkJEQzFDMzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnF3gDBABzH54DBABzH6QDBADfG8gDBADfG+gDBADfG+0w DQQCAAIwBwMFACQCmwAwDQYJKoZIhvcNAQELBQADggEBACGIiywpLDir4gKEe7Zp kswFbj8/N0hqaXiFSpf2Se76uBtCKFpQh28WkKqfpmt+CgeO6MrOk8GbNua6fX9W PeRmGd5fCeisks6nlilZJPIDIE41csXkct0z5ZIXwmsMHr7O9ayz0LErAN9Lsvth uG0lyiXrUytPMLBy/263sQUchwdmIf8P6Sds1BbUjPQJf2AVcvAywqn5YNlRGQ+h jh103jnvGxeYyLL8fLmQ7XP3LzZMaHZzWC2WU+j+MUpuVg8wwXBSRiY/kESdXRpQ 33KkuflWeDFQV2AKXNbZHvSrky30ttysA4dQbOQ+tx9tUsd30/ab90SdbtySXXew 344= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org