$ rpki-client -vvf rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/26E02598562F11EB94FD0463C4F9AE02.roa File: 26E02598562F11EB94FD0463C4F9AE02.roa (raw, json) Hash identifier: PJCdta/4Q6f57KQKAkTotBkGcFV1WNt4V36v9eyDoQs= Subject key identifier: BA:B3:8A:D9:D9:52:9D:40:F2:40:FD:39:77:02:F9:66:CF:87:23:2E Certificate issuer: /CN=A9125590/serialNumber=C40EB7816451875486DA643F8F9361B77DFB21A3 Certificate serial: 3443 Authority key identifier: C4:0E:B7:81:64:51:87:54:86:DA:64:3F:8F:93:61:B7:7D:FB:21:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/26E02598562F11EB94FD0463C4F9AE02.roa Signing time: Thu 10 Oct 2024 14:20:17 +0000 ROA not before: Thu 10 Oct 2024 14:20:17 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55789 IP address blocks: 103.9.116.0/24 maxlen: 24 103.9.117.0/24 maxlen: 24 103.9.118.0/24 maxlen: 24 103.9.119.0/24 maxlen: 24 202.59.250.0/23 maxlen: 23 202.59.250.0/24 maxlen: 24 202.59.251.0/24 maxlen: 24 2001:df4:8a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.crl rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:19:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13379 (0x3443) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125590/serialNumber=C40EB7816451875486DA643F8F9361B77DFB21A3 Validity Not Before: Oct 10 14:20:17 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6707e2a0-75f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:34:a6:c8:aa:af:48:b5:2c:09:a9:b8:2c:7f: c7:1a:8d:9e:bb:5b:3b:ce:18:bb:e6:05:ab:7a:94: ac:e9:57:45:07:6d:ab:4e:7e:f5:b5:b7:26:20:e3: 69:aa:f5:76:13:f5:ee:e4:65:cd:f4:1f:ca:c4:02: 7c:b2:ca:da:c3:a1:4f:b5:83:88:24:d1:96:65:db: bf:5a:23:1d:3b:71:94:9a:f5:24:69:5a:41:d0:3a: a8:d1:1e:7e:bd:8f:e4:a3:c2:16:f5:6a:7e:2c:4e: 03:ae:7e:f6:8f:ac:84:5e:94:0c:a3:f3:34:97:15: 67:55:e9:a8:7e:fc:69:dc:53:76:f8:a7:42:60:71: 49:44:5d:45:f4:2a:ff:88:45:0b:98:00:35:29:f2: 7a:e7:c2:4d:cc:a4:e9:7b:1c:ed:50:13:ac:56:cc: 99:c0:b4:b6:42:21:c4:48:09:5c:19:72:61:2f:ff: 38:d7:b9:d2:87:9c:ca:88:d9:9e:0f:61:80:00:b4: 76:3e:0c:29:ed:d8:6a:7d:5d:27:6b:e0:61:0f:5a: 50:5e:53:ce:b6:b8:e8:25:08:cd:f6:a6:06:5e:7c: ba:dd:fd:82:29:58:9b:71:4c:fa:3f:87:ba:cf:86: ad:84:2d:dc:60:f8:92:d5:9d:d4:8a:2e:4e:34:e9: 67:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:B3:8A:D9:D9:52:9D:40:F2:40:FD:39:77:02:F9:66:CF:87:23:2E X509v3 Authority Key Identifier: keyid:C4:0E:B7:81:64:51:87:54:86:DA:64:3F:8F:93:61:B7:7D:FB:21:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/xA63gWRRh1SG2mQ_j5Nht337IaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xA63gWRRh1SG2mQ_j5Nht337IaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125590/FC44B38A1D7011E28951A9B508B02CD2/26E02598562F11EB94FD0463C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.116.0/22 202.59.250.0/23 IPv6: 2001:df4:8a00::/48 Signature Algorithm: sha256WithRSAEncryption 36:dd:2e:85:e6:1f:dd:76:76:5f:4c:40:80:16:47:20:d0:0b: 91:8d:db:d9:db:20:bd:27:f7:60:ba:6a:84:8b:1e:e5:64:48: e8:a0:7f:ff:ee:3a:bb:c0:ae:77:fa:20:db:e5:05:6a:48:ea: 64:21:c3:3a:ab:62:6c:c9:e0:12:6d:7a:34:32:29:42:f6:0d: a8:70:3b:be:4e:8f:5c:dd:61:5a:09:f2:76:85:06:04:b2:01: f5:a6:7d:de:ca:ea:27:ae:a3:9c:0f:8f:37:4a:85:ec:f9:c2: ea:84:35:88:a5:bf:e1:73:a0:49:a2:54:91:1f:34:a0:e1:b6: 1f:f9:9a:03:8c:68:80:f4:3a:6b:94:56:ad:ff:38:16:99:03: 39:f5:61:9e:0c:42:70:e4:9a:f9:2e:9e:83:13:3e:7e:5a:29: 53:17:7d:d6:c7:95:f1:1b:07:fd:be:49:97:9a:b4:59:a8:47: 08:1f:c9:fa:38:a7:c1:2e:7d:89:82:ba:99:4c:42:44:05:68: e6:fe:20:10:fc:55:d0:eb:7b:8d:97:7b:76:fc:33:33:03:c1: e2:6c:c7:be:68:6a:76:ce:b2:0a:78:9e:e8:2d:b9:05:0b:3c: 1a:16:e6:de:e7:66:8a:bf:5b:09:5d:7a:f9:17:98:f0:83:7b: 6b:af:60:14 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICNEMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU1OTAxMTAvBgNVBAUTKEM0MEVCNzgxNjQ1MTg3NTQ4NkRBNjQzRjhGOTM2MUI3 N0RGQjIxQTMwHhcNMjQxMDEwMTQyMDE3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3ZTJhMC03NWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7TSmyKqvSLUsCam4LH/HGo2eu1s7zhi75gWrepSs6VdFB22rTn71tbcmIONp qvV2E/Xu5GXN9B/KxAJ8ssraw6FPtYOIJNGWZdu/WiMdO3GUmvUkaVpB0Dqo0R5+ vY/ko8IW9Wp+LE4Drn72j6yEXpQMo/M0lxVnVemofvxp3FN2+KdCYHFJRF1F9Cr/ iEULmAA1KfJ658JNzKTpexztUBOsVsyZwLS2QiHESAlcGXJhL/8417nSh5zKiNme D2GAALR2Pgwp7dhqfV0na+BhD1pQXlPOtrjoJQjN9qYGXny63f2CKVibcUz6P4e6 z4athC3cYPiS1Z3Uii5ONOln3QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLqzitnZ Up1A8kD9OXcC+WbPhyMuMB8GA1UdIwQYMBaAFMQOt4FkUYdUhtpkP4+TYbd9+yGj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTU5MC9GQzQ0QjM4QTFE NzAxMUUyODk1MUE5QjUwOEIwMkNEMi94QTYzZ1dSUmgxU0cybVFfajVOaHQzMzdJ YU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hBNjNnV1JSaDFTRzJtUV9qNU5odDMzN0lhTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU1OTAvRkM0NEIzOEExRDcwMTFFMjg5NTFBOUI1MDhCMDJDRDIvMjZFMDI1OTg1 NjJGMTFFQjk0RkQwNDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJnCXQDBAHKO/owDwQCAAIwCQMHACABDfSKADANBgkqhkiG 9w0BAQsFAAOCAQEANt0uheYf3XZ2X0xAgBZHINALkY3b2dsgvSf3YLpqhIse5WRI 6KB//+46u8Cud/og2+UFakjqZCHDOqtibMngEm16NDIpQvYNqHA7vk6PXN1hWgny doUGBLIB9aZ93srqJ66jnA+PN0qF7PnC6oQ1iKW/4XOgSaJUkR80oOG2H/maA4xo gPQ6a5RWrf84FpkDOfVhngxCcOSa+S6egxM+flopUxd91seV8RsH/b5Jl5q0WahH CB/J+jinwS59iYK6mUxCRAVo5v4gEPxV0Ot7jZd7dvwzMwPB4mzHvmhqds6yCnie 6C25BQs8Ghbm3udmir9bCV16+ReY8IN7a69gFA== -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:15 2024 by rpki-client on console-ams.rpki-client.org