$ rpki-client -vvf rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/4697751815B111EA8277BA34C4F9AE02.roa File: 4697751815B111EA8277BA34C4F9AE02.roa (raw, json) Hash identifier: 2owkOPv5cf70JDjVVaT6RIFBzLMnz6Rb03IohYtEZXs= Subject key identifier: C0:B6:92:98:B2:F2:B6:9F:46:72:B2:F3:70:C9:DA:27:78:05:C5:CF Certificate issuer: /CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Certificate serial: 0AF9 Authority key identifier: 71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/4697751815B111EA8277BA34C4F9AE02.roa Signing time: Sun 28 Jan 2024 19:37:46 +0000 ROA not before: Sun 28 Jan 2024 19:37:46 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139835 IP address blocks: 103.145.246.0/23 maxlen: 23 103.145.246.0/24 maxlen: 24 103.145.247.0/24 maxlen: 24 2001:df2:3780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:45:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2809 (0xaf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125C31/serialNumber=7105372446A2064546D9629F421C376FDCEF21D6 Validity Not Before: Jan 28 19:37:46 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b6ad09-6765 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7f:29:e6:f5:9d:90:92:17:98:da:a0:25:86: 61:80:2e:b1:ab:00:07:03:0c:88:12:9b:70:60:d6: 89:df:6e:02:60:68:b1:5d:29:09:ec:4f:17:6f:0e: 26:f7:50:2a:9e:7b:20:bc:ae:2b:20:33:1b:4a:9d: 3f:aa:6e:37:12:7b:82:e6:71:6f:59:1a:d4:e8:cf: 82:d9:30:17:ed:97:6a:46:99:00:bd:af:5e:71:db: ab:e5:15:e2:98:58:0b:f0:de:ef:3c:5b:ed:c7:d7: 09:34:11:d8:b9:42:f2:ee:51:b8:dc:45:c3:8a:23: 61:5f:85:f7:5e:7f:2e:1f:30:b7:b1:6b:26:6c:82: 93:4d:d4:95:94:cf:eb:93:70:88:da:99:4f:4f:47: a2:5e:2c:a2:bf:0a:40:d9:5d:a9:0a:84:f1:ce:26: d7:76:a5:ca:a0:58:33:7c:90:fd:4a:e0:95:77:54: 8d:f8:de:83:3b:0e:d7:e9:78:6d:43:b7:a2:b8:a2: 87:6b:cd:cb:e5:c8:09:7e:5d:59:65:5b:ad:53:4a: 8d:06:df:2a:2d:cc:20:71:5c:70:7c:cc:26:60:b8: 28:26:b5:0c:34:78:7d:0f:bb:cb:84:70:af:17:46: cd:df:f2:17:e9:70:5e:57:35:04:74:24:53:51:91: 32:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:B6:92:98:B2:F2:B6:9F:46:72:B2:F3:70:C9:DA:27:78:05:C5:CF X509v3 Authority Key Identifier: keyid:71:05:37:24:46:A2:06:45:46:D9:62:9F:42:1C:37:6F:DC:EF:21:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/cQU3JEaiBkVG2WKfQhw3b9zvIdY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cQU3JEaiBkVG2WKfQhw3b9zvIdY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125C31/38BF409A159011EA9C413652C4F9AE02/4697751815B111EA8277BA34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.145.246.0/23 IPv6: 2001:df2:3780::/48 Signature Algorithm: sha256WithRSAEncryption 3f:33:36:9d:a9:2e:65:27:fe:a0:b8:8d:44:90:55:d3:91:80: 51:a1:bf:71:5c:89:16:c0:33:22:ec:b0:30:cb:c9:8e:c2:37: 72:45:33:a2:9f:8b:84:86:b9:85:9f:1b:4f:7c:b3:b1:6e:be: ac:93:82:6a:c0:b8:73:3a:5e:22:4c:af:b7:29:06:20:08:40: da:5b:f5:d2:cf:1a:a8:a8:52:d2:4e:64:72:b3:f6:16:dd:c3: b3:67:a5:1b:bb:73:73:d7:29:06:c2:23:1f:a8:02:68:ff:57: 96:09:6c:54:6e:cd:37:aa:ff:25:60:5f:27:0b:9b:f5:ad:6a: e1:18:3a:68:69:72:b9:a2:b3:88:a2:e1:66:4b:71:b9:38:38: bc:78:23:de:2d:ff:79:19:67:db:a5:84:96:0a:ca:4e:b5:18: eb:32:c0:61:98:66:6b:4e:9c:7d:c7:0f:1e:d9:bf:0b:12:b8: c3:e4:a3:3a:65:e7:24:6c:1e:21:cc:65:48:8e:64:83:06:b3: 40:95:ba:e9:a3:72:c0:d9:be:61:82:3b:48:9e:19:e9:ce:81: 62:9b:22:db:2c:d9:98:3e:06:c1:e4:6d:f6:23:c0:22:9d:3b: 47:e3:61:fa:f7:32:cb:ac:a0:74:18:da:57:f9:dc:21:19:5d: 2f:c1:10:1f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCvkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVDMzExMTAvBgNVBAUTKDcxMDUzNzI0NDZBMjA2NDU0NkQ5NjI5RjQyMUMzNzZG RENFRjIxRDYwHhcNMjQwMTI4MTkzNzQ2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI2YWQwOS02NzY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA438p5vWdkJIXmNqgJYZhgC6xqwAHAwyIEptwYNaJ324CYGixXSkJ7E8Xbw4m 91AqnnsgvK4rIDMbSp0/qm43EnuC5nFvWRrU6M+C2TAX7ZdqRpkAva9ecdur5RXi mFgL8N7vPFvtx9cJNBHYuULy7lG43EXDiiNhX4X3Xn8uHzC3sWsmbIKTTdSVlM/r k3CI2plPT0eiXiyivwpA2V2pCoTxzibXdqXKoFgzfJD9SuCVd1SN+N6DOw7X6Xht Q7eiuKKHa83L5cgJfl1ZZVutU0qNBt8qLcwgcVxwfMwmYLgoJrUMNHh9D7vLhHCv F0bN3/IX6XBeVzUEdCRTUZEy1QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMC2kpiy 8rafRnKy83DJ2id4BcXPMB8GA1UdIwQYMBaAFHEFNyRGogZFRtlin0IcN2/c7yHW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUMzMS8zOEJGNDA5QTE1 OTAxMUVBOUM0MTM2NTJDNEY5QUUwMi9jUVUzSkVhaUJrVkcyV0tmUWh3M2I5enZJ ZFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NRVTNKRWFpQmtWRzJXS2ZRaHczYjl6dklkWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVDMzEvMzhCRjQwOUExNTkwMTFFQTlDNDEzNjUyQzRGOUFFMDIvNDY5Nzc1MTgx NUIxMTFFQTgyNzdCQTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnkfYwDwQCAAIwCQMHACABDfI3gDANBgkqhkiG9w0BAQsF AAOCAQEAPzM2nakuZSf+oLiNRJBV05GAUaG/cVyJFsAzIuywMMvJjsI3ckUzop+L hIa5hZ8bT3yzsW6+rJOCasC4czpeIkyvtykGIAhA2lv10s8aqKhS0k5kcrP2Ft3D s2elG7tzc9cpBsIjH6gCaP9XlglsVG7NN6r/JWBfJwub9a1q4Rg6aGlyuaKziKLh ZktxuTg4vHgj3i3/eRln26WElgrKTrUY6zLAYZhma06cfccPHtm/CxK4w+SjOmXn JGweIcxlSI5kgwazQJW66aNywNm+YYI7SJ4Z6c6BYpsi2yzZmD4GweRt9iPAIp07 R+Nh+vcyy6ygdBjaV/ncIRldL8EQHw== -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org