$ rpki-client -vvf rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/12CC9D1857A711EDB284106DC4F9AE02.roa File: 12CC9D1857A711EDB284106DC4F9AE02.roa (raw, json) Hash identifier: BuPNx9YiOyVFSHrdQHhrN7N1yvLCRMULzv8+GYWVJlc= Subject key identifier: AF:AA:06:D6:A3:78:0A:E0:54:51:CF:C1:4B:B0:EF:69:27:B9:84:26 Certificate issuer: /CN=A9125E89/serialNumber=7C2A96A5A9034CDF2A786F64BDF27FD8AC51C92B Certificate serial: 04B3 Authority key identifier: 7C:2A:96:A5:A9:03:4C:DF:2A:78:6F:64:BD:F2:7F:D8:AC:51:C9:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fCqWpakDTN8qeG9kvfJ_2KxRySs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/12CC9D1857A711EDB284106DC4F9AE02.roa Signing time: Tue 26 Sep 2023 04:53:46 +0000 ROA not before: Tue 26 Sep 2023 04:53:46 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 18196 IP address blocks: 103.97.249.0/24 maxlen: 24 103.122.6.0/24 maxlen: 24 103.122.12.0/23 maxlen: 23 103.122.12.0/24 maxlen: 24 103.122.13.0/24 maxlen: 24 2001:df2:700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/fCqWpakDTN8qeG9kvfJ_2KxRySs.crl rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/fCqWpakDTN8qeG9kvfJ_2KxRySs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fCqWpakDTN8qeG9kvfJ_2KxRySs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 00:50:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1203 (0x4b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125E89/serialNumber=7C2A96A5A9034CDF2A786F64BDF27FD8AC51C92B Validity Not Before: Sep 26 04:53:46 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=651263da-a4b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:81:ae:ab:3f:86:d5:6f:e9:0a:14:93:12:b6: 6f:67:51:43:57:80:15:b4:8c:30:2e:33:8f:c0:c6: a1:8b:f1:c9:1e:37:8e:88:c7:dc:20:a2:eb:79:9a: b3:36:97:c7:5c:77:69:78:57:52:da:03:3b:ef:f6: 65:75:70:1b:1f:f4:22:b8:e2:33:ab:b2:5b:98:65: 98:8c:94:22:2b:3d:8a:c2:38:75:fb:46:9a:eb:65: 5f:0b:3a:e7:2a:65:57:fd:e5:9e:20:05:91:47:eb: b2:f1:d0:30:7e:9f:fa:f0:96:67:a1:ea:e1:51:a9: a0:05:3a:73:e2:7d:ad:f2:10:8e:d9:41:24:90:ff: 38:b1:57:bc:d3:0a:94:c9:64:b8:72:97:c4:92:1b: a2:dc:52:4c:4b:38:be:54:9e:1d:e0:3b:a1:01:bf: f6:72:60:f3:06:b4:76:f9:17:a3:09:04:38:aa:c7: e7:7b:ec:42:04:c6:e6:cd:ff:47:f9:49:7e:87:0d: 75:dd:fd:aa:33:90:6b:7e:dc:08:65:ab:ff:50:36: c8:38:d3:68:50:30:01:c3:7d:46:5f:87:02:99:53: b3:09:89:6a:0d:ca:da:68:1c:13:63:02:64:ea:87: 2a:4f:a8:ba:12:9b:f3:97:45:33:38:ed:51:82:f9: bb:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:AA:06:D6:A3:78:0A:E0:54:51:CF:C1:4B:B0:EF:69:27:B9:84:26 X509v3 Authority Key Identifier: keyid:7C:2A:96:A5:A9:03:4C:DF:2A:78:6F:64:BD:F2:7F:D8:AC:51:C9:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/fCqWpakDTN8qeG9kvfJ_2KxRySs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fCqWpakDTN8qeG9kvfJ_2KxRySs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125E89/76010778B24111EB99DAE928C4F9AE02/12CC9D1857A711EDB284106DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.249.0/24 103.122.6.0/24 103.122.12.0/23 IPv6: 2001:df2:700::/48 Signature Algorithm: sha256WithRSAEncryption 73:b5:1b:74:93:93:ad:75:47:b9:8e:b4:1b:be:bd:c6:ae:5c: 1b:1d:e6:31:b1:98:9c:59:c2:06:c3:98:1d:74:d2:74:09:ea: 93:3a:e5:16:46:9d:5e:31:24:4f:a5:48:9a:c8:f2:38:cb:f5: c8:9c:a2:e3:ec:b0:a3:be:78:64:68:63:84:7e:b7:7c:c7:63: 23:9f:dd:44:9e:bc:72:43:6a:48:12:93:f3:43:17:b4:b8:f7: 7a:db:e5:91:48:f0:67:fd:b7:13:23:22:74:30:fe:df:44:8e: a9:8a:fd:6c:c1:86:d3:71:71:db:87:18:53:ed:57:16:94:ab: 2d:78:c7:88:f2:ba:f3:2f:5a:72:60:07:6d:1c:64:8a:21:4b: 5f:2a:b8:8b:d4:77:18:eb:a3:cc:d1:6c:12:94:19:7d:38:0c: a5:f6:77:74:5d:3c:a5:53:57:08:65:c3:df:41:97:c4:e8:a6: 09:95:e3:3f:39:d0:08:02:b0:dd:d6:b0:1c:71:1f:aa:fc:52: 39:f1:53:12:1e:00:18:0e:d8:9c:8f:d3:f9:1e:ed:6d:a1:9b: 7c:9f:d6:70:78:8e:0f:42:6e:1e:f1:2c:2b:bb:d9:36:e4:c0: b8:82:1e:88:23:84:28:92:dc:c2:55:de:b4:c5:9c:a3:3e:c5: 99:fe:2f:33 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICBLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVFODkxMTAvBgNVBAUTKDdDMkE5NkE1QTkwMzRDREYyQTc4NkY2NEJERjI3RkQ4 QUM1MUM5MkIwHhcNMjMwOTI2MDQ1MzQ2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEyNjNkYS1hNGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2IGuqz+G1W/pChSTErZvZ1FDV4AVtIwwLjOPwMahi/HJHjeOiMfcIKLreZqz NpfHXHdpeFdS2gM77/ZldXAbH/QiuOIzq7JbmGWYjJQiKz2Kwjh1+0aa62VfCzrn KmVX/eWeIAWRR+uy8dAwfp/68JZnoerhUamgBTpz4n2t8hCO2UEkkP84sVe80wqU yWS4cpfEkhui3FJMSzi+VJ4d4DuhAb/2cmDzBrR2+RejCQQ4qsfne+xCBMbmzf9H +Ul+hw113f2qM5BrftwIZav/UDbIONNoUDABw31GX4cCmVOzCYlqDcraaBwTYwJk 6ocqT6i6Epvzl0UzOO1Rgvm7CwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFK+qBtaj eArgVFHPwUuw72knuYQmMB8GA1UdIwQYMBaAFHwqlqWpA0zfKnhvZL3yf9isUckr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUU4OS83NjAxMDc3OEIy NDExMUVCOTlEQUU5MjhDNEY5QUUwMi9mQ3FXcGFrRFROOHFlRzlrdmZKXzJLeFJ5 U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZDcVdwYWtEVE44cWVHOWt2ZkpfMkt4UnlTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVFODkvNzYwMTA3NzhCMjQxMTFFQjk5REFFOTI4QzRGOUFFMDIvMTJDQzlEMTg1 N0E3MTFFREIyODQxMDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBABnYfkDBABnegYDBAFnegwwDwQCAAIwCQMHACABDfIHADAN BgkqhkiG9w0BAQsFAAOCAQEAc7UbdJOTrXVHuY60G769xq5cGx3mMbGYnFnCBsOY HXTSdAnqkzrlFkadXjEkT6VImsjyOMv1yJyi4+ywo754ZGhjhH63fMdjI5/dRJ68 ckNqSBKT80MXtLj3etvlkUjwZ/23EyMidDD+30SOqYr9bMGG03Fx24cYU+1XFpSr LXjHiPK68y9acmAHbRxkiiFLXyq4i9R3GOujzNFsEpQZfTgMpfZ3dF08pVNXCGXD 30GXxOimCZXjPznQCAKw3dawHHEfqvxSOfFTEh4AGA7YnI/T+R7tbaGbfJ/WcHiO D0JuHvEsK7vZNuTAuIIeiCOEKJLcwlXetMWcoz7Fmf4vMw== -----END CERTIFICATE-----Generated at Thu May 23 02:40:10 2024 by rpki-client on console-ams.rpki-client.org