$ rpki-client -vvf rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/FBD6D2BE158711E9881C4D1FC4F9AE02.roa File: FBD6D2BE158711E9881C4D1FC4F9AE02.roa (raw, json) Hash identifier: zNlH/Z07Yg4I4x55gc1ucSgdIggd1npatylNfrUQ3Ns= Subject key identifier: A7:AB:46:67:6A:85:89:D7:B2:02:C8:65:1D:F9:31:09:8E:FB:6A:1D Certificate issuer: /CN=A9126356/serialNumber=72CD1D560904458308E91A3ACC9A3D70B67D8492 Certificate serial: 107B Authority key identifier: 72:CD:1D:56:09:04:45:83:08:E9:1A:3A:CC:9A:3D:70:B6:7D:84:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/FBD6D2BE158711E9881C4D1FC4F9AE02.roa Signing time: Wed 14 Aug 2024 17:55:06 +0000 ROA not before: Wed 14 Aug 2024 17:55:06 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137994 IP address blocks: 103.97.87.0/24 maxlen: 24 103.119.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.crl rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:20:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4219 (0x107b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126356/serialNumber=72CD1D560904458308E91A3ACC9A3D70B67D8492 Validity Not Before: Aug 14 17:55:06 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bcef7a-31d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9c:4c:5d:80:82:14:40:0d:7f:71:fe:c0:82: d1:fd:42:39:22:40:86:d0:37:41:7e:0c:d9:5b:74: 14:df:6c:cb:31:86:10:22:15:e8:fa:a5:d0:76:bf: d7:50:24:e3:c0:67:ce:4e:b9:5c:56:b6:51:fc:c1: 7e:45:35:3c:6f:cd:52:60:ea:03:14:1d:d0:41:6a: d9:08:73:9e:1f:7f:a1:9e:9f:20:1c:ef:7a:98:06: 46:f1:8b:47:cd:94:a2:ca:fa:bd:8b:4d:8d:40:b5: 6e:79:81:5f:b7:6a:69:b6:06:fc:86:83:9b:2a:6d: 45:dc:f8:6f:95:84:3a:b7:23:4b:68:ad:0e:e9:e8: 29:39:66:f3:56:e1:ef:30:db:33:ed:2f:4f:67:d5: 20:4b:27:59:d0:7e:b6:98:45:fb:15:a2:a6:8b:f3: 06:9f:54:eb:63:7b:d9:a1:6c:6f:c7:a4:7f:d8:cb: 6f:3b:eb:01:6b:cb:39:1a:71:4d:d6:dd:a8:22:93: 42:d8:7b:04:28:18:99:0e:e2:f5:df:e0:ec:f0:9c: 6a:01:f4:72:e2:0b:99:7a:e8:eb:04:06:28:b0:57: 91:17:41:b7:db:a7:dd:87:ce:70:55:2e:06:9f:36: 58:12:9f:bd:0f:1e:59:42:a4:bb:4b:87:c1:50:ac: 59:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:AB:46:67:6A:85:89:D7:B2:02:C8:65:1D:F9:31:09:8E:FB:6A:1D X509v3 Authority Key Identifier: keyid:72:CD:1D:56:09:04:45:83:08:E9:1A:3A:CC:9A:3D:70:B6:7D:84:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cs0dVgkERYMI6Ro6zJo9cLZ9hJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126356/33A53D76158711E9B8A8401EC4F9AE02/FBD6D2BE158711E9881C4D1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.87.0/24 103.119.126.0/24 Signature Algorithm: sha256WithRSAEncryption 53:65:b4:dd:9f:88:11:23:18:2c:cf:a3:dd:a7:aa:a9:f7:e9: a3:76:da:6f:c3:4d:8f:2b:a4:45:93:17:4e:d5:09:f9:35:ad: a4:86:02:04:1c:11:36:53:0a:31:65:66:c9:5e:05:a9:fa:38: 5b:ae:dc:bf:fb:b7:b0:93:78:15:c5:ee:f3:21:b5:14:65:33: f5:a0:7c:59:ce:eb:ef:d4:7f:38:9e:27:fc:78:45:2a:79:d3: e1:44:37:93:af:11:ab:7b:b2:c8:b4:08:63:86:e7:3d:9f:a0: 41:eb:58:d0:ac:7a:aa:25:8e:6c:bc:a7:8b:93:52:c1:27:78: 01:b1:8d:8d:93:8c:61:78:b3:cc:97:b2:38:bc:2f:bb:d6:56: ca:64:f0:67:fa:9b:08:4a:4a:43:87:cb:04:a1:af:60:13:1e: d4:36:ff:73:64:f5:bb:54:94:85:8c:47:04:56:c1:f2:95:69: 5c:f4:d8:20:be:85:b4:79:6a:bd:b7:b1:fa:84:35:2f:bc:98: 78:6a:81:cb:ae:d8:69:cb:c2:b3:66:fe:5b:b3:f8:f8:26:84: 44:a0:67:4a:ac:db:95:e0:80:ee:92:06:c6:f6:f8:b1:18:cb: d7:48:5e:f8:a5:a2:c2:88:6c:f5:20:12:3b:45:b3:a2:bd:17: 36:85:be:35 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEHswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYzNTYxMTAvBgNVBAUTKDcyQ0QxRDU2MDkwNDQ1ODMwOEU5MUEzQUNDOUEzRDcw QjY3RDg0OTIwHhcNMjQwODE0MTc1NTA2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJjZWY3YS0zMWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmJxMXYCCFEANf3H+wILR/UI5IkCG0DdBfgzZW3QU32zLMYYQIhXo+qXQdr/X UCTjwGfOTrlcVrZR/MF+RTU8b81SYOoDFB3QQWrZCHOeH3+hnp8gHO96mAZG8YtH zZSiyvq9i02NQLVueYFft2pptgb8hoObKm1F3PhvlYQ6tyNLaK0O6egpOWbzVuHv MNsz7S9PZ9UgSydZ0H62mEX7FaKmi/MGn1TrY3vZoWxvx6R/2MtvO+sBa8s5GnFN 1t2oIpNC2HsEKBiZDuL13+Ds8JxqAfRy4guZeujrBAYosFeRF0G326fdh85wVS4G nzZYEp+9Dx5ZQqS7S4fBUKxZyQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKerRmdq hYnXsgLIZR35MQmO+2odMB8GA1UdIwQYMBaAFHLNHVYJBEWDCOkaOsyaPXC2fYSS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjM1Ni8zM0E1M0Q3NjE1 ODcxMUU5QjhBODQwMUVDNEY5QUUwMi9jczBkVmdrRVJZTUk2Um82ekpvOWNMWjlo SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NzMGRWZ2tFUllNSTZSbzZ6Sm85Y0xaOWhKSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYzNTYvMzNBNTNENzYxNTg3MTFFOUI4QTg0MDFFQzRGOUFFMDIvRkJENkQyQkUx NTg3MTFFOTg4MUM0RDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnYVcDBABnd34wDQYJKoZIhvcNAQELBQADggEBAFNltN2f iBEjGCzPo92nqqn36aN22m/DTY8rpEWTF07VCfk1raSGAgQcETZTCjFlZsleBan6 OFuu3L/7t7CTeBXF7vMhtRRlM/WgfFnO6+/UfzieJ/x4RSp50+FEN5OvEat7ssi0 CGOG5z2foEHrWNCseqoljmy8p4uTUsEneAGxjY2TjGF4s8yXsji8L7vWVspk8Gf6 mwhKSkOHywShr2ATHtQ2/3Nk9btUlIWMRwRWwfKVaVz02CC+hbR5ar23sfqENS+8 mHhqgcuu2GnLwrNm/luz+PgmhESgZ0qs25XggO6SBsb2+LEYy9dIXvilosKIbPUg EjtFs6K9FzaFvjU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:57 2024 by rpki-client on console-ams.rpki-client.org