$ rpki-client -vvf rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/CDB51BDC739411EEB8BAE858C4F9AE02.roa File: CDB51BDC739411EEB8BAE858C4F9AE02.roa (raw, json) Hash identifier: y80dPuObdKg8H5/o6aPEUDf3ud7ZzBogYMhK2YYNptc= Subject key identifier: EA:4D:CF:9E:E6:46:99:90:4F:E2:E5:C8:7C:CC:BE:9C:51:1C:13:A4 Certificate issuer: /CN=A9126996/serialNumber=6283BE9B31D29036B967BFF7B7E71BADD529A64E Certificate serial: 94 Authority key identifier: 62:83:BE:9B:31:D2:90:36:B9:67:BF:F7:B7:E7:1B:AD:D5:29:A6:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/CDB51BDC739411EEB8BAE858C4F9AE02.roa Signing time: Mon 29 Jul 2024 06:07:23 +0000 ROA not before: Mon 29 Jul 2024 06:07:23 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 58511 IP address blocks: 103.22.144.0/22 maxlen: 22 2401:3900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.crl rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:55:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 148 (0x94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126996/serialNumber=6283BE9B31D29036B967BFF7B7E71BADD529A64E Validity Not Before: Jul 29 06:07:23 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a7319b-217f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a2:5c:e8:a2:0d:87:8d:8d:d6:1d:af:0b:de: ed:5c:92:2a:d3:9d:63:90:f3:c6:81:b4:59:9d:63: 9d:85:19:2e:72:dc:1b:ba:eb:c8:60:6e:a7:a1:9b: 09:3b:b6:a5:d2:ce:4a:1a:b4:0d:1c:b8:63:79:a9: e8:85:3e:00:8c:9d:56:ba:cb:12:12:34:45:c7:ce: 42:ad:cc:64:9a:1c:a0:69:45:5f:08:f8:cc:df:40: 9f:fa:91:3a:50:43:8b:57:f1:47:40:ee:b7:cf:3d: 89:f9:7f:99:b0:8c:fc:50:fe:77:77:00:ca:9f:13: d7:43:a6:52:06:70:89:a3:93:0a:a5:36:13:66:61: af:a1:94:d4:dd:ef:f6:97:db:a3:ce:e1:fa:d3:6c: 93:d2:40:78:80:ba:3f:83:71:29:c6:4b:ab:0f:c5: 41:9f:08:07:85:aa:7a:fa:7f:19:a4:b8:93:7a:6b: c4:3d:45:48:22:f9:d6:85:f2:82:5d:9c:f3:78:0f: 0c:a8:ad:e3:a8:76:03:e1:6f:90:3f:24:9b:54:71: 62:a0:7b:9d:b4:23:5e:eb:c1:b3:b8:4c:9e:1c:da: 24:a4:b2:09:26:de:94:49:7f:cb:78:58:e9:24:6f: 91:8c:49:6d:d7:0a:0e:6b:6b:80:b2:a8:6d:16:18: 11:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:4D:CF:9E:E6:46:99:90:4F:E2:E5:C8:7C:CC:BE:9C:51:1C:13:A4 X509v3 Authority Key Identifier: keyid:62:83:BE:9B:31:D2:90:36:B9:67:BF:F7:B7:E7:1B:AD:D5:29:A6:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/YoO-mzHSkDa5Z7_3t-cbrdUppk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoO-mzHSkDa5Z7_3t-cbrdUppk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126996/1231FC68739411EEA170384DC4F9AE02/CDB51BDC739411EEB8BAE858C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.22.144.0/22 IPv6: 2401:3900::/32 Signature Algorithm: sha256WithRSAEncryption a1:f2:a1:d3:5f:d4:46:f8:cc:07:cf:ba:ec:e3:8a:cc:81:b6: 21:d5:e3:11:09:51:a3:69:48:2d:d4:c8:3c:92:09:de:3c:eb: ff:47:d2:8b:5f:82:ea:ff:93:49:59:83:29:d7:cb:43:b9:16: 85:21:eb:fb:63:d0:14:1d:6a:67:fd:90:9b:fc:88:1d:f0:c8: f4:1e:1d:ad:fb:16:4f:ae:99:f8:1b:37:d4:7f:55:01:a8:71: 01:dd:db:10:20:9d:0b:68:6c:a4:d2:26:e4:ba:98:ff:98:21: af:fc:4b:0a:8a:25:86:d4:09:22:18:e8:95:9e:9c:f1:93:8f: 31:a0:b9:8f:b0:5f:8a:3a:5b:4e:a5:40:c8:03:90:2d:17:08: a7:03:06:3e:1a:62:92:ef:83:a4:18:e8:88:41:4e:4f:ad:fd: b8:c9:67:a2:2c:f0:35:3a:ea:65:96:d5:84:a7:26:e4:c9:20: eb:2a:c6:14:eb:12:af:cd:7d:f9:9a:b5:90:dc:e2:ab:9a:43: 8c:a5:40:02:67:f3:aa:17:9b:9e:c3:49:53:31:de:a2:a5:26: 40:c9:b9:cc:d1:39:11:be:d6:05:4d:12:14:e6:94:b8:f2:14: 04:ef:14:cb:26:4e:9b:80:33:88:4a:59:be:a0:8c:1d:db:d8: e2:9f:6d:68 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAJQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjY5OTYxMTAvBgNVBAUTKDYyODNCRTlCMzFEMjkwMzZCOTY3QkZGN0I3RTcxQkFE RDUyOUE2NEUwHhcNMjQwNzI5MDYwNzIzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE3MzE5Yi0yMTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6Jc6KINh42N1h2vC97tXJIq051jkPPGgbRZnWOdhRkuctwbuuvIYG6noZsJ O7al0s5KGrQNHLhjeanohT4AjJ1WussSEjRFx85CrcxkmhygaUVfCPjM30Cf+pE6 UEOLV/FHQO63zz2J+X+ZsIz8UP53dwDKnxPXQ6ZSBnCJo5MKpTYTZmGvoZTU3e/2 l9ujzuH602yT0kB4gLo/g3EpxkurD8VBnwgHhap6+n8ZpLiTemvEPUVIIvnWhfKC XZzzeA8MqK3jqHYD4W+QPySbVHFioHudtCNe68GzuEyeHNokpLIJJt6USX/LeFjp JG+RjElt1woOa2uAsqhtFhgR7QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOpNz57m RpmQT+LlyHzMvpxRHBOkMB8GA1UdIwQYMBaAFGKDvpsx0pA2uWe/97fnG63VKaZO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjk5Ni8xMjMxRkM2ODcz OTQxMUVFQTE3MDM4NERDNEY5QUUwMi9Zb08tbXpIU2tEYTVaN18zdC1jYnJkVXBw azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lvTy1tekhTa0RhNVo3XzN0LWNicmRVcHBrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjY5OTYvMTIzMUZDNjg3Mzk0MTFFRUExNzAzODREQzRGOUFFMDIvQ0RCNTFCREM3 Mzk0MTFFRUI4QkFFODU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnFpAwDQQCAAIwBwMFACQBOQAwDQYJKoZIhvcNAQELBQAD ggEBAKHyodNf1Eb4zAfPuuzjisyBtiHV4xEJUaNpSC3UyDySCd486/9H0otfgur/ k0lZgynXy0O5FoUh6/tj0BQdamf9kJv8iB3wyPQeHa37Fk+umfgbN9R/VQGocQHd 2xAgnQtobKTSJuS6mP+YIa/8SwqKJYbUCSIY6JWenPGTjzGguY+wX4o6W06lQMgD kC0XCKcDBj4aYpLvg6QY6IhBTk+t/bjJZ6Is8DU66mWW1YSnJuTJIOsqxhTrEq/N ffmatZDc4quaQ4ylQAJn86oXm57DSVMx3qKlJkDJuczRORG+1gVNEhTmlLjyFATv FMsmTpuAM4hKWb6gjB3b2OKfbWg= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:54 2024 by rpki-client on console-fra.rpki-client.org