$ rpki-client -vvf rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/CE7D2C2A564811EFB4DC2425C4F9AE02.roa File: CE7D2C2A564811EFB4DC2425C4F9AE02.roa (raw, json) Hash identifier: UkC4+mtP4VnnLgF0yLlhyQWp87RAUcMz/wezKwi+9sE= Subject key identifier: 4B:F5:63:34:FB:E6:A9:5F:0B:41:F6:E5:B2:C5:B5:1E:2F:9C:EC:61 Certificate issuer: /CN=A9126DA8/serialNumber=BC137C2777E51DE7BD1ACE80D868FD93A1EC7A43 Certificate serial: 0256 Authority key identifier: BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/CE7D2C2A564811EFB4DC2425C4F9AE02.roa Signing time: Fri 09 Aug 2024 12:13:37 +0000 ROA not before: Fri 09 Aug 2024 12:13:37 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 146859 IP address blocks: 103.25.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/vBN8J3flHee9Gs6A2Gj9k6HsekM.crl rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/vBN8J3flHee9Gs6A2Gj9k6HsekM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:23:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 598 (0x256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126DA8/serialNumber=BC137C2777E51DE7BD1ACE80D868FD93A1EC7A43 Validity Not Before: Aug 9 12:13:37 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66b607f1-3570 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:56:7b:26:aa:8d:a7:a4:07:07:5f:50:72:d8: 28:5f:6f:3a:45:13:66:f0:7a:9d:13:97:bd:0a:a6: f9:12:85:80:c8:27:a9:e5:42:ce:00:76:16:5f:70: b3:fb:2a:9d:8e:b6:56:ce:4b:27:f7:0a:30:aa:f1: c2:44:a0:00:02:00:ae:ad:f4:95:1c:27:bd:1a:c7: cd:8b:82:bc:c0:2e:87:69:76:41:fd:b6:94:67:4f: 5f:36:55:b2:5d:4a:cd:e3:e0:53:c5:f0:68:87:7f: f3:4d:5d:86:a8:4a:b3:ab:6e:8e:95:bf:f4:79:f4: 3b:d6:b4:47:b4:50:74:a5:a9:6b:6e:cc:3d:c1:b6: ea:59:b6:cd:cf:76:15:73:40:6d:69:ab:63:cd:fe: 2d:90:d8:e8:86:11:21:5f:20:80:4c:f2:13:c2:f0: d4:b5:54:00:1d:aa:46:7d:b5:23:23:5f:62:a1:ed: 4f:a8:30:15:0e:9d:59:2c:53:35:4c:a7:78:3f:97: ea:b1:8c:76:0c:a5:fd:67:ea:4a:39:8c:44:71:a9: d6:d4:c2:a4:da:34:53:ed:9e:86:89:14:0d:ef:10: 16:ae:77:0f:3e:6b:d3:62:29:04:f9:0f:fb:29:7e: a7:71:a2:a9:7f:38:3e:9c:49:59:30:11:0d:6c:58: c4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:F5:63:34:FB:E6:A9:5F:0B:41:F6:E5:B2:C5:B5:1E:2F:9C:EC:61 X509v3 Authority Key Identifier: keyid:BC:13:7C:27:77:E5:1D:E7:BD:1A:CE:80:D8:68:FD:93:A1:EC:7A:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/vBN8J3flHee9Gs6A2Gj9k6HsekM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vBN8J3flHee9Gs6A2Gj9k6HsekM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126DA8/76ED44EE01EB11ED99A31A1FC4F9AE02/CE7D2C2A564811EFB4DC2425C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.25.126.0/24 Signature Algorithm: sha256WithRSAEncryption 08:ca:d1:b7:65:94:5d:dc:1d:ba:f3:f5:56:43:98:3c:58:45: 85:8a:17:ec:18:43:b1:f7:b8:fa:b7:35:cd:1f:ac:07:a6:31: 91:68:8e:87:1f:a0:3d:00:e6:cb:aa:10:b1:52:62:be:44:1b: 02:44:e6:74:53:e0:d5:dd:5e:93:89:61:8e:76:db:01:ee:3a: 2a:6b:51:1d:0d:67:12:93:97:20:29:a4:ec:a9:d8:e5:09:aa: 45:f5:bb:7b:50:89:bf:d8:ec:6c:c2:e3:35:98:d6:cb:92:c4: 25:6c:00:b1:fa:4a:d1:89:5a:21:f1:0e:1c:cc:d5:90:33:9b: 70:10:8b:0a:c5:cf:09:7b:c1:1f:68:f4:64:f8:f2:21:b3:16: e1:cc:57:9c:a9:e1:c5:b2:0c:21:3c:50:04:a8:25:e0:5c:98: c1:9e:dd:f2:f1:e2:06:76:8c:f9:0f:94:1a:d6:0d:d7:5d:0b: 92:bf:17:ad:22:b8:dd:44:50:fd:2e:79:3d:9c:53:6a:b9:e4: 30:33:e2:23:08:e0:c7:a9:dc:d4:63:d8:b3:e7:dd:ae:55:57: 6c:87:2c:cd:97:23:bf:a7:04:17:db:89:1b:ad:37:22:39:2d: 67:78:b6:a1:d3:8a:66:43:c3:b0:b5:e5:13:a1:f1:52:c4:9d: d9:a9:97:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZEQTgxMTAvBgNVBAUTKEJDMTM3QzI3NzdFNTFERTdCRDFBQ0U4MEQ4NjhGRDkz QTFFQzdBNDMwHhcNMjQwODA5MTIxMzM3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI2MDdmMS0zNTcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5VZ7JqqNp6QHB19QctgoX286RRNm8HqdE5e9Cqb5EoWAyCep5ULOAHYWX3Cz +yqdjrZWzksn9wowqvHCRKAAAgCurfSVHCe9GsfNi4K8wC6HaXZB/baUZ09fNlWy XUrN4+BTxfBoh3/zTV2GqEqzq26Olb/0efQ71rRHtFB0palrbsw9wbbqWbbNz3YV c0Btaatjzf4tkNjohhEhXyCATPITwvDUtVQAHapGfbUjI19ioe1PqDAVDp1ZLFM1 TKd4P5fqsYx2DKX9Z+pKOYxEcanW1MKk2jRT7Z6GiRQN7xAWrncPPmvTYikE+Q/7 KX6ncaKpfzg+nElZMBENbFjEQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEv1YzT7 5qlfC0H25bLFtR4vnOxhMB8GA1UdIwQYMBaAFLwTfCd35R3nvRrOgNho/ZOh7HpD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkRBOC83NkVENDRFRTAx RUIxMUVEOTlBMzFBMUZDNEY5QUUwMi92Qk44SjNmbEhlZTlHczZBMkdqOWs2SHNl a00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZCTjhKM2ZsSGVlOUdzNkEyR2o5azZIc2VrTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjZEQTgvNzZFRDQ0RUUwMUVCMTFFRDk5QTMxQTFGQzRGOUFFMDIvQ0U3RDJDMkE1 NjQ4MTFFRkI0REMyNDI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGX4wDQYJKoZIhvcNAQELBQADggEBAAjK0bdllF3cHbrz 9VZDmDxYRYWKF+wYQ7H3uPq3Nc0frAemMZFojocfoD0A5suqELFSYr5EGwJE5nRT 4NXdXpOJYY522wHuOiprUR0NZxKTlyAppOyp2OUJqkX1u3tQib/Y7GzC4zWY1suS xCVsALH6StGJWiHxDhzM1ZAzm3AQiwrFzwl7wR9o9GT48iGzFuHMV5yp4cWyDCE8 UASoJeBcmMGe3fLx4gZ2jPkPlBrWDdddC5K/F60iuN1EUP0ueT2cU2q55DAz4iMI 4Mep3NRj2LPn3a5VV2yHLM2XI7+nBBfbiRutNyI5LWd4tqHTimZDw7C15ROh8VLE ndmpl+M= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:54 2024 by rpki-client on console-fra.rpki-client.org