$ rpki-client -vvf rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/2BACE2284D6B11EF9595843FC4F9AE02.roa File: 2BACE2284D6B11EF9595843FC4F9AE02.roa (raw, json) Hash identifier: z2Amob3XsDPHZrT5Wf5AplgGB0ayushklt2PBfRRMGk= Subject key identifier: 45:33:37:05:72:58:6D:0D:DE:2D:7F:47:DF:65:76:72:D9:8C:80:C1 Certificate issuer: /CN=A91278D5/serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Certificate serial: 0A3F Authority key identifier: E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/2BACE2284D6B11EF9595843FC4F9AE02.roa Signing time: Sat 24 Aug 2024 20:08:54 +0000 ROA not before: Sat 24 Aug 2024 20:08:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 140949 IP address blocks: 103.120.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2623 (0xa3f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91278D5/serialNumber=E010AF2E114A4A9FD5085BE44660521390FB1331 Validity Not Before: Aug 24 20:08:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ca3dd6-b2dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bc:77:45:b0:9d:83:ff:f7:ed:3b:f2:ee:e3: 8f:86:72:df:4a:2c:94:30:a9:6f:6d:67:29:99:d5: ee:3b:56:66:97:f4:02:bb:49:9e:43:2b:b9:0a:ba: 0e:f6:29:65:84:ba:c1:fa:ec:f1:a1:a3:7f:9f:17: 3f:a5:04:b0:c4:90:9e:06:55:01:f5:7b:fd:d3:a3: 10:12:7a:be:5c:52:66:4d:62:d1:20:5a:00:53:da: 43:ca:b7:8d:ce:94:46:2d:e0:cc:15:39:1c:06:c1: a7:0d:47:75:17:1c:a8:c4:ec:9d:b0:2a:7e:ee:36: 46:1d:32:69:6f:89:42:fc:5c:81:5f:89:b6:79:df: 69:fe:b3:d0:f9:f7:f2:f2:c1:1b:69:7a:dc:35:1d: f0:1b:30:bd:b4:eb:40:59:e1:98:34:9d:1f:38:4c: e3:5c:39:05:9f:db:bc:5b:7e:d9:d5:a6:e0:7c:db: 4d:0d:00:7b:fd:79:2d:32:6b:e7:81:f4:c1:83:19: 96:59:7a:8e:37:e3:41:8a:42:21:f1:38:32:66:74: eb:1f:cf:61:60:6a:21:a0:93:10:22:e3:0c:98:30: b6:ff:e0:b8:60:79:ef:c7:87:aa:21:a3:e5:83:59: 84:46:ad:f3:4a:40:c9:92:bc:2b:a8:ef:7a:b5:f6: 11:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:33:37:05:72:58:6D:0D:DE:2D:7F:47:DF:65:76:72:D9:8C:80:C1 X509v3 Authority Key Identifier: keyid:E0:10:AF:2E:11:4A:4A:9F:D5:08:5B:E4:46:60:52:13:90:FB:13:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/4BCvLhFKSp_VCFvkRmBSE5D7EzE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4BCvLhFKSp_VCFvkRmBSE5D7EzE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91278D5/6013216056C811EAB6657A40C4F9AE02/2BACE2284D6B11EF9595843FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.47.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:9b:96:21:4f:ff:6c:3c:de:9a:0a:77:b4:b3:f6:75:e3:06: 01:72:21:e0:7d:48:0a:6f:af:dc:be:be:65:1d:43:a4:68:7d: f3:3b:7b:7c:e1:21:34:10:79:4d:4d:23:d1:67:3b:74:90:99: 19:8f:d3:4a:57:69:b5:b2:42:b4:b0:62:35:67:09:52:e3:21: 8b:11:03:ba:3d:c1:c4:fa:0f:03:37:c7:11:ce:8b:41:99:b5: 01:7a:75:0b:18:73:d1:2c:f8:b5:48:b8:30:9e:25:61:1c:d5: e1:c4:51:64:40:4e:74:c4:d4:b7:9c:5b:f3:29:82:28:a5:66: 73:6e:15:7c:cd:df:c9:a0:a7:6a:b5:84:ec:ce:72:5b:f7:1a: 08:5b:56:85:17:88:5f:c7:2b:bb:c2:7e:bc:e3:c7:e5:2c:89: ce:95:52:8c:f1:17:80:29:f8:71:c4:ad:51:4e:59:4d:11:d9: ef:38:84:74:c0:f6:a1:8a:af:84:35:ca:1a:a1:1b:a7:9b:90: c9:60:dc:3e:74:ad:52:be:58:80:5a:91:a0:a0:2d:ef:e5:99: 06:bd:a1:e0:25:9e:41:b8:a7:2c:c6:52:30:98:1a:43:19:23: f6:9a:9b:a6:53:8c:d0:52:22:24:51:b9:23:b2:46:dc:ec:fb: 22:33:ce:94 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCj8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc4RDUxMTAvBgNVBAUTKEUwMTBBRjJFMTE0QTRBOUZENTA4NUJFNDQ2NjA1MjEz OTBGQjEzMzEwHhcNMjQwODI0MjAwODU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNhM2RkNi1iMmRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr7x3RbCdg//37Tvy7uOPhnLfSiyUMKlvbWcpmdXuO1Zml/QCu0meQyu5CroO 9illhLrB+uzxoaN/nxc/pQSwxJCeBlUB9Xv906MQEnq+XFJmTWLRIFoAU9pDyreN zpRGLeDMFTkcBsGnDUd1FxyoxOydsCp+7jZGHTJpb4lC/FyBX4m2ed9p/rPQ+ffy 8sEbaXrcNR3wGzC9tOtAWeGYNJ0fOEzjXDkFn9u8W37Z1abgfNtNDQB7/XktMmvn gfTBgxmWWXqON+NBikIh8TgyZnTrH89hYGohoJMQIuMMmDC2/+C4YHnvx4eqIaPl g1mERq3zSkDJkrwrqO96tfYRTQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEUzNwVy WG0N3i1/R99ldnLZjIDBMB8GA1UdIwQYMBaAFOAQry4RSkqf1Qhb5EZgUhOQ+xMx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzhENS82MDEzMjE2MDU2 QzgxMUVBQjY2NTdBNDBDNEY5QUUwMi80QkN2TGhGS1NwX1ZDRnZrUm1CU0U1RDdF ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRCQ3ZMaEZLU3BfVkNGdmtSbUJTRTVEN0V6RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc4RDUvNjAxMzIxNjA1NkM4MTFFQUI2NjU3QTQwQzRGOUFFMDIvMkJBQ0UyMjg0 RDZCMTFFRjk1OTU4NDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneC8wDQYJKoZIhvcNAQELBQADggEBAGqbliFP/2w83poK d7Sz9nXjBgFyIeB9SApvr9y+vmUdQ6RoffM7e3zhITQQeU1NI9FnO3SQmRmP00pX abWyQrSwYjVnCVLjIYsRA7o9wcT6DwM3xxHOi0GZtQF6dQsYc9Es+LVIuDCeJWEc 1eHEUWRATnTE1LecW/MpgiilZnNuFXzN38mgp2q1hOzOclv3GghbVoUXiF/HK7vC frzjx+Usic6VUozxF4Ap+HHErVFOWU0R2e84hHTA9qGKr4Q1yhqhG6ebkMlg3D50 rVK+WIBakaCgLe/lmQa9oeAlnkG4pyzGUjCYGkMZI/aam6ZTjNBSIiRRuSOyRtzs +yIzzpQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:22 2024 by rpki-client on console-ams.rpki-client.org