$ rpki-client -vvf rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/1ABD64C4FC4B11EC9E374483C4F9AE02.roa File: 1ABD64C4FC4B11EC9E374483C4F9AE02.roa (raw, json) Hash identifier: K97XOnrCVU0606+V1FtEZLw0f6bE1IzyADp5nbB58XM= Subject key identifier: 1A:27:2B:AE:21:99:18:AB:86:C3:EB:6A:2B:00:42:FD:F3:1F:3A:C4 Certificate issuer: /CN=A9127FC2/serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28 Certificate serial: 032D Authority key identifier: 73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/1ABD64C4FC4B11EC9E374483C4F9AE02.roa Signing time: Sun 17 Nov 2024 16:48:30 +0000 ROA not before: Sun 17 Nov 2024 16:48:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 976 IP address blocks: 103.91.219.0/24 maxlen: 24 103.95.207.0/24 maxlen: 24 103.101.153.0/24 maxlen: 24 103.107.8.0/24 maxlen: 24 2001:df0:a540::/48 maxlen: 48 2401:1740::/32 maxlen: 32 2401:1740:a::/48 maxlen: 48 2401:1740:1000::/48 maxlen: 48 2401:1740:2000::/48 maxlen: 48 2401:1740:3000::/48 maxlen: 48 2401:1740:6000::/48 maxlen: 48 2401:1740:9000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.crl rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 813 (0x32d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127FC2/serialNumber=73BA21BE36DDDFD58690116D6EEC7BDC7EFEFB28 Validity Not Before: Nov 17 16:48:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=673a1e5e-a0be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:52:6e:cd:03:7f:42:06:d0:43:43:86:69:0e: aa:07:80:8d:42:c4:65:a5:fd:8f:45:36:28:6d:cc: 6c:ab:d4:d1:77:e3:73:7f:84:36:70:c8:61:e1:ea: 00:b4:3d:92:f3:1e:a2:ab:9f:f5:70:f4:06:b9:57: fc:80:a2:e1:64:78:03:ad:d4:26:0a:19:68:c0:01: 6d:bc:18:b9:f0:0c:a5:32:f0:21:ad:f1:b2:e8:e1: 84:b7:c0:54:ec:a4:16:9e:d5:71:8f:3e:49:a7:c5: 9a:cf:7e:4c:1a:4a:43:7e:e8:0a:90:7e:f2:2c:04: fb:49:e8:0b:2a:ab:d2:29:81:23:ca:cb:c3:fd:49: 18:f4:ec:be:19:5e:e9:b1:a3:21:47:03:77:dc:4e: 23:3d:ea:32:75:67:93:e9:49:96:82:c3:6f:f3:8f: 02:c6:4d:a9:c7:15:39:4d:85:2f:f7:98:6c:55:58: 25:78:69:53:49:f6:76:99:c6:fd:96:04:ac:23:4c: 7d:8d:d6:68:eb:86:a4:50:7b:e7:61:ce:78:f9:6e: 70:78:a8:66:4c:ba:da:81:74:41:a2:e3:e7:e1:3f: b4:61:08:fa:90:6a:29:3f:15:0e:ae:8c:68:64:1b: 6f:c2:e2:a9:2a:43:d9:d1:d6:2e:b2:79:dc:0b:51: 25:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:27:2B:AE:21:99:18:AB:86:C3:EB:6A:2B:00:42:FD:F3:1F:3A:C4 X509v3 Authority Key Identifier: keyid:73:BA:21:BE:36:DD:DF:D5:86:90:11:6D:6E:EC:7B:DC:7E:FE:FB:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/c7ohvjbd39WGkBFtbux73H7--yg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7ohvjbd39WGkBFtbux73H7--yg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127FC2/5E30BF70BBA611ECBAF43156C4F9AE02/1ABD64C4FC4B11EC9E374483C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.219.0/24 103.95.207.0/24 103.101.153.0/24 103.107.8.0/24 IPv6: 2001:df0:a540::/48 2401:1740::/32 Signature Algorithm: sha256WithRSAEncryption b5:4a:d4:00:bb:f2:12:d3:08:59:0b:e8:11:2b:a3:0b:ac:b1: fd:8e:f4:13:c7:f7:6f:ed:8e:89:77:6b:ec:fd:c6:cd:83:57: c7:e5:4f:e7:f8:97:7d:98:85:80:6e:7a:8c:12:fd:09:96:9e: 27:c7:24:2f:f1:8a:1a:09:1e:38:31:83:fd:7f:6a:64:95:ef: 4b:11:f5:8b:32:cb:68:b6:60:33:bc:e9:7f:98:7e:c5:7c:b8: 07:27:06:d8:48:29:34:f9:67:83:56:e7:31:c5:75:ba:22:7e: 1e:d6:c6:b8:bf:88:09:20:85:5f:1d:88:ef:d3:21:b3:c2:7e: 6d:92:67:cb:7c:44:7b:63:f9:c6:fb:3b:17:a3:6d:36:39:19: 9d:4f:58:c6:2e:1a:90:3d:d7:19:b4:e9:0e:b4:49:83:a7:04: c0:4c:20:07:81:93:e2:b0:d8:e7:2e:91:eb:14:ad:b7:ea:7b: ef:ba:da:8d:63:b6:b1:7a:4b:9f:eb:a1:51:6b:ad:0a:3f:27: 2c:ea:c1:34:14:7c:4a:54:0f:32:19:8e:14:6e:f2:0a:78:4e: b8:7d:7a:ec:7b:75:f4:db:c2:c0:6c:5f:54:46:85:ef:29:7e: f6:b0:8b:29:75:99:cf:e3:fd:23:bf:0c:04:d7:5b:37:6b:88: 18:63:b6:1c -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICAy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjdGQzIxMTAvBgNVBAUTKDczQkEyMUJFMzZERERGRDU4NjkwMTE2RDZFRUM3QkRD N0VGRUZCMjgwHhcNMjQxMTE3MTY0ODMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNhMWU1ZS1hMGJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VJuzQN/QgbQQ0OGaQ6qB4CNQsRlpf2PRTYobcxsq9TRd+Nzf4Q2cMhh4eoA tD2S8x6iq5/1cPQGuVf8gKLhZHgDrdQmChlowAFtvBi58AylMvAhrfGy6OGEt8BU 7KQWntVxjz5Jp8Waz35MGkpDfugKkH7yLAT7SegLKqvSKYEjysvD/UkY9Oy+GV7p saMhRwN33E4jPeoydWeT6UmWgsNv848Cxk2pxxU5TYUv95hsVVgleGlTSfZ2mcb9 lgSsI0x9jdZo64akUHvnYc54+W5weKhmTLragXRBouPn4T+0YQj6kGopPxUOroxo ZBtvwuKpKkPZ0dYusnncC1ElPwIDAQABo4ICvzCCArswHQYDVR0OBBYEFBonK64h mRirhsPraisAQv3zHzrEMB8GA1UdIwQYMBaAFHO6Ib423d/VhpARbW7se9x+/vso MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyN0ZDMi81RTMwQkY3MEJC QTYxMUVDQkFGNDMxNTZDNEY5QUUwMi9jN29odmpiZDM5V0drQkZ0YnV4NzNINy0t eWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M3b2h2amJkMzlXR2tCRnRidXg3M0g3LS15Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjdGQzIvNUUzMEJGNzBCQkE2MTFFQ0JBRjQzMTU2QzRGOUFFMDIvMUFCRDY0QzRG QzRCMTFFQzlFMzc0NDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MB4EAgABMBgDBABnW9sDBABnX88DBABnZZkDBABnawgwFgQCAAIwEAMHACAB DfClQAMFACQBF0AwDQYJKoZIhvcNAQELBQADggEBALVK1AC78hLTCFkL6BErowus sf2O9BPH92/tjol3a+z9xs2DV8flT+f4l32YhYBueowS/QmWnifHJC/xihoJHjgx g/1/amSV70sR9Ysyy2i2YDO86X+YfsV8uAcnBthIKTT5Z4NW5zHFdboifh7Wxri/ iAkghV8diO/TIbPCfm2SZ8t8RHtj+cb7OxejbTY5GZ1PWMYuGpA91xm06Q60SYOn BMBMIAeBk+Kw2OcukesUrbfqe++62o1jtrF6S5/roVFrrQo/JyzqwTQUfEpUDzIZ jhRu8gp4Trh9eux7dfTbwsBsX1RGhe8pfvawiyl1mc/j/SO/DATXWzdriBhjthw= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:53 2024 by rpki-client on console-fra.rpki-client.org