$ rpki-client -vvf rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/CCB0DBA8CB2911EE9CE70483C4F9AE02.roa File: CCB0DBA8CB2911EE9CE70483C4F9AE02.roa (raw, json) Hash identifier: +L4H64N18c7HC9b7a2kMN0oPwzUDs4ByILHmodSVj7c= Subject key identifier: 5E:AB:F8:88:F8:0D:22:76:32:74:C8:97:DD:4A:A8:09:EC:13:C3:BF Certificate issuer: /CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Certificate serial: 018E Authority key identifier: BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/CCB0DBA8CB2911EE9CE70483C4F9AE02.roa Signing time: Sat 23 Nov 2024 02:05:07 +0000 ROA not before: Sat 23 Nov 2024 02:05:07 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134603 IP address blocks: 103.20.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:05:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912804A/serialNumber=BBB6E60104374325054880B7D3C135E6FC7CCAB1 Validity Not Before: Nov 23 02:05:07 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67413853-b684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d5:ec:5f:42:b9:db:25:75:39:f9:5b:e5:99: 2a:6b:d7:56:1c:e1:9b:b2:e9:f2:50:d3:19:49:be: 19:ef:bd:2d:3f:72:cb:46:a7:7e:9b:f6:de:4f:e2: c1:8e:a3:fd:b0:64:c5:fe:20:44:9b:bf:7c:ef:80: e2:f2:00:34:b3:86:24:47:63:ae:bd:fd:40:2e:c6: 53:a8:f7:1a:bd:5d:47:40:3f:8d:a3:6c:59:bc:07: 8f:47:d9:be:9a:f7:d2:d4:fa:2c:72:a3:33:b6:66: 65:07:85:2a:cd:af:bb:25:a4:e1:42:6c:1c:e8:64: 83:d9:08:82:5e:21:2e:7a:a6:f1:de:cb:81:8b:b4: 47:63:0b:eb:ad:27:b7:9a:eb:ad:be:fe:2a:8c:2d: 0c:16:41:fc:b5:61:b3:a0:ce:d4:eb:6b:5d:dc:7c: fb:11:13:7d:bd:e6:2c:e7:e1:d7:f6:22:bd:df:e0: 1a:c9:d1:3b:94:d7:7c:36:44:c2:94:fd:af:1e:6c: 60:8a:b9:aa:42:ad:ea:b6:b6:90:c9:20:22:92:84: 26:1f:e3:03:7e:f2:0b:30:d8:25:b3:68:97:f4:7d: c1:6c:03:00:e2:f0:80:ed:34:7b:b9:ed:0e:d5:5a: ab:7f:bd:69:2a:b9:60:c3:e2:df:4f:37:2b:a3:b6: 04:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:AB:F8:88:F8:0D:22:76:32:74:C8:97:DD:4A:A8:09:EC:13:C3:BF X509v3 Authority Key Identifier: keyid:BB:B6:E6:01:04:37:43:25:05:48:80:B7:D3:C1:35:E6:FC:7C:CA:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/u7bmAQQ3QyUFSIC308E15vx8yrE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u7bmAQQ3QyUFSIC308E15vx8yrE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912804A/95A81014507711ED9F725928C4F9AE02/CCB0DBA8CB2911EE9CE70483C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.110.0/24 Signature Algorithm: sha256WithRSAEncryption 89:af:67:9c:bf:b3:e0:f9:8a:0b:fe:79:3a:92:22:9a:9f:09: c5:00:b9:9b:5c:f7:0f:06:a6:3f:13:98:47:74:82:e3:47:58: c0:0a:4a:19:36:36:b7:65:5d:01:e5:f0:cc:26:26:2b:36:10: e4:f7:47:27:97:72:e8:86:cc:0a:ea:7b:b1:ff:0f:b9:22:ff: a9:39:df:41:89:87:21:ff:d8:51:28:04:0a:32:56:9a:92:3a: 4d:49:b1:2a:02:c0:2b:48:01:ec:b8:b2:7c:71:a0:9b:4d:7b: 0b:19:d7:6f:4c:80:86:2e:ed:76:1f:11:e3:6d:11:21:46:82: 94:0b:61:9c:6f:8c:80:ae:2d:0d:89:60:43:38:01:4d:87:c7: c5:2c:24:25:94:26:0f:0b:28:13:3f:b8:dc:b7:52:7f:82:be: 0c:84:fb:47:99:f2:3f:3f:99:97:88:db:d0:da:93:0b:62:35: 37:6c:4b:78:8f:5c:a5:35:77:b3:80:6e:38:79:97:1d:38:37: 53:ed:64:25:db:7b:56:44:ab:c8:37:2f:c8:a4:da:ac:7b:45: 19:31:39:7a:ee:3f:5d:13:e2:3b:c5:7d:eb:29:62:0b:dc:60: 44:aa:c2:04:d8:bf:e2:13:5d:c2:52:44:68:70:73:e1:61:aa: 58:a5:f7:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjgwNEExMTAvBgNVBAUTKEJCQjZFNjAxMDQzNzQzMjUwNTQ4ODBCN0QzQzEzNUU2 RkM3Q0NBQjEwHhcNMjQxMTIzMDIwNTA3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQxMzg1My1iNjg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9XsX0K52yV1Oflb5Zkqa9dWHOGbsunyUNMZSb4Z770tP3LLRqd+m/beT+LB jqP9sGTF/iBEm79874Di8gA0s4YkR2Ouvf1ALsZTqPcavV1HQD+No2xZvAePR9m+ mvfS1PoscqMztmZlB4Uqza+7JaThQmwc6GSD2QiCXiEueqbx3suBi7RHYwvrrSe3 muutvv4qjC0MFkH8tWGzoM7U62td3Hz7ERN9veYs5+HX9iK93+AaydE7lNd8NkTC lP2vHmxgirmqQq3qtraQySAikoQmH+MDfvILMNgls2iX9H3BbAMA4vCA7TR7ue0O 1Vqrf71pKrlgw+LfTzcro7YEsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF6r+Ij4 DSJ2MnTIl91KqAnsE8O/MB8GA1UdIwQYMBaAFLu25gEEN0MlBUiAt9PBNeb8fMqx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyODA0QS85NUE4MTAxNDUw NzcxMUVEOUY3MjU5MjhDNEY5QUUwMi91N2JtQVFRM1F5VUZTSUMzMDhFMTV2eDh5 ckUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U3Ym1BUVEzUXlVRlNJQzMwOEUxNXZ4OHlyRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjgwNEEvOTVBODEwMTQ1MDc3MTFFRDlGNzI1OTI4QzRGOUFFMDIvQ0NCMERCQThD QjI5MTFFRTlDRTcwNDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFG4wDQYJKoZIhvcNAQELBQADggEBAImvZ5y/s+D5igv+ eTqSIpqfCcUAuZtc9w8Gpj8TmEd0guNHWMAKShk2NrdlXQHl8MwmJis2EOT3RyeX cuiGzArqe7H/D7ki/6k530GJhyH/2FEoBAoyVpqSOk1JsSoCwCtIAey4snxxoJtN ewsZ129MgIYu7XYfEeNtESFGgpQLYZxvjICuLQ2JYEM4AU2Hx8UsJCWUJg8LKBM/ uNy3Un+CvgyE+0eZ8j8/mZeI29DakwtiNTdsS3iPXKU1d7OAbjh5lx04N1PtZCXb e1ZEq8g3L8ik2qx7RRkxOXruP10T4jvFfespYgvcYESqwgTYv+ITXcJSRGhwc+Fh qlil94Y= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:45 2024 by rpki-client on console-fra.rpki-client.org