$ rpki-client -vvf rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa File: 210A4EBAC0F211EE99FFBA21C4F9AE02.roa (raw, json) Hash identifier: l/0cV1WqKHlm3zfBuP747PhglBf2SLieAswGuN8ioE8= Subject key identifier: A7:2F:E0:02:58:C2:F4:E9:7B:4D:87:6F:31:7D:2A:D9:43:3D:B5:6F Certificate issuer: /CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Certificate serial: A2 Authority key identifier: AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa Signing time: Mon 23 Sep 2024 04:48:31 +0000 ROA not before: Mon 23 Sep 2024 04:48:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 31898 IP address blocks: 103.255.96.0/24 maxlen: 24 103.255.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:14:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9128C33/serialNumber=AF2EE04412356ABFD8E19AE2C1B22A737CDF5E9E Validity Not Before: Sep 23 04:48:31 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f0f31f-7af1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:67:98:70:53:bb:72:93:f2:b3:17:77:03:b1: 2b:08:7e:23:31:87:2a:d9:82:f5:87:4b:3a:20:f4: d3:99:87:a6:13:40:6b:68:2a:b7:07:b4:4a:80:d6: 6d:dd:89:70:1d:0c:86:65:48:ce:86:1e:42:86:90: 90:4c:e1:fc:10:9e:ee:c2:97:73:02:c9:57:46:41: d3:cd:63:68:ab:4f:f5:75:8b:2b:ab:f6:76:6c:2f: 62:73:86:c7:26:f6:6e:32:c7:e2:d3:ff:06:43:23: 54:c0:c3:d7:6f:3d:42:4c:67:84:de:10:fb:ed:d7: 69:15:94:b3:53:08:e2:4f:78:e8:d4:09:b4:a6:73: 9c:94:8a:c3:a8:cf:51:1d:1a:4f:7c:21:32:ff:f2: f1:11:38:ee:30:d6:1e:7f:07:b6:2e:2c:0c:d2:91: 9f:2a:82:c7:80:67:6b:bd:84:51:e5:a8:5c:60:4e: 2d:a8:83:eb:85:52:b2:60:c4:67:14:79:2f:92:77: cf:ec:31:6a:4f:55:ce:09:99:8e:be:81:88:62:d5: 17:2d:54:0f:04:d9:72:9e:bc:d0:c5:c5:6e:23:23: d7:9e:d1:4f:99:4e:c2:e2:89:a5:bb:cf:12:89:51: 17:60:fd:43:d0:a3:31:a1:5a:cc:b6:5f:b4:bc:b3: fe:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:2F:E0:02:58:C2:F4:E9:7B:4D:87:6F:31:7D:2A:D9:43:3D:B5:6F X509v3 Authority Key Identifier: keyid:AF:2E:E0:44:12:35:6A:BF:D8:E1:9A:E2:C1:B2:2A:73:7C:DF:5E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ry7gRBI1ar_Y4ZriwbIqc3zfXp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9128C33/956CB086981B11EEAB0FC922C4F9AE02/210A4EBAC0F211EE99FFBA21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.96.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:13:02:8c:d8:99:16:0e:a0:b4:69:e0:b5:38:fb:e6:b7:ba: c9:37:95:97:75:97:34:4c:dc:07:9e:54:32:f7:2d:16:d1:bd: 30:c3:f6:63:2d:40:35:10:55:6c:97:04:23:12:0c:a5:60:00: 31:d3:cf:d5:c3:ea:5c:57:bd:61:64:43:38:25:56:1e:6a:f6: 34:54:58:4b:a1:4a:33:90:68:d6:a2:3e:4a:f3:58:86:06:d4: 49:2d:c9:b6:16:09:0b:04:72:62:e1:be:1c:ad:9f:f0:70:87: 43:0d:53:04:60:26:cb:9b:ad:36:5f:73:70:32:6a:4d:e2:9e: e7:80:16:87:fe:f7:bd:37:aa:1a:1a:4c:8f:1e:c4:ef:e6:ff: c0:be:7e:8c:8d:25:72:61:49:7c:25:50:1b:b9:df:49:b9:46: c7:18:0d:48:9d:05:9a:84:5f:74:80:7a:ef:9b:8c:2e:20:ad: 61:ac:5f:f5:71:57:d6:12:e7:e1:87:7a:8c:e6:70:a2:21:5e: 49:39:f9:f6:75:c3:b3:6f:cd:aa:ce:93:9d:0b:25:b3:d5:0d: a6:4f:a4:37:c6:b2:2f:be:f5:02:89:09:48:2d:e0:75:9c:84: 7b:16:0b:b9:c8:d6:53:33:8d:2d:6d:e9:fd:0d:1b:10:1c:f7: 22:f0:53:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjhDMzMxMTAvBgNVBAUTKEFGMkVFMDQ0MTIzNTZBQkZEOEUxOUFFMkMxQjIyQTcz N0NERjVFOUUwHhcNMjQwOTIzMDQ0ODMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYwZjMxZi03YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0meYcFO7cpPysxd3A7ErCH4jMYcq2YL1h0s6IPTTmYemE0BraCq3B7RKgNZt 3YlwHQyGZUjOhh5ChpCQTOH8EJ7uwpdzAslXRkHTzWNoq0/1dYsrq/Z2bC9ic4bH JvZuMsfi0/8GQyNUwMPXbz1CTGeE3hD77ddpFZSzUwjiT3jo1Am0pnOclIrDqM9R HRpPfCEy//LxETjuMNYefwe2LiwM0pGfKoLHgGdrvYRR5ahcYE4tqIPrhVKyYMRn FHkvknfP7DFqT1XOCZmOvoGIYtUXLVQPBNlynrzQxcVuIyPXntFPmU7C4omlu88S iVEXYP1D0KMxoVrMtl+0vLP+3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKcv4AJY wvTpe02HbzF9KtlDPbVvMB8GA1UdIwQYMBaAFK8u4EQSNWq/2OGa4sGyKnN8316e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOEMzMy85NTZDQjA4Njk4 MUIxMUVFQUIwRkM5MjJDNEY5QUUwMi9yeTdnUkJJMWFyX1k0WnJpd2JJcWMzemZY cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3J5N2dSQkkxYXJfWTRacml3YklxYzN6ZlhwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjhDMzMvOTU2Q0IwODY5ODFCMTFFRUFCMEZDOTIyQzRGOUFFMDIvMjEwQTRFQkFD MEYyMTFFRTk5RkZCQTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn/2AwDQYJKoZIhvcNAQELBQADggEBAH8TAozYmRYOoLRp 4LU4++a3usk3lZd1lzRM3AeeVDL3LRbRvTDD9mMtQDUQVWyXBCMSDKVgADHTz9XD 6lxXvWFkQzglVh5q9jRUWEuhSjOQaNaiPkrzWIYG1EktybYWCQsEcmLhvhytn/Bw h0MNUwRgJsubrTZfc3Ayak3inueAFof+9703qhoaTI8exO/m/8C+foyNJXJhSXwl UBu530m5RscYDUidBZqEX3SAeu+bjC4grWGsX/VxV9YS5+GHeozmcKIhXkk5+fZ1 w7NvzarOk50LJbPVDaZPpDfGsi++9QKJCUgt4HWchHsWC7nI1lMzjS1t6f0NGxAc 9yLwU5c= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:01 2024 by rpki-client on console-ams.rpki-client.org