$ rpki-client -vvf rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/4EC7F2781C6D11EE954FFE11C4F9AE02.roa File: 4EC7F2781C6D11EE954FFE11C4F9AE02.roa (raw, json) Hash identifier: Rl59S2S8+EcFcG0hSuxfJVlRjHuftNblUF0/U/p1dOQ= Subject key identifier: 5C:25:F8:30:CF:92:B9:A0:EA:87:72:E8:1D:B3:9A:97:7D:5D:46:40 Certificate issuer: /CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Certificate serial: 85 Authority key identifier: 01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/4EC7F2781C6D11EE954FFE11C4F9AE02.roa Signing time: Fri 09 Feb 2024 06:08:10 +0000 ROA not before: Fri 09 Feb 2024 06:08:10 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 38832 IP address blocks: 103.212.67.0/24 maxlen: 24 119.15.66.0/24 maxlen: 24 119.15.68.0/23 maxlen: 24 203.3.70.0/24 maxlen: 24 203.5.59.0/24 maxlen: 24 203.27.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Dec 2024 03:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129969/serialNumber=01666FC7DD875DFFA0E19BC73CBADA8ECF9A5827 Validity Not Before: Feb 9 06:08:10 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c5c14a-bbe9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:85:6c:bd:73:67:94:8e:0f:5f:da:bb:cb:5b: 91:10:c9:1c:cc:e7:e9:8b:41:f5:74:c8:11:66:62: 8f:a6:1c:e0:10:50:34:c5:b8:a1:0c:a2:9e:24:ec: 4c:0a:61:a6:b0:35:44:9c:6c:21:02:60:58:ea:d4: d2:96:6c:26:48:59:9e:2b:22:7b:e8:24:05:0b:ae: b9:71:48:2c:b0:4c:c3:a8:92:68:e5:8a:aa:cb:2a: a2:5c:29:4b:1b:9d:ec:e5:4f:f0:ec:12:ec:a5:07: 05:f6:44:01:7b:a3:26:47:80:86:88:46:4a:6b:d4: 04:bf:89:36:3d:2d:ac:59:64:b5:33:80:be:71:00: a5:24:7c:41:b4:57:3f:13:94:f4:0d:1c:44:7a:28: 9d:aa:a9:b4:0e:13:3d:e7:4b:00:90:6b:8d:33:7e: ed:53:c3:4c:a9:f2:30:1c:c9:51:38:85:ea:53:fe: dc:e9:97:60:31:7e:4b:b3:16:af:7a:d1:40:10:53: b8:65:60:12:25:d9:55:b0:fb:af:b2:d1:4c:e0:d0: 6f:08:27:60:29:4e:0c:bf:65:1c:0f:29:bc:da:23: 29:c1:41:bf:70:40:98:4d:24:98:66:f9:bc:ef:3c: 19:9f:c7:8b:49:b0:67:b1:42:d8:82:5b:72:02:00: 6c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:25:F8:30:CF:92:B9:A0:EA:87:72:E8:1D:B3:9A:97:7D:5D:46:40 X509v3 Authority Key Identifier: keyid:01:66:6F:C7:DD:87:5D:FF:A0:E1:9B:C7:3C:BA:DA:8E:CF:9A:58:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/AWZvx92HXf-g4ZvHPLrajs-aWCc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AWZvx92HXf-g4ZvHPLrajs-aWCc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129969/CF395C381C6A11EEBF62AC0DC4F9AE02/4EC7F2781C6D11EE954FFE11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.67.0/24 119.15.66.0/24 119.15.68.0/23 203.3.70.0/24 203.5.59.0/24 203.27.199.0/24 Signature Algorithm: sha256WithRSAEncryption 65:82:86:6d:e7:20:0f:b1:d9:f8:44:c1:b6:16:ef:c6:31:40: 39:e9:7b:e3:a1:b1:2d:9b:88:71:0a:c0:3e:0c:3f:cc:e4:dc: 4e:04:20:de:cb:fe:1d:80:b2:9f:5f:1b:19:66:73:a7:b1:db: de:87:91:0b:51:fd:31:8a:12:59:6c:80:55:fe:1b:14:64:99: eb:2a:93:fa:18:0e:52:1e:88:6d:60:58:c2:91:be:e2:72:f3: b2:55:32:d9:8c:16:ad:13:a6:36:cf:d8:b8:3a:5e:76:a5:b8: 4f:f2:83:05:9d:8b:44:8e:b2:99:05:47:19:ad:9f:f3:0c:1d: 31:e7:05:3c:15:5e:ce:aa:77:59:e6:95:2d:20:a8:17:51:ef: 7c:f5:08:64:ee:b4:18:ca:99:61:b2:b5:77:2f:73:3f:58:7b: 5e:1f:12:f3:6a:45:09:72:5e:71:ac:d7:01:dc:83:51:a5:ca: 7b:4c:ed:f2:cf:eb:b8:01:b2:44:12:75:b0:4a:73:df:30:cc: 9a:83:03:fa:5c:10:a8:bc:60:46:b7:15:0c:e6:8e:44:55:69: 31:19:e2:27:69:9c:36:cd:31:24:c0:81:89:7a:38:61:f3:99: d0:f5:45:8d:27:4e:18:6a:79:13:a0:f4:19:d0:82:0f:ea:08: 1e:1d:48:dd -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk5NjkxMTAvBgNVBAUTKDAxNjY2RkM3REQ4NzVERkZBMEUxOUJDNzNDQkFEQThF Q0Y5QTU4MjcwHhcNMjQwMjA5MDYwODEwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1YzE0YS1iYmU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsoVsvXNnlI4PX9q7y1uREMkczOfpi0H1dMgRZmKPphzgEFA0xbihDKKeJOxM CmGmsDVEnGwhAmBY6tTSlmwmSFmeKyJ76CQFC665cUgssEzDqJJo5YqqyyqiXClL G53s5U/w7BLspQcF9kQBe6MmR4CGiEZKa9QEv4k2PS2sWWS1M4C+cQClJHxBtFc/ E5T0DRxEeiidqqm0DhM950sAkGuNM37tU8NMqfIwHMlROIXqU/7c6ZdgMX5Lsxav etFAEFO4ZWASJdlVsPuvstFM4NBvCCdgKU4Mv2UcDym82iMpwUG/cECYTSSYZvm8 7zwZn8eLSbBnsULYgltyAgBsVwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFFwl+DDP krmg6ody6B2zmpd9XUZAMB8GA1UdIwQYMBaAFAFmb8fdh13/oOGbxzy62o7Pmlgn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTk2OS9DRjM5NUMzODFD NkExMUVFQkY2MkFDMERDNEY5QUUwMi9BV1p2eDkySFhmLWc0WnZIUExyYWpzLWFX Q2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FXWnZ4OTJIWGYtZzRadkhQTHJhanMtYVdDYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk5NjkvQ0YzOTVDMzgxQzZBMTFFRUJGNjJBQzBEQzRGOUFFMDIvNEVDN0YyNzgx QzZEMTFFRTk1NEZGRTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBABn1EMDBAB3D0IDBAF3D0QDBADLA0YDBADLBTsDBADLG8cw DQYJKoZIhvcNAQELBQADggEBAGWChm3nIA+x2fhEwbYW78YxQDnpe+OhsS2biHEK wD4MP8zk3E4EIN7L/h2Asp9fGxlmc6ex296HkQtR/TGKEllsgFX+GxRkmesqk/oY DlIeiG1gWMKRvuJy87JVMtmMFq0TpjbP2Lg6XnaluE/ygwWdi0SOspkFRxmtn/MM HTHnBTwVXs6qd1nmlS0gqBdR73z1CGTutBjKmWGytXcvcz9Ye14fEvNqRQlyXnGs 1wHcg1GlyntM7fLP67gBskQSdbBKc98wzJqDA/pcEKi8YEa3FQzmjkRVaTEZ4idp nDbNMSTAgYl6OGHzmdD1RY0nThhqeROg9BnQgg/qCB4dSN0= -----END CERTIFICATE-----Generated at Mon Nov 25 04:54:29 2024 by rpki-client on console-fra.rpki-client.org