$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/CF3378E272DB11ED8483E95DC4F9AE02.roa File: CF3378E272DB11ED8483E95DC4F9AE02.roa (raw, json) Hash identifier: 7P+2TWLqfeVNyGM33Rg8heOwqWfXOoMC0kS7Ev1IOzE= Subject key identifier: 24:A4:5D:B7:AA:A3:3E:97:EA:AD:07:21:55:3B:89:61:DB:DB:E8:03 Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0B7A Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/CF3378E272DB11ED8483E95DC4F9AE02.roa Signing time: Mon 16 Sep 2024 18:57:30 +0000 ROA not before: Mon 16 Sep 2024 18:57:30 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138171 IP address blocks: 103.121.220.0/22 maxlen: 24 2403:7240::/32 maxlen: 32 2403:7240::/36 maxlen: 36 2403:7240:1000::/36 maxlen: 36 2403:7240:2000::/36 maxlen: 36 2403:7240:3000::/36 maxlen: 36 2403:7240:4000::/36 maxlen: 36 2403:7240:5000::/36 maxlen: 36 2403:7240:6000::/36 maxlen: 36 2403:7240:7000::/36 maxlen: 36 2403:7240:8000::/36 maxlen: 36 2403:7240:9000::/36 maxlen: 36 2403:7240:a000::/36 maxlen: 36 2403:7240:b000::/36 maxlen: 36 2403:7240:c000::/36 maxlen: 36 2403:7240:d000::/36 maxlen: 36 2403:7240:e000::/36 maxlen: 36 2403:7240:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:44:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2938 (0xb7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Sep 16 18:57:30 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e87f99-058a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:41:f8:45:ba:82:a3:c6:d5:ab:22:4c:72:68: 3a:7d:26:a3:1d:2d:6f:29:56:22:7a:27:ea:2e:0d: fc:ec:54:bf:dd:de:5c:ef:b0:a6:32:37:12:89:0e: 90:0b:28:01:49:fe:71:be:3e:c3:74:be:2c:33:6e: ea:8f:e5:f2:da:de:1c:28:4b:85:30:fd:42:bb:8a: dc:3f:f1:ef:06:a0:f4:86:21:15:55:ad:22:e5:3f: 24:68:17:fd:ee:67:f2:9d:12:fb:7d:21:4a:5d:76: fc:fb:a1:7b:ea:07:14:e9:4d:71:ed:68:c6:66:a4: 92:07:8e:02:a2:1f:74:11:26:41:d7:f4:dd:6d:8d: 7b:21:88:79:8c:cb:b7:28:ac:39:5d:c5:88:ac:2a: 94:32:b4:57:5e:87:3e:a9:44:38:2c:c6:5a:6a:be: 7a:0b:f0:1f:e5:4e:a7:48:4f:23:2d:f5:7a:78:d6: c2:92:ae:af:5a:90:91:0d:9a:57:f9:7b:2e:28:3c: 30:7e:28:ce:9d:e0:aa:dc:4c:8a:ca:bf:ca:39:ce: 6e:a6:77:59:c2:96:7e:99:62:c3:dc:31:41:af:e2: a7:c7:23:fd:4c:1c:37:c4:ff:18:39:56:7a:2a:36: dc:b3:7a:1a:ed:ad:e0:28:94:3e:2c:42:a4:90:94: 7a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A4:5D:B7:AA:A3:3E:97:EA:AD:07:21:55:3B:89:61:DB:DB:E8:03 X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/CF3378E272DB11ED8483E95DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.220.0/22 IPv6: 2403:7240::/32 Signature Algorithm: sha256WithRSAEncryption 03:4c:55:21:73:d8:c6:57:e6:e7:b8:28:9a:e6:d0:e8:ef:ce: fb:cd:20:95:86:9b:90:76:ac:55:ad:8c:98:f1:94:bb:f4:99: 7b:29:b9:cd:f0:60:45:7f:04:5f:8e:9b:bc:86:d6:4b:57:07: 58:cd:98:1e:d8:87:65:3c:46:cf:4d:1a:f9:5b:d1:d2:70:ac: c6:26:9c:5b:eb:d4:bd:79:8f:e3:c7:d6:fe:e5:b6:f4:24:46: 8d:15:26:46:e8:12:e2:81:86:3a:1a:1a:65:05:b7:b9:26:97: 9b:e3:bc:e6:9f:58:6f:6d:d4:6e:93:12:7b:b3:61:73:71:b2: 19:cd:ae:fe:b5:95:ba:c9:f4:7b:cc:30:ad:73:f2:4f:94:62: ad:11:84:dd:52:f3:a7:58:d1:1a:90:09:f6:bb:49:25:61:c1: fe:76:e2:79:c4:40:99:70:98:c3:25:29:b6:5d:1b:88:3f:4e: 80:00:57:1e:63:2f:2b:bd:e1:88:b7:7a:c9:d5:cd:76:69:c8: 13:bf:11:78:00:04:7e:2b:48:19:85:d6:50:77:57:71:d3:20: cc:c1:68:e2:06:f6:1e:14:26:8b:59:35:8f:69:69:f6:05:87: fb:3b:90:69:0f:d1:0c:fd:45:5c:d1:96:b1:68:2d:da:9a:1b: 8e:82:d6:40 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjQwOTE2MTg1NzMwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4N2Y5OS0wNThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtEH4RbqCo8bVqyJMcmg6fSajHS1vKVYieifqLg387FS/3d5c77CmMjcSiQ6Q CygBSf5xvj7DdL4sM27qj+Xy2t4cKEuFMP1Cu4rcP/HvBqD0hiEVVa0i5T8kaBf9 7mfynRL7fSFKXXb8+6F76gcU6U1x7WjGZqSSB44Coh90ESZB1/TdbY17IYh5jMu3 KKw5XcWIrCqUMrRXXoc+qUQ4LMZaar56C/Af5U6nSE8jLfV6eNbCkq6vWpCRDZpX +XsuKDwwfijOneCq3EyKyr/KOc5upndZwpZ+mWLD3DFBr+KnxyP9TBw3xP8YOVZ6 Kjbcs3oa7a3gKJQ+LEKkkJR6aQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCSkXbeq oz6X6q0HIVU7iWHb2+gDMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJEMjUvMDdGODIxNEExNEU0MTFFQTg3NkU4NjQwQzRGOUFFMDIvQ0YzMzc4RTI3 MkRCMTFFRDg0ODNFOTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnedwwDQQCAAIwBwMFACQDckAwDQYJKoZIhvcNAQELBQAD ggEBAANMVSFz2MZX5ue4KJrm0OjvzvvNIJWGm5B2rFWtjJjxlLv0mXspuc3wYEV/ BF+Om7yG1ktXB1jNmB7Yh2U8Rs9NGvlb0dJwrMYmnFvr1L15j+PH1v7ltvQkRo0V JkboEuKBhjoaGmUFt7kml5vjvOafWG9t1G6TEnuzYXNxshnNrv61lbrJ9HvMMK1z 8k+UYq0RhN1S86dY0RqQCfa7SSVhwf524nnEQJlwmMMlKbZdG4g/ToAAVx5jLyu9 4Yi3esnVzXZpyBO/EXgABH4rSBmF1lB3V3HTIMzBaOIG9h4UJotZNY9pafYFh/s7 kGkP0Qz9RVzRlrFoLdqaG46C1kA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org