$ rpki-client -vvf rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/CF3378E272DB11ED8483E95DC4F9AE02.roa File: CF3378E272DB11ED8483E95DC4F9AE02.roa (raw, json) Hash identifier: lca3U0KCVvzi8uwqGLxw6IDlb9mzi6Ha7edBvN3axc4= Subject key identifier: 1E:89:41:72:84:CA:B7:5D:A9:27:8F:27:0F:85:33:F9:95:A8:3D:6B Certificate issuer: /CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Certificate serial: 0ABB Authority key identifier: C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/CF3378E272DB11ED8483E95DC4F9AE02.roa Signing time: Tue 12 Sep 2023 19:37:45 +0000 ROA not before: Tue 12 Sep 2023 19:37:45 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 138171 IP address blocks: 103.121.220.0/22 maxlen: 24 2403:7240::/32 maxlen: 32 2403:7240::/36 maxlen: 36 2403:7240:1000::/36 maxlen: 36 2403:7240:2000::/36 maxlen: 36 2403:7240:3000::/36 maxlen: 36 2403:7240:4000::/36 maxlen: 36 2403:7240:5000::/36 maxlen: 36 2403:7240:6000::/36 maxlen: 36 2403:7240:7000::/36 maxlen: 36 2403:7240:8000::/36 maxlen: 36 2403:7240:9000::/36 maxlen: 36 2403:7240:a000::/36 maxlen: 36 2403:7240:b000::/36 maxlen: 36 2403:7240:c000::/36 maxlen: 36 2403:7240:d000::/36 maxlen: 36 2403:7240:e000::/36 maxlen: 36 2403:7240:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:47:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2747 (0xabb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BD25/serialNumber=C909BDB284E4DF08477660D682B7CB3F594831E3 Validity Not Before: Sep 12 19:37:45 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6500be08-a56b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:54:3a:c0:d4:c1:cd:9e:82:f3:14:c5:68:48: 58:34:dd:dd:a9:48:36:55:06:08:a4:f1:98:89:0f: 67:a5:ec:d8:38:6e:a1:ff:08:aa:69:7a:13:f1:ba: bd:ae:4f:0e:e8:97:90:49:b8:98:60:f5:e7:db:6a: 2e:73:55:bf:76:f7:39:b3:f7:14:27:32:d2:35:4a: 92:80:a4:7f:fb:4a:d1:62:0b:c4:57:98:03:4a:19: 4a:4a:1a:b3:72:e1:e4:6f:14:f4:c8:17:6c:ef:15: eb:d4:ed:cd:c1:43:2d:e1:49:30:2e:25:a7:7d:3a: 1e:4b:b2:62:96:5b:28:fa:fc:8b:77:e5:90:1a:3e: 11:eb:d1:55:b8:72:a8:d4:25:eb:b6:7b:4c:1a:53: d8:e4:74:39:41:f4:f7:f4:0d:3c:74:8f:98:07:49: a9:be:17:6f:35:4c:05:8d:92:fa:6e:7b:d3:b6:0d: 7f:b5:bd:5a:43:36:7d:e5:50:55:fb:1d:1d:0d:05: 5c:d6:13:35:dc:21:26:58:e2:9a:13:e4:aa:05:bc: 67:38:3d:94:8f:1a:16:de:c1:ec:88:4c:f8:64:1a: ad:6c:b7:21:0e:e1:0e:09:c0:d0:77:e2:8e:7e:f9: 60:bc:9b:1e:23:01:35:31:9e:44:39:45:d7:e7:d3: 3f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:89:41:72:84:CA:B7:5D:A9:27:8F:27:0F:85:33:F9:95:A8:3D:6B X509v3 Authority Key Identifier: keyid:C9:09:BD:B2:84:E4:DF:08:47:76:60:D6:82:B7:CB:3F:59:48:31:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/yQm9soTk3whHdmDWgrfLP1lIMeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yQm9soTk3whHdmDWgrfLP1lIMeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BD25/07F8214A14E411EA876E8640C4F9AE02/CF3378E272DB11ED8483E95DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.220.0/22 IPv6: 2403:7240::/32 Signature Algorithm: sha256WithRSAEncryption 0b:e3:6d:f2:14:cb:4f:89:59:cb:9d:d9:71:23:18:d3:c4:90: 2d:b8:7a:21:84:7f:59:3c:d6:f6:97:73:08:32:84:37:2f:a8: 45:df:44:cc:51:75:a1:95:51:47:f1:05:2f:08:46:c9:31:1f: e9:a6:07:f2:42:f6:64:90:60:76:a4:71:15:bd:f7:cb:35:55: 65:d2:d3:20:cd:a9:cd:6a:74:f0:bc:64:08:05:98:e8:68:7a: aa:f6:e3:b0:cb:53:4b:cb:43:03:79:df:10:2b:6a:03:92:01: ae:21:bc:ca:c3:f8:43:4f:cd:35:0d:3d:2c:c6:9e:6d:bb:ba: 62:e0:09:68:e3:26:24:88:48:51:26:7e:c6:16:e3:0e:39:b2: fd:ee:b0:0e:57:bc:83:5e:77:4d:b8:a9:13:60:92:a4:9d:33: f0:8a:ed:a3:72:93:4b:ea:21:bb:f5:36:7b:a9:7e:55:47:1c: 72:2b:20:cc:1c:b6:9d:80:7d:f1:7e:5a:06:96:4a:73:83:4f: 8d:f9:b7:9e:f8:d6:5f:b6:7c:f9:bd:f2:5b:b1:29:54:7c:86: c9:9c:17:cd:b4:df:18:4b:a9:03:d7:74:f7:89:34:c1:7f:68: 47:1b:38:a0:7e:20:d5:59:6e:72:e3:ad:06:49:c1:15:6b:48: 38:34:ef:0e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJEMjUxMTAvBgNVBAUTKEM5MDlCREIyODRFNERGMDg0Nzc2NjBENjgyQjdDQjNG NTk0ODMxRTMwHhcNMjMwOTEyMTkzNzQ1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAwYmUwOC1hNTZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxlQ6wNTBzZ6C8xTFaEhYNN3dqUg2VQYIpPGYiQ9npezYOG6h/wiqaXoT8bq9 rk8O6JeQSbiYYPXn22ouc1W/dvc5s/cUJzLSNUqSgKR/+0rRYgvEV5gDShlKShqz cuHkbxT0yBds7xXr1O3NwUMt4UkwLiWnfToeS7Jillso+vyLd+WQGj4R69FVuHKo 1CXrtntMGlPY5HQ5QfT39A08dI+YB0mpvhdvNUwFjZL6bnvTtg1/tb1aQzZ95VBV +x0dDQVc1hM13CEmWOKaE+SqBbxnOD2UjxoW3sHsiEz4ZBqtbLchDuEOCcDQd+KO fvlgvJseIwE1MZ5EOUXX59M/LQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFB6JQXKE yrddqSePJw+FM/mVqD1rMB8GA1UdIwQYMBaAFMkJvbKE5N8IR3Zg1oK3yz9ZSDHj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkQyNS8wN0Y4MjE0QTE0 RTQxMUVBODc2RTg2NDBDNEY5QUUwMi95UW05c29UazN3aEhkbURXZ3JmTFAxbElN ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lRbTlzb1RrM3doSGRtRFdncmZMUDFsSU1lTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJEMjUvMDdGODIxNEExNEU0MTFFQTg3NkU4NjQwQzRGOUFFMDIvQ0YzMzc4RTI3 MkRCMTFFRDg0ODNFOTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnedwwDQQCAAIwBwMFACQDckAwDQYJKoZIhvcNAQELBQAD ggEBAAvjbfIUy0+JWcud2XEjGNPEkC24eiGEf1k81vaXcwgyhDcvqEXfRMxRdaGV UUfxBS8IRskxH+mmB/JC9mSQYHakcRW998s1VWXS0yDNqc1qdPC8ZAgFmOhoeqr2 47DLU0vLQwN53xAragOSAa4hvMrD+ENPzTUNPSzGnm27umLgCWjjJiSISFEmfsYW 4w45sv3usA5XvINed024qRNgkqSdM/CK7aNyk0vqIbv1NnupflVHHHIrIMwctp2A ffF+WgaWSnODT435t5741l+2fPm98luxKVR8hsmcF8203xhLqQPXdPeJNMF/aEcb OKB+INVZbnLjrQZJwRVrSDg07w4= -----END CERTIFICATE-----Generated at Sat May 18 21:31:26 2024 by rpki-client on console-ams.rpki-client.org