$ rpki-client -vvf rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/A42489D8799211EAA230E17FC4F9AE02.roa File: A42489D8799211EAA230E17FC4F9AE02.roa (raw, json) Hash identifier: OnZAowiVuvOnwLvfgL0R8vIbc2U3axlj1bMkwdwdu4I= Subject key identifier: 2C:56:CE:9B:0E:B9:0B:52:89:5A:34:DF:01:34:36:15:A9:CF:8D:22 Certificate issuer: /CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Certificate serial: 0980 Authority key identifier: 0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/A42489D8799211EAA230E17FC4F9AE02.roa Signing time: Sat 28 Sep 2024 20:10:12 +0000 ROA not before: Sat 28 Sep 2024 20:10:12 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 131275 IP address blocks: 103.121.120.0/24 maxlen: 24 103.121.121.0/24 maxlen: 24 2400:9c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:49:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2432 (0x980) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Validity Not Before: Sep 28 20:10:12 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f862a4-99d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:bc:ad:41:49:37:cc:13:aa:4b:5a:08:77:98: c5:31:8c:3b:88:9a:be:91:c7:80:47:84:9a:1f:50: e0:f0:c4:01:59:6b:17:f8:0e:5f:68:12:8e:d5:e6: fc:6b:2c:60:0d:2e:74:f7:73:f6:61:54:8b:6f:15: 96:05:3d:0c:92:2a:f0:e4:29:08:9f:53:7b:be:ad: 59:73:da:54:9a:3b:81:7a:30:70:f7:14:c6:52:37: 6d:f1:3f:d4:35:4d:db:37:b9:7f:2c:4a:28:84:3c: 68:6d:05:9d:81:be:49:08:c2:ea:5b:09:57:80:20: e7:a1:90:c1:56:42:76:59:18:57:c4:60:4c:82:32: 05:fa:67:e1:bc:0c:1e:62:42:56:9c:3f:fe:0b:56: ce:fe:e6:ef:47:df:20:f1:7f:f7:4c:84:bf:af:9a: 83:ac:3b:ae:0b:3f:d5:c2:84:71:30:9a:27:8e:da: 16:9f:40:78:56:10:20:26:41:a7:73:d3:30:a5:2b: 1a:16:d0:5f:42:80:15:af:64:e9:cf:74:70:ad:16: 11:e6:48:a7:7d:66:2d:2b:7c:64:b4:1a:21:2d:4b: 88:be:a8:05:de:c4:b4:4c:53:52:2d:32:a0:fe:17: 61:62:24:04:15:92:a2:1d:b4:42:68:18:61:f8:39: e1:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:56:CE:9B:0E:B9:0B:52:89:5A:34:DF:01:34:36:15:A9:CF:8D:22 X509v3 Authority Key Identifier: keyid:0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/A42489D8799211EAA230E17FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.120.0/23 IPv6: 2400:9c60::/32 Signature Algorithm: sha256WithRSAEncryption 43:28:89:05:9b:3b:8e:a0:0e:be:e7:1d:8f:c7:33:a4:0f:65: ba:5a:d9:4e:c8:24:00:30:1c:ba:b6:e1:b4:1c:81:db:b9:18: e9:b0:81:3e:c9:cf:55:13:31:8b:55:9c:92:60:e9:81:13:90: 37:fb:67:02:50:2d:14:a1:c1:70:93:f3:ff:b8:40:93:b6:21: e6:37:54:d1:92:1a:c3:79:a6:ce:a2:01:79:92:62:c2:fc:a9: cf:d4:a0:69:23:74:f2:80:89:3c:9d:ae:2c:c7:ba:8c:c5:d0: 6b:1a:18:31:0a:00:39:2a:4c:04:95:30:bd:9e:7f:a1:44:13: 14:92:05:ae:b7:88:2f:e3:3b:58:83:71:40:d0:a7:b6:cf:f5: 3d:bf:98:1b:48:80:cd:69:ae:6f:09:c4:a2:23:ca:c1:d3:98: cf:2e:a4:13:cc:03:e3:56:14:58:4f:17:0a:76:6f:29:30:cf: b1:d3:cb:95:db:18:94:81:71:08:66:4a:21:49:e2:28:09:7f: 9f:bc:61:57:a4:b6:75:a4:27:17:56:67:4b:7e:8f:d8:18:3a: f4:a7:a1:2f:38:4c:16:af:2b:9e:28:be:08:1a:23:90:3a:92: f7:cc:db:0c:e2:5b:bb:8f:ee:af:a3:58:8e:fe:d5:3d:a2:3d: 63:27:16:e0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCYAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZFMzExMTAvBgNVBAUTKDBFNkE0MzAxOTU2OEY5NzcxMTRFNkQ0NjVCMEE2RjU1 NjlGNTM4M0UwHhcNMjQwOTI4MjAxMDEyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4NjJhNC05OWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk7ytQUk3zBOqS1oId5jFMYw7iJq+kceAR4SaH1Dg8MQBWWsX+A5faBKO1eb8 ayxgDS5093P2YVSLbxWWBT0Mkirw5CkIn1N7vq1Zc9pUmjuBejBw9xTGUjdt8T/U NU3bN7l/LEoohDxobQWdgb5JCMLqWwlXgCDnoZDBVkJ2WRhXxGBMgjIF+mfhvAwe YkJWnD/+C1bO/ubvR98g8X/3TIS/r5qDrDuuCz/VwoRxMJonjtoWn0B4VhAgJkGn c9MwpSsaFtBfQoAVr2Tpz3RwrRYR5kinfWYtK3xktBohLUuIvqgF3sS0TFNSLTKg /hdhYiQEFZKiHbRCaBhh+DnhEQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCxWzpsO uQtSiVo03wE0NhWpz40iMB8GA1UdIwQYMBaAFA5qQwGVaPl3EU5tRlsKb1Vp9Tg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkUzMS9BQjc5NTZENDc5 MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1YY1JUbTFHV3dwdlZXbjFP RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtcERBWlZvLVhjUlRtMUdXd3B2VlduMU9ENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZFMzEvQUI3OTU2RDQ3OTM2MTFFQTkyMDhDNTU4QzRGOUFFMDIvQTQyNDg5RDg3 OTkyMTFFQUEyMzBFMTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFneXgwDQQCAAIwBwMFACQAnGAwDQYJKoZIhvcNAQELBQAD ggEBAEMoiQWbO46gDr7nHY/HM6QPZbpa2U7IJAAwHLq24bQcgdu5GOmwgT7Jz1UT MYtVnJJg6YETkDf7ZwJQLRShwXCT8/+4QJO2IeY3VNGSGsN5ps6iAXmSYsL8qc/U oGkjdPKAiTydrizHuozF0GsaGDEKADkqTASVML2ef6FEExSSBa63iC/jO1iDcUDQ p7bP9T2/mBtIgM1prm8JxKIjysHTmM8upBPMA+NWFFhPFwp2bykwz7HTy5XbGJSB cQhmSiFJ4igJf5+8YVektnWkJxdWZ0t+j9gYOvSnoS84TBavK54ovggaI5A6kvfM 2wziW7uP7q+jWI7+1T2iPWMnFuA= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org