$ rpki-client -vvf rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/A42489D8799211EAA230E17FC4F9AE02.roa File: A42489D8799211EAA230E17FC4F9AE02.roa (raw, json) Hash identifier: 63q5xAYRR13q9Wbw71Jt7uvF6vNGnh8Mpl6xwXy0DDg= Subject key identifier: F2:0A:5B:94:3A:B9:7A:E7:8C:D5:0A:30:53:24:9F:2E:73:80:1A:48 Certificate issuer: /CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Certificate serial: 08EC Authority key identifier: 0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/A42489D8799211EAA230E17FC4F9AE02.roa Signing time: Fri 22 Dec 2023 14:22:16 +0000 ROA not before: Fri 22 Dec 2023 14:22:16 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 131275 IP address blocks: 103.121.120.0/24 maxlen: 24 103.121.121.0/24 maxlen: 24 2400:9c60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2284 (0x8ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FE31/serialNumber=0E6A43019568F977114E6D465B0A6F5569F5383E Validity Not Before: Dec 22 14:22:16 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65859b98-40a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ea:7f:04:c5:5c:eb:51:40:7a:82:fe:95:b1: 67:c4:d7:54:77:3b:48:aa:ff:c2:e7:05:d0:27:77: c8:51:02:99:9d:d7:74:4a:2a:fd:89:74:30:f1:05: 96:2f:d0:1a:14:3c:45:fa:87:b6:03:44:53:52:ad: ef:64:79:09:90:ad:33:9b:f7:2d:4b:2b:4e:05:a0: 16:c0:f7:74:c8:ac:74:42:aa:fa:97:a5:e3:dc:4e: 31:f6:4b:fe:6a:e1:4e:e3:b1:3f:c9:7e:9d:8c:dc: 29:f2:2f:4d:d4:e3:79:65:ce:fb:15:8d:a5:b2:13: 8b:f5:e7:04:2b:76:f4:1d:c3:ad:5e:84:90:c7:61: 7b:dd:ae:c6:e1:b1:d0:2a:33:1d:ab:ce:6e:e3:e0: 36:ba:5c:25:ad:0d:79:c5:cc:6a:87:33:cc:91:bb: 27:13:2c:0f:8a:b5:8a:e0:43:f4:28:2d:2f:67:be: 64:ca:b5:db:dc:62:97:31:88:bc:49:d0:1e:5f:1b: b6:f2:28:4d:88:e1:da:a8:2c:e5:2a:c2:4a:b1:b7: d7:bf:a5:7f:dc:c5:0e:e8:66:a0:dd:bb:d9:f2:36: ca:92:11:09:9b:40:8d:1c:30:17:9b:06:8d:72:79: d0:64:16:28:fc:a3:59:a2:da:f5:b1:e6:18:c6:47: 44:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0A:5B:94:3A:B9:7A:E7:8C:D5:0A:30:53:24:9F:2E:73:80:1A:48 X509v3 Authority Key Identifier: keyid:0E:6A:43:01:95:68:F9:77:11:4E:6D:46:5B:0A:6F:55:69:F5:38:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/DmpDAZVo-XcRTm1GWwpvVWn1OD4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmpDAZVo-XcRTm1GWwpvVWn1OD4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FE31/AB7956D4793611EA9208C558C4F9AE02/A42489D8799211EAA230E17FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.120.0/23 IPv6: 2400:9c60::/32 Signature Algorithm: sha256WithRSAEncryption 87:24:d0:f8:cb:5a:ac:4b:c0:07:bc:f5:4c:a6:a2:e3:9a:c5: ec:9a:92:c3:e6:d0:54:14:f9:3e:7b:fa:21:a8:ce:09:02:a8: b6:b9:3b:f6:10:09:42:11:33:39:86:11:2a:a2:bd:46:06:04: c8:db:6b:05:c4:52:f7:91:de:e4:e8:63:15:4f:3d:96:5e:a4: 9e:7e:a9:91:81:0c:e9:ad:e6:08:df:16:7c:7b:dd:a4:37:8e: 2e:c1:78:14:2b:08:eb:48:56:04:7d:3e:c0:d4:5f:ef:4b:94: 64:40:dc:da:9d:6f:41:ee:f9:e9:ac:1b:cb:6b:5b:df:64:cf: b1:04:33:4d:c1:9b:e9:88:31:3a:ba:8d:c4:5b:48:4d:dd:8f: 9d:c5:b0:25:0f:37:78:88:80:7f:26:b8:f8:2c:a3:65:30:b8: 08:c8:02:7e:ca:d4:70:d4:5f:2e:f4:60:a8:79:5b:4b:70:f1: 59:42:53:63:11:e3:4f:49:6b:31:c2:56:c3:37:af:75:86:d7: 4a:e8:85:f7:80:4c:ed:8f:be:b8:87:9d:02:c9:c5:50:bb:6b: f8:78:e5:c6:60:d4:f6:8d:8e:ae:2a:81:cf:92:d8:c4:6a:6c: f9:b0:6d:64:b9:fa:29:a0:62:ab:09:62:a3:31:95:ce:f1:1e: 05:dd:97:d7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZFMzExMTAvBgNVBAUTKDBFNkE0MzAxOTU2OEY5NzcxMTRFNkQ0NjVCMEE2RjU1 NjlGNTM4M0UwHhcNMjMxMjIyMTQyMjE2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg1OWI5OC00MGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzep/BMVc61FAeoL+lbFnxNdUdztIqv/C5wXQJ3fIUQKZndd0Sir9iXQw8QWW L9AaFDxF+oe2A0RTUq3vZHkJkK0zm/ctSytOBaAWwPd0yKx0Qqr6l6Xj3E4x9kv+ auFO47E/yX6djNwp8i9N1ON5Zc77FY2lshOL9ecEK3b0HcOtXoSQx2F73a7G4bHQ KjMdq85u4+A2ulwlrQ15xcxqhzPMkbsnEywPirWK4EP0KC0vZ75kyrXb3GKXMYi8 SdAeXxu28ihNiOHaqCzlKsJKsbfXv6V/3MUO6Gag3bvZ8jbKkhEJm0CNHDAXmwaN cnnQZBYo/KNZotr1seYYxkdE+QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPIKW5Q6 uXrnjNUKMFMkny5zgBpIMB8GA1UdIwQYMBaAFA5qQwGVaPl3EU5tRlsKb1Vp9Tg+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkUzMS9BQjc5NTZENDc5 MzYxMUVBOTIwOEM1NThDNEY5QUUwMi9EbXBEQVpWby1YY1JUbTFHV3dwdlZXbjFP RDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RtcERBWlZvLVhjUlRtMUdXd3B2VlduMU9ENC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZFMzEvQUI3OTU2RDQ3OTM2MTFFQTkyMDhDNTU4QzRGOUFFMDIvQTQyNDg5RDg3 OTkyMTFFQUEyMzBFMTdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFneXgwDQQCAAIwBwMFACQAnGAwDQYJKoZIhvcNAQELBQAD ggEBAIck0PjLWqxLwAe89UymouOaxeyaksPm0FQU+T57+iGozgkCqLa5O/YQCUIR MzmGESqivUYGBMjbawXEUveR3uToYxVPPZZepJ5+qZGBDOmt5gjfFnx73aQ3ji7B eBQrCOtIVgR9PsDUX+9LlGRA3Nqdb0Hu+emsG8trW99kz7EEM03Bm+mIMTq6jcRb SE3dj53FsCUPN3iIgH8muPgso2UwuAjIAn7K1HDUXy70YKh5W0tw8VlCU2MR409J azHCVsM3r3WG10rohfeATO2PvriHnQLJxVC7a/h45cZg1PaNjq4qgc+S2MRqbPmw bWS5+imgYqsJYqMxlc7xHgXdl9c= -----END CERTIFICATE-----Generated at Sat May 18 22:14:02 2024 by rpki-client on console-fra.rpki-client.org