$ rpki-client -vvf rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa File: 743770A0C06011EE882BC34AC4F9AE02.roa (raw, json) Hash identifier: cYHOYxZ4Xyw5AnaJHRbn54gHLD72iVyuW1Ed3Fy2gN4= Subject key identifier: AC:DD:37:D5:E1:74:34:7D:27:80:54:81:D1:FE:C6:3C:9B:AE:CD:4C Certificate issuer: /CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Certificate serial: 1498 Authority key identifier: 44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa Signing time: Fri 18 Oct 2024 17:25:00 +0000 ROA not before: Fri 18 Oct 2024 17:25:00 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9541 IP address blocks: 103.209.125.0/24 maxlen: 24 103.209.126.0/24 maxlen: 24 103.209.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:55:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5272 (0x1498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91301D5/serialNumber=448BD971A306AB036399E716DC221CA338F58B59 Validity Not Before: Oct 18 17:25:00 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=671299ec-9887 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:60:44:5b:ab:88:5b:8b:50:e0:43:5c:47:fd: 27:0a:46:15:9a:ff:51:22:35:50:f7:5d:f8:ee:e0: 79:4c:c3:02:f4:f0:bd:83:c7:81:39:88:6e:12:b4: 1e:43:d7:df:d6:73:af:97:eb:d5:79:66:c3:8e:b2: 51:64:04:e8:11:c4:c8:d7:3c:22:a1:e7:f3:45:73: dc:ab:a9:b1:a4:fe:e0:f3:aa:47:7f:ce:44:e5:8e: e3:04:81:f3:12:9b:97:22:38:71:30:f4:47:03:b4: b5:cb:58:79:12:a1:3d:b6:ce:4c:a9:8a:06:29:1a: 4c:08:4c:48:b0:cc:94:14:43:45:fe:49:6b:94:85: 86:9f:f6:fc:bf:1f:1b:40:d6:ab:c1:da:1e:e7:af: a2:af:e4:11:34:35:c9:8b:38:c9:ae:3f:11:86:14: 1d:f9:f5:72:d4:8f:bb:14:98:e8:e4:bb:18:0f:df: f5:b6:1b:05:24:a5:5b:0f:36:17:58:a3:eb:aa:cd: 9e:23:1c:36:e3:42:c7:60:40:c4:0d:ec:1f:c6:b6: f2:f5:e9:6a:e3:fd:a8:e7:9b:92:18:cd:a2:46:72: 12:b0:71:e0:4f:e1:0c:04:07:83:57:3e:d6:2b:e8: 82:1c:dd:52:db:29:e4:f9:4f:1a:d6:d4:1c:10:57: de:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:DD:37:D5:E1:74:34:7D:27:80:54:81:D1:FE:C6:3C:9B:AE:CD:4C X509v3 Authority Key Identifier: keyid:44:8B:D9:71:A3:06:AB:03:63:99:E7:16:DC:22:1C:A3:38:F5:8B:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/RIvZcaMGqwNjmecW3CIcozj1i1k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIvZcaMGqwNjmecW3CIcozj1i1k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91301D5/D4BE00D463E511E8B5CFE41AC4F9AE02/743770A0C06011EE882BC34AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.125.0-103.209.127.255 Signature Algorithm: sha256WithRSAEncryption 9a:d8:e7:55:5e:c7:f3:b4:df:fc:f4:be:7f:0b:cc:48:12:d6: ff:07:4e:d6:4d:72:1f:3c:aa:48:35:a9:f7:32:2e:46:28:16: 0a:f5:66:57:b9:28:70:3e:7a:02:67:1c:c9:71:5f:b9:39:15: 42:5d:b0:b5:58:35:3d:a1:a8:60:dc:58:b2:b3:6b:aa:87:a7: d0:17:8c:7b:fd:4a:4e:c4:9f:a2:80:f3:03:b6:9c:a2:33:c6: 2a:92:55:05:9e:0d:26:c1:e0:ef:f7:bb:53:e9:5f:08:40:97: d7:7f:06:f7:d6:8d:be:7c:2b:1f:b6:f7:2d:9a:8e:19:df:cb: cd:5e:ab:b6:e5:05:69:ba:c9:50:34:c9:1a:07:d3:f6:83:69: b6:71:74:11:3d:73:60:6b:30:6a:8d:43:43:61:7a:13:12:4b: 2c:1c:9c:3e:34:92:9a:e1:ce:0f:97:01:bf:c9:06:a1:22:a1: ba:77:6f:63:2d:75:b9:af:aa:d8:05:f2:62:20:e3:13:ce:cc: 7c:db:81:44:6c:d7:6e:6e:18:02:25:95:ff:76:96:6e:a9:05: 20:f1:de:c4:ec:57:e2:12:d6:f9:0c:93:7b:fa:88:9c:00:a2: c6:15:b1:11:1a:7d:42:15:13:95:74:bf:fe:eb:57:35:9a:b0: 70:4b:95:19 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICFJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzAxRDUxMTAvBgNVBAUTKDQ0OEJEOTcxQTMwNkFCMDM2Mzk5RTcxNkRDMjIxQ0Ez MzhGNThCNTkwHhcNMjQxMDE4MTcyNTAwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEyOTllYy05ODg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGBEW6uIW4tQ4ENcR/0nCkYVmv9RIjVQ91347uB5TMMC9PC9g8eBOYhuErQe Q9ff1nOvl+vVeWbDjrJRZAToEcTI1zwioefzRXPcq6mxpP7g86pHf85E5Y7jBIHz EpuXIjhxMPRHA7S1y1h5EqE9ts5MqYoGKRpMCExIsMyUFENF/klrlIWGn/b8vx8b QNarwdoe56+ir+QRNDXJizjJrj8RhhQd+fVy1I+7FJjo5LsYD9/1thsFJKVbDzYX WKPrqs2eIxw240LHYEDEDewfxrby9elq4/2o55uSGM2iRnISsHHgT+EMBAeDVz7W K+iCHN1S2ynk+U8a1tQcEFfeMQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFKzdN9Xh dDR9J4BUgdH+xjybrs1MMB8GA1UdIwQYMBaAFESL2XGjBqsDY5nnFtwiHKM49YtZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDFENS9ENEJFMDBENDYz RTUxMUU4QjVDRkU0MUFDNEY5QUUwMi9SSXZaY2FNR3F3TmptZWNXM0NJY296ajFp MWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JJdlpjYU1HcXdOam1lY1czQ0ljb3pqMWkxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzAxRDUvRDRCRTAwRDQ2M0U1MTFFOEI1Q0ZFNDFBQzRGOUFFMDIvNzQzNzcwQTBD MDYwMTFFRTg4MkJDMzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAGfRfQMEB2fRADANBgkqhkiG9w0BAQsFAAOCAQEAmtjn VV7H87Tf/PS+fwvMSBLW/wdO1k1yHzyqSDWp9zIuRigWCvVmV7kocD56AmccyXFf uTkVQl2wtVg1PaGoYNxYsrNrqoen0BeMe/1KTsSfooDzA7acojPGKpJVBZ4NJsHg 7/e7U+lfCECX138G99aNvnwrH7b3LZqOGd/LzV6rtuUFabrJUDTJGgfT9oNptnF0 ET1zYGswao1DQ2F6ExJLLBycPjSSmuHOD5cBv8kGoSKhundvYy11ua+q2AXyYiDj E87MfNuBRGzXbm4YAiWV/3aWbqkFIPHexOxX4hLW+QyTe/qInACixhWxERp9QhUT lXS//utXNZqwcEuVGQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:58 2024 by rpki-client on console-ams.rpki-client.org