$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa File: F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa (raw, json) Hash identifier: OlzMxXAfrSP6Nj86W0pq9Qh2aWjxJmFySgPE4i+83ow= Subject key identifier: C8:80:07:82:D9:1B:F6:D8:06:7A:6D:1C:F1:32:84:8B:4B:F9:27:F4 Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Certificate serial: 087E Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa Signing time: Wed 02 Oct 2024 20:59:14 +0000 ROA not before: Wed 02 Oct 2024 20:59:14 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136565 IP address blocks: 103.20.122.0/24 maxlen: 24 103.20.123.0/24 maxlen: 24 2405:2500:25::/48 maxlen: 48 2405:2500:26::/48 maxlen: 48 2405:2500:65::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 20:18:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2174 (0x87e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Validity Not Before: Oct 2 20:59:14 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fdb422-c30b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cd:4f:83:b7:d7:0d:06:f7:01:50:fe:64:ec: 2d:df:61:04:c1:af:db:ec:52:ce:55:92:28:f7:d8: 0e:86:46:ae:e5:a4:79:1b:6e:cd:66:c2:a0:f7:30: bd:38:3c:f4:55:cf:39:f7:cb:e3:54:63:91:ec:46: 41:4d:0f:c0:69:18:f9:ee:d1:63:52:86:bc:38:c5: 19:c2:d8:3b:ec:4b:77:ab:f4:6b:3b:da:29:be:49: 06:1f:e7:30:46:fd:37:70:32:7b:a3:93:bf:04:06: a2:72:de:e3:83:81:08:1f:4f:93:7a:c2:1d:48:7d: 3a:df:52:c3:65:8f:77:17:ac:e9:28:19:97:68:81: 01:59:15:38:79:1d:d5:83:5d:d2:67:f8:0a:46:13: 08:5a:5c:af:41:fb:b9:26:1b:35:84:bb:93:9d:5c: 4f:2d:85:a1:92:39:bc:67:cc:7b:a6:ae:50:f4:89: fc:c7:cb:47:df:90:6d:7e:7d:e7:cf:49:0a:5a:ac: 18:74:b5:fb:23:8e:c4:15:16:c2:f8:0a:4a:aa:7a: c6:ec:bc:1c:0e:ad:b0:3f:d3:8d:4c:15:14:52:a9: b1:e9:fe:54:06:67:9e:df:e7:0d:73:db:1b:f8:c4: 23:8a:f7:c6:d4:fa:7c:51:93:87:9b:5a:ea:57:ef: ab:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:80:07:82:D9:1B:F6:D8:06:7A:6D:1C:F1:32:84:8B:4B:F9:27:F4 X509v3 Authority Key Identifier: keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F2CD89AAAB4B11EAA2CA585BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.122.0/23 IPv6: 2405:2500:25::-2405:2500:26:ffff:ffff:ffff:ffff:ffff 2405:2500:65::/48 Signature Algorithm: sha256WithRSAEncryption 50:ee:ae:12:71:24:b2:2e:4f:06:68:4d:e9:c9:3d:c1:f2:ff: 3e:af:b0:0f:bd:cc:54:67:51:2c:0d:af:b4:49:19:58:7b:ff: 10:48:51:20:91:f2:d5:e6:24:1a:c0:5e:6c:a0:56:ea:7f:97: 8d:ac:fd:96:46:a0:27:33:96:6c:f8:2e:6b:06:e1:59:71:dc: 96:a8:9c:69:b6:a8:f1:b7:e1:c5:ed:ab:c4:7f:e7:15:8a:e1: 39:23:4a:0b:bb:b8:20:8a:b9:bf:cf:04:c2:dc:76:a7:37:9c: f5:89:31:ce:05:a8:79:d4:73:c9:da:9b:41:24:54:b4:1b:62: 2d:41:31:8d:26:f1:95:70:06:76:98:65:b2:f9:5c:73:6d:65: d4:cf:10:99:48:4a:a2:91:81:fa:df:53:38:7d:05:93:e1:e4: f5:4d:66:74:e2:ab:66:b8:2b:bc:bb:8a:e4:cb:c6:79:dd:eb: cd:f4:2e:d2:ec:ef:c4:46:7f:9a:04:d7:21:94:97:89:7c:71: ae:16:9d:ef:9a:08:a9:22:29:e3:4a:71:96:d2:6f:17:9a:0a: df:1a:e6:40:16:45:f2:34:58:2a:8d:01:be:0f:0b:11:52:c2: 7a:01:c3:d4:10:9e:56:7c:2c:cf:b3:c7:72:2a:2e:66:92:f2: 59:fd:b4:9e -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICCH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBBNTMxMTAvBgNVBAUTKDZFNEU2OUJFMTNENjEzQTcwMjc0QzBDRTc3MzgzOTIz RjE1NjI3MkQwHhcNMjQxMDAyMjA1OTE0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkYjQyMi1jMzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxM1Pg7fXDQb3AVD+ZOwt32EEwa/b7FLOVZIo99gOhkau5aR5G27NZsKg9zC9 ODz0Vc8598vjVGOR7EZBTQ/AaRj57tFjUoa8OMUZwtg77Et3q/RrO9opvkkGH+cw Rv03cDJ7o5O/BAaict7jg4EIH0+TesIdSH0631LDZY93F6zpKBmXaIEBWRU4eR3V g13SZ/gKRhMIWlyvQfu5Jhs1hLuTnVxPLYWhkjm8Z8x7pq5Q9In8x8tH35Btfn3n z0kKWqwYdLX7I47EFRbC+ApKqnrG7LwcDq2wP9ONTBUUUqmx6f5UBmee3+cNc9sb +MQjivfG1Pp8UZOHm1rqV++rYQIDAQABo4ICujCCArYwHQYDVR0OBBYEFMiAB4LZ G/bYBnptHPEyhItL+Sf0MB8GA1UdIwQYMBaAFG5Oab4T1hOnAnTAznc4OSPxVict MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEE1My83MUI3RDQ3MEFC NEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2Y0NkTURPZHpnNUlfRldK eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrNXB2aFBXRTZjQ2RNRE9kemc1SV9GV0p5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBBNTMvNzFCN0Q0NzBBQjRBMTFFQTg5RDE2MzU5QzRGOUFFMDIvRjJDRDg5QUFB QjRCMTFFQUEyQ0E1ODVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMAwEAgABMAYDBAFnFHowIwQCAAIwHTASAwcAJAUlAAAlAwcAJAUlAAAmAwcA JAUlAABlMA0GCSqGSIb3DQEBCwUAA4IBAQBQ7q4ScSSyLk8GaE3pyT3B8v8+r7AP vcxUZ1EsDa+0SRlYe/8QSFEgkfLV5iQawF5soFbqf5eNrP2WRqAnM5Zs+C5rBuFZ cdyWqJxptqjxt+HF7avEf+cViuE5I0oLu7ggirm/zwTC3HanN5z1iTHOBah51HPJ 2ptBJFS0G2ItQTGNJvGVcAZ2mGWy+VxzbWXUzxCZSEqikYH631M4fQWT4eT1TWZ0 4qtmuCu8u4rky8Z53evN9C7S7O/ERn+aBNchlJeJfHGuFp3vmgipIinjSnGW0m8X mgrfGuZAFkXyNFgqjQG+DwsRUsJ6AcPUEJ5WfCzPs8dyKi5mkvJZ/bSe -----END CERTIFICATE-----Generated at Tue Nov 26 21:52:47 2024 by rpki-client on console-ams.rpki-client.org