$ rpki-client -vvf rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa File: F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa (raw, json) Hash identifier: BidxYSVmBabzb42KTEQRZnYy7Sbks/SN1w8y9yUGtJQ= Subject key identifier: 67:1F:9F:DB:9C:42:71:C9:C0:B9:B7:64:F4:A3:D7:44:1F:90:95:0C Certificate issuer: /CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Certificate serial: 087F Authority key identifier: 6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa Signing time: Wed 02 Oct 2024 20:59:15 +0000 ROA not before: Wed 02 Oct 2024 20:59:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136566 IP address blocks: 103.20.120.0/24 maxlen: 24 2405:2500:5::/48 maxlen: 48 2405:2500:11::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2175 (0x87f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130A53/serialNumber=6E4E69BE13D613A70274C0CE77383923F156272D Validity Not Before: Oct 2 20:59:15 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fdb422-55ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ef:a6:0c:76:dc:7d:c3:e2:d9:07:8a:9f:31: ba:c1:3b:b7:be:c4:ac:30:1f:55:2d:7a:a0:f3:bf: b3:40:1e:ac:02:42:e4:a1:eb:c6:cf:92:38:56:b2: b5:66:37:ac:78:e5:27:2b:9e:27:26:e4:e5:07:e1: c1:df:22:86:b4:d0:9a:99:98:ef:f3:0d:4e:68:36: 4b:44:73:fd:16:36:f1:aa:69:e8:d5:75:4b:22:9b: a9:fd:5b:85:64:fc:1f:db:3f:95:13:da:22:bb:8a: 2c:9b:a5:f6:5a:7f:11:c2:2c:d1:34:a1:85:e6:ca: a2:cb:53:e9:d0:6e:44:0c:51:91:fc:4b:06:cc:a1: 76:db:93:03:a6:1f:4c:7e:71:c9:4c:95:4a:5f:f9: e3:9e:be:29:d9:6a:3b:82:07:33:04:95:79:1d:b3: 0b:46:a4:85:a0:77:d4:0d:ee:85:a9:3e:87:f8:6f: 51:a6:c9:2d:84:49:a3:89:68:6e:b1:56:5d:72:eb: 2a:56:ff:18:1e:14:e2:96:b0:6e:6a:28:4e:cc:12: fa:aa:93:6d:fb:bc:98:00:67:2d:ed:09:35:4c:98: b6:da:5e:23:0a:89:6c:e4:fe:11:c5:f4:d3:67:02: 3b:e8:ac:8e:25:f6:0c:fe:7e:de:d7:ac:75:44:3e: 5f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1F:9F:DB:9C:42:71:C9:C0:B9:B7:64:F4:A3:D7:44:1F:90:95:0C X509v3 Authority Key Identifier: keyid:6E:4E:69:BE:13:D6:13:A7:02:74:C0:CE:77:38:39:23:F1:56:27:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/bk5pvhPWE6cCdMDOdzg5I_FWJy0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bk5pvhPWE6cCdMDOdzg5I_FWJy0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130A53/71B7D470AB4A11EA89D16359C4F9AE02/F36A0E2EAB4B11EAA2CA585BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.120.0/24 IPv6: 2405:2500:5::/48 2405:2500:11::/48 Signature Algorithm: sha256WithRSAEncryption c7:69:5f:ca:f5:8d:da:ac:bd:c9:8c:b2:eb:d4:a8:22:65:91: ee:72:68:5f:16:74:d4:19:e0:37:75:81:f2:de:d7:3a:42:f8: ca:72:05:f3:1b:6e:f0:9b:0a:17:9d:d3:dd:ec:69:0b:ef:37: 8b:41:bc:ae:2e:52:6b:e7:9b:c7:7b:47:64:5d:b6:77:c2:3f: ad:02:ac:c8:3b:42:66:eb:f2:3c:33:0c:00:79:de:2d:f7:99: 9d:54:24:68:a0:a1:5a:ea:f4:cc:cf:f0:ad:3b:2a:e0:00:de: b8:51:9b:47:31:26:a3:fe:59:f3:ba:4a:d1:49:cf:5d:2c:c8: a1:1c:72:70:77:6f:13:68:bc:b3:6d:68:29:da:9c:00:dc:05: 01:64:80:91:1e:85:b0:73:aa:fa:b4:06:11:c2:a8:c2:75:23: dd:c7:1c:49:5b:55:26:03:31:4b:ff:44:25:2c:f2:46:52:e1: 5d:93:9b:1a:ee:f7:7c:93:b4:55:9b:8e:d3:fb:d3:ed:c3:f9: 03:16:74:d3:f0:31:83:69:ac:ad:11:2c:c9:36:3b:a2:eb:26: 3c:93:bc:cb:da:f5:8b:49:7c:b7:ce:e7:13:f6:df:ff:79:7f: 39:9c:1e:74:5a:f5:1c:bb:c1:77:70:ab:99:af:61:ad:f1:61: 31:f3:0b:73 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICCH8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBBNTMxMTAvBgNVBAUTKDZFNEU2OUJFMTNENjEzQTcwMjc0QzBDRTc3MzgzOTIz RjE1NjI3MkQwHhcNMjQxMDAyMjA1OTE1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkYjQyMi01NWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAou+mDHbcfcPi2QeKnzG6wTu3vsSsMB9VLXqg87+zQB6sAkLkoevGz5I4VrK1 ZjeseOUnK54nJuTlB+HB3yKGtNCamZjv8w1OaDZLRHP9Fjbxqmno1XVLIpup/VuF ZPwf2z+VE9oiu4osm6X2Wn8RwizRNKGF5sqiy1Pp0G5EDFGR/EsGzKF225MDph9M fnHJTJVKX/njnr4p2Wo7ggczBJV5HbMLRqSFoHfUDe6FqT6H+G9RpskthEmjiWhu sVZdcusqVv8YHhTilrBuaihOzBL6qpNt+7yYAGct7Qk1TJi22l4jCols5P4RxfTT ZwI76KyOJfYM/n7e16x1RD5fdwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFGcfn9uc QnHJwLm3ZPSj10QfkJUMMB8GA1UdIwQYMBaAFG5Oab4T1hOnAnTAznc4OSPxVict MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEE1My83MUI3RDQ3MEFC NEExMUVBODlEMTYzNTlDNEY5QUUwMi9iazVwdmhQV0U2Y0NkTURPZHpnNUlfRldK eTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JrNXB2aFBXRTZjQ2RNRE9kemc1SV9GV0p5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBBNTMvNzFCN0Q0NzBBQjRBMTFFQTg5RDE2MzU5QzRGOUFFMDIvRjM2QTBFMkVB QjRCMTFFQUEyQ0E1ODVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBABnFHgwGAQCAAIwEgMHACQFJQAABQMHACQFJQAAETANBgkq hkiG9w0BAQsFAAOCAQEAx2lfyvWN2qy9yYyy69SoImWR7nJoXxZ01BngN3WB8t7X OkL4ynIF8xtu8JsKF53T3expC+83i0G8ri5Sa+ebx3tHZF22d8I/rQKsyDtCZuvy PDMMAHneLfeZnVQkaKChWur0zM/wrTsq4ADeuFGbRzEmo/5Z87pK0UnPXSzIoRxy cHdvE2i8s21oKdqcANwFAWSAkR6FsHOq+rQGEcKownUj3cccSVtVJgMxS/9EJSzy RlLhXZObGu73fJO0VZuO0/vT7cP5AxZ00/Axg2msrREsyTY7ousmPJO8y9r1i0l8 t87nE/bf/3l/OZwedFr1HLvBd3Crma9hrfFhMfMLcw== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org