$ rpki-client -vvf rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/4A7E1926947511EC9795DF56C4F9AE02.roa File: 4A7E1926947511EC9795DF56C4F9AE02.roa (raw, json) Hash identifier: haDneSQGCMY7l4tq6KzMKr1NagFdvDH5g3zFSu/oH0w= Subject key identifier: F1:81:33:A9:97:81:56:E1:EF:61:F0:F4:CF:A4:E2:91:20:BA:A2:21 Certificate issuer: /CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Certificate serial: 0357 Authority key identifier: B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/4A7E1926947511EC9795DF56C4F9AE02.roa Signing time: Sun 03 Nov 2024 00:34:17 +0000 ROA not before: Sun 03 Nov 2024 00:34:17 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139852 IP address blocks: 103.146.59.0/24 maxlen: 24 202.0.116.0/24 maxlen: 24 2001:df2:4d80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 855 (0x357) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9135020/serialNumber=B63213D8E662F454BEAEEC7F3C42E3AF6F895FB2 Validity Not Before: Nov 3 00:34:17 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6726c509-8c66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cd:3d:fe:65:d9:bc:f8:95:14:85:de:9d:15: 87:5a:f9:1e:e3:56:3d:d4:b4:43:ec:48:2c:9e:79: c8:d0:5a:19:81:64:73:d9:67:a8:29:59:7b:ca:d2: ac:21:8e:26:a6:2a:31:53:d4:b9:4b:e0:a7:9c:73: 40:22:32:e9:af:a0:a3:2b:f4:31:f0:53:9e:ff:da: ad:b7:93:81:d6:db:67:ed:0b:31:d5:13:40:18:9a: 95:e1:24:25:e5:39:05:cd:20:49:0e:69:1a:c1:36: 72:72:43:7e:01:e4:15:b3:3b:4a:79:f3:96:bc:97: be:aa:92:5a:85:c7:bf:c7:42:a9:24:21:e4:e3:f0: c8:aa:87:6a:78:84:84:8a:c6:d3:91:ca:04:f4:1d: 48:c2:39:84:f4:fa:a8:00:f2:02:a4:43:cf:07:68: 79:38:16:55:08:c6:78:9f:d5:a3:39:e1:1a:0a:e0: fa:b7:0a:2f:bf:78:d4:34:04:df:4b:85:9b:ed:b8: b8:31:47:69:9d:ec:a5:18:a8:6d:3c:b0:df:6d:50: c6:71:a2:1f:5c:9b:48:0f:ba:14:89:0f:9c:05:38: ed:a6:90:4c:e4:99:da:9f:44:59:e0:f0:67:45:6e: 81:3b:fa:02:f3:3f:e7:1f:ae:5d:bb:9c:8f:87:da: 18:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:81:33:A9:97:81:56:E1:EF:61:F0:F4:CF:A4:E2:91:20:BA:A2:21 X509v3 Authority Key Identifier: keyid:B6:32:13:D8:E6:62:F4:54:BE:AE:EC:7F:3C:42:E3:AF:6F:89:5F:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/tjIT2OZi9FS-rux_PELjr2-JX7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tjIT2OZi9FS-rux_PELjr2-JX7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9135020/BE1EE504947011EC91B46C4DC4F9AE02/4A7E1926947511EC9795DF56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.59.0/24 202.0.116.0/24 IPv6: 2001:df2:4d80::/48 Signature Algorithm: sha256WithRSAEncryption 4a:f7:b2:53:01:f0:df:f5:90:6a:1a:fa:80:aa:ed:16:f9:da: 33:f1:05:4f:16:e2:76:a0:0d:56:8e:76:87:4f:63:82:d1:f5: cd:dc:3f:07:96:fe:39:52:10:e7:5b:f8:62:90:68:17:5e:7a: 42:2c:14:f6:52:3d:19:47:43:72:1d:d4:83:54:bd:08:7c:85: 72:90:7e:f3:c5:f6:eb:13:7f:95:aa:f0:3a:0a:4a:e5:45:ad: ef:1f:38:0b:38:ff:f0:e4:03:aa:9c:49:e4:42:10:e1:ea:40: d0:4e:b1:84:76:3c:a6:14:f2:bc:59:2c:eb:57:d1:78:23:86: d0:68:d5:99:9e:0d:2e:25:00:21:3b:4c:8d:44:b8:34:9d:a2: 36:9a:4d:d8:17:11:98:42:5a:09:0c:ad:3b:53:ac:78:a8:cb: eb:87:ad:92:d5:ef:bb:43:11:49:70:b1:a2:ce:9a:16:98:15: 6c:ce:0f:42:09:d4:b6:9b:46:77:77:7f:b1:63:55:77:25:ef: 73:f0:e1:3c:84:8b:8e:31:f5:96:0b:04:0b:63:f8:a1:95:b5: c5:c2:2f:61:b7:9c:fb:0e:ca:64:62:93:2f:17:50:c1:ae:58: 7a:73:25:44:c0:0d:58:a1:e8:14:31:87:1c:5a:59:1e:2a:7b: 12:ac:5e:24 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICA1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzUwMjAxMTAvBgNVBAUTKEI2MzIxM0Q4RTY2MkY0NTRCRUFFRUM3RjNDNDJFM0FG NkY4OTVGQjIwHhcNMjQxMTAzMDAzNDE3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YzUwOS04YzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAss09/mXZvPiVFIXenRWHWvke41Y91LRD7EgsnnnI0FoZgWRz2WeoKVl7ytKs IY4mpioxU9S5S+CnnHNAIjLpr6CjK/Qx8FOe/9qtt5OB1ttn7Qsx1RNAGJqV4SQl 5TkFzSBJDmkawTZyckN+AeQVsztKefOWvJe+qpJahce/x0KpJCHk4/DIqodqeISE isbTkcoE9B1IwjmE9PqoAPICpEPPB2h5OBZVCMZ4n9WjOeEaCuD6twovv3jUNATf S4Wb7bi4MUdpneylGKhtPLDfbVDGcaIfXJtID7oUiQ+cBTjtppBM5Jnan0RZ4PBn RW6BO/oC8z/nH65du5yPh9oYqwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPGBM6mX gVbh72Hw9M+k4pEguqIhMB8GA1UdIwQYMBaAFLYyE9jmYvRUvq7sfzxC469viV+y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTAyMC9CRTFFRTUwNDk0 NzAxMUVDOTFCNDZDNERDNEY5QUUwMi90aklUMk9aaTlGUy1ydXhfUEVManIyLUpY N0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RqSVQyT1ppOUZTLXJ1eF9QRUxqcjItSlg3SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzUwMjAvQkUxRUU1MDQ5NDcwMTFFQzkxQjQ2QzREQzRGOUFFMDIvNEE3RTE5MjY5 NDc1MTFFQzk3OTVERjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnkjsDBADKAHQwDwQCAAIwCQMHACABDfJNgDANBgkqhkiG 9w0BAQsFAAOCAQEASveyUwHw3/WQahr6gKrtFvnaM/EFTxbidqANVo52h09jgtH1 zdw/B5b+OVIQ51v4YpBoF156QiwU9lI9GUdDch3Ug1S9CHyFcpB+88X26xN/larw OgpK5UWt7x84Czj/8OQDqpxJ5EIQ4epA0E6xhHY8phTyvFks61fReCOG0GjVmZ4N LiUAITtMjUS4NJ2iNppN2BcRmEJaCQytO1OseKjL64etktXvu0MRSXCxos6aFpgV bM4PQgnUtptGd3d/sWNVdyXvc/DhPISLjjH1lgsEC2P4oZW1xcIvYbec+w7KZGKT LxdQwa5YenMlRMANWKHoFDGHHFpZHip7EqxeJA== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:33 2024 by rpki-client on console-fra.rpki-client.org