$ rpki-client -vvf rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa File: 61096B522DB111EDA42EBE42C4F9AE02.roa (raw, json) Hash identifier: MLOp/VyTI9zALKbWjaowS/AQ+yDzGywTskit04hrMIw= Subject key identifier: A3:D6:92:F5:A2:51:81:8E:14:8E:65:AC:55:82:3C:67:F1:A1:BA:0D Certificate issuer: /CN=A9142661/serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF Certificate serial: 0988 Authority key identifier: 7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa Signing time: Sat 18 May 2024 20:59:57 +0000 ROA not before: Sat 18 May 2024 20:59:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 58895 IP address blocks: 103.87.192.0/22 maxlen: 22 103.87.192.0/24 maxlen: 24 103.87.193.0/24 maxlen: 24 103.87.194.0/24 maxlen: 24 103.87.195.0/24 maxlen: 24 203.96.168.0/24 maxlen: 24 203.96.169.0/24 maxlen: 24 203.96.170.0/24 maxlen: 24 203.96.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.crl rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:41:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2440 (0x988) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142661/serialNumber=7AE9622F834CF4C6CF5AD1A98AF07D501545A4BF Validity Not Before: May 18 20:59:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=664916cd-24e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9e:a2:b3:d9:a4:c6:ec:ec:49:7b:82:a0:e4: f6:f0:d2:ff:d2:d3:1a:be:b5:0e:63:01:b3:16:0b: 42:29:f5:9c:aa:88:08:06:66:76:ae:f9:3d:9f:af: dd:00:6d:a5:21:cb:36:70:94:70:b6:ae:fe:2a:7f: da:fd:5d:3e:1a:99:39:1a:e6:17:46:8c:68:72:3c: 15:52:5c:b1:a2:ad:f9:02:9b:52:cf:1c:8f:13:6d: 6d:3d:8e:fd:01:27:13:81:9a:29:2c:64:0a:ae:df: 96:1d:88:c0:fb:e2:1b:35:d1:c3:0f:a7:ca:88:b6: d0:18:46:fc:c2:4f:1b:ea:94:57:f0:08:ad:55:27: 89:a7:d5:0f:83:13:de:68:f5:98:6a:1d:96:d6:1c: 00:ed:c8:4f:d6:07:e3:f3:69:31:20:7f:29:5f:a8: d5:2f:99:3b:24:5f:a2:c1:c0:d2:7e:01:0e:65:85: 96:1b:93:d2:86:c9:40:7b:d4:c5:b4:f2:20:0d:de: 5d:cb:d3:60:fa:c2:ea:95:28:06:51:07:74:4e:78: 5b:53:00:55:72:29:60:e0:e1:f1:8d:1b:73:5a:34: 82:51:0f:07:30:df:27:00:5a:4d:17:d0:95:23:f8: 6b:1b:90:35:77:bd:dc:36:05:52:ac:5b:37:78:b1: d2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D6:92:F5:A2:51:81:8E:14:8E:65:AC:55:82:3C:67:F1:A1:BA:0D X509v3 Authority Key Identifier: keyid:7A:E9:62:2F:83:4C:F4:C6:CF:5A:D1:A9:8A:F0:7D:50:15:45:A4:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/euliL4NM9MbPWtGpivB9UBVFpL8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/euliL4NM9MbPWtGpivB9UBVFpL8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142661/4CC7727669BC11EAAF1B9F69C4F9AE02/61096B522DB111EDA42EBE42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.192.0/22 203.96.168.0/22 Signature Algorithm: sha256WithRSAEncryption 9d:4b:a8:54:45:44:c2:32:fc:79:93:b9:29:52:43:ee:4b:d6: fa:cf:0d:5f:08:da:17:13:53:11:aa:94:4d:9f:1c:77:fa:f0: b2:14:e9:34:d0:d7:a4:0d:d2:f0:77:a3:48:38:ce:e4:d4:9e: 0c:26:db:54:c8:a3:cc:d7:cc:8c:0c:f5:20:35:cb:fe:bd:5f: 36:4f:c6:e6:70:19:f0:cd:55:b1:60:55:a1:85:49:2b:75:8f: e6:6a:05:02:fb:fa:86:73:c1:7e:f9:f9:bd:53:bf:36:e8:76: 30:b3:c4:62:60:52:ee:ba:53:ac:f8:6c:72:d4:45:62:46:da: fc:cc:8c:5c:56:45:3d:76:35:0b:97:81:3b:85:1e:f7:90:d8: 18:77:2e:0c:a2:05:4c:35:3a:13:c3:11:de:2e:67:6f:a5:d7: 86:74:b5:a6:9a:97:99:ab:ec:e0:95:c2:c9:71:23:89:dc:5a: cc:27:b9:f1:b8:a4:ae:41:bb:e4:f1:0a:f3:07:3f:b4:3c:b0: 74:a6:34:32:61:9f:36:91:3e:59:7e:bf:48:4e:b7:d0:b7:58: 4c:fb:14:18:1b:6c:63:01:d2:61:08:97:ba:49:b3:cf:28:53: 4d:9c:03:7d:91:24:34:7d:a2:dc:dd:70:9c:aa:7d:07:a5:8b: bc:19:c8:fa -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCYgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI2NjExMTAvBgNVBAUTKDdBRTk2MjJGODM0Q0Y0QzZDRjVBRDFBOThBRjA3RDUw MTU0NUE0QkYwHhcNMjQwNTE4MjA1OTU3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ5MTZjZC0yNGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzp6is9mkxuzsSXuCoOT28NL/0tMavrUOYwGzFgtCKfWcqogIBmZ2rvk9n6/d AG2lIcs2cJRwtq7+Kn/a/V0+Gpk5GuYXRoxocjwVUlyxoq35AptSzxyPE21tPY79 AScTgZopLGQKrt+WHYjA++IbNdHDD6fKiLbQGEb8wk8b6pRX8AitVSeJp9UPgxPe aPWYah2W1hwA7chP1gfj82kxIH8pX6jVL5k7JF+iwcDSfgEOZYWWG5PShslAe9TF tPIgDd5dy9Ng+sLqlSgGUQd0TnhbUwBVcilg4OHxjRtzWjSCUQ8HMN8nAFpNF9CV I/hrG5A1d73cNgVSrFs3eLHS7wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKPWkvWi UYGOFI5lrFWCPGfxoboNMB8GA1UdIwQYMBaAFHrpYi+DTPTGz1rRqYrwfVAVRaS/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjY2MS80Q0M3NzI3NjY5 QkMxMUVBQUYxQjlGNjlDNEY5QUUwMi9ldWxpTDROTTlNYlBXdEdwaXZCOVVCVkZw TDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V1bGlMNE5NOU1iUFd0R3BpdkI5VUJWRnBMOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI2NjEvNENDNzcyNzY2OUJDMTFFQUFGMUI5RjY5QzRGOUFFMDIvNjEwOTZCNTIy REIxMTFFREE0MkVCRTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnV8ADBALLYKgwDQYJKoZIhvcNAQELBQADggEBAJ1LqFRF RMIy/HmTuSlSQ+5L1vrPDV8I2hcTUxGqlE2fHHf68LIU6TTQ16QN0vB3o0g4zuTU ngwm21TIo8zXzIwM9SA1y/69XzZPxuZwGfDNVbFgVaGFSSt1j+ZqBQL7+oZzwX75 +b1TvzbodjCzxGJgUu66U6z4bHLURWJG2vzMjFxWRT12NQuXgTuFHveQ2Bh3Lgyi BUw1OhPDEd4uZ2+l14Z0taaal5mr7OCVwslxI4ncWswnufG4pK5Bu+TxCvMHP7Q8 sHSmNDJhnzaRPll+v0hOt9C3WEz7FBgbbGMB0mEIl7pJs88oU02cA32RJDR9otzd cJyqfQeli7wZyPo= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org