$ rpki-client -vvf rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/2C9AF3A2659411EDA3257D0AC4F9AE02.roa File: 2C9AF3A2659411EDA3257D0AC4F9AE02.roa (raw, json) Hash identifier: zyxFYh58VCphZ88XBtO8boEFXBQoIhSIgP+BmjV4mDc= Subject key identifier: 17:27:62:65:C5:5D:B5:DF:B2:7C:6A:55:B0:5E:04:EF:F3:82:39:A5 Certificate issuer: /CN=A9142A1D/serialNumber=47CBEF70BD55B9533331B8BCC2E9829563A2CE94 Certificate serial: 053B Authority key identifier: 47:CB:EF:70:BD:55:B9:53:33:31:B8:BC:C2:E9:82:95:63:A2:CE:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8vvcL1VuVMzMbi8wumClWOizpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/2C9AF3A2659411EDA3257D0AC4F9AE02.roa Signing time: Thu 01 Feb 2024 00:52:40 +0000 ROA not before: Thu 01 Feb 2024 00:52:40 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 139076 IP address blocks: 103.146.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/R8vvcL1VuVMzMbi8wumClWOizpQ.crl rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/R8vvcL1VuVMzMbi8wumClWOizpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8vvcL1VuVMzMbi8wumClWOizpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1339 (0x53b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142A1D/serialNumber=47CBEF70BD55B9533331B8BCC2E9829563A2CE94 Validity Not Before: Feb 1 00:52:40 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65baeb58-4a47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:2e:44:bc:6e:4c:72:9d:2b:ee:7c:5b:b8:df: 3a:6c:2e:fa:84:ce:11:dd:94:be:c7:29:12:d8:a9: a8:8d:d5:bd:85:c4:7e:52:63:19:46:28:d4:20:7c: 25:a7:cb:71:46:48:b8:b4:05:a0:bb:46:30:9c:eb: b6:b4:c4:8f:55:9c:6b:3e:27:d4:c8:00:99:17:04: 95:e9:71:84:ef:ab:d6:5b:ee:56:df:61:2f:c1:29: a3:08:90:f5:ff:24:ea:8f:ac:8e:9b:bb:10:b2:a7: a5:15:fd:52:77:81:6c:c2:7e:1e:57:1b:9a:31:a3: 88:14:30:2d:98:df:bd:cd:fd:22:0a:fe:81:19:5d: 85:8b:2c:fb:54:c4:43:cb:83:10:dd:cb:a3:3d:6c: 25:57:f4:cb:11:26:4d:4b:76:a0:25:91:4e:19:e1: 15:25:3f:2b:6c:f8:e7:2e:f4:58:b5:f5:d8:1b:26: 63:67:ba:6d:4f:f3:c3:f9:22:78:c4:8d:c4:c0:c7: 3a:ec:b9:aa:0c:74:d9:21:0d:f1:c9:9c:5a:4a:87: fb:da:f2:04:04:5a:94:07:d1:ec:7d:83:03:4a:cf: a2:29:96:84:58:98:f7:50:3b:2a:81:a6:f9:84:20: e3:38:09:eb:80:fa:90:d7:6a:b5:52:af:e4:5a:4c: cb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:27:62:65:C5:5D:B5:DF:B2:7C:6A:55:B0:5E:04:EF:F3:82:39:A5 X509v3 Authority Key Identifier: keyid:47:CB:EF:70:BD:55:B9:53:33:31:B8:BC:C2:E9:82:95:63:A2:CE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/R8vvcL1VuVMzMbi8wumClWOizpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R8vvcL1VuVMzMbi8wumClWOizpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142A1D/454BCDA49E9411EBBC80DF20C4F9AE02/2C9AF3A2659411EDA3257D0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.146.78.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:d7:b7:4b:59:7f:c0:00:98:fd:15:9b:80:80:01:2f:b2:a8: 3a:b7:2a:7d:e0:9b:73:21:ba:d5:79:61:03:83:db:c6:68:bd: 0d:ad:50:78:22:10:ce:e3:6e:27:36:ea:27:af:1b:0b:78:c5: 7d:aa:1d:c7:a7:96:fc:38:b3:df:9a:e6:88:0b:2b:1a:3d:1f: f2:a3:05:7f:35:5f:36:ab:45:5a:dd:50:93:92:88:ee:f3:ed: 27:80:e6:13:bf:8e:12:11:a6:82:c6:af:23:aa:df:67:f5:8a: 6f:07:b3:f9:31:1b:e3:fb:39:bd:e0:19:55:3f:6b:77:62:f7: 97:9e:6a:e0:82:07:08:95:67:f5:21:a6:70:bc:33:bd:fb:6f: 45:59:28:b6:b7:6f:24:be:c6:58:d9:66:f7:8a:dd:1d:36:66: a6:8f:b7:13:6e:2b:df:08:26:6f:41:ed:d5:99:01:34:93:f7: 51:38:40:61:4f:02:df:16:24:a8:20:eb:3a:48:34:b6:4f:85: 5d:12:44:87:02:64:3d:ba:7b:12:17:8e:f7:54:1c:8f:51:71: 1f:9a:37:78:4b:9c:f9:d9:03:35:95:0a:76:55:84:51:80:34: 81:9b:eb:db:8b:3f:45:73:6c:0e:33:9b:3e:b1:18:59:01:71: 1a:6d:12:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDJBMUQxMTAvBgNVBAUTKDQ3Q0JFRjcwQkQ1NUI5NTMzMzMxQjhCQ0MyRTk4Mjk1 NjNBMkNFOTQwHhcNMjQwMjAxMDA1MjQwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhZWI1OC00YTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9C5EvG5Mcp0r7nxbuN86bC76hM4R3ZS+xykS2KmojdW9hcR+UmMZRijUIHwl p8txRki4tAWgu0YwnOu2tMSPVZxrPifUyACZFwSV6XGE76vWW+5W32EvwSmjCJD1 /yTqj6yOm7sQsqelFf1Sd4Fswn4eVxuaMaOIFDAtmN+9zf0iCv6BGV2Fiyz7VMRD y4MQ3cujPWwlV/TLESZNS3agJZFOGeEVJT8rbPjnLvRYtfXYGyZjZ7ptT/PD+SJ4 xI3EwMc67LmqDHTZIQ3xyZxaSof72vIEBFqUB9HsfYMDSs+iKZaEWJj3UDsqgab5 hCDjOAnrgPqQ12q1Uq/kWkzL6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFBcnYmXF XbXfsnxqVbBeBO/zgjmlMB8GA1UdIwQYMBaAFEfL73C9VblTMzG4vMLpgpVjos6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MkExRC80NTRCQ0RBNDlF OTQxMUVCQkM4MERGMjBDNEY5QUUwMi9SOHZ2Y0wxVnVWTXpNYmk4d3VtQ2xXT2l6 cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1I4dnZjTDFWdVZNek1iaTh3dW1DbFdPaXpwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDJBMUQvNDU0QkNEQTQ5RTk0MTFFQkJDODBERjIwQzRGOUFFMDIvMkM5QUYzQTI2 NTk0MTFFREEzMjU3RDBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnkk4wDQYJKoZIhvcNAQELBQADggEBAEzXt0tZf8AAmP0V m4CAAS+yqDq3Kn3gm3MhutV5YQOD28ZovQ2tUHgiEM7jbic26ievGwt4xX2qHcen lvw4s9+a5ogLKxo9H/KjBX81XzarRVrdUJOSiO7z7SeA5hO/jhIRpoLGryOq32f1 im8Hs/kxG+P7Ob3gGVU/a3di95eeauCCBwiVZ/UhpnC8M737b0VZKLa3byS+xljZ ZveK3R02ZqaPtxNuK98IJm9B7dWZATST91E4QGFPAt8WJKgg6zpINLZPhV0SRIcC ZD26exIXjvdUHI9RcR+aN3hLnPnZAzWVCnZVhFGANIGb69uLP0VzbA4zmz6xGFkB cRptEg0= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org