$ rpki-client -vvf rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/378459525C6511E989D03610C4F9AE02.roa File: 378459525C6511E989D03610C4F9AE02.roa (raw, json) Hash identifier: IiQprXM45ceBxjHWm+F/2TXqvKDyfsIZ5gHCOtJkT5o= Subject key identifier: 3E:68:00:E5:FD:8D:8E:84:7B:27:0B:7A:02:ED:36:49:CC:9E:57:61 Certificate issuer: /CN=A9144160/serialNumber=FD7450B118150A9B214F1A0BEEDF3E3B26FED04B Certificate serial: 0F7D Authority key identifier: FD:74:50:B1:18:15:0A:9B:21:4F:1A:0B:EE:DF:3E:3B:26:FE:D0:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/378459525C6511E989D03610C4F9AE02.roa Signing time: Mon 04 Nov 2024 17:36:00 +0000 ROA not before: Mon 04 Nov 2024 17:36:00 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138431 IP address blocks: 103.125.96.0/22 maxlen: 22 103.125.96.0/24 maxlen: 24 103.125.97.0/24 maxlen: 24 103.125.98.0/24 maxlen: 24 103.125.99.0/24 maxlen: 24 2403:f0c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.crl rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3965 (0xf7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144160/serialNumber=FD7450B118150A9B214F1A0BEEDF3E3B26FED04B Validity Not Before: Nov 4 17:36:00 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67290600-71bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:04:9e:76:b7:5f:4d:60:df:7b:cb:e1:81:02: 19:aa:56:b7:d1:a6:d4:d3:a8:ca:aa:d9:87:89:2c: 05:8f:75:34:78:f6:a5:d3:f8:e6:32:91:61:05:d3: 10:6d:d6:73:0f:75:44:bf:dd:a6:d0:42:7a:f1:98: ad:9c:72:80:ff:c1:ae:44:ee:0d:cc:bd:f5:c0:3b: d2:c2:98:48:47:c8:b9:84:0d:24:30:49:46:6f:43: 64:0a:87:e1:4a:8f:b2:a1:59:09:b5:7c:a1:0e:06: 6f:5d:01:e9:b1:bd:89:5c:e9:1f:70:fe:73:95:e6: 6a:d4:2b:18:20:4e:a8:04:7f:79:16:38:e6:37:1a: 55:1d:ec:c0:f5:73:a2:c7:ee:52:72:9a:c6:75:24: 3d:50:42:b8:41:32:03:c4:fe:b9:1a:7a:6e:81:8e: 51:5b:63:9d:09:22:6a:59:7c:f8:1d:fe:9c:9d:69: 76:e8:e0:1c:01:31:ba:c4:51:7b:11:d8:5f:2e:7b: 85:a3:0f:77:c7:58:da:85:69:c8:71:5f:6b:be:29: af:aa:b0:74:80:3b:2e:d9:2c:1f:e3:82:6a:b5:37: 32:d2:5c:ef:56:50:d8:46:49:cc:99:23:b6:4a:bf: 4d:13:d2:9f:14:88:eb:e6:f3:c0:fa:76:02:f7:e7: f9:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:68:00:E5:FD:8D:8E:84:7B:27:0B:7A:02:ED:36:49:CC:9E:57:61 X509v3 Authority Key Identifier: keyid:FD:74:50:B1:18:15:0A:9B:21:4F:1A:0B:EE:DF:3E:3B:26:FE:D0:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/_XRQsRgVCpshTxoL7t8-Oyb-0Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_XRQsRgVCpshTxoL7t8-Oyb-0Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144160/DD6571A64F9211E9AD10AA13C4F9AE02/378459525C6511E989D03610C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.96.0/22 IPv6: 2403:f0c0::/32 Signature Algorithm: sha256WithRSAEncryption 08:7d:69:92:cf:cf:bd:83:b0:68:e8:98:8c:c5:c4:86:d1:5e: b8:3f:1c:a3:86:ac:c2:4f:06:6b:fe:5a:ff:72:2a:37:23:c1: c9:59:89:6c:71:fb:08:80:39:8b:ad:0f:00:41:75:2e:3a:7f: 53:69:b6:2c:37:57:fd:72:47:a9:70:92:54:2f:42:54:78:61: 8c:65:f6:fb:3a:e2:96:7b:89:d4:ad:58:21:0f:62:14:bc:55: 13:08:1c:db:ac:53:22:a1:95:df:2c:cf:9b:b5:9b:09:c4:b8: ec:1e:72:7a:e0:68:26:a1:4c:ec:2b:20:b6:c1:ee:19:8c:ad: 75:d6:a1:ef:95:b4:6c:04:b3:77:6d:d9:78:76:4b:5d:95:2d: 1f:25:17:74:08:87:6d:9c:c8:d2:ab:eb:b6:ab:e5:0e:74:20: 9f:99:92:66:73:95:71:39:f7:80:be:08:dd:5f:5f:f0:d8:2b: 92:11:a9:6d:f2:6f:2b:87:7d:c9:1d:59:93:1e:68:d9:78:b5: d5:3e:20:06:26:0a:50:4a:6c:36:b8:58:8b:92:2d:6f:20:a5: da:d9:b8:e1:21:c1:fb:cc:21:a4:07:1b:e9:ff:f0:f9:89:1c: 92:e7:ae:c3:99:e0:39:cf:80:cd:70:b9:1a:cb:00:9a:a9:a2: 62:7f:e4:35 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICD30wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQxNjAxMTAvBgNVBAUTKEZENzQ1MEIxMTgxNTBBOUIyMTRGMUEwQkVFREYzRTNC MjZGRUQwNEIwHhcNMjQxMTA0MTczNjAwWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5MDYwMC03MWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApwSedrdfTWDfe8vhgQIZqla30abU06jKqtmHiSwFj3U0ePal0/jmMpFhBdMQ bdZzD3VEv92m0EJ68ZitnHKA/8GuRO4NzL31wDvSwphIR8i5hA0kMElGb0NkCofh So+yoVkJtXyhDgZvXQHpsb2JXOkfcP5zleZq1CsYIE6oBH95FjjmNxpVHezA9XOi x+5ScprGdSQ9UEK4QTIDxP65GnpugY5RW2OdCSJqWXz4Hf6cnWl26OAcATG6xFF7 EdhfLnuFow93x1jahWnIcV9rvimvqrB0gDsu2Swf44JqtTcy0lzvVlDYRknMmSO2 Sr9NE9KfFIjr5vPA+nYC9+f5BwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFD5oAOX9 jY6EeycLegLtNknMnldhMB8GA1UdIwQYMBaAFP10ULEYFQqbIU8aC+7fPjsm/tBL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDE2MC9ERDY1NzFBNjRG OTIxMUU5QUQxMEFBMTNDNEY5QUUwMi9fWFJRc1JnVkNwc2hUeG9MN3Q4LU95Yi0w RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19YUlFzUmdWQ3BzaFR4b0w3dDgtT3liLTBFcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQxNjAvREQ2NTcxQTY0RjkyMTFFOUFEMTBBQTEzQzRGOUFFMDIvMzc4NDU5NTI1 QzY1MTFFOTg5RDAzNjEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnfWAwDQQCAAIwBwMFACQD8MAwDQYJKoZIhvcNAQELBQAD ggEBAAh9aZLPz72DsGjomIzFxIbRXrg/HKOGrMJPBmv+Wv9yKjcjwclZiWxx+wiA OYutDwBBdS46f1Nptiw3V/1yR6lwklQvQlR4YYxl9vs64pZ7idStWCEPYhS8VRMI HNusUyKhld8sz5u1mwnEuOwecnrgaCahTOwrILbB7hmMrXXWoe+VtGwEs3dt2Xh2 S12VLR8lF3QIh22cyNKr67ar5Q50IJ+ZkmZzlXE594C+CN1fX/DYK5IRqW3ybyuH fckdWZMeaNl4tdU+IAYmClBKbDa4WIuSLW8gpdrZuOEhwfvMIaQHG+n/8PmJHJLn rsOZ4DnPgM1wuRrLAJqpomJ/5DU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org