$ rpki-client -vvf rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/799C6AD8149711EFB0CB9E0AC4F9AE02.roa File: 799C6AD8149711EFB0CB9E0AC4F9AE02.roa (raw, json) Hash identifier: OvEMaTDL1tgtcZ9K+aKpw88u0wsiPOdL45WKnaEEXFA= Subject key identifier: 1D:23:10:90:A6:60:62:C9:C3:68:5E:8B:A1:16:51:86:4A:1F:0B:BB Certificate issuer: /CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Certificate serial: 06F5 Authority key identifier: 5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/799C6AD8149711EFB0CB9E0AC4F9AE02.roa Signing time: Fri 17 May 2024 21:50:28 +0000 ROA not before: Fri 17 May 2024 21:50:28 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 138456 IP address blocks: 103.126.24.0/24 maxlen: 24 103.152.206.0/24 maxlen: 24 2001:df7:3700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1781 (0x6f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149A0D/serialNumber=5F8F0161B7ACBB255F13CF081B6653619B4E2C02 Validity Not Before: May 17 21:50:28 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6647d124-813d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9d:c7:fb:c6:a3:5d:b6:4b:d0:48:91:54:d8: 01:a0:64:52:38:af:d0:ca:10:b2:7b:5d:5b:22:d4: 18:04:5e:c3:43:a4:62:b7:e7:34:8c:49:df:00:2e: 6b:9d:2c:54:42:9c:61:2e:1f:a9:9b:aa:8b:32:0f: 1f:95:df:94:4b:7d:64:3e:f6:d5:c9:74:44:7d:93: 59:4f:eb:3d:c7:79:e4:8d:1d:fa:99:bd:1b:9f:a9: 75:ff:91:35:ec:c2:cf:bf:7c:6d:45:6e:34:ac:b9: 44:ce:68:d6:0b:e8:bd:03:a1:ea:ab:34:21:e0:ec: e5:cd:76:21:90:89:74:15:f9:f7:4e:43:c4:e1:32: d5:7a:05:c0:ea:85:9c:59:50:6c:f0:c0:6a:ce:05: 89:a5:d0:68:0f:b9:19:5b:f5:7e:07:fe:4f:06:ac: 35:6d:1e:39:cc:49:24:5d:56:6f:8e:6a:26:0a:66: 0b:b1:58:94:61:59:d8:fd:98:ca:69:54:bb:be:9a: 5b:06:b6:80:41:8c:0d:d5:bf:a6:d9:00:68:b4:f4: cb:9a:7c:6d:84:ae:c8:c5:16:40:22:d8:ac:72:fd: be:40:06:7d:dd:ca:7b:04:f8:d7:49:1c:79:2f:d8: 44:57:62:44:b1:03:f9:ae:f9:e8:19:c7:e2:c3:81: c2:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:23:10:90:A6:60:62:C9:C3:68:5E:8B:A1:16:51:86:4A:1F:0B:BB X509v3 Authority Key Identifier: keyid:5F:8F:01:61:B7:AC:BB:25:5F:13:CF:08:1B:66:53:61:9B:4E:2C:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/X48BYbesuyVfE88IG2ZTYZtOLAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X48BYbesuyVfE88IG2ZTYZtOLAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149A0D/0FB79164FB1511EAB011EC6EC4F9AE02/799C6AD8149711EFB0CB9E0AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.126.24.0/24 103.152.206.0/24 IPv6: 2001:df7:3700::/48 Signature Algorithm: sha256WithRSAEncryption 97:d4:63:4b:ed:0b:b4:1e:9c:98:c7:45:b7:0a:22:08:3a:23: 0a:2e:23:8f:d8:eb:fd:73:fe:f2:fb:9b:e6:ef:bf:da:07:41: fb:e4:0e:dc:47:0e:24:e4:fe:0d:78:ec:0e:2b:3c:59:c7:7b: 0d:ab:fa:08:07:7e:e8:31:f6:fc:c1:54:a9:17:2f:bb:98:87: 27:63:d9:4f:b4:bc:d2:ba:97:ea:85:db:3f:f3:7f:09:32:87: d1:0a:d7:49:8b:df:7b:d7:61:c1:bd:ce:29:94:bf:c2:86:cd: 8e:3b:fa:8b:3d:66:24:5e:0e:07:7e:cd:f2:48:4d:b9:69:ac: 02:b1:fe:a5:51:db:ae:db:0e:ea:77:b1:83:fc:91:d9:ac:42: 98:65:05:01:d4:2f:19:b6:d8:ff:47:7d:76:81:46:d0:c0:57: 1b:0b:f5:fa:39:7d:77:11:02:fd:bf:3f:57:01:e0:83:47:e3: c5:92:17:d2:73:e2:3f:ee:e1:9e:50:18:4a:69:16:ce:6b:36: 58:af:20:a6:d7:14:53:11:1d:b8:28:8b:87:5f:cf:03:a1:c0: ef:59:b7:eb:54:ad:b3:05:e5:bd:c2:1b:c6:e1:14:a5:89:cb: 67:f6:94:14:a8:46:5a:86:70:f2:b8:78:5c:93:27:97:ba:6e: ba:ad:8a:cf -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBvUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlBMEQxMTAvBgNVBAUTKDVGOEYwMTYxQjdBQ0JCMjU1RjEzQ0YwODFCNjY1MzYx OUI0RTJDMDIwHhcNMjQwNTE3MjE1MDI4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ3ZDEyNC04MTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmp3H+8ajXbZL0EiRVNgBoGRSOK/QyhCye11bItQYBF7DQ6Rit+c0jEnfAC5r nSxUQpxhLh+pm6qLMg8fld+US31kPvbVyXREfZNZT+s9x3nkjR36mb0bn6l1/5E1 7MLPv3xtRW40rLlEzmjWC+i9A6HqqzQh4OzlzXYhkIl0Ffn3TkPE4TLVegXA6oWc WVBs8MBqzgWJpdBoD7kZW/V+B/5PBqw1bR45zEkkXVZvjmomCmYLsViUYVnY/ZjK aVS7vppbBraAQYwN1b+m2QBotPTLmnxthK7IxRZAItiscv2+QAZ93cp7BPjXSRx5 L9hEV2JEsQP5rvnoGcfiw4HC7wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFB0jEJCm YGLJw2hei6EWUYZKHwu7MB8GA1UdIwQYMBaAFF+PAWG3rLslXxPPCBtmU2GbTiwC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUEwRC8wRkI3OTE2NEZC MTUxMUVBQjAxMUVDNkVDNEY5QUUwMi9YNDhCWWJlc3V5VmZFODhJRzJaVFladE9M QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1g0OEJZYmVzdXlWZkU4OElHMlpUWVp0T0xBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlBMEQvMEZCNzkxNjRGQjE1MTFFQUIwMTFFQzZFQzRGOUFFMDIvNzk5QzZBRDgx NDk3MTFFRkIwQ0I5RTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnfhgDBABnmM4wDwQCAAIwCQMHACABDfc3ADANBgkqhkiG 9w0BAQsFAAOCAQEAl9RjS+0LtB6cmMdFtwoiCDojCi4jj9jr/XP+8vub5u+/2gdB ++QO3EcOJOT+DXjsDis8Wcd7Dav6CAd+6DH2/MFUqRcvu5iHJ2PZT7S80rqX6oXb P/N/CTKH0QrXSYvfe9dhwb3OKZS/wobNjjv6iz1mJF4OB37N8khNuWmsArH+pVHb rtsO6nexg/yR2axCmGUFAdQvGbbY/0d9doFG0MBXGwv1+jl9dxEC/b8/VwHgg0fj xZIX0nPiP+7hnlAYSmkWzms2WK8gptcUUxEduCiLh1/PA6HA71m361StswXlvcIb xuEUpYnLZ/aUFKhGWoZw8rh4XJMnl7puuq2Kzw== -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:39 2024 by rpki-client on console-ams.rpki-client.org