$ rpki-client -vvf rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/1291593861AC11ED9EFE1B4DC4F9AE02.roa File: 1291593861AC11ED9EFE1B4DC4F9AE02.roa (raw, json) Hash identifier: 4z+897eYmawfXH/tzTqewnh8oQ4d+YXJLaFQ5gY8Qbo= Subject key identifier: F5:81:F2:68:96:8B:80:49:8B:D7:21:AB:0C:0D:6C:B7:62:F6:E8:BC Certificate issuer: /CN=A9152C89/serialNumber=ACD4F832F6D83978BE6959D6983FE358F3B7A925 Certificate serial: 0408 Authority key identifier: AC:D4:F8:32:F6:D8:39:78:BE:69:59:D6:98:3F:E3:58:F3:B7:A9:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNT4MvbYOXi-aVnWmD_jWPO3qSU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/1291593861AC11ED9EFE1B4DC4F9AE02.roa Signing time: Thu 03 Oct 2024 00:34:15 +0000 ROA not before: Thu 03 Oct 2024 00:34:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138170 IP address blocks: 103.121.218.0/23 maxlen: 23 103.121.218.0/24 maxlen: 24 103.121.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/rNT4MvbYOXi-aVnWmD_jWPO3qSU.crl rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/rNT4MvbYOXi-aVnWmD_jWPO3qSU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNT4MvbYOXi-aVnWmD_jWPO3qSU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1032 (0x408) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152C89/serialNumber=ACD4F832F6D83978BE6959D6983FE358F3B7A925 Validity Not Before: Oct 3 00:34:15 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fde687-7c2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:fd:e0:f6:0a:51:c3:0c:09:27:05:12:3a:bc: 9c:fb:24:32:13:fb:f3:3e:5a:3a:4b:56:56:f5:22: d6:e2:a2:7e:d6:7c:f4:5f:14:e8:96:82:08:f6:8c: 03:58:a9:a4:f0:b1:f5:0b:f0:b0:ed:7a:fd:d8:b7: e5:72:61:69:5d:65:18:a2:8f:92:53:b1:57:e4:00: 6f:cc:59:92:df:d3:0e:3d:75:53:cb:81:9f:df:de: d9:af:e9:43:51:e2:4f:f1:28:49:9f:85:47:2d:40: 59:45:81:e1:93:31:2d:34:93:81:5e:93:9d:ba:77: 1e:5d:bc:31:3c:3d:6c:cf:0b:1e:28:41:48:19:ec: 99:c1:b6:a9:20:a5:24:97:65:75:88:85:c8:3f:fb: d4:4a:4e:40:ac:80:7c:fc:a3:a6:fb:9b:d1:2b:ff: cd:3d:17:8a:85:1b:5a:ce:21:50:2f:9b:c4:3f:c2: 1c:6d:10:8d:45:18:8f:5f:2f:41:5c:fd:f9:ce:30: ae:05:0b:bf:d4:72:fa:34:1e:c8:11:6f:cc:44:85: aa:00:a1:a7:dd:f7:d8:ce:f5:4e:d0:10:b5:48:8a: 32:de:66:43:64:0a:01:33:bf:76:c4:43:93:91:1d: 98:ad:85:4e:05:bf:f9:2e:63:a9:3b:39:5a:4d:3a: 8d:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:81:F2:68:96:8B:80:49:8B:D7:21:AB:0C:0D:6C:B7:62:F6:E8:BC X509v3 Authority Key Identifier: keyid:AC:D4:F8:32:F6:D8:39:78:BE:69:59:D6:98:3F:E3:58:F3:B7:A9:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/rNT4MvbYOXi-aVnWmD_jWPO3qSU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rNT4MvbYOXi-aVnWmD_jWPO3qSU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152C89/8FA97AFE451011EC8C86ED48C4F9AE02/1291593861AC11ED9EFE1B4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.218.0/23 Signature Algorithm: sha256WithRSAEncryption 93:0c:85:c3:19:07:34:17:2f:d0:ae:ac:b3:a3:68:e7:ae:d8: 96:aa:25:51:3a:4d:96:ce:75:53:a2:cf:b0:e9:81:f9:db:26: 35:08:86:c3:dc:0d:f4:95:38:e5:1d:75:a9:92:81:1c:a9:78: ee:6c:d8:6c:5d:03:76:e7:fb:ba:fb:26:c0:7d:d9:0b:29:b9: cf:83:a4:2b:47:a0:50:11:cd:4f:fc:40:32:ee:e4:d5:2c:c2: 4b:52:86:aa:02:15:02:9a:5d:e1:5a:4d:b9:40:c7:e5:48:95: 13:74:62:71:b3:d5:4a:90:eb:d8:aa:c2:1d:df:5f:44:f7:1e: a7:a7:50:33:7f:ed:5f:b7:cd:eb:0d:ca:dd:2e:9c:78:bc:17: aa:7a:73:bb:98:d7:56:a2:80:4b:0f:ea:a0:b8:4c:43:0e:0e: 76:b3:f3:00:7f:6a:3f:ff:1f:05:1f:62:15:ca:5c:06:5f:60: 15:06:70:e1:58:2c:ef:74:95:22:36:c8:14:95:82:8b:60:5a: ec:40:27:4b:84:18:45:a9:61:a0:5a:a7:49:d9:a1:ce:2d:a1: e4:8e:b6:ba:46:5d:c1:2d:97:69:2f:84:6c:95:85:e9:32:4a: 0f:1d:5b:3d:bd:08:8c:42:0f:65:e0:90:40:cc:43:94:59:4a: 65:b8:a1:4d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBAgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJDODkxMTAvBgNVBAUTKEFDRDRGODMyRjZEODM5NzhCRTY5NTlENjk4M0ZFMzU4 RjNCN0E5MjUwHhcNMjQxMDAzMDAzNDE1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkZTY4Ny03YzJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz/3g9gpRwwwJJwUSOryc+yQyE/vzPlo6S1ZW9SLW4qJ+1nz0XxToloII9owD WKmk8LH1C/Cw7Xr92LflcmFpXWUYoo+SU7FX5ABvzFmS39MOPXVTy4Gf397Zr+lD UeJP8ShJn4VHLUBZRYHhkzEtNJOBXpOdunceXbwxPD1szwseKEFIGeyZwbapIKUk l2V1iIXIP/vUSk5ArIB8/KOm+5vRK//NPReKhRtaziFQL5vEP8IcbRCNRRiPXy9B XP35zjCuBQu/1HL6NB7IEW/MRIWqAKGn3ffYzvVO0BC1SIoy3mZDZAoBM792xEOT kR2YrYVOBb/5LmOpOzlaTTqNuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPWB8miW i4BJi9chqwwNbLdi9ui8MB8GA1UdIwQYMBaAFKzU+DL22Dl4vmlZ1pg/41jzt6kl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkM4OS84RkE5N0FGRTQ1 MTAxMUVDOEM4NkVENDhDNEY5QUUwMi9yTlQ0TXZiWU9YaS1hVm5XbURfaldQTzNx U1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JOVDRNdmJZT1hpLWFWbldtRF9qV1BPM3FTVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJDODkvOEZBOTdBRkU0NTEwMTFFQzhDODZFRDQ4QzRGOUFFMDIvMTI5MTU5Mzg2 MUFDMTFFRDlFRkUxQjREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnedowDQYJKoZIhvcNAQELBQADggEBAJMMhcMZBzQXL9Cu rLOjaOeu2JaqJVE6TZbOdVOiz7DpgfnbJjUIhsPcDfSVOOUddamSgRypeO5s2Gxd A3bn+7r7JsB92Qspuc+DpCtHoFARzU/8QDLu5NUswktShqoCFQKaXeFaTblAx+VI lRN0YnGz1UqQ69iqwh3fX0T3HqenUDN/7V+3zesNyt0unHi8F6p6c7uY11aigEsP 6qC4TEMODnaz8wB/aj//HwUfYhXKXAZfYBUGcOFYLO90lSI2yBSVgotgWuxAJ0uE GEWpYaBap0nZoc4toeSOtrpGXcEtl2kvhGyVhekySg8dWz29CIxCD2XgkEDMQ5RZ SmW4oU0= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:22 2024 by rpki-client on console-ams.rpki-client.org