$ rpki-client -vvf rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/2920764254CC11EF84CA4F17C4F9AE02.roa File: 2920764254CC11EF84CA4F17C4F9AE02.roa (raw, json) Hash identifier: LFTBpIjwd4vxs9M7HrIPjAgrFCw7KOfaHYdxK0dO8Jg= Subject key identifier: 20:0C:3A:22:9F:76:AF:F9:47:45:E0:FA:1A:37:35:1C:10:6E:6A:D5 Certificate issuer: /CN=A915392C/serialNumber=E8804B7E104D6576F0C8DC482A51B5E367AA1F77 Certificate serial: 08 Authority key identifier: E8:80:4B:7E:10:4D:65:76:F0:C8:DC:48:2A:51:B5:E3:67:AA:1F:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IBLfhBNZXbwyNxIKlG142eqH3c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/2920764254CC11EF84CA4F17C4F9AE02.roa Signing time: Fri 16 Aug 2024 01:05:30 +0000 ROA not before: Fri 16 Aug 2024 01:05:30 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 131219 IP address blocks: 103.68.94.0/24 maxlen: 24 103.120.247.0/24 maxlen: 24 2001:df3:e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/6IBLfhBNZXbwyNxIKlG142eqH3c.crl rsync://rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/6IBLfhBNZXbwyNxIKlG142eqH3c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IBLfhBNZXbwyNxIKlG142eqH3c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915392C/serialNumber=E8804B7E104D6576F0C8DC482A51B5E367AA1F77 Validity Not Before: Aug 16 01:05:30 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66bea5d9-0112 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d4:00:d9:20:f7:5b:7c:f8:e5:91:b0:23:1b: 2c:61:49:17:cc:08:0b:d4:2f:36:cd:47:27:5f:a1: e3:88:94:94:40:7d:34:be:2b:b9:f9:5d:8c:02:46: 7f:c4:2d:d2:ec:26:35:40:6e:7b:64:81:fe:3a:65: b2:28:96:f1:65:f8:7e:d9:9c:10:94:c3:60:82:59: f1:e0:2f:78:9b:90:52:6d:a8:88:b7:ae:7c:29:83: ea:2f:c3:1c:63:a8:53:33:e8:e0:24:3b:98:02:38: 7d:df:c0:cf:7c:85:6f:84:8c:dc:bb:fa:ae:f0:a7: 2d:24:fc:f2:bd:ad:b0:04:f4:23:a6:43:5d:12:72: d2:fe:ef:2f:9f:15:b8:62:26:9f:56:36:0f:52:9d: 70:06:55:55:4f:dd:69:96:a0:63:4e:b9:81:3d:80: 20:ac:42:42:2b:07:24:7b:5a:6a:e8:5d:39:12:f3: 1d:3a:aa:00:3f:3e:d8:2c:ac:8a:00:63:35:0f:a0: f0:e6:c8:c2:97:3d:aa:a9:42:2d:12:63:ae:c5:f6: bb:b3:68:df:d5:b7:b3:bc:9e:44:36:51:2b:80:3b: 3b:f0:f9:2a:fd:ab:02:a6:94:da:9e:4a:e5:90:da: 28:20:d3:14:29:f4:b8:ac:03:16:78:b2:37:fb:86: ce:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:0C:3A:22:9F:76:AF:F9:47:45:E0:FA:1A:37:35:1C:10:6E:6A:D5 X509v3 Authority Key Identifier: keyid:E8:80:4B:7E:10:4D:65:76:F0:C8:DC:48:2A:51:B5:E3:67:AA:1F:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/6IBLfhBNZXbwyNxIKlG142eqH3c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6IBLfhBNZXbwyNxIKlG142eqH3c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915392C/A6404A4A54CB11EFA1627016C4F9AE02/2920764254CC11EF84CA4F17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.94.0/24 103.120.247.0/24 IPv6: 2001:df3:e00::/48 Signature Algorithm: sha256WithRSAEncryption 15:5d:0f:29:d5:bd:4d:36:c0:56:ba:5b:d1:c1:6b:bc:1a:93: 20:dd:96:30:50:6a:0a:ad:44:e0:d9:ef:f8:c7:e1:ae:b3:05: 0e:3b:f0:20:3c:f6:13:0c:f1:74:ae:45:bc:23:88:cd:2b:b6: 62:f5:c8:ed:7f:fc:c4:b6:51:84:81:29:cf:fb:f3:ac:7a:1c: e9:25:66:ce:a1:60:bf:ae:c7:98:30:39:61:65:77:c5:e7:8b: 0a:22:9e:fc:21:cf:4a:eb:62:8f:44:f0:2f:5b:ce:10:8e:25: 89:46:2f:b5:7e:3d:a3:4b:7c:7b:fe:ed:5d:38:35:21:12:ef: ae:51:e7:32:9f:d5:2c:32:cd:a7:f3:28:3b:90:15:f9:40:c6: 1b:ec:db:84:72:53:fc:68:29:b9:31:63:bd:d1:ae:2c:27:bf: 94:03:e9:db:e3:a7:95:fe:a3:bf:b5:2a:de:58:ec:2c:3e:83: a0:69:9e:68:3c:be:bc:06:1d:fc:dc:72:f6:30:05:fe:85:7a: 5e:c6:ab:70:77:fe:7f:6c:dd:dd:25:30:cc:31:ec:c6:0f:86: 16:bf:4f:76:af:79:64:22:34:0c:f8:5e:6a:a7:b5:0c:19:75: a9:45:06:99:f7:d1:0d:0f:8c:d3:61:83:a5:8b:01:59:c8:89: 40:5e:75:ee -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzkyQzExMC8GA1UEBRMoRTg4MDRCN0UxMDRENjU3NkYwQzhEQzQ4MkE1MUI1RTM2 N0FBMUY3NzAeFw0yNDA4MTYwMTA1MzBaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmVhNWQ5LTAxMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCl1ADZIPdbfPjlkbAjGyxhSRfMCAvULzbNRydfoeOIlJRAfTS+K7n5XYwCRn/E LdLsJjVAbntkgf46ZbIolvFl+H7ZnBCUw2CCWfHgL3ibkFJtqIi3rnwpg+ovwxxj qFMz6OAkO5gCOH3fwM98hW+EjNy7+q7wpy0k/PK9rbAE9COmQ10SctL+7y+fFbhi Jp9WNg9SnXAGVVVP3WmWoGNOuYE9gCCsQkIrByR7WmroXTkS8x06qgA/PtgsrIoA YzUPoPDmyMKXPaqpQi0SY67F9ruzaN/Vt7O8nkQ2USuAOzvw+Sr9qwKmlNqeSuWQ 2igg0xQp9LisAxZ4sjf7hs5zAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUIAw6Ip92 r/lHReD6Gjc1HBBuatUwHwYDVR0jBBgwFoAU6IBLfhBNZXbwyNxIKlG142eqH3cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzOTJDL0E2NDA0QTRBNTRD QjExRUZBMTYyNzAxNkM0RjlBRTAyLzZJQkxmaEJOWlhid3lOeElLbEcxNDJlcUgz Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNklCTGZoQk5aWGJ3eU54SUtsRzE0MmVxSDNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzkyQy9BNjQwNEE0QTU0Q0IxMUVGQTE2MjcwMTZDNEY5QUUwMi8yOTIwNzY0MjU0 Q0MxMUVGODRDQTRGMTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAGdEXgMEAGd49zAPBAIAAjAJAwcAIAEN8w4AMA0GCSqGSIb3 DQEBCwUAA4IBAQAVXQ8p1b1NNsBWulvRwWu8GpMg3ZYwUGoKrUTg2e/4x+GuswUO O/AgPPYTDPF0rkW8I4jNK7Zi9cjtf/zEtlGEgSnP+/OsehzpJWbOoWC/rseYMDlh ZXfF54sKIp78Ic9K62KPRPAvW84QjiWJRi+1fj2jS3x7/u1dODUhEu+uUecyn9Us Ms2n8yg7kBX5QMYb7NuEclP8aCm5MWO90a4sJ7+UA+nb46eV/qO/tSreWOwsPoOg aZ5oPL68Bh383HL2MAX+hXpexqtwd/5/bN3dJTDMMezGD4YWv092r3lkIjQM+F5q p7UMGXWpRQaZ99END4zTYYOliwFZyIlAXnXu -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:07 2024 by rpki-client on console-ams.rpki-client.org