$ rpki-client -vvf rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/E938CA160B8311EABDDD354EC4F9AE02.roa File: E938CA160B8311EABDDD354EC4F9AE02.roa (raw, json) Hash identifier: MNlZu7yFyHzY7mp1lqgp8UtgJxbRDORGNjW0jzuiByY= Subject key identifier: E7:4F:68:EA:91:E0:B6:60:B1:9E:96:0E:73:D0:07:75:A1:43:77:71 Certificate issuer: /CN=A9158840/serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Certificate serial: 0BA7 Authority key identifier: FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/E938CA160B8311EABDDD354EC4F9AE02.roa Signing time: Thu 26 Sep 2024 18:47:31 +0000 ROA not before: Thu 26 Sep 2024 18:47:31 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 138146 IP address blocks: 103.121.60.0/24 maxlen: 24 103.121.61.0/24 maxlen: 24 103.121.62.0/24 maxlen: 24 103.121.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2983 (0xba7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158840/serialNumber=FAE6201C666392340BEE138ED41799BA86DAA688 Validity Not Before: Sep 26 18:47:31 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f5ac43-8cf6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:e3:f5:08:0d:fc:30:a0:49:61:74:46:5b:a6: 46:3d:97:24:48:96:c2:5f:08:f8:49:5e:a5:c0:08: 90:69:f6:c3:f7:c0:38:24:f3:7c:86:ba:cf:cc:09: dc:2d:ba:0f:64:4c:66:f8:a7:5e:99:2b:66:e3:b8: ff:10:86:5c:e9:30:51:a4:29:77:82:cb:e8:24:0f: ce:f8:b2:d3:fb:39:d3:1c:97:c1:82:e8:15:ec:fe: 9f:08:05:3a:df:b5:43:1a:0c:c6:f4:83:8e:70:a2: af:a5:80:5c:be:7a:4d:4c:31:64:15:ca:29:81:79: de:2c:bf:57:79:60:26:63:cf:fe:b4:57:07:ad:59: 2f:e3:07:ea:dc:ae:78:4e:a9:d1:49:a6:8c:5c:3e: 6a:82:5f:f8:e8:5b:37:1e:0b:ca:c3:bd:fd:d3:2e: ac:75:68:38:bf:14:21:8e:36:c3:f9:f1:7b:5a:94: 70:3d:ea:33:8c:ac:17:fc:9f:af:ea:b3:3d:a3:26: 79:3e:2a:91:0d:6c:ca:89:c2:36:5e:57:df:ff:ce: 82:3b:26:2e:36:21:31:8f:8f:7d:57:6c:1c:fa:3d: b2:ef:30:43:e4:e9:3a:4b:34:fb:e8:3a:57:65:6e: fc:2a:b0:14:1b:67:03:ac:b5:47:6b:d9:ee:0e:29: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4F:68:EA:91:E0:B6:60:B1:9E:96:0E:73:D0:07:75:A1:43:77:71 X509v3 Authority Key Identifier: keyid:FA:E6:20:1C:66:63:92:34:0B:EE:13:8E:D4:17:99:BA:86:DA:A6:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/-uYgHGZjkjQL7hOO1BeZuobapog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-uYgHGZjkjQL7hOO1BeZuobapog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158840/6177332A0B8211EA8041154BC4F9AE02/E938CA160B8311EABDDD354EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.60.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:3e:9e:ef:95:43:e4:c7:f5:2e:c0:02:37:f5:88:d7:14:60: f0:8f:65:b1:b8:0e:f8:ad:eb:73:04:1a:9c:91:97:99:e1:0f: a4:30:a9:40:ed:60:95:b2:4a:e9:4a:56:f1:9f:36:08:61:39: 2e:0a:24:a6:11:ef:c9:7c:af:dd:8c:a8:9e:6b:ba:11:16:40: f6:97:ae:5c:a6:66:fa:7e:e0:ec:48:6f:78:cb:d5:65:4b:9b: 31:9c:59:9a:f3:2f:58:a2:09:7c:29:a6:30:4c:62:e1:8d:69: 54:c7:74:f7:3e:71:fe:74:e1:cf:b1:c5:f3:78:a6:29:07:0d: c0:02:e1:1b:20:32:dd:3e:77:c2:fd:f5:77:fd:e5:3d:56:13: f9:a3:25:cf:da:fa:cc:a7:23:5f:7f:ab:cf:78:83:a4:7d:f2: 0d:11:3e:7d:ec:4d:6d:59:1b:db:6b:d2:8e:e4:00:e0:12:ad: 22:98:2e:8c:d5:38:19:75:b4:f0:e0:54:ed:77:d9:5a:ad:ab: 1a:73:f2:af:65:e0:bf:86:15:7b:bf:f8:c2:51:2e:7e:b3:5b: 84:01:d0:cb:5c:5b:53:68:79:c6:b1:df:ba:78:be:14:89:ae: 1d:63:cd:ed:c5:47:8c:e1:52:c3:34:2a:2c:90:5d:1f:c0:fa: d9:da:da:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg4NDAxMTAvBgNVBAUTKEZBRTYyMDFDNjY2MzkyMzQwQkVFMTM4RUQ0MTc5OUJB ODZEQUE2ODgwHhcNMjQwOTI2MTg0NzMxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1YWM0My04Y2Y2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3uP1CA38MKBJYXRGW6ZGPZckSJbCXwj4SV6lwAiQafbD98A4JPN8hrrPzAnc LboPZExm+KdemStm47j/EIZc6TBRpCl3gsvoJA/O+LLT+znTHJfBgugV7P6fCAU6 37VDGgzG9IOOcKKvpYBcvnpNTDFkFcopgXneLL9XeWAmY8/+tFcHrVkv4wfq3K54 TqnRSaaMXD5qgl/46Fs3HgvKw7390y6sdWg4vxQhjjbD+fF7WpRwPeozjKwX/J+v 6rM9oyZ5PiqRDWzKicI2Xlff/86COyYuNiExj499V2wc+j2y7zBD5Ok6SzT76DpX ZW78KrAUG2cDrLVHa9nuDinaYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOdPaOqR 4LZgsZ6WDnPQB3WhQ3dxMB8GA1UdIwQYMBaAFPrmIBxmY5I0C+4TjtQXmbqG2qaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODg0MC82MTc3MzMyQTBC ODIxMUVBODA0MTE1NEJDNEY5QUUwMi8tdVlnSEdaamtqUUw3aE9PMUJlWnVvYmFw b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy11WWdIR1pqa2pRTDdoT08xQmVadW9iYXBvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg4NDAvNjE3NzMzMkEwQjgyMTFFQTgwNDExNTRCQzRGOUFFMDIvRTkzOENBMTYw QjgzMTFFQUJEREQzNTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneTwwDQYJKoZIhvcNAQELBQADggEBAE8+nu+VQ+TH9S7A Ajf1iNcUYPCPZbG4Dvit63MEGpyRl5nhD6QwqUDtYJWySulKVvGfNghhOS4KJKYR 78l8r92MqJ5ruhEWQPaXrlymZvp+4OxIb3jL1WVLmzGcWZrzL1iiCXwppjBMYuGN aVTHdPc+cf504c+xxfN4pikHDcAC4RsgMt0+d8L99Xf95T1WE/mjJc/a+synI19/ q894g6R98g0RPn3sTW1ZG9tr0o7kAOASrSKYLozVOBl1tPDgVO132Vqtqxpz8q9l 4L+GFXu/+MJRLn6zW4QB0MtcW1Noecax37p4vhSJrh1jze3FR4zhUsM0KiyQXR/A +tna2qU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org