$ rpki-client -vvf rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/398211B2DE1C11ED8935D41DC4F9AE02.roa File: 398211B2DE1C11ED8935D41DC4F9AE02.roa (raw, json) Hash identifier: 0dIV1BuMrGTI1eJ/F5rbagneYyyNugrEiUlk6vS+T68= Subject key identifier: 69:AF:F1:67:30:08:38:12:2C:95:13:3A:6E:05:7A:13:D6:88:A5:CB Certificate issuer: /CN=A915BC2A/serialNumber=9E055D35CF32925335CC940CC8828B63DD60730B Certificate serial: 0121 Authority key identifier: 9E:05:5D:35:CF:32:92:53:35:CC:94:0C:C8:82:8B:63:DD:60:73:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/398211B2DE1C11ED8935D41DC4F9AE02.roa Signing time: Fri 25 Oct 2024 03:47:26 +0000 ROA not before: Fri 25 Oct 2024 03:47:26 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 3320 IP address blocks: 103.12.180.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.crl rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915BC2A/serialNumber=9E055D35CF32925335CC940CC8828B63DD60730B Validity Not Before: Oct 25 03:47:26 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671b14ce-36ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1d:97:b9:42:a4:da:71:c3:67:e9:b0:5f:a3: 30:b5:ed:9a:65:54:40:25:c7:36:57:ab:bb:42:c0: 71:19:49:6f:58:c3:aa:ea:b3:72:a1:cc:f2:15:b4: 5f:fd:ec:e4:8b:85:54:30:62:dd:fe:6e:d7:9f:55: 5a:80:67:8a:ff:a0:84:44:5a:49:6f:4b:5f:d6:f5: 3c:ea:16:06:9f:b6:f3:e3:9f:a8:87:5f:24:48:1a: ba:ab:3a:8a:72:79:29:92:ff:ea:31:06:21:fc:41: 8e:18:d4:42:a8:fd:9f:f4:bb:69:38:a7:ba:21:aa: d4:1b:c9:59:c9:79:a1:9e:d6:ed:3a:b2:e0:2d:a7: b9:af:c7:bb:48:7b:0c:76:15:6c:32:3c:36:57:fe: 0c:d5:a4:07:66:24:7a:4d:2c:db:86:dd:0b:0d:0b: ef:ec:0a:a6:05:0b:70:ac:0e:3f:27:00:b3:94:31: b3:bc:bd:d5:11:15:9a:2e:09:c3:4a:14:5e:22:86: 80:fa:5d:20:bd:c5:94:6a:33:60:3c:3e:84:ef:62: dc:39:9f:5c:9b:88:35:08:ee:99:e4:6b:23:23:61: f5:e6:f5:18:18:00:87:b3:71:0d:3e:6b:6b:a9:b6: 6e:5f:d6:fe:fd:6b:2a:df:74:ed:2e:21:2e:36:ba: 99:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:AF:F1:67:30:08:38:12:2C:95:13:3A:6E:05:7A:13:D6:88:A5:CB X509v3 Authority Key Identifier: keyid:9E:05:5D:35:CF:32:92:53:35:CC:94:0C:C8:82:8B:63:DD:60:73:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/ngVdNc8yklM1zJQMyIKLY91gcws.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ngVdNc8yklM1zJQMyIKLY91gcws.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915BC2A/ED9F8DBADE1111ED85EC0A49C4F9AE02/398211B2DE1C11ED8935D41DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.180.0/23 Signature Algorithm: sha256WithRSAEncryption b0:54:e5:12:1b:ff:07:31:1a:f4:f8:20:04:79:ab:7c:fc:5e: 59:33:ec:5e:7e:6c:78:e8:ff:e5:11:f2:cd:c0:ab:f5:b1:48: c8:05:6d:61:81:9f:01:b5:34:29:53:fc:99:ab:86:44:e8:75: e4:ca:3e:bd:de:69:c8:d9:87:c8:5d:02:74:8d:dc:f2:fa:57: d9:8b:4c:21:cf:95:77:00:f6:42:61:33:32:24:19:fc:bc:60: 97:24:0e:aa:75:73:1e:cf:83:03:a5:0c:56:dd:04:69:0a:6e: 65:c5:16:ac:5f:14:01:05:37:99:97:3b:ef:24:c8:8c:e3:63: 9e:5a:da:6d:67:9f:d8:96:b9:d3:e0:23:a0:52:91:4e:64:59: c3:26:90:81:47:85:d2:29:fb:0d:d4:30:44:f9:48:41:5b:57: d7:38:98:78:99:b7:8c:f2:68:9a:78:92:28:10:cb:a5:c4:62: 54:25:62:8b:05:de:7d:22:80:ea:6d:ff:61:3a:35:ae:75:29: 7a:d0:fe:9d:6a:db:b2:12:fb:99:85:89:a2:47:22:33:d3:53: 8a:c8:9f:c4:ba:10:3b:6a:97:3f:0c:7a:a5:4b:f8:bb:45:d3: 48:41:fd:66:22:ab:eb:85:64:78:e5:e1:0c:7f:f1:fe:d3:9f: 02:b1:b0:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUJDMkExMTAvBgNVBAUTKDlFMDU1RDM1Q0YzMjkyNTMzNUNDOTQwQ0M4ODI4QjYz REQ2MDczMEIwHhcNMjQxMDI1MDM0NzI2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFiMTRjZS0zNmVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvR2XuUKk2nHDZ+mwX6Mwte2aZVRAJcc2V6u7QsBxGUlvWMOq6rNyoczyFbRf /ezki4VUMGLd/m7Xn1VagGeK/6CERFpJb0tf1vU86hYGn7bz45+oh18kSBq6qzqK cnkpkv/qMQYh/EGOGNRCqP2f9LtpOKe6IarUG8lZyXmhntbtOrLgLae5r8e7SHsM dhVsMjw2V/4M1aQHZiR6TSzbht0LDQvv7AqmBQtwrA4/JwCzlDGzvL3VERWaLgnD ShReIoaA+l0gvcWUajNgPD6E72LcOZ9cm4g1CO6Z5GsjI2H15vUYGACHs3ENPmtr qbZuX9b+/Wsq33TtLiEuNrqZQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGmv8Wcw CDgSLJUTOm4FehPWiKXLMB8GA1UdIwQYMBaAFJ4FXTXPMpJTNcyUDMiCi2PdYHML MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QkMyQS9FRDlGOERCQURF MTExMUVEODVFQzBBNDlDNEY5QUUwMi9uZ1ZkTmM4eWtsTTF6SlFNeUlLTFk5MWdj d3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25nVmROYzh5a2xNMXpKUU15SUtMWTkxZ2N3cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUJDMkEvRUQ5RjhEQkFERTExMTFFRDg1RUMwQTQ5QzRGOUFFMDIvMzk4MjExQjJE RTFDMTFFRDg5MzVENDFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnDLQwDQYJKoZIhvcNAQELBQADggEBALBU5RIb/wcxGvT4 IAR5q3z8Xlkz7F5+bHjo/+UR8s3Aq/WxSMgFbWGBnwG1NClT/JmrhkTodeTKPr3e acjZh8hdAnSN3PL6V9mLTCHPlXcA9kJhMzIkGfy8YJckDqp1cx7PgwOlDFbdBGkK bmXFFqxfFAEFN5mXO+8kyIzjY55a2m1nn9iWudPgI6BSkU5kWcMmkIFHhdIp+w3U MET5SEFbV9c4mHiZt4zyaJp4kigQy6XEYlQlYosF3n0igOpt/2E6Na51KXrQ/p1q 27IS+5mFiaJHIjPTU4rIn8S6EDtqlz8MeqVL+LtF00hB/WYiq+uFZHjl4Qx/8f7T nwKxsLU= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:39 2024 by rpki-client on console-ams.rpki-client.org