$ rpki-client -vvf rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/12A47D4E9CDB11EF857FB626C4F9AE02.roa File: 12A47D4E9CDB11EF857FB626C4F9AE02.roa (raw, json) Hash identifier: 6+tk9n+mwKmveOFrTOSyNOKqHKQyrXgQ60Gavs+tji8= Subject key identifier: 86:F3:7B:4B:32:0D:9B:AA:6A:FE:A5:AA:AE:9E:AB:93:C2:2B:AC:1D Certificate issuer: /CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Certificate serial: 0780 Authority key identifier: D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/12A47D4E9CDB11EF857FB626C4F9AE02.roa Signing time: Thu 07 Nov 2024 07:37:00 +0000 ROA not before: Thu 07 Nov 2024 07:37:00 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 132890 IP address blocks: 103.27.104.0/22 maxlen: 24 113.52.148.0/22 maxlen: 24 2407:5f00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1920 (0x780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C9B7/serialNumber=D9D0A3C6A4DD7BA7B454DEAE01AF67AF2C54C433 Validity Not Before: Nov 7 07:37:00 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=672c6e1b-6ef3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:41:19:08:e7:3d:2e:d7:29:22:59:05:c6:da: 91:d0:af:8b:97:99:f1:e7:f5:50:24:e6:d9:ea:37: 3b:d5:ab:b3:3e:4c:fa:a5:43:31:a8:4a:95:68:9f: ce:c7:fa:53:94:0b:4e:0c:7e:1f:83:cb:fa:6a:9a: fa:b1:09:01:b8:50:7d:76:35:70:20:f7:2f:29:1c: b5:6a:d1:67:70:82:8f:78:07:47:5d:13:3c:17:b7: 29:6b:26:fe:31:b4:e9:b8:c9:92:c8:4a:ab:f2:d2: 36:e3:e8:52:0e:0b:53:85:f2:79:f1:7a:14:78:af: a6:1d:77:9c:9e:d0:5f:61:20:4b:ef:79:ff:db:c5: bb:d9:8c:9e:c1:0a:d0:b0:9b:8e:19:64:3f:a1:6b: ce:9a:9f:ed:e0:59:b8:a0:de:06:3e:a6:35:c5:95: 7a:1c:06:ce:e0:7d:ef:c7:90:11:3d:ab:4f:68:77: 79:81:ef:71:aa:d0:7b:b7:ed:70:43:87:0d:d7:3e: 6b:90:2c:13:f0:8d:ea:d5:35:7e:cb:c8:d6:a2:bf: 9e:f8:f8:fe:90:19:c4:91:46:18:d3:99:d2:aa:25: b5:46:23:8b:29:c0:72:80:91:8c:d5:a7:55:d7:1a: ab:19:3d:af:7c:3b:ab:f7:5f:8b:ed:d4:6d:31:90: fb:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:F3:7B:4B:32:0D:9B:AA:6A:FE:A5:AA:AE:9E:AB:93:C2:2B:AC:1D X509v3 Authority Key Identifier: keyid:D9:D0:A3:C6:A4:DD:7B:A7:B4:54:DE:AE:01:AF:67:AF:2C:54:C4:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/2dCjxqTde6e0VN6uAa9nryxUxDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dCjxqTde6e0VN6uAa9nryxUxDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C9B7/8C264FD2EE5A11EAAD769033C4F9AE02/12A47D4E9CDB11EF857FB626C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.27.104.0/22 113.52.148.0/22 IPv6: 2407:5f00::/32 Signature Algorithm: sha256WithRSAEncryption 0d:68:9e:14:2c:2a:fc:c7:77:a0:c0:3c:fc:af:fb:93:d7:b0: b8:c2:51:20:0b:c0:fc:84:75:6b:3c:22:fc:0c:f7:79:89:51: 37:2d:7f:51:70:ed:6a:24:2e:cf:c1:77:4c:9c:2b:0d:e6:8c: ef:11:9e:5a:4e:9a:2b:f4:ef:d8:a1:d0:06:38:11:c4:5e:bb: 48:fd:33:c0:a1:15:be:61:38:9e:f4:ba:46:7e:ea:15:98:24: 80:ea:6e:19:b9:8a:2e:b7:36:6d:87:33:44:61:b4:7b:6c:76: c2:de:a4:92:6f:9a:71:ab:b8:ab:a6:70:74:28:56:99:19:42: 11:11:a4:c8:19:c0:7b:55:6b:0d:55:6b:2c:50:ea:7c:c1:c1: 26:a5:b2:2f:2a:f6:b9:7b:ca:53:a6:de:85:1a:a7:fe:89:cb: 60:b9:4b:cf:c1:55:82:0e:3a:49:3c:6e:fd:04:28:8c:b8:2b: 5d:c1:35:26:96:bf:75:c3:73:89:c7:14:d4:a0:7f:62:3e:e4: 37:71:8a:fb:2c:4d:2a:3c:19:04:88:ca:54:48:bd:b8:5b:e6: 1e:21:64:cd:cd:b1:99:77:de:27:03:67:52:57:77:0f:9c:9c: 45:c8:e1:7e:d1:2d:ee:a9:46:77:d7:12:d9:c4:54:f7:fb:d4: 6f:ee:56:b7 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB4AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUM5QjcxMTAvBgNVBAUTKEQ5RDBBM0M2QTRERDdCQTdCNDU0REVBRTAxQUY2N0FG MkM1NEM0MzMwHhcNMjQxMTA3MDczNzAwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjNmUxYi02ZWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UEZCOc9LtcpIlkFxtqR0K+Ll5nx5/VQJObZ6jc71auzPkz6pUMxqEqVaJ/O x/pTlAtODH4fg8v6apr6sQkBuFB9djVwIPcvKRy1atFncIKPeAdHXRM8F7cpayb+ MbTpuMmSyEqr8tI24+hSDgtThfJ58XoUeK+mHXecntBfYSBL73n/28W72YyewQrQ sJuOGWQ/oWvOmp/t4Fm4oN4GPqY1xZV6HAbO4H3vx5ARPatPaHd5ge9xqtB7t+1w Q4cN1z5rkCwT8I3q1TV+y8jWor+e+Pj+kBnEkUYY05nSqiW1RiOLKcBygJGM1adV 1xqrGT2vfDur91+L7dRtMZD7WwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFIbze0sy DZuqav6lqq6eq5PCK6wdMB8GA1UdIwQYMBaAFNnQo8ak3XuntFTergGvZ68sVMQz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzlCNy84QzI2NEZEMkVF NUExMUVBQUQ3NjkwMzNDNEY5QUUwMi8yZENqeHFUZGU2ZTBWTjZ1QWE5bnJ5eFV4 RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkQ2p4cVRkZTZlMFZONnVBYTlucnl4VXhETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUM5QjcvOEMyNjRGRDJFRTVBMTFFQUFENzY5MDMzQzRGOUFFMDIvMTJBNDdENEU5 Q0RCMTFFRjg1N0ZCNjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnG2gDBAJxNJQwDQQCAAIwBwMFACQHXwAwDQYJKoZIhvcN AQELBQADggEBAA1onhQsKvzHd6DAPPyv+5PXsLjCUSALwPyEdWs8IvwM93mJUTct f1Fw7WokLs/Bd0ycKw3mjO8RnlpOmiv079ih0AY4EcReu0j9M8ChFb5hOJ70ukZ+ 6hWYJIDqbhm5ii63Nm2HM0RhtHtsdsLepJJvmnGruKumcHQoVpkZQhERpMgZwHtV aw1VayxQ6nzBwSalsi8q9rl7ylOm3oUap/6Jy2C5S8/BVYIOOkk8bv0EKIy4K13B NSaWv3XDc4nHFNSgf2I+5DdxivssTSo8GQSIylRIvbhb5h4hZM3NsZl33icDZ1JX dw+cnEXI4X7RLe6pRnfXEtnEVPf71G/uVrc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:08 2024 by rpki-client on console-fra.rpki-client.org