$ rpki-client -vvf rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/2FF4108A0C3911EB828BDC25C4F9AE02.roa File: 2FF4108A0C3911EB828BDC25C4F9AE02.roa (raw, json) Hash identifier: V4JUuTRtv40XYY/VZRfInArQdDKfffORyJnUaqVGJBU= Subject key identifier: 6D:AF:61:DA:E4:EC:82:18:2C:86:42:0F:CD:9B:DC:35:1C:CF:9D:A3 Certificate issuer: /CN=A9164FD2/serialNumber=9378691D5A83CC026B8D1F232806008371BEDC04 Certificate serial: 0727 Authority key identifier: 93:78:69:1D:5A:83:CC:02:6B:8D:1F:23:28:06:00:83:71:BE:DC:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/2FF4108A0C3911EB828BDC25C4F9AE02.roa Signing time: Mon 28 Oct 2024 21:52:16 +0000 ROA not before: Mon 28 Oct 2024 21:52:16 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55720 IP address blocks: 103.9.51.0/24 maxlen: 24 103.81.162.0/24 maxlen: 24 103.195.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.crl rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1831 (0x727) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164FD2/serialNumber=9378691D5A83CC026B8D1F232806008371BEDC04 Validity Not Before: Oct 28 21:52:16 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67200790-a290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d0:8d:95:ad:6e:3b:6a:47:f3:a8:24:ca:98: 2c:67:14:57:3e:eb:5e:4f:df:57:af:08:c5:52:b9: 97:5a:7b:4d:0c:6b:ce:5d:e8:a7:ea:5d:4d:75:34: 6a:1c:73:f0:9d:25:86:d8:9b:cb:81:30:37:60:1f: 65:58:6d:75:5a:8e:1c:a1:8e:1c:86:04:a0:0c:f2: b8:82:c7:fb:97:ff:65:12:40:11:19:5f:57:e8:f5: 76:37:63:eb:85:c1:ba:b1:6b:eb:07:d7:3c:48:fd: 0a:2e:6f:3d:7e:41:e7:cb:50:7c:4c:3c:a6:d0:57: ee:4d:47:3f:b5:cd:b5:e3:cc:cb:dd:fe:34:6f:13: d6:ad:0e:e3:3c:20:d7:61:a6:8e:a8:a2:fb:2d:a0: cc:c1:1d:3c:67:af:79:67:06:e2:da:61:52:1b:ba: 64:f3:03:fc:a3:77:ac:bf:ac:41:1d:b4:25:f8:56: ac:d7:5c:27:ea:3e:73:fd:8a:4c:42:71:df:a4:db: db:6f:55:94:64:dc:8e:9b:4e:9e:b9:80:01:fa:90: 31:73:51:fd:db:ed:99:e4:ca:98:51:e3:91:5c:27: 67:a6:8c:94:99:1c:8f:47:e6:92:16:4a:01:ef:ed: d8:de:bb:8d:36:f1:66:76:7a:a9:f9:eb:f4:d6:8b: 36:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:AF:61:DA:E4:EC:82:18:2C:86:42:0F:CD:9B:DC:35:1C:CF:9D:A3 X509v3 Authority Key Identifier: keyid:93:78:69:1D:5A:83:CC:02:6B:8D:1F:23:28:06:00:83:71:BE:DC:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/2FF4108A0C3911EB828BDC25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.51.0/24 103.81.162.0/24 103.195.143.0/24 Signature Algorithm: sha256WithRSAEncryption 45:e2:53:76:22:b6:40:21:07:3d:d0:ce:57:17:90:c4:4f:20: 95:05:52:34:07:c5:b7:c1:6b:58:66:34:e3:cc:d6:6f:1c:f2: cb:52:c3:92:b2:43:7e:49:1c:e7:7f:75:02:01:f8:08:92:2e: fd:6a:36:90:99:b3:5d:18:7a:82:e4:a3:c4:34:6c:62:d6:5e: d1:01:9a:62:45:f7:a8:cb:4e:7f:c6:4f:75:22:7a:72:c4:1d: 24:dd:7b:29:7e:a1:86:55:c1:ef:f9:ec:36:d3:86:9d:5d:77: fb:31:e7:09:32:41:39:4e:d0:7f:87:b4:56:29:aa:4c:08:c3: 02:2c:7d:c2:81:ec:9d:29:17:01:d6:ef:05:0c:e9:35:2e:40: 26:29:2f:57:cc:4f:ee:f3:2a:e3:f0:33:75:83:f2:e5:44:26: d9:f0:f1:f0:bb:96:5f:92:be:ba:0d:8a:57:08:2c:52:f6:8e: 65:9b:6c:05:a0:e2:cf:dc:ab:c4:dc:f4:bb:00:64:ce:d5:c0: 78:0c:a8:d2:bc:c3:9d:1c:19:b2:97:ab:b1:36:ef:8b:93:9f: 11:af:2a:92:cb:01:88:63:6d:5f:1b:6b:f4:bd:7a:42:ee:50: e8:ab:ab:b9:80:aa:85:51:e1:6c:38:5b:79:41:5a:09:0b:9c: ef:77:97:d2 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBycwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjRGRDIxMTAvBgNVBAUTKDkzNzg2OTFENUE4M0NDMDI2QjhEMUYyMzI4MDYwMDgz NzFCRURDMDQwHhcNMjQxMDI4MjE1MjE2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMDc5MC1hMjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNCNla1uO2pH86gkypgsZxRXPuteT99XrwjFUrmXWntNDGvOXein6l1NdTRq HHPwnSWG2JvLgTA3YB9lWG11Wo4coY4chgSgDPK4gsf7l/9lEkARGV9X6PV2N2Pr hcG6sWvrB9c8SP0KLm89fkHny1B8TDym0FfuTUc/tc2148zL3f40bxPWrQ7jPCDX YaaOqKL7LaDMwR08Z695Zwbi2mFSG7pk8wP8o3esv6xBHbQl+Fas11wn6j5z/YpM QnHfpNvbb1WUZNyOm06euYAB+pAxc1H92+2Z5MqYUeORXCdnpoyUmRyPR+aSFkoB 7+3Y3ruNNvFmdnqp+ev01os2BQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFG2vYdrk 7IIYLIZCD82b3DUcz52jMB8GA1UdIwQYMBaAFJN4aR1ag8wCa40fIygGAINxvtwE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NEZEMi9COTRCNEY3QzBD MzYxMUVCODUyMzMxMjFDNEY5QUUwMi9rM2hwSFZxRHpBSnJqUjhqS0FZQWczRy0z QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2szaHBIVnFEekFKcmpSOGpLQVlBZzNHLTNBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjRGRDIvQjk0QjRGN0MwQzM2MTFFQjg1MjMzMTIxQzRGOUFFMDIvMkZGNDEwOEEw QzM5MTFFQjgyOEJEQzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnCTMDBABnUaIDBABnw48wDQYJKoZIhvcNAQELBQADggEB AEXiU3YitkAhBz3QzlcXkMRPIJUFUjQHxbfBa1hmNOPM1m8c8stSw5KyQ35JHOd/ dQIB+AiSLv1qNpCZs10YeoLko8Q0bGLWXtEBmmJF96jLTn/GT3UienLEHSTdeyl+ oYZVwe/57DbThp1dd/sx5wkyQTlO0H+HtFYpqkwIwwIsfcKB7J0pFwHW7wUM6TUu QCYpL1fMT+7zKuPwM3WD8uVEJtnw8fC7ll+SvroNilcILFL2jmWbbAWg4s/cq8Tc 9LsAZM7VwHgMqNK8w50cGbKXq7E274uTnxGvKpLLAYhjbV8ba/S9ekLuUOirq7mA qoVR4Ww4W3lBWgkLnO93l9I= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:39 2024 by rpki-client on console-fra.rpki-client.org