$ rpki-client -vvf rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/2D0509BC078511ED87041524C4F9AE02.roa File: 2D0509BC078511ED87041524C4F9AE02.roa (raw, json) Hash identifier: mkLhDheVvSZEQXdMpQZm/3lb3eLuVbKFGeKtwuwQQaM= Subject key identifier: 71:0F:88:33:0A:56:A7:EF:26:FF:BC:D5:73:31:E2:FC:22:53:C4:A4 Certificate issuer: /CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Certificate serial: 0B91 Authority key identifier: 01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/2D0509BC078511ED87041524C4F9AE02.roa Signing time: Wed 10 Jul 2024 19:37:01 +0000 ROA not before: Wed 10 Jul 2024 19:37:01 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137834 IP address blocks: 103.115.118.0/23 maxlen: 23 103.115.118.0/24 maxlen: 24 103.115.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2961 (0xb91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166E2B/serialNumber=01032D9DFC362A958743E86D3C8D0611A6ADB05B Validity Not Before: Jul 10 19:37:01 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668ee2dd-0fb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:87:8f:ee:e7:cd:47:a2:d6:0a:36:0b:9d:5c: 7b:c3:f2:b9:25:de:5e:3b:aa:fc:95:ac:90:5c:5d: 0c:df:30:e6:2f:d3:9f:81:ce:f2:b7:20:24:fe:7c: 1a:56:64:4e:d1:f3:13:09:f4:51:c3:2f:dc:74:08: ce:61:11:3f:0a:39:06:01:7a:0a:84:94:71:50:f5: 99:d3:8a:75:2e:71:4e:3f:21:09:b5:e3:fd:0e:c0: 50:37:9d:17:c7:31:c8:bd:b9:e9:c9:a0:42:38:54: 6b:08:33:06:6b:82:37:62:98:bc:c2:1b:07:8e:24: 77:54:1f:29:d7:50:b3:c4:a5:ac:ac:e0:01:43:f0: 42:e0:cd:41:3e:39:0d:f7:1b:94:21:ca:fb:e5:ad: 01:59:9d:5d:33:a0:dd:ff:a9:71:53:d3:af:f4:6d: e4:b4:46:07:68:5d:e3:d7:6c:35:c2:37:e9:ca:11: 67:fe:70:9a:8a:97:b2:87:26:f0:df:7c:4a:5b:3f: aa:41:29:c2:81:d0:2b:9b:bf:5b:fa:18:1a:d9:04: 81:3a:4c:fa:90:fa:02:5c:3e:7f:a7:ba:15:f9:71: 1e:69:6d:44:23:5b:32:74:27:7a:c6:b1:64:32:4e: ea:99:e2:46:a6:04:2a:a0:fd:ed:9b:32:56:a0:25: 6d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:0F:88:33:0A:56:A7:EF:26:FF:BC:D5:73:31:E2:FC:22:53:C4:A4 X509v3 Authority Key Identifier: keyid:01:03:2D:9D:FC:36:2A:95:87:43:E8:6D:3C:8D:06:11:A6:AD:B0:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/AQMtnfw2KpWHQ-htPI0GEaatsFs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AQMtnfw2KpWHQ-htPI0GEaatsFs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166E2B/27E7CAA60C2D11EAB029DB53C4F9AE02/2D0509BC078511ED87041524C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.118.0/23 Signature Algorithm: sha256WithRSAEncryption 4d:55:d7:e7:4e:8b:e2:f3:04:fd:4e:c2:12:6a:bd:ce:f4:d1: 0d:c9:09:28:77:ca:17:ed:cd:50:15:6e:29:47:49:61:29:9a: bb:f6:0a:47:b3:5a:47:dd:92:06:05:5f:f8:5b:53:d6:8c:2b: a5:82:04:8b:90:ed:2c:91:80:c6:b3:21:28:fe:06:ee:10:cf: ff:44:fc:b2:f0:58:43:cb:c9:dc:3e:bc:e8:45:c6:1f:6f:3f: 5b:2d:3b:fa:67:79:4b:33:19:3b:d1:2f:d8:e0:ce:a6:a3:39: f4:3c:5b:f1:31:5b:e0:44:27:31:d0:4e:ef:9f:6f:d4:c5:83: 0d:c8:88:71:55:6c:ce:9f:8b:eb:44:07:9b:f1:b4:7c:c9:8e: 0e:bc:d9:53:dc:c1:f9:79:48:86:67:16:3c:11:16:ca:3b:36: 05:c7:57:d2:dc:42:75:2d:25:5c:bd:63:a5:b1:e8:86:b2:78: 7a:b0:0f:e5:be:69:4c:cb:dd:b4:46:70:db:2e:1d:db:2f:ed: fa:ba:6b:58:e8:cc:2f:44:3d:e5:fc:0c:c8:c0:46:32:c7:a9: 73:01:68:06:3e:8d:bf:c5:78:99:d3:16:e2:06:48:cc:c7:8e: 89:f8:ef:7d:c1:e3:29:6d:06:ed:3c:08:2a:b9:7f:95:9a:22: ca:50:11:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC5EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjZFMkIxMTAvBgNVBAUTKDAxMDMyRDlERkMzNjJBOTU4NzQzRTg2RDNDOEQwNjEx QTZBREIwNUIwHhcNMjQwNzEwMTkzNzAxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhlZTJkZC0wZmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oeP7ufNR6LWCjYLnVx7w/K5Jd5eO6r8layQXF0M3zDmL9Ofgc7ytyAk/nwa VmRO0fMTCfRRwy/cdAjOYRE/CjkGAXoKhJRxUPWZ04p1LnFOPyEJteP9DsBQN50X xzHIvbnpyaBCOFRrCDMGa4I3Ypi8whsHjiR3VB8p11CzxKWsrOABQ/BC4M1BPjkN 9xuUIcr75a0BWZ1dM6Dd/6lxU9Ov9G3ktEYHaF3j12w1wjfpyhFn/nCaipeyhybw 33xKWz+qQSnCgdArm79b+hga2QSBOkz6kPoCXD5/p7oV+XEeaW1EI1sydCd6xrFk Mk7qmeJGpgQqoP3tmzJWoCVtXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHEPiDMK VqfvJv+81XMx4vwiU8SkMB8GA1UdIwQYMBaAFAEDLZ38NiqVh0PobTyNBhGmrbBb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NkUyQi8yN0U3Q0FBNjBD MkQxMUVBQjAyOURCNTNDNEY5QUUwMi9BUU10bmZ3MktwV0hRLWh0UEkwR0VhYXRz RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FRTXRuZncyS3BXSFEtaHRQSTBHRWFhdHNGcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjZFMkIvMjdFN0NBQTYwQzJEMTFFQUIwMjlEQjUzQzRGOUFFMDIvMkQwNTA5QkMw Nzg1MTFFRDg3MDQxNTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnc3YwDQYJKoZIhvcNAQELBQADggEBAE1V1+dOi+LzBP1O whJqvc700Q3JCSh3yhftzVAVbilHSWEpmrv2CkezWkfdkgYFX/hbU9aMK6WCBIuQ 7SyRgMazISj+Bu4Qz/9E/LLwWEPLydw+vOhFxh9vP1stO/pneUszGTvRL9jgzqaj OfQ8W/ExW+BEJzHQTu+fb9TFgw3IiHFVbM6fi+tEB5vxtHzJjg682VPcwfl5SIZn FjwRFso7NgXHV9LcQnUtJVy9Y6Wx6IayeHqwD+W+aUzL3bRGcNsuHdsv7fq6a1jo zC9EPeX8DMjARjLHqXMBaAY+jb/FeJnTFuIGSMzHjon4733B4yltBu08CCq5f5Wa IspQEQQ= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:59 2024 by rpki-client on console-fra.rpki-client.org