$ rpki-client -vvf rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/789C2BD0ECCA11EAAE025C70C4F9AE02.roa File: 789C2BD0ECCA11EAAE025C70C4F9AE02.roa (raw, json) Hash identifier: a2yAAw5TgVOmiE8atuw12IZTou56LGQZcdiOcAtiW0M= Subject key identifier: FD:53:71:77:FA:16:7F:09:00:1C:E8:C1:0C:79:92:74:B9:F5:08:7D Certificate issuer: /CN=A9168E98/serialNumber=C98592E1CD0B2E7610C84B02E661CBF336FFAF5D Certificate serial: 0758 Authority key identifier: C9:85:92:E1:CD:0B:2E:76:10:C8:4B:02:E6:61:CB:F3:36:FF:AF:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYWS4c0LLnYQyEsC5mHL8zb_r10.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/789C2BD0ECCA11EAAE025C70C4F9AE02.roa Signing time: Mon 02 Sep 2024 21:59:56 +0000 ROA not before: Mon 02 Sep 2024 21:59:56 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 139288 IP address blocks: 103.140.215.0/24 maxlen: 24 2001:df0:d780::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/yYWS4c0LLnYQyEsC5mHL8zb_r10.crl rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/yYWS4c0LLnYQyEsC5mHL8zb_r10.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYWS4c0LLnYQyEsC5mHL8zb_r10.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 20:53:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1880 (0x758) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168E98/serialNumber=C98592E1CD0B2E7610C84B02E661CBF336FFAF5D Validity Not Before: Sep 2 21:59:56 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d6355c-8421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:59:b3:98:d4:d6:5f:a4:8d:f7:4a:db:45:d6: 4e:b3:c4:ad:ae:bb:19:f4:6e:ad:da:61:2e:07:c0: 16:cd:3e:66:1f:13:eb:86:6d:0f:e0:69:3c:e3:ae: bc:6f:53:4e:1d:f7:50:94:37:16:7a:2f:aa:5c:7a: d4:8a:a4:41:ca:26:98:42:de:42:4c:77:4d:66:26: 34:85:d3:f8:ca:0c:26:a3:33:70:31:7f:34:4a:af: 91:87:cd:32:90:fa:54:03:0a:a3:ae:0a:7e:9e:88: a1:b2:f3:20:7c:01:e1:ab:28:2f:50:c6:a5:3d:87: e1:f8:c1:b8:17:75:b2:34:2e:ba:cc:0b:55:04:06: fe:07:b7:23:1f:96:26:4e:f8:5e:dd:2a:6e:fa:31: 09:4c:9f:1b:59:17:0e:14:3d:a8:52:a6:9d:73:6f: 0a:01:34:6a:63:91:3f:34:f8:71:1c:7e:c1:32:59: ba:d8:b7:64:c4:7f:66:b6:35:80:b0:b4:4b:53:dd: 37:4e:85:8c:99:d7:ef:2f:3f:5f:9c:da:fa:f4:8d: f6:46:7d:78:55:bb:89:d5:a5:fb:66:75:74:e3:50: 9e:ab:1d:6b:5d:67:c5:3b:1d:ee:af:24:04:5d:3f: 5b:11:db:9c:58:bf:b2:1c:ae:e5:40:be:77:26:d2: 8d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:53:71:77:FA:16:7F:09:00:1C:E8:C1:0C:79:92:74:B9:F5:08:7D X509v3 Authority Key Identifier: keyid:C9:85:92:E1:CD:0B:2E:76:10:C8:4B:02:E6:61:CB:F3:36:FF:AF:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/yYWS4c0LLnYQyEsC5mHL8zb_r10.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yYWS4c0LLnYQyEsC5mHL8zb_r10.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168E98/0EB12B40ECC911EAB825626EC4F9AE02/789C2BD0ECCA11EAAE025C70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.215.0/24 IPv6: 2001:df0:d780::/48 Signature Algorithm: sha256WithRSAEncryption 9d:26:84:15:7a:23:ab:06:5a:a0:0b:13:68:26:35:ad:d8:c2: ec:0c:b6:3c:4c:c7:75:8a:0e:6d:e3:f0:d9:fa:18:e3:61:a4: a2:d9:04:00:2b:82:df:81:a8:dc:7d:2c:bd:c8:9f:69:83:89: 94:59:ea:8f:09:0a:2f:00:9a:69:01:5c:b6:85:01:c9:f1:a1: fe:2a:e0:81:7a:28:09:30:4e:d6:d0:d1:07:b8:09:d2:e4:a0: 61:3a:21:ec:0e:43:52:bd:f8:84:56:a6:a8:05:77:76:ac:f8: 14:e0:f9:22:b9:3f:6d:32:a3:17:81:6a:55:c1:cd:64:8f:63: 75:f4:d9:fc:1c:4b:b9:ac:2d:3a:69:9f:a6:dc:86:b9:1d:d7: 08:cd:cf:3e:c1:37:7b:3c:56:ae:42:6a:14:35:67:d4:5d:ec: 5d:4e:82:bb:b9:06:dc:74:2e:3b:95:58:79:16:c9:f4:7a:04: 78:76:9c:42:cd:5c:b3:6e:f3:20:1b:90:1e:64:3a:df:0d:f5: 12:26:96:66:d2:25:da:ea:0f:0f:8e:32:39:d2:af:12:68:5a: 9b:b7:19:04:5e:8d:91:cf:31:51:ff:93:35:3f:83:ad:3f:ec: 03:4f:1a:c5:54:50:b6:eb:e0:06:36:15:ff:c1:ad:96:5d:a7: 24:27:58:b9 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICB1gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhFOTgxMTAvBgNVBAUTKEM5ODU5MkUxQ0QwQjJFNzYxMEM4NEIwMkU2NjFDQkYz MzZGRkFGNUQwHhcNMjQwOTAyMjE1OTU2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2MzU1Yy04NDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1lmzmNTWX6SN90rbRdZOs8StrrsZ9G6t2mEuB8AWzT5mHxPrhm0P4Gk84668 b1NOHfdQlDcWei+qXHrUiqRByiaYQt5CTHdNZiY0hdP4ygwmozNwMX80Sq+Rh80y kPpUAwqjrgp+noihsvMgfAHhqygvUMalPYfh+MG4F3WyNC66zAtVBAb+B7cjH5Ym Tvhe3Spu+jEJTJ8bWRcOFD2oUqadc28KATRqY5E/NPhxHH7BMlm62LdkxH9mtjWA sLRLU903ToWMmdfvLz9fnNr69I32Rn14VbuJ1aX7ZnV041Ceqx1rXWfFOx3uryQE XT9bEducWL+yHK7lQL53JtKNdwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP1TcXf6 Fn8JABzowQx5knS59Qh9MB8GA1UdIwQYMBaAFMmFkuHNCy52EMhLAuZhy/M2/69d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEU5OC8wRUIxMkI0MEVD QzkxMUVBQjgyNTYyNkVDNEY5QUUwMi95WVdTNGMwTExuWVF5RXNDNW1ITDh6Yl9y MTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lZV1M0YzBMTG5ZUXlFc0M1bUhMOHpiX3IxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhFOTgvMEVCMTJCNDBFQ0M5MTFFQUI4MjU2MjZFQzRGOUFFMDIvNzg5QzJCRDBF Q0NBMTFFQUFFMDI1QzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnjNcwDwQCAAIwCQMHACABDfDXgDANBgkqhkiG9w0BAQsF AAOCAQEAnSaEFXojqwZaoAsTaCY1rdjC7Ay2PEzHdYoObePw2foY42GkotkEACuC 34Go3H0svcifaYOJlFnqjwkKLwCaaQFctoUByfGh/irggXooCTBO1tDRB7gJ0uSg YToh7A5DUr34hFamqAV3dqz4FOD5Irk/bTKjF4FqVcHNZI9jdfTZ/BxLuawtOmmf ptyGuR3XCM3PPsE3ezxWrkJqFDVn1F3sXU6Cu7kG3HQuO5VYeRbJ9HoEeHacQs1c s27zIBuQHmQ63w31EiaWZtIl2uoPD44yOdKvEmham7cZBF6Nkc8xUf+TNT+DrT/s A08axVRQtuvgBjYV/8Gtll2nJCdYuQ== -----END CERTIFICATE-----Generated at Tue Nov 26 22:44:29 2024 by rpki-client on console-fra.rpki-client.org