$ rpki-client -vvf rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa File: 8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa (raw, json) Hash identifier: LEMiACV3Ie+SK4LkuQJBWGvSnOFQ7e/xDgjdO66Ipp4= Subject key identifier: 8F:66:88:80:B1:94:62:81:7D:49:54:F6:63:A3:D3:EC:03:50:DF:C0 Certificate issuer: /CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Certificate serial: 55 Authority key identifier: A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa Signing time: Thu 19 Sep 2024 05:49:14 +0000 ROA not before: Thu 19 Sep 2024 05:49:14 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38713 IP address blocks: 103.121.40.0/22 maxlen: 22 103.121.40.0/24 maxlen: 24 103.121.41.0/24 maxlen: 24 103.121.42.0/24 maxlen: 24 103.121.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C10F/serialNumber=A3EB51D2999BBB44659BDDA6BE1E10FA551E2265 Validity Not Before: Sep 19 05:49:14 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ebbb5a-f209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:eb:27:25:4c:13:90:33:27:03:c0:15:4d:20: 0f:cf:c8:a3:41:26:8c:74:7d:50:51:36:d7:ca:52: b9:57:86:a7:d8:e3:63:14:0a:43:64:10:e8:d2:5b: d9:27:73:3b:5b:4f:15:5b:cf:f1:a3:b7:34:f5:fa: 24:d9:3d:41:db:53:76:54:55:7e:60:e5:bc:d0:df: 12:fe:a3:cd:6f:4e:06:3d:0c:38:17:30:b4:41:19: ce:fc:ba:e1:68:79:ce:7d:7e:f5:c4:62:62:82:b3: f9:db:77:23:fd:c5:c4:ec:f8:58:ef:ee:c1:8a:d9: 8d:ca:bb:aa:27:83:ea:02:0c:40:ee:48:c7:59:5f: ef:5f:cf:7a:40:e6:04:22:33:08:e1:52:a1:0a:62: 02:20:f4:f2:ac:45:25:d0:ae:7f:d5:d4:66:69:f3: 1e:09:a0:c3:a6:59:3a:ef:d7:a7:f0:5c:ba:3e:0e: 31:1d:11:9c:1c:fc:9e:31:82:dc:fc:72:89:b9:7f: eb:a4:b6:d1:53:d3:24:8c:aa:e2:2f:ad:08:46:4f: 7c:22:04:7e:2f:0f:25:fe:44:b7:20:b6:18:92:f9: 92:33:e0:44:24:8c:fd:68:cf:56:58:1a:06:2e:40: 8a:63:c8:45:ca:16:ef:22:f9:4e:44:c7:bd:99:87: 28:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:66:88:80:B1:94:62:81:7D:49:54:F6:63:A3:D3:EC:03:50:DF:C0 X509v3 Authority Key Identifier: keyid:A3:EB:51:D2:99:9B:BB:44:65:9B:DD:A6:BE:1E:10:FA:55:1E:22:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/o-tR0pmbu0Rlm92mvh4Q-lUeImU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o-tR0pmbu0Rlm92mvh4Q-lUeImU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C10F/9A7580C8FD4A11EE809B0730C4F9AE02/8C7FA9C0FD4B11EEABAB0B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.40.0/22 Signature Algorithm: sha256WithRSAEncryption 7e:d4:a8:43:46:d0:e2:e4:59:64:0d:ee:ed:fc:45:7a:f2:88: 68:05:a4:d3:17:af:00:3e:07:0a:85:cf:35:da:84:1f:14:15: a4:94:83:86:a0:f7:6f:84:f5:c4:3a:50:17:e0:bf:ae:25:a7: 52:28:77:41:5b:7b:ad:89:7b:7b:d4:1a:a4:5e:db:cc:7c:41: 0a:bd:40:37:92:6b:3a:26:ab:cd:9e:63:91:9f:ca:3e:b3:8b: 2f:87:c2:ec:db:79:78:d0:7c:42:de:a9:07:6e:4d:ba:d2:75: a8:a4:1a:3f:2a:18:4d:b4:10:48:b4:88:57:e8:eb:9a:6b:00: 6c:ba:6d:c7:0b:65:50:8b:c8:45:f6:0a:ce:5c:b2:0c:e6:ca: c7:1f:68:1c:49:1a:b8:d4:8c:9f:ec:73:fc:07:04:7b:cc:cb: 19:ad:ea:f2:94:83:22:ae:de:50:2b:d8:fb:e9:8a:f9:b3:d7: 33:92:27:76:bf:b5:60:b7:c1:83:c6:98:ee:6b:1d:68:b5:88: 1e:7c:e0:be:63:68:1b:9c:db:6f:cc:58:ca:80:9e:07:e2:0a: 2f:49:59:2c:1a:e8:9f:72:83:9a:c6:1e:74:d7:09:f2:a6:fd: b2:aa:fe:2a:d7:4d:5b:ec:05:f9:1a:15:b0:6b:d4:f3:89:a4: 6d:17:55:57 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QzEwRjExMC8GA1UEBRMoQTNFQjUxRDI5OTlCQkI0NDY1OUJEREE2QkUxRTEwRkE1 NTFFMjI2NTAeFw0yNDA5MTkwNTQ5MTRaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZWJiYjVhLWYyMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDM6yclTBOQMycDwBVNIA/PyKNBJox0fVBRNtfKUrlXhqfY42MUCkNkEOjSW9kn cztbTxVbz/GjtzT1+iTZPUHbU3ZUVX5g5bzQ3xL+o81vTgY9DDgXMLRBGc78uuFo ec59fvXEYmKCs/nbdyP9xcTs+Fjv7sGK2Y3Ku6ong+oCDEDuSMdZX+9fz3pA5gQi MwjhUqEKYgIg9PKsRSXQrn/V1GZp8x4JoMOmWTrv16fwXLo+DjEdEZwc/J4xgtz8 com5f+ukttFT0ySMquIvrQhGT3wiBH4vDyX+RLcgthiS+ZIz4EQkjP1oz1ZYGgYu QIpjyEXKFu8i+U5Ex72ZhyjLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUj2aIgLGU YoF9SVT2Y6PT7ANQ38AwHwYDVR0jBBgwFoAUo+tR0pmbu0Rlm92mvh4Q+lUeImUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZDMTBGLzlBNzU4MEM4RkQ0 QTExRUU4MDlCMDczMEM0RjlBRTAyL28tdFIwcG1idTBSbG05Mm12aDRRLWxVZUlt VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvby10UjBwbWJ1MFJsbTkybXZoNFEtbFVlSW1VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEwRi85QTc1ODBDOEZENEExMUVFODA5QjA3MzBDNEY5QUUwMi84QzdGQTlDMEZE NEIxMUVFQUJBQjBCNjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmd5KDANBgkqhkiG9w0BAQsFAAOCAQEAftSoQ0bQ4uRZZA3u 7fxFevKIaAWk0xevAD4HCoXPNdqEHxQVpJSDhqD3b4T1xDpQF+C/riWnUih3QVt7 rYl7e9QapF7bzHxBCr1AN5JrOiarzZ5jkZ/KPrOLL4fC7Nt5eNB8Qt6pB25NutJ1 qKQaPyoYTbQQSLSIV+jrmmsAbLptxwtlUIvIRfYKzlyyDObKxx9oHEkauNSMn+xz /AcEe8zLGa3q8pSDIq7eUCvY++mK+bPXM5Indr+1YLfBg8aY7msdaLWIHnzgvmNo G5zbb8xYyoCeB+IKL0lZLBron3KDmsYedNcJ8qb9sqr+KtdNW+wF+RoVsGvU84mk bRdVVw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:26 2024 by rpki-client on console-fra.rpki-client.org