$ rpki-client -vvf rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/14C5F2A62F3C11ED84084082C4F9AE02.roa File: 14C5F2A62F3C11ED84084082C4F9AE02.roa (raw, json) Hash identifier: tIgnOUYL9AaMF3o6uRCl3XbHRWVvM0EG7is36EBsHLE= Subject key identifier: 10:AA:AB:AE:FE:49:6F:A9:53:34:0B:34:C7:18:59:1E:86:A1:41:11 Certificate issuer: /CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Certificate serial: 01B2 Authority key identifier: D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/14C5F2A62F3C11ED84084082C4F9AE02.roa Signing time: Thu 03 Oct 2024 02:36:24 +0000 ROA not before: Thu 03 Oct 2024 02:36:24 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 137409 IP address blocks: 103.120.20.0/24 maxlen: 24 103.120.21.0/24 maxlen: 24 103.120.22.0/24 maxlen: 24 103.120.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 434 (0x1b2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176B32/serialNumber=D822A2DBC88234F80F70E46782B2D4D9CD3F9BDC Validity Not Before: Oct 3 02:36:24 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66fe0328-f144 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:93:ad:28:00:e9:f7:64:41:c3:fe:3a:9d:42: 8f:75:30:c4:67:5f:28:60:27:f1:71:d2:6c:0a:90: 77:1d:f0:98:97:10:ab:83:83:ba:f9:dc:d9:16:07: f9:47:2e:c9:9a:b5:c2:64:dc:59:b9:b7:c0:40:32: 0d:c4:98:f5:1f:26:20:99:1d:a9:cf:51:65:66:ba: 73:0a:f7:83:77:02:cb:e1:4c:b2:cd:01:b7:26:14: f5:78:4b:61:4d:5c:b6:83:72:8b:af:a3:ee:2a:53: 03:ed:62:21:db:99:96:41:eb:0f:ae:b0:8d:43:71: a9:58:37:b8:13:e4:ed:fb:99:09:27:29:ea:85:32: 68:8f:52:91:60:b4:b8:fd:ab:9e:9e:7a:74:72:ac: 46:c4:60:94:6f:1b:81:f5:67:57:96:b1:25:65:14: 1c:da:6e:7a:f2:26:36:64:6a:5a:c5:84:45:a3:49: 96:ff:09:fe:8a:13:4f:c4:35:2d:25:6e:57:a6:02: 7d:b2:2a:d5:77:75:cc:03:98:49:ad:fa:0c:e3:69: ff:cf:83:22:b5:1e:37:3f:5c:77:22:a0:83:f7:c7: 3a:29:1a:a1:b4:f2:4c:93:2f:44:64:91:01:9a:bd: 5c:66:10:7b:43:9f:8f:43:33:b2:b9:43:56:41:c7: ee:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:AA:AB:AE:FE:49:6F:A9:53:34:0B:34:C7:18:59:1E:86:A1:41:11 X509v3 Authority Key Identifier: keyid:D8:22:A2:DB:C8:82:34:F8:0F:70:E4:67:82:B2:D4:D9:CD:3F:9B:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/2CKi28iCNPgPcORngrLU2c0_m9w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2CKi28iCNPgPcORngrLU2c0_m9w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176B32/738796182F3811ED9E7E027DC4F9AE02/14C5F2A62F3C11ED84084082C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.20.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:d5:e5:fd:42:a1:a1:3d:50:ca:89:84:f3:0f:d7:9b:d3:52: 51:b7:d1:49:d2:85:55:e3:86:a5:c8:f7:72:55:bd:13:65:7e: 47:67:ca:cb:f5:05:4a:b6:a2:31:c3:4a:fd:e0:7c:72:fd:9f: 87:f6:0e:8c:aa:38:9c:93:2e:b5:39:f3:c5:11:96:cc:9b:31: e0:9e:71:f0:f2:42:7f:8c:f2:f0:d9:a8:3e:5f:18:e1:3b:d0: a9:e5:40:cc:e3:df:e6:89:c0:d3:3b:38:eb:d6:3f:37:2e:ad: 6f:b1:a0:21:69:73:cf:92:85:70:ba:41:62:4c:f8:2d:a1:3a: 92:fa:ef:72:26:7e:f8:be:ee:52:0f:38:cf:50:ce:ab:8b:63: f9:bd:a9:4f:b3:61:7e:b2:dd:dc:56:8b:cf:c7:32:ef:03:24: 8f:22:30:cd:58:90:36:32:71:9c:27:8c:f5:6f:f2:63:b6:5c: 39:e0:56:62:a6:07:85:cb:69:eb:22:c5:fc:e4:bb:89:ab:46: d8:07:d6:d3:1d:8a:c3:f8:aa:d1:26:e8:27:db:57:ea:ee:ab: 5e:29:5b:b1:3a:c0:53:e8:20:9c:2e:82:5f:fd:b8:b2:97:e8: aa:5d:ec:41:ea:06:a5:f3:4d:f1:85:77:5b:a6:8e:89:32:1b: be:8c:2d:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzZCMzIxMTAvBgNVBAUTKEQ4MjJBMkRCQzg4MjM0RjgwRjcwRTQ2NzgyQjJENEQ5 Q0QzRjlCREMwHhcNMjQxMDAzMDIzNjI0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZlMDMyOC1mMTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz5OtKADp92RBw/46nUKPdTDEZ18oYCfxcdJsCpB3HfCYlxCrg4O6+dzZFgf5 Ry7JmrXCZNxZubfAQDINxJj1HyYgmR2pz1FlZrpzCveDdwLL4UyyzQG3JhT1eEth TVy2g3KLr6PuKlMD7WIh25mWQesPrrCNQ3GpWDe4E+Tt+5kJJynqhTJoj1KRYLS4 /auennp0cqxGxGCUbxuB9WdXlrElZRQc2m568iY2ZGpaxYRFo0mW/wn+ihNPxDUt JW5XpgJ9sirVd3XMA5hJrfoM42n/z4MitR43P1x3IqCD98c6KRqhtPJMky9EZJEB mr1cZhB7Q5+PQzOyuUNWQcfucQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBCqq67+ SW+pUzQLNMcYWR6GoUERMB8GA1UdIwQYMBaAFNgiotvIgjT4D3DkZ4Ky1NnNP5vc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NkIzMi83Mzg3OTYxODJG MzgxMUVEOUU3RTAyN0RDNEY5QUUwMi8yQ0tpMjhpQ05QZ1BjT1JuZ3JMVTJjMF9t OXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJDS2kyOGlDTlBnUGNPUm5nckxVMmMwX205dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzZCMzIvNzM4Nzk2MTgyRjM4MTFFRDlFN0UwMjdEQzRGOUFFMDIvMTRDNUYyQTYy RjNDMTFFRDg0MDg0MDgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJneBQwDQYJKoZIhvcNAQELBQADggEBAE/V5f1CoaE9UMqJ hPMP15vTUlG30UnShVXjhqXI93JVvRNlfkdnysv1BUq2ojHDSv3gfHL9n4f2Doyq OJyTLrU588URlsybMeCecfDyQn+M8vDZqD5fGOE70KnlQMzj3+aJwNM7OOvWPzcu rW+xoCFpc8+ShXC6QWJM+C2hOpL673Imfvi+7lIPOM9QzquLY/m9qU+zYX6y3dxW i8/HMu8DJI8iMM1YkDYycZwnjPVv8mO2XDngVmKmB4XLaesixfzku4mrRtgH1tMd isP4qtEm6CfbV+ruq14pW7E6wFPoIJwugl/9uLKX6Kpd7EHqBqXzTfGFd1umjoky G76MLUQ= -----END CERTIFICATE-----Generated at Thu Nov 21 03:11:58 2024 by rpki-client on console-fra.rpki-client.org