$ rpki-client -vvf rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/82FB96E899E411EB8B298058C4F9AE02.roa File: 82FB96E899E411EB8B298058C4F9AE02.roa (raw, json) Hash identifier: KxcRhUccqmxdIWIfiWTKJTnk4y5BMJvuls5mu7Azigs= Subject key identifier: E6:D7:95:C0:1C:8B:5D:AC:55:6E:19:E3:74:AC:E0:2B:D3:80:02:0A Certificate issuer: /CN=A9178E49/serialNumber=2D3DFB5E2212B2905868B177167D548B0DFE3CF4 Certificate serial: 081F Authority key identifier: 2D:3D:FB:5E:22:12:B2:90:58:68:B1:77:16:7D:54:8B:0D:FE:3C:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/82FB96E899E411EB8B298058C4F9AE02.roa Signing time: Fri 06 Sep 2024 21:41:42 +0000 ROA not before: Fri 06 Sep 2024 21:41:42 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 140877 IP address blocks: 103.152.213.0/24 maxlen: 24 2400:dc60::/32 maxlen: 32 2400:dc60::/48 maxlen: 48 2400:dc60:1::/48 maxlen: 48 2400:dc60:2::/48 maxlen: 48 2400:dc60:3::/48 maxlen: 48 2400:dc60:4::/48 maxlen: 48 2400:dc60:5::/48 maxlen: 48 2400:dc60:6::/48 maxlen: 48 2400:dc60:7::/48 maxlen: 48 2400:dc60:8::/48 maxlen: 48 2400:dc60:9::/48 maxlen: 48 2400:dc60:a::/48 maxlen: 48 2400:dc60:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.crl rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:30:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2079 (0x81f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178E49/serialNumber=2D3DFB5E2212B2905868B177167D548B0DFE3CF4 Validity Not Before: Sep 6 21:41:42 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66db7715-f667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d8:4b:80:b1:b8:0e:e3:80:f4:91:2a:31:81: ff:f3:bd:b1:02:94:f6:bc:c9:2f:09:5a:9e:b3:55: a0:b9:ef:86:bc:31:2f:39:cc:df:1a:3e:91:ef:89: 83:9d:b8:67:1a:a3:2d:d7:87:fc:7c:a9:9f:b0:39: fc:2d:21:dc:af:e2:90:2a:e4:a1:61:d1:b6:90:60: 97:70:9e:f9:ef:ce:9a:60:bd:9b:b1:45:21:4f:4e: 0f:94:82:a0:91:18:42:d6:45:13:3b:4f:ca:39:43: 41:78:64:7a:df:27:df:88:40:8c:3d:27:b5:5d:09: d4:07:3e:6d:c6:f1:dc:1b:0c:bc:2c:1d:9e:b7:df: 2d:c3:cd:da:ac:d1:10:4f:93:4d:43:05:ec:b4:87: cd:10:03:ca:65:ec:7b:a5:3d:30:1f:34:c1:4c:22: 13:53:e9:3b:0b:6c:a0:65:5c:47:da:d8:a7:50:c1: 23:05:a6:71:83:e8:79:be:06:dc:aa:46:b9:9d:0f: 9a:f9:aa:e0:ad:ff:85:fa:be:a5:a3:97:f4:df:21: bd:af:8c:fc:b3:07:a1:2d:43:c2:fa:65:78:bc:19: 26:b1:a8:f2:fc:d1:7c:6f:4c:0c:d7:68:69:6f:73: 36:11:d7:5b:c7:6e:d3:1f:cb:0e:cb:b1:92:74:75: 08:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:D7:95:C0:1C:8B:5D:AC:55:6E:19:E3:74:AC:E0:2B:D3:80:02:0A X509v3 Authority Key Identifier: keyid:2D:3D:FB:5E:22:12:B2:90:58:68:B1:77:16:7D:54:8B:0D:FE:3C:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/LT37XiISspBYaLF3Fn1Uiw3-PPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LT37XiISspBYaLF3Fn1Uiw3-PPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178E49/3F020246BE1211EABB60A282C4F9AE02/82FB96E899E411EB8B298058C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.213.0/24 IPv6: 2400:dc60::/32 Signature Algorithm: sha256WithRSAEncryption 3a:7d:21:02:80:f6:10:c6:55:b1:c9:fc:33:02:25:ea:8f:63: 1b:6e:ef:6d:7a:84:c2:df:83:0a:06:05:21:ae:a3:d0:6b:fd: 31:8f:be:f9:e7:05:91:1f:12:d3:d9:6e:e7:d6:41:ae:1b:89: 75:31:16:a9:46:ca:36:63:46:ef:84:80:2f:6f:43:98:c9:43: 5f:75:21:91:aa:a4:07:74:71:fa:d6:13:59:d1:3a:86:47:e3: e3:de:e3:19:b8:57:72:54:96:66:a6:85:06:0c:7c:96:07:b4: 7b:6b:92:fb:26:41:09:e1:e6:57:18:fb:89:ac:68:29:e3:27: 8c:05:40:c7:ca:6b:2c:28:67:e4:5d:a8:0e:5a:7c:b1:35:62: e6:0e:15:d0:31:06:96:43:02:5a:5e:bc:bb:a3:eb:18:5c:80: 05:60:67:02:25:ca:b8:b0:61:0c:6e:1b:77:cb:06:23:ed:5b: 83:5a:d1:de:6b:f1:1a:05:0e:a8:f5:34:be:f8:17:b4:11:07: 15:d4:c2:0c:99:80:5e:7c:34:f0:b0:a1:79:f5:f8:3e:98:f9: c6:8e:c6:cd:ec:22:6f:0e:39:67:eb:5c:cb:c0:8e:7e:d0:d5: ef:59:e8:fe:5e:25:74:4c:22:0e:b0:d7:f1:9f:b6:55:d1:c2: 60:f4:82:47 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhFNDkxMTAvBgNVBAUTKDJEM0RGQjVFMjIxMkIyOTA1ODY4QjE3NzE2N0Q1NDhC MERGRTNDRjQwHhcNMjQwOTA2MjE0MTQyWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiNzcxNS1mNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNhLgLG4DuOA9JEqMYH/872xApT2vMkvCVqes1Wgue+GvDEvOczfGj6R74mD nbhnGqMt14f8fKmfsDn8LSHcr+KQKuShYdG2kGCXcJ75786aYL2bsUUhT04PlIKg kRhC1kUTO0/KOUNBeGR63yffiECMPSe1XQnUBz5txvHcGwy8LB2et98tw83arNEQ T5NNQwXstIfNEAPKZex7pT0wHzTBTCITU+k7C2ygZVxH2tinUMEjBaZxg+h5vgbc qka5nQ+a+argrf+F+r6lo5f03yG9r4z8swehLUPC+mV4vBkmsajy/NF8b0wM12hp b3M2Eddbx27TH8sOy7GSdHUIjwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFObXlcAc i12sVW4Z43Ss4CvTgAIKMB8GA1UdIwQYMBaAFC09+14iErKQWGixdxZ9VIsN/jz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEU0OS8zRjAyMDI0NkJF MTIxMUVBQkI2MEEyODJDNEY5QUUwMi9MVDM3WGlJU3NwQllhTEYzRm4xVWl3My1Q UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xUMzdYaUlTc3BCWWFMRjNGbjFVaXczLVBQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhFNDkvM0YwMjAyNDZCRTEyMTFFQUJCNjBBMjgyQzRGOUFFMDIvODJGQjk2RTg5 OUU0MTFFQjhCMjk4MDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnmNUwDQQCAAIwBwMFACQA3GAwDQYJKoZIhvcNAQELBQAD ggEBADp9IQKA9hDGVbHJ/DMCJeqPYxtu7216hMLfgwoGBSGuo9Br/TGPvvnnBZEf EtPZbufWQa4biXUxFqlGyjZjRu+EgC9vQ5jJQ191IZGqpAd0cfrWE1nROoZH4+Pe 4xm4V3JUlmamhQYMfJYHtHtrkvsmQQnh5lcY+4msaCnjJ4wFQMfKaywoZ+RdqA5a fLE1YuYOFdAxBpZDAlpevLuj6xhcgAVgZwIlyriwYQxuG3fLBiPtW4Na0d5r8RoF Dqj1NL74F7QRBxXUwgyZgF58NPCwoXn1+D6Y+caOxs3sIm8OOWfrXMvAjn7Q1e9Z 6P5eJXRMIg6w1/GftlXRwmD0gkc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:31 2024 by rpki-client on console-ams.rpki-client.org