$ rpki-client -vvf rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/0D55A972AF0311EB96FC344BC4F9AE02.roa File: 0D55A972AF0311EB96FC344BC4F9AE02.roa (raw, json) Hash identifier: UnyaZ48ZTkAe2Fs/nqF3GR2GhkHSudKDbACqwDvINFI= Subject key identifier: A4:94:74:FC:D1:C3:55:52:34:A0:7C:BD:77:94:3C:AA:4B:7B:DF:2E Certificate issuer: /CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Certificate serial: 056F Authority key identifier: 3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/0D55A972AF0311EB96FC344BC4F9AE02.roa Signing time: Sun 21 Jul 2024 00:12:35 +0000 ROA not before: Sun 21 Jul 2024 00:12:35 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 9957 IP address blocks: 103.119.107.0/24 maxlen: 24 2403:4240:a000::/36 maxlen: 36 2403:4240:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1391 (0x56f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Validity Not Before: Jul 21 00:12:35 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=669c5272-74fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ce:a2:93:92:72:22:b6:66:be:68:c7:27:2d: 70:64:b5:f6:fe:f2:55:dd:5d:ea:6c:f6:7d:20:3b: 30:50:3d:2e:f6:00:e3:e4:89:9e:4d:59:54:21:bc: 54:18:b4:a1:0f:8e:d7:15:7c:1a:21:d2:3f:e2:c7: e9:9e:e4:9e:6f:75:a3:06:fd:b5:75:43:23:e6:3c: e0:49:82:2f:f8:7c:b0:7d:a2:fe:37:38:82:be:52: 71:34:50:bd:99:b4:9b:9a:b5:f2:0e:80:0f:31:d3: 00:e8:70:da:30:e0:19:8c:80:b6:22:97:ef:20:f7: 50:50:2d:ed:29:03:7d:54:7a:78:c6:8f:f0:20:01: 49:b4:28:db:14:3f:46:1b:87:80:f3:ea:b8:49:10: 50:ac:17:8a:d7:88:07:01:a5:bd:bd:2f:b9:a6:4b: f4:03:54:fe:89:23:80:09:c8:2a:18:7e:17:78:97: 0a:d3:ee:21:6e:af:0f:51:18:9a:07:8d:98:57:fa: c2:7f:13:a4:c5:6f:ff:70:25:50:2f:de:49:26:c7: 81:4a:31:24:1f:b6:4a:ae:b0:8e:ac:28:14:11:81: 4a:87:66:fb:0f:4e:41:a2:41:08:d7:7c:b1:08:be: ca:b6:e6:88:b9:24:68:88:85:08:d7:c1:f9:f7:26: 77:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:94:74:FC:D1:C3:55:52:34:A0:7C:BD:77:94:3C:AA:4B:7B:DF:2E X509v3 Authority Key Identifier: keyid:3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/0D55A972AF0311EB96FC344BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.107.0/24 IPv6: 2403:4240:a000::/35 Signature Algorithm: sha256WithRSAEncryption 91:05:87:55:d3:fd:8c:6b:fe:47:b5:e0:fe:30:c5:a2:d1:47: 74:19:4f:fe:8d:fe:45:95:99:3e:bd:0c:f8:bd:dd:3a:63:b3: 32:5e:53:95:c9:ac:0d:74:3a:57:be:4b:29:b1:73:c5:ac:d1: 67:f0:28:15:c1:c3:35:97:0f:34:88:d7:07:6e:82:3e:94:ce: e2:c9:81:7a:49:51:ec:e4:f6:48:67:82:f9:28:8d:cf:1e:4a: 49:dd:86:b1:8c:0d:10:5a:93:c2:81:0c:ea:42:eb:05:3b:ca: 46:4f:55:1b:cc:84:5b:61:97:bd:aa:63:92:c0:50:a5:06:aa: 39:35:ae:7f:66:ad:a1:6d:69:91:10:7d:fa:87:fa:e4:ae:7a: 5c:0a:71:5b:59:ec:72:98:70:37:7f:a8:3a:43:2e:ba:c4:4f: 14:62:ed:a0:97:e7:59:6b:f4:4b:15:2c:00:32:6e:ec:60:33: 9f:1b:ec:02:8e:b1:47:a7:d7:91:88:8a:a8:30:09:33:f5:fc: 8f:31:28:ab:26:42:c2:4c:80:29:73:cc:a8:8f:57:3e:f0:45: b1:9d:1f:83:84:03:46:6d:31:2a:cd:ec:34:0f:8a:70:c5:10: 54:b0:57:ae:17:d6:e9:ab:7a:fd:af:4c:d7:7d:f7:97:3d:5e: d1:65:a3:38 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCNTAxMTAvBgNVBAUTKDNEQUZGRkJDN0U5MTJFOUZGQ0QyQTJFMEQ5MjA4RUJD OTk3MDlCMjIwHhcNMjQwNzIxMDAxMjM1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjljNTI3Mi03NGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA086ik5JyIrZmvmjHJy1wZLX2/vJV3V3qbPZ9IDswUD0u9gDj5ImeTVlUIbxU GLShD47XFXwaIdI/4sfpnuSeb3WjBv21dUMj5jzgSYIv+HywfaL+NziCvlJxNFC9 mbSbmrXyDoAPMdMA6HDaMOAZjIC2IpfvIPdQUC3tKQN9VHp4xo/wIAFJtCjbFD9G G4eA8+q4SRBQrBeK14gHAaW9vS+5pkv0A1T+iSOACcgqGH4XeJcK0+4hbq8PURia B42YV/rCfxOkxW//cCVQL95JJseBSjEkH7ZKrrCOrCgUEYFKh2b7D05BokEI13yx CL7KtuaIuSRoiIUI18H59yZ3xwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFKSUdPzR w1VSNKB8vXeUPKpLe98uMB8GA1UdIwQYMBaAFD2v/7x+kS6f/NKi4NkgjryZcJsi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUI1MC9DNkMwNDlCMkFF RkUxMUVCODA5MzI2M0VDNEY5QUUwMi9QYV9fdkg2UkxwXzgwcUxnMlNDT3ZKbHdt eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BhX192SDZSTHBfODBxTGcyU0NPdkpsd215SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlCNTAvQzZDMDQ5QjJBRUZFMTFFQjgwOTMyNjNFQzRGOUFFMDIvMEQ1NUE5NzJB RjAzMTFFQjk2RkMzNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBABnd2swDgQCAAIwCAMGBSQDQkCgMA0GCSqGSIb3DQEBCwUA A4IBAQCRBYdV0/2Ma/5HteD+MMWi0Ud0GU/+jf5FlZk+vQz4vd06Y7MyXlOVyawN dDpXvkspsXPFrNFn8CgVwcM1lw80iNcHboI+lM7iyYF6SVHs5PZIZ4L5KI3PHkpJ 3YaxjA0QWpPCgQzqQusFO8pGT1UbzIRbYZe9qmOSwFClBqo5Na5/Zq2hbWmREH36 h/rkrnpcCnFbWexymHA3f6g6Qy66xE8UYu2gl+dZa/RLFSwAMm7sYDOfG+wCjrFH p9eRiIqoMAkz9fyPMSirJkLCTIApc8yoj1c+8EWxnR+DhANGbTEqzew0D4pwxRBU sFeuF9bpq3r9r0zXffeXPV7RZaM4 -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:21 2024 by rpki-client on console-fra.rpki-client.org