$ rpki-client -vvf rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/5DE13E6AAF1211EB8138312CC4F9AE02.roa File: 5DE13E6AAF1211EB8138312CC4F9AE02.roa (raw, json) Hash identifier: kdGlpoPLDFl4EFsEkQ3+koS5Zps0quso4evVDz2ybGs= Subject key identifier: C7:4A:E9:F9:5C:2C:99:CB:BF:A6:F7:B8:DB:EE:BA:52:4A:8F:5B:CB Certificate issuer: /CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Certificate serial: 056E Authority key identifier: 3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/5DE13E6AAF1211EB8138312CC4F9AE02.roa Signing time: Sun 21 Jul 2024 00:12:34 +0000 ROA not before: Sun 21 Jul 2024 00:12:34 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138029 IP address blocks: 103.119.104.0/23 maxlen: 23 103.119.106.0/23 maxlen: 23 103.119.106.0/24 maxlen: 24 103.119.107.0/24 maxlen: 24 2403:4240::/32 maxlen: 32 2403:4240:a000::/36 maxlen: 36 2403:4240:b000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Validity Not Before: Jul 21 00:12:34 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=669c5272-2296 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:61:8d:5f:2b:09:cd:ba:31:e7:77:95:d6:b0: a5:09:a6:17:c8:ce:3b:76:0d:34:2e:4c:27:72:4a: 63:1a:1a:9d:0b:85:6b:d8:93:60:12:97:ba:66:a2: 49:45:c1:5d:c5:1a:89:d1:44:67:f9:90:92:98:7d: c8:28:d5:96:c0:28:b6:9c:ce:ff:d7:80:78:92:5f: 4b:90:5d:9b:bc:ca:63:5c:e6:77:66:60:66:5b:3b: 7b:c4:db:3e:05:68:d4:98:ce:92:e1:b0:4b:30:14: 0e:54:8b:33:09:e8:84:ae:a9:6d:54:c6:04:bf:46: 74:17:21:cc:a6:ea:4a:5e:2a:aa:b8:ae:65:a2:06: 8c:12:c8:e2:af:ea:a6:0c:a5:e1:eb:dd:03:3f:f4: 05:d2:da:d0:47:d3:1a:54:01:35:75:9d:36:e0:ea: f1:05:3c:ae:5d:1b:4b:fa:b8:08:33:60:3c:ba:a8: 5c:a5:ac:3d:2b:69:19:1a:c8:62:01:28:aa:4e:b2: 7d:b0:b5:91:d0:84:2e:0e:96:5b:bd:cc:45:b8:66: 21:8b:cb:fd:9b:4c:f7:ba:d8:49:f9:c6:35:d9:cc: 5c:99:37:fa:90:f1:20:63:a3:ed:80:87:b5:37:7f: a5:0e:c1:cd:4a:de:c3:37:46:20:7a:b9:19:8b:25: bc:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:4A:E9:F9:5C:2C:99:CB:BF:A6:F7:B8:DB:EE:BA:52:4A:8F:5B:CB X509v3 Authority Key Identifier: keyid:3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/5DE13E6AAF1211EB8138312CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.104.0/22 IPv6: 2403:4240::/32 Signature Algorithm: sha256WithRSAEncryption 9d:c9:2a:b4:af:a1:f8:dc:0b:a4:88:9e:60:2a:ee:6e:e7:25: a8:c0:cf:8b:1e:7b:f3:29:fd:21:b5:2a:ab:19:67:56:29:95: 16:d8:6f:0f:89:7b:4c:da:00:5b:23:8a:a1:89:e6:2e:03:20: 56:e9:84:29:83:c3:bb:ec:9b:05:ee:9b:33:a0:57:7b:b1:16: 16:f8:2a:17:33:1e:b3:4d:d3:f1:85:24:14:db:73:30:0c:79: a4:f4:c7:7f:cf:93:ec:84:3b:8c:92:cc:33:30:18:7a:5c:d4: 70:e6:f0:1e:fe:a5:81:8a:93:e3:c3:48:6c:fc:fd:9e:29:2c: 64:5b:23:35:0c:40:dc:7b:1f:05:78:01:4c:b4:f3:28:f4:c8: 2c:8b:c8:b7:41:d6:25:b5:88:54:ed:d0:6d:5e:92:50:93:f3: 98:3c:c4:70:81:5c:5d:79:e5:99:f5:c6:76:82:b3:9d:3d:46: 2f:31:0e:67:d1:6d:48:19:7f:6e:f1:fa:b7:ea:79:94:e9:cd: 37:44:40:7f:2b:93:f4:00:96:cd:d9:a5:ff:05:b5:5e:83:af: 3a:a5:bd:01:0d:d6:cd:83:a8:0c:fe:89:a2:1f:d9:c2:5b:44: 6b:20:8e:ed:cf:44:75:82:27:75:e4:bf:ca:68:ac:6e:38:fb: a9:12:ad:f6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCNTAxMTAvBgNVBAUTKDNEQUZGRkJDN0U5MTJFOUZGQ0QyQTJFMEQ5MjA4RUJD OTk3MDlCMjIwHhcNMjQwNzIxMDAxMjM0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjljNTI3Mi0yMjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvWGNXysJzbox53eV1rClCaYXyM47dg00LkwnckpjGhqdC4Vr2JNgEpe6ZqJJ RcFdxRqJ0URn+ZCSmH3IKNWWwCi2nM7/14B4kl9LkF2bvMpjXOZ3ZmBmWzt7xNs+ BWjUmM6S4bBLMBQOVIszCeiErqltVMYEv0Z0FyHMpupKXiqquK5logaMEsjir+qm DKXh690DP/QF0trQR9MaVAE1dZ024OrxBTyuXRtL+rgIM2A8uqhcpaw9K2kZGshi ASiqTrJ9sLWR0IQuDpZbvcxFuGYhi8v9m0z3uthJ+cY12cxcmTf6kPEgY6PtgIe1 N3+lDsHNSt7DN0YgerkZiyW8AwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMdK6flc LJnLv6b3uNvuulJKj1vLMB8GA1UdIwQYMBaAFD2v/7x+kS6f/NKi4NkgjryZcJsi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUI1MC9DNkMwNDlCMkFF RkUxMUVCODA5MzI2M0VDNEY5QUUwMi9QYV9fdkg2UkxwXzgwcUxnMlNDT3ZKbHdt eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BhX192SDZSTHBfODBxTGcyU0NPdkpsd215SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlCNTAvQzZDMDQ5QjJBRUZFMTFFQjgwOTMyNjNFQzRGOUFFMDIvNURFMTNFNkFB RjEyMTFFQjgxMzgzMTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnd2gwDQQCAAIwBwMFACQDQkAwDQYJKoZIhvcNAQELBQAD ggEBAJ3JKrSvofjcC6SInmAq7m7nJajAz4see/Mp/SG1KqsZZ1YplRbYbw+Je0za AFsjiqGJ5i4DIFbphCmDw7vsmwXumzOgV3uxFhb4KhczHrNN0/GFJBTbczAMeaT0 x3/Pk+yEO4ySzDMwGHpc1HDm8B7+pYGKk+PDSGz8/Z4pLGRbIzUMQNx7HwV4AUy0 8yj0yCyLyLdB1iW1iFTt0G1eklCT85g8xHCBXF155Zn1xnaCs509Ri8xDmfRbUgZ f27x+rfqeZTpzTdEQH8rk/QAls3Zpf8FtV6DrzqlvQEN1s2DqAz+iaIf2cJbRGsg ju3PRHWCJ3Xkv8porG44+6kSrfY= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:21 2024 by rpki-client on console-fra.rpki-client.org