$ rpki-client -vvf rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/96D7EE96AF0111EB8FE37446C4F9AE02.roa File: 96D7EE96AF0111EB8FE37446C4F9AE02.roa (raw, json) Hash identifier: OSggIm+/p+MrL8wcnCaLfLB40YedacjWTkw8IkjnU3M= Subject key identifier: E3:C4:83:71:C4:6E:34:A1:DF:6C:81:58:10:B9:E8:87:15:A7:75:DB Certificate issuer: /CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Certificate serial: 056B Authority key identifier: 3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/96D7EE96AF0111EB8FE37446C4F9AE02.roa Signing time: Sun 21 Jul 2024 00:12:31 +0000 ROA not before: Sun 21 Jul 2024 00:12:31 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 132585 IP address blocks: 103.119.104.0/23 maxlen: 23 103.119.106.0/23 maxlen: 23 2403:4240::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1387 (0x56b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179B50/serialNumber=3DAFFFBC7E912E9FFCD2A2E0D9208EBC99709B22 Validity Not Before: Jul 21 00:12:31 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=669c526f-ee7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:e9:58:d8:af:df:ce:4c:17:c9:49:7f:78: ca:c6:da:ec:dc:83:68:9d:86:33:09:60:56:76:61: f2:29:46:46:6b:6c:1e:34:a0:44:63:42:9a:50:d3: f0:6b:e8:40:6c:59:14:be:ed:4c:aa:55:a6:b8:ea: 02:29:3f:fa:b5:86:1f:69:e0:ff:b5:53:9d:73:d6: 18:53:76:97:a1:c7:f1:32:82:a8:4a:87:09:77:a2: 5a:da:12:0f:a3:87:8c:aa:a6:b6:e6:b9:87:4b:2f: 31:5a:f0:18:49:48:28:bb:35:dc:0e:e5:87:01:00: fe:1c:89:bf:49:17:14:ec:c2:a9:c3:8d:5a:2d:66: b4:0a:39:15:c5:b2:fa:f5:24:1f:86:bc:18:c1:08: 70:bf:7b:fa:c4:8b:d7:a4:8d:0d:d9:05:7e:57:36: 2f:a3:9f:c2:ef:0e:7c:c5:77:f4:9a:22:1c:bd:e7: 0a:59:a2:06:e2:71:35:d7:cf:b8:12:7a:3a:65:04: cb:59:e5:e3:0c:80:b3:5f:9f:d2:13:92:dd:65:ef: ff:03:cb:44:50:ae:92:c9:fe:65:80:7a:2c:d5:80: 55:b0:fa:da:e4:a7:b5:48:87:c4:d7:f5:2a:c3:ae: 01:b2:9c:20:27:34:56:bb:a0:2a:35:31:e9:28:be: 6e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:C4:83:71:C4:6E:34:A1:DF:6C:81:58:10:B9:E8:87:15:A7:75:DB X509v3 Authority Key Identifier: keyid:3D:AF:FF:BC:7E:91:2E:9F:FC:D2:A2:E0:D9:20:8E:BC:99:70:9B:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/Pa__vH6RLp_80qLg2SCOvJlwmyI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Pa__vH6RLp_80qLg2SCOvJlwmyI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179B50/C6C049B2AEFE11EB8093263EC4F9AE02/96D7EE96AF0111EB8FE37446C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.104.0/22 IPv6: 2403:4240::/32 Signature Algorithm: sha256WithRSAEncryption 7e:1f:9f:d6:4a:87:be:fd:87:18:57:22:6e:45:03:f1:7b:dd: d4:2b:bf:b7:b5:aa:57:64:d6:31:e8:ed:42:06:3a:b7:96:c7: 09:56:f3:98:37:c3:17:8b:73:08:8d:13:ed:fe:5b:c6:ae:7c: a8:13:1d:76:5c:a9:16:4f:ce:bf:71:de:bf:f6:12:f6:9b:9f: 19:af:81:8b:ea:e2:a8:cd:ae:fa:68:f7:13:dd:7c:cc:65:ae: 8f:8f:2d:93:05:ff:35:81:4d:0e:d5:54:f1:24:fb:bc:0a:8b: 8c:fe:d2:a1:09:44:6f:2f:d3:bd:36:ff:99:bd:5b:7b:59:c0: 02:6d:86:d2:9a:bf:ee:78:6b:37:2e:1d:08:4e:34:85:e0:41: 59:23:52:97:9c:47:35:79:5e:90:86:a8:a6:1e:b9:f1:f9:70: 2e:47:c0:a5:20:4f:8e:39:83:82:0b:0e:df:6e:72:66:80:1d: 99:08:f3:3d:76:4c:9c:26:a0:60:74:92:c6:86:9b:13:83:56: a1:44:ee:d0:98:70:c0:ad:f4:12:b8:2c:c0:96:28:15:46:c7: ae:14:93:ef:0a:df:4c:79:eb:70:56:99:f1:16:f7:36:5e:0c: b0:1d:75:6f:c6:9e:6b:dd:8e:61:7f:1e:1e:b5:a2:b7:7c:92: fc:67:6a:a3 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzlCNTAxMTAvBgNVBAUTKDNEQUZGRkJDN0U5MTJFOUZGQ0QyQTJFMEQ5MjA4RUJD OTk3MDlCMjIwHhcNMjQwNzIxMDAxMjMxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjljNTI2Zi1lZTdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuEPpWNiv385MF8lJf3jKxtrs3INonYYzCWBWdmHyKUZGa2weNKBEY0KaUNPw a+hAbFkUvu1MqlWmuOoCKT/6tYYfaeD/tVOdc9YYU3aXocfxMoKoSocJd6Ja2hIP o4eMqqa25rmHSy8xWvAYSUgouzXcDuWHAQD+HIm/SRcU7MKpw41aLWa0CjkVxbL6 9SQfhrwYwQhwv3v6xIvXpI0N2QV+VzYvo5/C7w58xXf0miIcvecKWaIG4nE118+4 Eno6ZQTLWeXjDICzX5/SE5LdZe//A8tEUK6Syf5lgHos1YBVsPra5Ke1SIfE1/Uq w64BspwgJzRWu6AqNTHpKL5uQwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOPEg3HE bjSh32yBWBC56IcVp3XbMB8GA1UdIwQYMBaAFD2v/7x+kS6f/NKi4NkgjryZcJsi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OUI1MC9DNkMwNDlCMkFF RkUxMUVCODA5MzI2M0VDNEY5QUUwMi9QYV9fdkg2UkxwXzgwcUxnMlNDT3ZKbHdt eUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BhX192SDZSTHBfODBxTGcyU0NPdkpsd215SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzlCNTAvQzZDMDQ5QjJBRUZFMTFFQjgwOTMyNjNFQzRGOUFFMDIvOTZEN0VFOTZB RjAxMTFFQjhGRTM3NDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnd2gwDQQCAAIwBwMFACQDQkAwDQYJKoZIhvcNAQELBQAD ggEBAH4fn9ZKh779hxhXIm5FA/F73dQrv7e1qldk1jHo7UIGOreWxwlW85g3wxeL cwiNE+3+W8aufKgTHXZcqRZPzr9x3r/2EvabnxmvgYvq4qjNrvpo9xPdfMxlro+P LZMF/zWBTQ7VVPEk+7wKi4z+0qEJRG8v0702/5m9W3tZwAJthtKav+54azcuHQhO NIXgQVkjUpecRzV5XpCGqKYeufH5cC5HwKUgT445g4ILDt9ucmaAHZkI8z12TJwm oGB0ksaGmxODVqFE7tCYcMCt9BK4LMCWKBVGx64Uk+8K30x563BWmfEW9zZeDLAd dW/GnmvdjmF/Hh61ord8kvxnaqM= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:44 2024 by rpki-client on console-ams.rpki-client.org