$ rpki-client -vvf rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/04A930F6629211EE90D5AD6CC4F9AE02.roa File: 04A930F6629211EE90D5AD6CC4F9AE02.roa (raw, json) Hash identifier: MzCxa5//voyTa1PWfOUraFYhl6MRI6DeuUFpM68sXZU= Subject key identifier: E6:6F:A5:22:90:85:54:8D:DE:1E:B9:FF:17:4E:82:C9:C1:40:22:B3 Certificate issuer: /CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Certificate serial: 04D6 Authority key identifier: 30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/04A930F6629211EE90D5AD6CC4F9AE02.roa Signing time: Sat 02 Nov 2024 23:42:40 +0000 ROA not before: Sat 02 Nov 2024 23:42:40 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 135567 IP address blocks: 103.123.112.0/24 maxlen: 24 103.123.113.0/24 maxlen: 24 103.123.114.0/24 maxlen: 24 103.123.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1238 (0x4d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CEE3/serialNumber=30E0803DEBA600AC9A92644C96F78A8E885D7C50 Validity Not Before: Nov 2 23:42:40 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6726b8f0-fc5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:f0:1f:b2:0a:35:f6:cb:79:ae:37:a8:13:5c: 9f:1d:46:5f:f3:06:d5:e2:d4:7f:52:3c:ce:8b:54: a1:66:96:b0:f9:a1:23:72:31:b5:96:23:4b:94:be: 56:cc:f5:47:dc:33:c9:41:6d:9b:93:e8:a0:78:95: bf:d5:f4:92:c4:af:da:4a:73:4c:e0:aa:98:12:d0: a5:2e:19:4e:8f:19:c9:c5:ef:d0:ec:76:fb:a0:d3: be:64:11:27:76:51:5e:c4:9e:e3:a0:fc:7b:36:09: 7c:43:a9:6e:60:80:6c:76:0e:f6:31:b5:b0:86:f1: ff:40:53:a0:e5:9c:5b:ed:59:b9:fb:d9:7e:42:4b: 4a:20:32:5a:64:50:5b:d1:26:ba:45:08:63:a0:29: 18:0e:31:bb:3f:fa:a0:30:6b:17:a4:1d:a7:89:69: b3:35:65:5f:0b:66:95:cf:ec:90:07:f2:fc:fc:ef: 46:2f:b1:05:27:ab:9f:9f:d7:43:68:06:c0:be:28: bf:6a:1f:f1:b0:5d:1b:08:7b:13:8c:ea:b0:28:f9: 0b:a0:20:65:17:78:c8:7f:9e:96:de:8f:aa:4e:fb: 29:99:19:01:df:0d:6e:08:b7:5d:a8:4e:53:d2:dc: d6:e4:ff:22:96:51:9a:75:c9:94:1b:4a:bf:9a:cd: 5f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6F:A5:22:90:85:54:8D:DE:1E:B9:FF:17:4E:82:C9:C1:40:22:B3 X509v3 Authority Key Identifier: keyid:30:E0:80:3D:EB:A6:00:AC:9A:92:64:4C:96:F7:8A:8E:88:5D:7C:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/MOCAPeumAKyakmRMlveKjohdfFA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MOCAPeumAKyakmRMlveKjohdfFA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CEE3/9A77AA2A059411EC9F646854C4F9AE02/04A930F6629211EE90D5AD6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.112.0/22 Signature Algorithm: sha256WithRSAEncryption 46:84:c0:2a:97:94:37:dd:ff:c6:52:39:28:0d:05:df:b5:d6: b5:9f:98:12:45:79:22:c8:2d:f4:d7:2f:5f:5e:72:6e:a0:6e: 44:5d:ad:9b:ed:63:5d:7a:72:b8:f2:ce:e8:dc:cc:46:32:7c: d2:34:24:33:91:c3:8d:f7:38:b5:8b:0a:cd:7d:d1:c6:73:a8: ed:21:23:4b:51:22:fa:fa:e6:34:5e:47:e1:e6:1f:3c:71:74: 65:7f:55:42:9e:86:75:90:0b:db:0d:80:65:b1:61:7b:33:90: bb:47:30:ca:c0:6a:e9:ff:d5:06:6c:28:d2:33:3b:db:27:a5: f5:b2:43:1c:a4:a1:d6:f1:7e:10:4b:ab:6b:55:48:5d:8a:e5: 4b:d9:ea:7a:70:61:5f:36:8a:e2:01:5c:57:be:b7:30:92:eb: 00:1b:64:bc:0b:c5:4a:d4:79:e0:f8:84:67:0c:80:3e:15:c8: c9:be:3e:ec:d9:d5:af:0a:cc:dd:2d:4d:4c:cc:8e:53:ff:a2: 03:0e:d7:59:f9:4e:2e:7a:d7:4f:90:03:dc:c1:13:bb:ab:c2: 43:13:54:30:53:37:a1:da:53:20:ad:db:66:6f:83:0e:c2:b9: 66:d9:80:e1:90:22:59:0b:eb:c8:b3:da:4c:7a:28:ce:aa:8f: 56:fb:bf:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NFRTMxMTAvBgNVBAUTKDMwRTA4MDNERUJBNjAwQUM5QTkyNjQ0Qzk2Rjc4QThF ODg1RDdDNTAwHhcNMjQxMTAyMjM0MjQwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2YjhmMC1mYzVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArPAfsgo19st5rjeoE1yfHUZf8wbV4tR/UjzOi1ShZpaw+aEjcjG1liNLlL5W zPVH3DPJQW2bk+igeJW/1fSSxK/aSnNM4KqYEtClLhlOjxnJxe/Q7Hb7oNO+ZBEn dlFexJ7joPx7Ngl8Q6luYIBsdg72MbWwhvH/QFOg5Zxb7Vm5+9l+QktKIDJaZFBb 0Sa6RQhjoCkYDjG7P/qgMGsXpB2niWmzNWVfC2aVz+yQB/L8/O9GL7EFJ6ufn9dD aAbAvii/ah/xsF0bCHsTjOqwKPkLoCBlF3jIf56W3o+qTvspmRkB3w1uCLddqE5T 0tzW5P8illGadcmUG0q/ms1fEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOZvpSKQ hVSN3h65/xdOgsnBQCKzMB8GA1UdIwQYMBaAFDDggD3rpgCsmpJkTJb3io6IXXxQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0VFMy85QTc3QUEyQTA1 OTQxMUVDOUY2NDY4NTRDNEY5QUUwMi9NT0NBUGV1bUFLeWFrbVJNbHZlS2pvaGRm RkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01PQ0FQZXVtQUt5YWttUk1sdmVLam9oZGZGQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NFRTMvOUE3N0FBMkEwNTk0MTFFQzlGNjQ2ODU0QzRGOUFFMDIvMDRBOTMwRjY2 MjkyMTFFRTkwRDVBRDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJne3AwDQYJKoZIhvcNAQELBQADggEBAEaEwCqXlDfd/8ZS OSgNBd+11rWfmBJFeSLILfTXL19ecm6gbkRdrZvtY116crjyzujczEYyfNI0JDOR w433OLWLCs190cZzqO0hI0tRIvr65jReR+HmHzxxdGV/VUKehnWQC9sNgGWxYXsz kLtHMMrAaun/1QZsKNIzO9snpfWyQxykodbxfhBLq2tVSF2K5UvZ6npwYV82iuIB XFe+tzCS6wAbZLwLxUrUeeD4hGcMgD4VyMm+PuzZ1a8KzN0tTUzMjlP/ogMO11n5 Ti5610+QA9zBE7urwkMTVDBTN6HaUyCt22Zvgw7CuWbZgOGQIlkL68iz2kx6KM6q j1b7vws= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org