$ rpki-client -vvf rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/2DB6F886286111E9BA245A71C4F9AE02.roa File: 2DB6F886286111E9BA245A71C4F9AE02.roa (raw, json) Hash identifier: pV9KN5MeTOu2qmu0WIHii3a+U30QMLMqCUvjqN3GmOU= Subject key identifier: AC:F9:9F:68:8C:3D:D6:7F:26:8A:7A:40:9A:37:3F:22:D6:D9:AC:B6 Certificate issuer: /CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Certificate serial: 0F9D Authority key identifier: 88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/2DB6F886286111E9BA245A71C4F9AE02.roa Signing time: Sat 02 Dec 2023 18:05:42 +0000 ROA not before: Sat 02 Dec 2023 18:05:42 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 138578 IP address blocks: 103.133.164.0/22 maxlen: 22 103.133.164.0/24 maxlen: 24 103.133.165.0/24 maxlen: 24 103.133.166.0/24 maxlen: 24 103.133.167.0/24 maxlen: 24 2404:50c0::/32 maxlen: 32 2404:50c0:bd::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:22:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3997 (0xf9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182948/serialNumber=8812C867F6A6578808CD92A50BB3952AF57778F8 Validity Not Before: Dec 2 18:05:42 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=656b71f5-d41c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8b:26:17:97:17:8e:8c:e7:9b:05:0c:5f:2d: a9:87:d5:58:cb:21:ba:e2:ee:1d:65:9e:8a:78:52: 92:9a:65:f4:75:3f:4d:bc:3f:7d:30:bc:71:3f:56: b7:74:e9:c1:c6:b9:c0:c4:d2:35:a8:30:39:f9:a2: 1e:6b:a7:e2:24:5b:1c:52:3e:61:f3:02:12:51:13: b6:28:f3:5c:de:e4:11:74:0f:e1:b4:8e:78:1d:92: 9a:4f:27:5c:85:fd:00:e9:e8:5f:e2:ae:78:4d:b2: 9c:cf:db:87:cd:57:89:ca:7a:5c:39:7e:32:3e:90: 13:67:43:be:fe:7a:21:79:3e:78:8b:29:5d:89:45: 85:1a:a0:4f:13:d8:8d:e2:8e:f8:6d:0a:ef:3b:1e: 4b:9c:55:01:fd:6d:f8:28:21:80:98:42:05:4b:b3: c3:b8:01:b4:1f:4d:37:c9:7f:a3:7b:b3:a6:9c:8e: 58:bc:17:6a:dd:6d:2b:37:e9:08:83:82:b9:55:31: 7a:ad:88:d5:cc:cb:72:a4:20:84:f4:fe:e3:bf:bc: 47:6e:67:9a:ed:56:39:ba:31:57:59:8d:94:90:75: 19:35:72:40:7b:73:ec:4d:60:51:01:f9:61:8c:a6: d1:b2:b2:85:2c:07:27:c0:b3:c7:14:6f:41:21:30: 93:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F9:9F:68:8C:3D:D6:7F:26:8A:7A:40:9A:37:3F:22:D6:D9:AC:B6 X509v3 Authority Key Identifier: keyid:88:12:C8:67:F6:A6:57:88:08:CD:92:A5:0B:B3:95:2A:F5:77:78:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/iBLIZ_amV4gIzZKlC7OVKvV3ePg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iBLIZ_amV4gIzZKlC7OVKvV3ePg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182948/EFA58BD627F011E988468C1BC4F9AE02/2DB6F886286111E9BA245A71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.164.0/22 IPv6: 2404:50c0::/32 Signature Algorithm: sha256WithRSAEncryption 77:49:71:cd:ee:93:c1:ee:d1:28:43:d2:cb:da:8e:e2:e1:d6: 78:78:b8:ff:ef:bd:75:bb:34:71:ef:12:70:f2:2b:a1:1b:ab: b4:19:40:c4:14:15:e9:35:ef:c8:c0:2e:de:40:1f:8f:0e:1e: ff:12:46:91:80:2b:e0:7a:94:64:ee:e3:7e:31:cf:9e:98:10: 59:a3:f5:6e:f2:ec:a4:19:bf:06:82:32:04:ce:5d:ff:3d:f7: fb:b6:39:fd:46:e7:d8:d7:17:2a:1b:c3:5e:70:fb:39:fe:53: fa:2d:bd:82:29:f9:4d:96:05:e4:c9:20:e7:ae:25:62:4e:f1: b6:77:6b:5f:ef:43:94:d4:ec:94:40:8b:6c:a1:35:ff:73:82: c5:e6:97:49:cb:37:46:d5:60:5a:f3:98:97:91:70:f7:57:ba: 3b:e4:4f:ed:13:29:df:58:19:4b:67:c1:c9:87:be:73:ee:01: 38:60:87:dd:f7:4f:df:db:ec:47:8b:00:6a:e5:ee:2a:79:dc: eb:06:6a:ac:c7:4a:01:b4:6c:fd:76:10:8d:d4:dd:f3:a2:5a: d0:e8:34:f9:93:69:b8:ca:84:d5:01:e2:f0:d4:09:fb:10:43: 36:99:0d:72:a5:ef:67:c3:27:2b:22:98:d9:98:bd:5d:e3:ba: 87:7b:98:df -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICD50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODI5NDgxMTAvBgNVBAUTKDg4MTJDODY3RjZBNjU3ODgwOENEOTJBNTBCQjM5NTJB RjU3Nzc4RjgwHhcNMjMxMjAyMTgwNTQyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNzFmNS1kNDFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4smF5cXjoznmwUMXy2ph9VYyyG64u4dZZ6KeFKSmmX0dT9NvD99MLxxP1a3 dOnBxrnAxNI1qDA5+aIea6fiJFscUj5h8wISURO2KPNc3uQRdA/htI54HZKaTydc hf0A6ehf4q54TbKcz9uHzVeJynpcOX4yPpATZ0O+/noheT54iyldiUWFGqBPE9iN 4o74bQrvOx5LnFUB/W34KCGAmEIFS7PDuAG0H003yX+je7OmnI5YvBdq3W0rN+kI g4K5VTF6rYjVzMtypCCE9P7jv7xHbmea7VY5ujFXWY2UkHUZNXJAe3PsTWBRAflh jKbRsrKFLAcnwLPHFG9BITCTFQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKz5n2iM PdZ/Jop6QJo3PyLW2ay2MB8GA1UdIwQYMBaAFIgSyGf2pleICM2SpQuzlSr1d3j4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4Mjk0OC9FRkE1OEJENjI3 RjAxMUU5ODg0NjhDMUJDNEY5QUUwMi9pQkxJWl9hbVY0Z0l6WktsQzdPVkt2VjNl UGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lCTElaX2FtVjRnSXpaS2xDN09WS3ZWM2VQZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODI5NDgvRUZBNThCRDYyN0YwMTFFOTg4NDY4QzFCQzRGOUFFMDIvMkRCNkY4ODYy ODYxMTFFOUJBMjQ1QTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhaQwDQQCAAIwBwMFACQEUMAwDQYJKoZIhvcNAQELBQAD ggEBAHdJcc3uk8Hu0ShD0svajuLh1nh4uP/vvXW7NHHvEnDyK6Ebq7QZQMQUFek1 78jALt5AH48OHv8SRpGAK+B6lGTu434xz56YEFmj9W7y7KQZvwaCMgTOXf899/u2 Of1G59jXFyobw15w+zn+U/otvYIp+U2WBeTJIOeuJWJO8bZ3a1/vQ5TU7JRAi2yh Nf9zgsXml0nLN0bVYFrzmJeRcPdXujvkT+0TKd9YGUtnwcmHvnPuAThgh933T9/b 7EeLAGrl7ip53OsGaqzHSgG0bP12EI3U3fOiWtDoNPmTabjKhNUB4vDUCfsQQzaZ DXKl72fDJysimNmYvV3juod7mN8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org