$ rpki-client -vvf rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/68A35F78831411EC90E07C19C4F9AE02.roa File: 68A35F78831411EC90E07C19C4F9AE02.roa (raw, json) Hash identifier: t6T57kHu7uMYeuN0mVxzrvC/6xdds2/aDC5V7Z6/hHA= Subject key identifier: 96:01:38:01:27:5B:FD:32:AE:32:09:1E:38:AE:CF:CD:A9:D1:42:61 Certificate issuer: /CN=A9183496/serialNumber=2F7A1C1DD27EA78158CE21A94DBBFB9072FB1734 Certificate serial: 0B8F Authority key identifier: 2F:7A:1C:1D:D2:7E:A7:81:58:CE:21:A9:4D:BB:FB:90:72:FB:17:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/68A35F78831411EC90E07C19C4F9AE02.roa Signing time: Mon 16 Sep 2024 18:57:18 +0000 ROA not before: Mon 16 Sep 2024 18:57:18 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 134383 IP address blocks: 103.121.140.0/22 maxlen: 22 2001:df6:4300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.crl rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:35:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2959 (0xb8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183496/serialNumber=2F7A1C1DD27EA78158CE21A94DBBFB9072FB1734 Validity Not Before: Sep 16 18:57:18 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e87f8e-8c93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:35:5f:a5:84:3e:10:a2:87:1b:8b:e9:c1:4c: 78:6d:f9:13:49:a9:31:a1:19:11:04:59:9b:7d:55: 98:68:65:01:8d:74:5b:2c:58:b4:95:dd:1b:7a:e2: 61:cf:2b:0a:6e:52:94:40:f3:5e:b4:73:ce:78:3a: 31:8e:05:93:28:97:54:cb:52:db:e1:de:ad:5f:d9: 2f:28:a3:8b:e3:c6:e8:5b:78:67:0b:d6:0a:fd:6c: a8:2c:54:ab:d7:09:ba:e7:83:65:75:5f:0e:15:3d: ed:e6:bc:36:50:cb:08:9f:71:5e:e5:ba:96:5c:11: 10:51:5c:31:85:ff:d8:f9:a2:c2:73:40:6e:a4:f5: a4:b2:c3:48:2d:74:10:9f:01:a9:cc:d9:12:61:50: a7:63:63:7e:7c:cb:59:df:34:33:27:59:1f:cb:b4: bd:28:fd:37:f4:6a:22:3e:96:23:57:ab:77:73:d3: 6f:05:61:2b:8a:fe:70:fa:81:95:7e:e4:72:41:bd: 94:d4:47:c6:38:eb:db:f6:45:86:f7:23:16:2e:90: f6:24:c2:eb:01:c5:56:fc:d9:18:57:6f:ec:53:d1: db:c4:44:09:f3:f7:4a:fc:83:b4:5d:57:31:0d:4c: c6:0f:8b:5e:f6:93:95:05:dd:97:a5:61:d4:23:ba: e5:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:01:38:01:27:5B:FD:32:AE:32:09:1E:38:AE:CF:CD:A9:D1:42:61 X509v3 Authority Key Identifier: keyid:2F:7A:1C:1D:D2:7E:A7:81:58:CE:21:A9:4D:BB:FB:90:72:FB:17:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L3ocHdJ-p4FYziGpTbv7kHL7FzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183496/2341A5660F6C11EAA70F795AC4F9AE02/68A35F78831411EC90E07C19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.140.0/22 IPv6: 2001:df6:4300::/48 Signature Algorithm: sha256WithRSAEncryption 75:97:a8:58:19:74:75:e9:33:fa:96:7a:6c:04:5c:86:12:4b: 44:35:f7:00:6d:0c:e9:cf:d2:f2:77:96:f9:03:64:52:7a:6f: 3e:d4:01:ba:43:62:98:d1:8f:b8:bf:f2:2b:aa:e2:4b:ff:05: 15:e1:a3:52:9e:cd:d8:f9:d3:e6:da:26:29:83:4b:3a:fc:66: 1e:0e:4a:2f:5a:de:18:ea:5d:b3:a8:40:85:f1:24:86:62:73: f0:6d:33:cf:5b:49:09:1a:62:6e:0a:6a:5f:6e:f8:40:50:ca: f9:dc:90:59:c2:96:95:89:de:3e:c6:e1:65:95:42:f8:a5:3d: 4c:3f:3f:af:1b:0b:97:f7:04:0b:bb:cb:b9:12:b6:ee:a0:53: ef:b3:ea:9c:9e:55:ba:3c:7b:55:c9:6e:ab:5f:75:18:66:61: 06:1d:a7:4f:69:31:2b:ad:15:24:d3:66:f7:20:0c:67:5d:26: 6f:4f:80:b0:39:97:5c:fe:d0:56:d1:87:e7:d3:09:52:26:c8: a6:b5:2b:fd:7e:35:d8:fc:c5:44:56:9b:89:f9:b8:53:6c:92: df:47:c3:7d:37:18:bd:c4:0b:23:81:2e:cd:20:ce:ce:2f:93: bb:16:6e:65:85:2b:1d:2c:23:e3:cb:3d:34:9e:17:91:c9:be: 2d:30:82:f7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODM0OTYxMTAvBgNVBAUTKDJGN0ExQzFERDI3RUE3ODE1OENFMjFBOTREQkJGQjkw NzJGQjE3MzQwHhcNMjQwOTE2MTg1NzE4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4N2Y4ZS04YzkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0TVfpYQ+EKKHG4vpwUx4bfkTSakxoRkRBFmbfVWYaGUBjXRbLFi0ld0beuJh zysKblKUQPNetHPOeDoxjgWTKJdUy1Lb4d6tX9kvKKOL48boW3hnC9YK/WyoLFSr 1wm654NldV8OFT3t5rw2UMsIn3Fe5bqWXBEQUVwxhf/Y+aLCc0BupPWkssNILXQQ nwGpzNkSYVCnY2N+fMtZ3zQzJ1kfy7S9KP039GoiPpYjV6t3c9NvBWEriv5w+oGV fuRyQb2U1EfGOOvb9kWG9yMWLpD2JMLrAcVW/NkYV2/sU9HbxEQJ8/dK/IO0XVcx DUzGD4te9pOVBd2XpWHUI7rlFwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJYBOAEn W/0yrjIJHjiuz82p0UJhMB8GA1UdIwQYMBaAFC96HB3SfqeBWM4hqU27+5By+xc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzQ5Ni8yMzQxQTU2NjBG NkMxMUVBQTcwRjc5NUFDNEY5QUUwMi9MM29jSGRKLXA0Rll6aUdwVGJ2N2tITDdG elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0wzb2NIZEotcDRGWXppR3BUYnY3a0hMN0Z6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODM0OTYvMjM0MUE1NjYwRjZDMTFFQUE3MEY3OTVBQzRGOUFFMDIvNjhBMzVGNzg4 MzE0MTFFQzkwRTA3QzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJneYwwDwQCAAIwCQMHACABDfZDADANBgkqhkiG9w0BAQsF AAOCAQEAdZeoWBl0dekz+pZ6bARchhJLRDX3AG0M6c/S8neW+QNkUnpvPtQBukNi mNGPuL/yK6riS/8FFeGjUp7N2PnT5tomKYNLOvxmHg5KL1reGOpds6hAhfEkhmJz 8G0zz1tJCRpibgpqX274QFDK+dyQWcKWlYnePsbhZZVC+KU9TD8/rxsLl/cEC7vL uRK27qBT77PqnJ5Vujx7Vcluq191GGZhBh2nT2kxK60VJNNm9yAMZ10mb0+AsDmX XP7QVtGH59MJUibIprUr/X412PzFRFabifm4U2yS30fDfTcYvcQLI4EuzSDOzi+T uxZuZYUrHSwj48s9NJ4Xkcm+LTCC9w== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:06 2024 by rpki-client on console-ams.rpki-client.org