$ rpki-client -vvf rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/3DF6459A772511EEA2E37420C4F9AE02.roa File: 3DF6459A772511EEA2E37420C4F9AE02.roa (raw, json) Hash identifier: iSOdJt+BL8ENRxFcv4jaFJ7KNoHUX0Q/WLaLzbaI1bk= Subject key identifier: 2C:39:35:83:C8:77:66:CB:FD:86:D7:7C:F0:28:0D:74:EF:E7:32:19 Certificate issuer: /CN=A918A56A/serialNumber=DA4310B2F0879DF4BD9839A14C8E3FBBB6F1EBF1 Certificate serial: 71 Authority key identifier: DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/3DF6459A772511EEA2E37420C4F9AE02.roa Signing time: Fri 17 May 2024 07:41:30 +0000 ROA not before: Fri 17 May 2024 07:41:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151049 IP address blocks: 103.121.64.0/23 maxlen: 23 103.121.64.0/24 maxlen: 24 103.121.65.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.crl rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A56A/serialNumber=DA4310B2F0879DF4BD9839A14C8E3FBBB6F1EBF1 Validity Not Before: May 17 07:41:30 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66470a2a-d630 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f6:1b:1e:39:1f:7a:43:ec:b2:0d:1d:45:b5: 3e:af:e8:25:39:b5:36:96:40:2d:3f:58:55:55:b9: 4b:75:fb:15:a2:ec:fa:dd:28:ad:84:a1:78:46:3b: 29:f4:5e:92:36:0a:c0:16:7c:4f:11:08:19:6d:07: 6f:dd:44:fa:1b:68:51:f2:da:2d:6b:5d:2f:f6:8f: 4f:bd:db:d3:11:a1:31:9f:4e:88:15:1f:69:89:c4: 5e:0c:c9:e8:36:d8:76:2a:78:a9:dc:8a:cd:be:ba: 5e:39:8a:56:18:00:c6:c2:38:64:a6:e7:ec:bd:d0: c6:e1:5f:c1:85:57:ca:7e:cd:d5:35:30:0c:90:63: 89:dd:2c:20:b0:81:58:eb:63:7b:1e:f1:2d:9b:47: 54:a6:36:7a:cd:eb:f3:9a:23:ea:ad:f6:00:00:46: a7:93:a1:7b:a1:99:35:90:ac:10:88:fc:83:97:38: 97:6b:35:e9:45:49:49:71:5e:64:ff:bf:f1:59:c7: 9f:25:36:b1:b4:74:2d:16:9e:c4:88:d1:b0:1a:3d: 3d:16:ff:c1:de:77:ab:bc:4d:51:d1:b6:45:a9:26: 58:47:c1:df:8f:e4:91:59:7e:14:cc:fe:3c:b5:6c: e1:1f:93:48:53:96:66:54:05:bd:14:9a:c7:b2:de: 10:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:39:35:83:C8:77:66:CB:FD:86:D7:7C:F0:28:0D:74:EF:E7:32:19 X509v3 Authority Key Identifier: keyid:DA:43:10:B2:F0:87:9D:F4:BD:98:39:A1:4C:8E:3F:BB:B6:F1:EB:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/2kMQsvCHnfS9mDmhTI4_u7bx6_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kMQsvCHnfS9mDmhTI4_u7bx6_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A56A/26FA1818772411EEA1674E1FC4F9AE02/3DF6459A772511EEA2E37420C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.121.64.0/23 Signature Algorithm: sha256WithRSAEncryption 17:e0:63:37:05:9a:56:d6:d4:d2:ae:93:c5:5d:35:6b:c5:3e: e7:0f:ab:61:fe:5f:a9:01:f7:ef:1e:97:ee:43:24:b7:75:63: 55:20:74:28:1c:77:39:b5:f5:3b:5a:45:7b:97:eb:7d:96:fa: bd:f6:bf:18:df:79:f7:d2:a9:f1:b3:f2:30:83:13:f8:cf:26: 93:6e:73:91:9e:1d:0f:01:7a:a2:4f:34:ef:c1:9e:ca:94:1b: 35:c9:c9:75:93:7c:20:dc:18:aa:05:6b:1d:6f:b1:eb:97:f1: 84:c8:67:4d:23:5b:19:2e:92:0b:35:d5:16:df:1b:9e:50:3c: cb:85:33:af:f7:04:b5:47:6c:d8:ff:d1:da:71:05:b6:1a:0d: 24:4f:ad:4e:d9:2f:04:ce:05:d3:82:c6:f0:7b:b1:50:e5:e3: 95:6c:c1:26:ff:4a:5d:cf:e4:4c:65:9f:cf:5a:3c:f7:5b:52: dc:46:0c:c0:7f:d4:12:d0:9a:c9:3a:22:bf:cd:63:79:57:8d: 04:75:06:b1:18:46:d4:d0:6d:6b:e2:d2:2d:82:71:a0:ac:81: ae:32:be:f6:bc:33:2c:85:33:47:df:86:16:d9:33:75:09:83: 4e:dc:94:a8:6b:d9:5e:15:96:18:30:c9:c2:ea:28:1e:13:4e: 96:2f:24:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 QTU2QTExMC8GA1UEBRMoREE0MzEwQjJGMDg3OURGNEJEOTgzOUExNEM4RTNGQkJC NkYxRUJGMTAeFw0yNDA1MTcwNzQxMzBaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDcwYTJhLWQ2MzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDj9hseOR96Q+yyDR1FtT6v6CU5tTaWQC0/WFVVuUt1+xWi7PrdKK2EoXhGOyn0 XpI2CsAWfE8RCBltB2/dRPobaFHy2i1rXS/2j0+929MRoTGfTogVH2mJxF4Myeg2 2HYqeKncis2+ul45ilYYAMbCOGSm5+y90MbhX8GFV8p+zdU1MAyQY4ndLCCwgVjr Y3se8S2bR1SmNnrN6/OaI+qt9gAARqeToXuhmTWQrBCI/IOXOJdrNelFSUlxXmT/ v/FZx58lNrG0dC0WnsSI0bAaPT0W/8Hed6u8TVHRtkWpJlhHwd+P5JFZfhTM/jy1 bOEfk0hTlmZUBb0Umsey3hBTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULDk1g8h3 Zsv9htd88CgNdO/nMhkwHwYDVR0jBBgwFoAU2kMQsvCHnfS9mDmhTI4/u7bx6/Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MThBNTZBLzI2RkExODE4Nzcy NDExRUVBMTY3NEUxRkM0RjlBRTAyLzJrTVFzdkNIbmZTOW1EbWhUSTRfdTdieDZf RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMmtNUXN2Q0huZlM5bURtaFRJNF91N2J4Nl9FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 QTU2QS8yNkZBMTgxODc3MjQxMUVFQTE2NzRFMUZDNEY5QUUwMi8zREY2NDU5QTc3 MjUxMUVFQTJFMzc0MjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWd5QDANBgkqhkiG9w0BAQsFAAOCAQEAF+BjNwWaVtbU0q6T xV01a8U+5w+rYf5fqQH37x6X7kMkt3VjVSB0KBx3ObX1O1pFe5frfZb6vfa/GN95 99Kp8bPyMIMT+M8mk25zkZ4dDwF6ok8078GeypQbNcnJdZN8INwYqgVrHW+x65fx hMhnTSNbGS6SCzXVFt8bnlA8y4Uzr/cEtUds2P/R2nEFthoNJE+tTtkvBM4F04LG 8HuxUOXjlWzBJv9KXc/kTGWfz1o891tS3EYMwH/UEtCayToiv81jeVeNBHUGsRhG 1NBta+LSLYJxoKyBrjK+9rwzLIUzR9+GFtkzdQmDTtyUqGvZXhWWGDDJwuooHhNO li8kTA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org