$ rpki-client -vvf rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/12AE9E92AA9711EDAAEB8345C4F9AE02.roa File: 12AE9E92AA9711EDAAEB8345C4F9AE02.roa (raw, json) Hash identifier: ZbTPGmKh281ymLxinCV1W0SdNG3gcop2OrOUFYRhJy4= Subject key identifier: 86:59:8D:F7:05:66:B8:99:DF:A8:88:13:C4:E3:64:12:BC:4D:84:16 Certificate issuer: /CN=A919188A/serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Certificate serial: 0129 Authority key identifier: 02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/12AE9E92AA9711EDAAEB8345C4F9AE02.roa Signing time: Thu 29 Aug 2024 04:36:52 +0000 ROA not before: Thu 29 Aug 2024 04:36:52 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131684 IP address blocks: 103.69.172.0/24 maxlen: 24 103.69.174.0/24 maxlen: 24 103.69.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:29:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 297 (0x129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919188A/serialNumber=02811C31D50C91FFFD5EDA68B9EF81C3F9E9FB12 Validity Not Before: Aug 29 04:36:52 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cffae4-7be1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:df:df:eb:aa:4a:5a:ff:d5:fc:c7:71:14:d3: 54:75:0e:5b:5c:30:50:1e:c1:78:7a:d7:ea:3a:99: 67:dc:15:9c:0a:31:cb:f2:ba:f0:69:88:af:6c:ee: 69:15:cc:88:77:a0:16:fe:73:7e:12:dc:5f:57:a5: c1:4e:eb:c4:b7:74:31:34:32:7a:ae:62:3c:53:e1: 69:ee:b4:9f:9b:6d:a8:05:6d:53:36:fa:84:4c:66: ef:21:04:18:1e:c5:98:6a:5c:12:55:78:da:11:67: 8c:c4:d0:4a:c0:b9:8a:8c:5c:48:d7:15:bd:dd:c2: 63:53:b3:d2:3d:b0:2c:47:d0:7a:e1:3d:f5:52:a6: 98:6b:be:40:f9:2d:c5:70:51:bb:97:c3:97:a0:1c: f2:f7:f0:4c:80:c5:df:4d:7c:b6:73:b5:a9:99:e5: e3:b7:ed:93:14:dc:dc:91:c4:85:33:fa:c9:b2:90: 8a:fa:c6:4a:a3:e3:e2:e6:37:88:5d:04:a1:04:36: 00:06:7d:d7:b9:15:91:53:c8:06:a3:fc:0c:e3:d9: 4b:29:ac:eb:73:29:75:8c:ff:53:03:03:c1:23:2c: f1:79:37:7c:db:55:a7:62:5f:b5:4d:4e:ac:c3:96: ca:f8:14:ac:8b:a2:07:95:94:5c:2c:f1:7f:88:f4: 6e:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:59:8D:F7:05:66:B8:99:DF:A8:88:13:C4:E3:64:12:BC:4D:84:16 X509v3 Authority Key Identifier: keyid:02:81:1C:31:D5:0C:91:FF:FD:5E:DA:68:B9:EF:81:C3:F9:E9:FB:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/AoEcMdUMkf_9Xtpoue-Bw_np-xI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AoEcMdUMkf_9Xtpoue-Bw_np-xI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919188A/C96357CAAA9411EDB0774F45C4F9AE02/12AE9E92AA9711EDAAEB8345C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.172.0/24 103.69.174.0/23 Signature Algorithm: sha256WithRSAEncryption 71:57:69:ff:d5:84:06:73:73:86:a4:4a:00:ee:79:06:ea:32: 47:d0:6f:ec:0f:f7:c0:46:6c:ee:cc:a9:84:8e:f1:ff:fe:47: 90:5f:42:7c:86:65:d1:3e:b3:75:91:32:4b:2b:82:c4:82:c0: 7a:e1:11:2d:14:06:f0:47:15:01:3f:19:e8:1f:05:91:75:9c: e9:8f:a1:9d:8b:1f:ca:8a:c0:68:ae:2f:c7:b3:2d:e9:23:9a: 2c:5d:e7:06:da:d8:f3:83:c0:c0:6c:d1:4c:b2:69:13:6e:b7: 46:ca:b0:90:2d:b6:17:6a:5e:23:17:cc:1c:87:aa:77:e9:77: 98:61:fe:5f:e1:2f:e1:9c:54:57:5d:87:19:af:93:50:6f:0e: 60:b0:3f:0c:f2:f7:0a:5b:54:f7:f3:48:26:41:da:39:12:6a: 44:6a:d6:0f:c6:68:c9:cd:e5:a3:44:05:1e:cd:8a:c4:fa:d5: b4:36:3c:f2:6a:13:38:ed:e6:7d:aa:43:d4:ca:e8:be:09:ff: e8:43:93:62:53:c7:b9:82:80:c7:42:09:21:7b:3f:c1:c9:b5: 51:38:96:2c:c4:85:4a:cb:5d:4d:69:60:e4:46:6b:93:b5:73: a9:17:89:5b:ea:62:b6:e0:20:d5:62:4c:6d:ba:a0:47:f9:36: e0:c8:8c:86 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICASkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE4OEExMTAvBgNVBAUTKDAyODExQzMxRDUwQzkxRkZGRDVFREE2OEI5RUY4MUMz RjlFOUZCMTIwHhcNMjQwODI5MDQzNjUyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNmZmFlNC03YmUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvd/f66pKWv/V/MdxFNNUdQ5bXDBQHsF4etfqOpln3BWcCjHL8rrwaYivbO5p FcyId6AW/nN+EtxfV6XBTuvEt3QxNDJ6rmI8U+Fp7rSfm22oBW1TNvqETGbvIQQY HsWYalwSVXjaEWeMxNBKwLmKjFxI1xW93cJjU7PSPbAsR9B64T31UqaYa75A+S3F cFG7l8OXoBzy9/BMgMXfTXy2c7WpmeXjt+2TFNzckcSFM/rJspCK+sZKo+Pi5jeI XQShBDYABn3XuRWRU8gGo/wM49lLKazrcyl1jP9TAwPBIyzxeTd821WnYl+1TU6s w5bK+BSsi6IHlZRcLPF/iPRuGQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIZZjfcF ZriZ36iIE8TjZBK8TYQWMB8GA1UdIwQYMBaAFAKBHDHVDJH//V7aaLnvgcP56fsS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTg4QS9DOTYzNTdDQUFB OTQxMUVEQjA3NzRGNDVDNEY5QUUwMi9Bb0VjTWRVTWtmXzlYdHBvdWUtQndfbnAt eEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FvRWNNZFVNa2ZfOVh0cG91ZS1Cd19ucC14SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE4OEEvQzk2MzU3Q0FBQTk0MTFFREIwNzc0RjQ1QzRGOUFFMDIvMTJBRTlFOTJB QTk3MTFFREFBRUI4MzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnRawDBAFnRa4wDQYJKoZIhvcNAQELBQADggEBAHFXaf/V hAZzc4akSgDueQbqMkfQb+wP98BGbO7MqYSO8f/+R5BfQnyGZdE+s3WRMksrgsSC wHrhES0UBvBHFQE/GegfBZF1nOmPoZ2LH8qKwGiuL8ezLekjmixd5wba2PODwMBs 0UyyaRNut0bKsJAtthdqXiMXzByHqnfpd5hh/l/hL+GcVFddhxmvk1BvDmCwPwzy 9wpbVPfzSCZB2jkSakRq1g/GaMnN5aNEBR7NisT61bQ2PPJqEzjt5n2qQ9TK6L4J /+hDk2JTx7mCgMdCCSF7P8HJtVE4lizEhUrLXU1pYORGa5O1c6kXiVvqYrbgINVi TG26oEf5NuDIjIY= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:45 2024 by rpki-client on console-ams.rpki-client.org