$ rpki-client -vvf rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/A768E6B6FB0811ED860A5143C4F9AE02.roa File: A768E6B6FB0811ED860A5143C4F9AE02.roa (raw, json) Hash identifier: SVFtlSzgsbl94LKJE/MqOpvXoyEaSOVfShQjoppkD5M= Subject key identifier: 28:65:78:BB:E8:61:10:47:63:71:B6:BB:87:0D:69:33:CA:AF:0E:C8 Certificate issuer: /CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Certificate serial: 22D0 Authority key identifier: F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/A768E6B6FB0811ED860A5143C4F9AE02.roa Signing time: Thu 12 Sep 2024 16:23:21 +0000 ROA not before: Thu 12 Sep 2024 16:23:21 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 134204 IP address blocks: 103.12.72.0/22 maxlen: 22 103.12.72.0/23 maxlen: 23 103.12.72.0/24 maxlen: 24 103.12.73.0/24 maxlen: 24 103.12.74.0/23 maxlen: 23 103.12.74.0/24 maxlen: 24 103.12.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:51:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8912 (0x22d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196BD8/serialNumber=F97C8DACC27E9FCCD33AEB85350B26A4815F10B7 Validity Not Before: Sep 12 16:23:21 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66e31579-745b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cb:7f:be:69:e2:72:13:8f:8e:86:4e:93:de: 90:6a:e3:1c:a8:14:cc:d7:f6:1b:90:94:25:4e:df: e2:a6:98:71:02:9d:24:d7:f7:61:58:f2:01:7b:0e: c8:05:7c:88:ff:5b:e2:27:54:c0:a5:ca:88:d8:9c: e8:30:f7:32:bc:85:15:3a:55:db:a7:af:23:77:6f: f1:d4:f3:49:57:23:a9:35:ee:c8:7a:7e:09:be:05: 0f:fa:ca:6c:16:b1:ed:8a:3b:35:0c:4f:0c:01:20: f0:76:42:71:b9:86:6e:06:c9:cc:87:6a:3b:6a:c7: b0:1c:e4:41:53:41:9d:6b:33:28:d9:23:84:2c:54: 64:1f:33:33:4d:fd:ac:b2:e6:13:cb:65:89:50:0f: 8b:e7:b7:4b:5d:c4:1d:1b:df:2d:d6:76:1c:a4:16: 33:6d:d3:98:14:c3:5a:de:17:d9:99:b8:9d:0e:91: 22:74:7c:c9:27:30:3d:c8:d2:f4:e8:91:31:81:f9: 60:4d:44:3e:c4:49:7d:06:55:06:ca:1c:cb:75:4c: 5d:29:a8:2b:f6:1f:e5:d4:40:b8:b2:83:bb:06:30: ce:5d:e5:6a:7b:92:f6:06:ac:e6:00:17:56:53:18: 3f:d8:31:d7:40:0b:6a:f6:ec:99:f3:d8:76:7e:cb: 83:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:65:78:BB:E8:61:10:47:63:71:B6:BB:87:0D:69:33:CA:AF:0E:C8 X509v3 Authority Key Identifier: keyid:F9:7C:8D:AC:C2:7E:9F:CC:D3:3A:EB:85:35:0B:26:A4:81:5F:10:B7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/-XyNrMJ-n8zTOuuFNQsmpIFfELc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-XyNrMJ-n8zTOuuFNQsmpIFfELc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196BD8/C583D23287A211E59E51F251C4F9AE02/A768E6B6FB0811ED860A5143C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.72.0/22 Signature Algorithm: sha256WithRSAEncryption 13:00:d2:00:8e:cc:fb:35:e3:26:26:fb:8c:34:bd:0f:9c:75: 60:ff:6d:4a:58:ac:92:26:98:b2:86:5f:e1:06:fe:b2:d1:99: 7f:b2:06:66:d3:22:ca:2e:61:be:1e:71:ac:f6:00:69:70:c3: 48:71:63:c7:a7:5d:1a:80:15:10:a7:0f:be:cf:a0:78:79:4c: 59:56:3a:08:f7:e6:07:62:46:12:56:8d:e9:40:3d:e8:e3:34: 84:47:4e:ee:5a:64:05:42:0e:83:b3:b6:f4:fd:30:40:3e:8e: 5b:19:5a:12:39:7a:b1:31:06:cf:04:fb:19:c8:09:21:a6:4b: 51:7b:03:98:fb:09:30:b4:6b:23:94:07:14:49:46:35:c8:e5: 70:aa:e4:fc:78:16:c1:93:f0:4c:0b:01:50:57:81:57:8a:f1: f1:b3:01:7d:6f:00:a1:6d:7e:ed:36:3c:5b:92:d5:1d:49:ba: 3f:3e:8e:8f:0b:b2:4c:60:30:d6:f8:46:cb:4d:f9:ff:d3:9b: 08:f6:a9:d9:c3:3b:37:a6:d7:98:8e:04:17:33:67:d9:c4:ac: eb:d0:f9:15:2f:88:f9:12:90:1a:96:38:05:0b:4c:c1:26:45: 23:83:ec:3f:eb:7d:7b:f5:65:30:60:6a:3d:47:80:8d:40:1e: 0a:32:7a:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICItAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTZCRDgxMTAvBgNVBAUTKEY5N0M4REFDQzI3RTlGQ0NEMzNBRUI4NTM1MEIyNkE0 ODE1RjEwQjcwHhcNMjQwOTEyMTYyMzIxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzMTU3OS03NDViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8t/vmnichOPjoZOk96QauMcqBTM1/YbkJQlTt/ipphxAp0k1/dhWPIBew7I BXyI/1viJ1TApcqI2JzoMPcyvIUVOlXbp68jd2/x1PNJVyOpNe7Ien4JvgUP+sps FrHtijs1DE8MASDwdkJxuYZuBsnMh2o7asewHORBU0GdazMo2SOELFRkHzMzTf2s suYTy2WJUA+L57dLXcQdG98t1nYcpBYzbdOYFMNa3hfZmbidDpEidHzJJzA9yNL0 6JExgflgTUQ+xEl9BlUGyhzLdUxdKagr9h/l1EC4soO7BjDOXeVqe5L2BqzmABdW Uxg/2DHXQAtq9uyZ89h2fsuDuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFChleLvo YRBHY3G2u4cNaTPKrw7IMB8GA1UdIwQYMBaAFPl8jazCfp/M0zrrhTULJqSBXxC3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NkJEOC9DNTgzRDIzMjg3 QTIxMUU1OUU1MUYyNTFDNEY5QUUwMi8tWHlOck1KLW44elRPdXVGTlFzbXBJRmZF TGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1YeU5yTUotbjh6VE91dUZOUXNtcElGZkVMYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTZCRDgvQzU4M0QyMzI4N0EyMTFFNTlFNTFGMjUxQzRGOUFFMDIvQTc2OEU2QjZG QjA4MTFFRDg2MEE1MTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnDEgwDQYJKoZIhvcNAQELBQADggEBABMA0gCOzPs14yYm +4w0vQ+cdWD/bUpYrJImmLKGX+EG/rLRmX+yBmbTIsouYb4ecaz2AGlww0hxY8en XRqAFRCnD77PoHh5TFlWOgj35gdiRhJWjelAPejjNIRHTu5aZAVCDoOztvT9MEA+ jlsZWhI5erExBs8E+xnICSGmS1F7A5j7CTC0ayOUBxRJRjXI5XCq5Px4FsGT8EwL AVBXgVeK8fGzAX1vAKFtfu02PFuS1R1Juj8+jo8LskxgMNb4RstN+f/Tmwj2qdnD Ozem15iOBBczZ9nErOvQ+RUviPkSkBqWOAULTMEmRSOD7D/rfXv1ZTBgaj1HgI1A HgoyeqU= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:18 2024 by rpki-client on console-fra.rpki-client.org