$ rpki-client -vvf rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/84DF7DDE361211EBACEF8647C4F9AE02.roa File: 84DF7DDE361211EBACEF8647C4F9AE02.roa (raw, json) Hash identifier: 5XwqomZ9BLQ4EjKkc4C/QpwLGFRZM50AcN0fv78p3Pc= Subject key identifier: A0:70:B0:A7:4C:F1:7C:53:29:7A:A2:67:9C:B3:49:B9:C4:83:D9:D2 Certificate issuer: /CN=A9199231/serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Certificate serial: 06BD Authority key identifier: AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/84DF7DDE361211EBACEF8647C4F9AE02.roa Signing time: Tue 24 Sep 2024 19:28:10 +0000 ROA not before: Tue 24 Sep 2024 19:28:10 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139338 IP address blocks: 103.141.123.0/24 maxlen: 24 103.141.132.0/24 maxlen: 24 2001:df0:fc80::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:09:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1725 (0x6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199231/serialNumber=ADA730063A4618C26D15543581953B0185FD9C85 Validity Not Before: Sep 24 19:28:10 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66f312ca-bb69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:48:01:8f:11:c2:33:c7:64:a0:5d:6e:d0:e7: 8e:80:12:18:2d:d4:18:df:08:6a:af:f5:5e:d1:e3: d3:47:3f:2a:45:1f:b9:13:b0:36:27:09:e6:1d:ea: 44:f7:45:1f:82:59:42:c0:13:63:cc:37:14:86:f1: b4:88:ca:fa:85:ac:a8:e9:6a:0e:68:26:1e:dc:f9: 0b:a8:09:5c:de:62:18:de:30:1f:0f:e6:7a:b7:8f: f1:23:59:42:9c:88:67:6f:8b:22:75:c6:4d:7b:1b: b9:a9:2f:23:15:b7:82:5b:3d:ec:e3:1e:12:9f:d3: 3f:c0:7b:86:60:70:4c:fc:0e:b9:7a:40:06:00:7d: e1:cd:1a:b1:9d:4e:b4:ee:31:26:40:9f:7f:66:79: a6:8a:fe:9f:55:d4:da:00:8b:fc:8a:42:da:92:88: 01:2c:2c:87:96:57:f6:62:b0:fb:61:5a:88:06:e9: 50:68:1b:b3:3c:c6:86:61:1f:b9:fb:d2:81:4c:c7: 0b:87:6a:59:c7:ce:71:4b:b8:9c:07:00:f6:a9:5e: ff:62:3b:e0:30:2c:2f:34:da:8b:84:5f:09:13:df: 1e:40:52:76:13:86:c3:1a:2f:8a:27:0b:96:50:aa: 62:f1:a3:d2:c5:76:33:ed:8f:c0:78:2b:64:4f:0a: 1a:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:70:B0:A7:4C:F1:7C:53:29:7A:A2:67:9C:B3:49:B9:C4:83:D9:D2 X509v3 Authority Key Identifier: keyid:AD:A7:30:06:3A:46:18:C2:6D:15:54:35:81:95:3B:01:85:FD:9C:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/racwBjpGGMJtFVQ1gZU7AYX9nIU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/racwBjpGGMJtFVQ1gZU7AYX9nIU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199231/08FDCD503C8111EA820D7F49C4F9AE02/84DF7DDE361211EBACEF8647C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.123.0/24 103.141.132.0/24 IPv6: 2001:df0:fc80::/48 Signature Algorithm: sha256WithRSAEncryption 6d:55:92:2b:6b:80:da:0d:b5:e6:3e:22:82:f3:8e:e2:1e:f2: dc:89:92:fa:94:5d:53:f6:3c:c1:e9:db:4e:6e:32:3a:b5:69: 2d:05:cc:f9:f0:ef:de:39:e9:7f:6a:fd:52:ba:13:a9:e7:4a: 00:f6:b5:1f:01:16:9b:fb:7d:e6:3c:bd:2a:8f:ac:cf:e6:37: 0a:e4:ac:16:84:06:58:e3:5b:71:7c:28:e3:aa:c6:6b:cd:97: e8:30:6f:9e:6d:f3:18:89:f5:2a:4a:66:56:46:ae:c9:e8:83: b8:46:d5:23:cd:3a:a2:0d:24:26:4a:1c:d3:a4:27:ab:71:de: 52:12:37:b5:79:36:43:a3:fc:7f:33:4b:59:2d:68:09:3c:04: c3:5e:41:c2:d7:9c:f9:79:5a:f9:75:b7:cc:45:29:35:eb:ce: f6:7b:5c:98:10:44:e8:89:cc:3e:f8:d5:ec:81:43:7a:50:a1: f3:9e:fe:9e:46:be:9a:1c:bd:49:5b:b8:58:98:44:8b:96:fd: e0:f6:25:5e:b8:c7:21:e0:b9:da:6b:c4:7b:ba:51:60:f1:e4: b2:d9:d8:a0:6c:cc:51:4f:08:32:c7:6d:37:ae:db:30:70:e2: 05:e6:45:35:e1:05:fa:f7:2f:2e:b3:2e:2f:cb:8f:f0:56:ac: 0b:81:10:13 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBr0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkyMzExMTAvBgNVBAUTKEFEQTczMDA2M0E0NjE4QzI2RDE1NTQzNTgxOTUzQjAx ODVGRDlDODUwHhcNMjQwOTI0MTkyODEwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzMTJjYS1iYjY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx0gBjxHCM8dkoF1u0OeOgBIYLdQY3whqr/Ve0ePTRz8qRR+5E7A2JwnmHepE 90UfgllCwBNjzDcUhvG0iMr6hayo6WoOaCYe3PkLqAlc3mIY3jAfD+Z6t4/xI1lC nIhnb4sidcZNexu5qS8jFbeCWz3s4x4Sn9M/wHuGYHBM/A65ekAGAH3hzRqxnU60 7jEmQJ9/Znmmiv6fVdTaAIv8ikLakogBLCyHllf2YrD7YVqIBulQaBuzPMaGYR+5 +9KBTMcLh2pZx85xS7icBwD2qV7/YjvgMCwvNNqLhF8JE98eQFJ2E4bDGi+KJwuW UKpi8aPSxXYz7Y/AeCtkTwoaUQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFKBwsKdM 8XxTKXqiZ5yzSbnEg9nSMB8GA1UdIwQYMBaAFK2nMAY6RhjCbRVUNYGVOwGF/ZyF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTIzMS8wOEZEQ0Q1MDND ODExMUVBODIwRDdGNDlDNEY5QUUwMi9yYWN3QmpwR0dNSnRGVlExZ1pVN0FZWDlu SVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JhY3dCanBHR01KdEZWUTFnWlU3QVlYOW5JVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkyMzEvMDhGRENENTAzQzgxMTFFQTgyMEQ3RjQ5QzRGOUFFMDIvODRERjdEREUz NjEyMTFFQkFDRUY4NjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjXsDBABnjYQwDwQCAAIwCQMHACABDfD8gDANBgkqhkiG 9w0BAQsFAAOCAQEAbVWSK2uA2g215j4igvOO4h7y3ImS+pRdU/Y8wenbTm4yOrVp LQXM+fDv3jnpf2r9UroTqedKAPa1HwEWm/t95jy9Ko+sz+Y3CuSsFoQGWONbcXwo 46rGa82X6DBvnm3zGIn1KkpmVkauyeiDuEbVI806og0kJkoc06Qnq3HeUhI3tXk2 Q6P8fzNLWS1oCTwEw15Bwtec+Xla+XW3zEUpNevO9ntcmBBE6InMPvjV7IFDelCh 857+nka+mhy9SVu4WJhEi5b94PYlXrjHIeC52mvEe7pRYPHkstnYoGzMUU8IMsdt N67bMHDiBeZFNeEF+vcvLrMuL8uP8FasC4EQEw== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:31 2024 by rpki-client on console-fra.rpki-client.org