$ rpki-client -vvf rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/7C2C8232C5BF11E9B616CF1FC4F9AE02.roa File: 7C2C8232C5BF11E9B616CF1FC4F9AE02.roa (raw, json) Hash identifier: Jn/++SfV1VdnkIlweTbZK1B7H5Xpb4S9KYcvJi/sW94= Subject key identifier: EC:A5:28:13:FD:BA:F4:EE:45:28:7D:DC:6E:48:36:0A:DA:53:DE:B5 Certificate issuer: /CN=A9199E9B/serialNumber=C16EEC077D338C423AAF1DEB797640671B7FC9BE Certificate serial: 0D09 Authority key identifier: C1:6E:EC:07:7D:33:8C:42:3A:AF:1D:EB:79:76:40:67:1B:7F:C9:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wW7sB30zjEI6rx3reXZAZxt_yb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/7C2C8232C5BF11E9B616CF1FC4F9AE02.roa Signing time: Mon 02 Sep 2024 18:56:35 +0000 ROA not before: Mon 02 Sep 2024 18:56:35 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139595 IP address blocks: 103.142.39.0/24 maxlen: 24 103.171.14.0/24 maxlen: 24 2001:df7:3080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/wW7sB30zjEI6rx3reXZAZxt_yb4.crl rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/wW7sB30zjEI6rx3reXZAZxt_yb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wW7sB30zjEI6rx3reXZAZxt_yb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3337 (0xd09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199E9B/serialNumber=C16EEC077D338C423AAF1DEB797640671B7FC9BE Validity Not Before: Sep 2 18:56:35 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d60a63-88d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c8:a1:40:eb:3a:11:ba:e7:0d:9a:06:86:70: b0:3a:85:a4:4e:a5:6c:06:7b:d7:c4:a7:2b:21:eb: 8b:6d:9b:11:55:5c:42:92:d1:ab:5b:c5:97:5d:5d: da:8e:42:6c:c9:6b:b2:12:f0:14:be:36:a7:41:3a: 8c:48:73:0f:be:f9:09:5d:e5:0d:92:57:8b:00:b0: 62:cb:4e:78:71:83:6a:4c:ef:60:c3:ce:5f:48:34: ba:fb:be:14:7c:ac:9f:3d:e4:d1:f6:3b:43:22:f1: a4:af:fc:98:79:10:55:99:ff:16:9f:00:5f:85:20: 00:ff:b6:f6:47:46:16:00:4b:25:b0:43:39:d1:a4: 4a:86:ca:bd:a6:84:c2:72:b3:ca:4a:92:e3:79:ce: 12:7f:9a:46:05:6e:2c:5a:d1:bc:79:39:40:7e:f5: fa:90:9a:4e:34:74:0c:6b:43:8f:9b:bb:62:86:9e: 9e:fe:b0:0c:df:0d:54:50:02:84:cb:8b:c0:8f:21: 75:85:71:c4:26:ae:81:17:f3:dd:7d:fc:4b:a8:0d: ed:a9:80:92:f0:5a:a2:c9:3f:61:2a:bc:82:1f:8d: 1d:2c:b7:cf:3a:3f:03:b0:a2:8f:c6:1b:93:81:01: 97:9b:2f:85:05:3a:7d:99:5d:c4:31:c1:4c:27:85: 66:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:A5:28:13:FD:BA:F4:EE:45:28:7D:DC:6E:48:36:0A:DA:53:DE:B5 X509v3 Authority Key Identifier: keyid:C1:6E:EC:07:7D:33:8C:42:3A:AF:1D:EB:79:76:40:67:1B:7F:C9:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/wW7sB30zjEI6rx3reXZAZxt_yb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wW7sB30zjEI6rx3reXZAZxt_yb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199E9B/B07E4B26C5BD11E9B1913C1CC4F9AE02/7C2C8232C5BF11E9B616CF1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.39.0/24 103.171.14.0/24 IPv6: 2001:df7:3080::/48 Signature Algorithm: sha256WithRSAEncryption bc:2e:31:4d:05:3f:ef:4f:64:96:b8:e6:95:1f:1e:e5:84:cc: 86:42:f3:bf:ad:0f:c6:f3:43:53:0f:4e:02:14:43:c2:19:ab: 18:6e:b3:79:9e:4f:12:15:ed:9f:c7:d1:43:18:ed:01:f4:26: 74:a4:2e:93:d4:a7:b9:94:57:50:54:64:ab:72:11:77:9b:ed: 70:e2:f1:72:d8:a7:7c:79:68:29:00:ab:3e:72:56:5b:62:80: 9f:19:7a:45:ad:2c:b3:b3:25:c3:a2:6b:22:11:f3:30:7c:a6: 60:86:e7:ac:67:75:6c:7e:47:91:54:6e:5f:4b:a6:21:38:b1: c1:29:83:06:65:99:38:07:26:6c:2d:91:97:8e:4a:6c:9b:2f: 37:ad:21:b7:31:95:43:53:84:32:49:e4:5d:15:7b:76:d4:56: 6c:1e:85:ba:0d:da:5a:32:7a:f3:08:82:fc:d8:31:1c:51:5a: 89:3d:80:ce:6c:14:dc:9c:a4:f7:73:b6:88:60:f7:9a:1c:66: 9d:3f:a4:1a:8d:1c:70:3f:53:17:50:cc:a6:7a:d8:fc:f5:b9: bf:5a:2e:61:ea:1c:25:d3:80:fc:a1:0a:87:95:d5:65:70:81: 3b:07:46:c6:b3:04:49:90:1f:7c:f3:af:ea:e0:f2:cd:1c:60: 2e:bc:05:02 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICDQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlFOUIxMTAvBgNVBAUTKEMxNkVFQzA3N0QzMzhDNDIzQUFGMURFQjc5NzY0MDY3 MUI3RkM5QkUwHhcNMjQwOTAyMTg1NjM1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2MGE2My04OGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAycihQOs6EbrnDZoGhnCwOoWkTqVsBnvXxKcrIeuLbZsRVVxCktGrW8WXXV3a jkJsyWuyEvAUvjanQTqMSHMPvvkJXeUNkleLALBiy054cYNqTO9gw85fSDS6+74U fKyfPeTR9jtDIvGkr/yYeRBVmf8WnwBfhSAA/7b2R0YWAEslsEM50aRKhsq9poTC crPKSpLjec4Sf5pGBW4sWtG8eTlAfvX6kJpONHQMa0OPm7tihp6e/rAM3w1UUAKE y4vAjyF1hXHEJq6BF/PdffxLqA3tqYCS8FqiyT9hKryCH40dLLfPOj8DsKKPxhuT gQGXmy+FBTp9mV3EMcFMJ4VmZQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOylKBP9 uvTuRSh93G5INgraU961MB8GA1UdIwQYMBaAFMFu7Ad9M4xCOq8d63l2QGcbf8m+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUU5Qi9CMDdFNEIyNkM1 QkQxMUU5QjE5MTNDMUNDNEY5QUUwMi93VzdzQjMwempFSTZyeDNyZVhaQVp4dF95 YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dXN3NCMzB6akVJNnJ4M3JlWFpBWnh0X3liNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlFOUIvQjA3RTRCMjZDNUJEMTFFOUIxOTEzQzFDQzRGOUFFMDIvN0MyQzgyMzJD NUJGMTFFOUI2MTZDRjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjicDBABnqw4wDwQCAAIwCQMHACABDfcwgDANBgkqhkiG 9w0BAQsFAAOCAQEAvC4xTQU/709klrjmlR8e5YTMhkLzv60PxvNDUw9OAhRDwhmr GG6zeZ5PEhXtn8fRQxjtAfQmdKQuk9SnuZRXUFRkq3IRd5vtcOLxctinfHloKQCr PnJWW2KAnxl6Ra0ss7Mlw6JrIhHzMHymYIbnrGd1bH5HkVRuX0umITixwSmDBmWZ OAcmbC2Rl45KbJsvN60htzGVQ1OEMknkXRV7dtRWbB6Fug3aWjJ68wiC/NgxHFFa iT2AzmwU3Jyk93O2iGD3mhxmnT+kGo0ccD9TF1DMpnrY/PW5v1ouYeocJdOA/KEK h5XVZXCBOwdGxrMESZAffPOv6uDyzRxgLrwFAg== -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org