$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/242EC19CCA6C11EEA57DF83EC4F9AE02.roa File: 242EC19CCA6C11EEA57DF83EC4F9AE02.roa (raw, json) Hash identifier: 2qXlPaFenQASAW3HlIN5Ug8FhCiSb/b8zKcXYOGxOb8= Subject key identifier: B4:0D:70:41:08:51:8A:61:81:1E:06:03:B8:FC:2F:A1:C3:CB:4C:8A Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 0462 Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/242EC19CCA6C11EEA57DF83EC4F9AE02.roa Signing time: Wed 23 Oct 2024 00:34:15 +0000 ROA not before: Wed 23 Oct 2024 00:34:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 7018 IP address blocks: 103.120.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1122 (0x462) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B Validity Not Before: Oct 23 00:34:15 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67184487-0e22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:2c:83:fe:d9:bf:72:1b:88:13:01:c5:b7:97: 44:9a:f7:ac:2a:04:a0:73:98:c2:30:88:6c:f1:63: 69:a7:2e:85:8a:b8:4d:20:cd:04:ab:dd:39:1f:0b: ef:3d:d0:27:0d:c2:f5:1c:ea:9c:48:5d:d9:66:e9: da:91:76:a1:30:5b:31:48:50:60:44:bc:0d:1f:70: 27:8d:92:f6:ac:aa:28:17:79:b6:c8:df:3c:31:e7: e2:94:e2:e9:3c:ec:8f:90:2c:a9:a5:f3:f2:87:51: 8a:de:58:9f:07:c9:32:1f:87:79:0d:02:b6:7a:3e: 0d:c0:e8:6c:5e:41:ed:00:ca:f4:95:fd:13:42:ca: e7:9c:41:28:5e:51:ae:cb:54:02:9e:2f:55:ca:64: ed:fa:c2:71:3d:63:05:98:06:d8:f8:24:36:28:9a: cd:3d:53:78:52:1e:34:18:13:c4:28:7c:08:ce:05: 71:79:37:c2:e2:f3:fe:d2:f3:50:e7:8d:2d:ac:f3: 94:43:7b:11:fb:4e:27:7a:f8:72:35:16:a4:83:3a: 15:f7:d8:07:d4:aa:83:02:d8:d1:3c:94:ba:c2:45: 3a:de:73:5e:48:4b:f9:2a:ca:02:f2:60:bc:9c:0f: fb:e5:0a:c1:fc:eb:59:73:ea:ca:9a:57:cf:26:36: 7e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:0D:70:41:08:51:8A:61:81:1E:06:03:B8:FC:2F:A1:C3:CB:4C:8A X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/242EC19CCA6C11EEA57DF83EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.128.0/24 Signature Algorithm: sha256WithRSAEncryption 40:30:8e:a6:5f:1c:12:9b:8a:41:32:0d:ee:22:f5:5d:16:47: 27:d6:a5:a3:b6:01:08:d5:ae:11:ce:4d:17:d5:03:fd:fd:d5: 0e:31:de:1d:fd:26:9a:41:74:53:0d:b3:0e:55:6b:f0:8c:4f: 62:60:02:cf:2d:f6:50:25:b7:f8:da:c7:b3:69:11:46:55:e0: b2:7e:7f:94:4b:44:52:39:8c:e4:35:e9:1b:43:f1:18:4e:d5: f4:09:18:68:89:52:d4:e0:b9:17:89:05:19:b4:c9:04:7d:1e: 14:d5:ca:d5:16:c9:95:ef:42:31:6a:11:dd:75:17:00:64:97: 5a:8a:90:20:60:63:7e:07:41:28:5b:fc:ce:80:b0:d5:39:fe: 88:f6:66:e7:26:b7:86:27:ce:e9:3d:f4:22:62:80:8f:83:09: 17:f6:d3:c6:86:6e:7d:84:18:20:6b:e0:c2:23:8d:97:d6:55: e3:5f:b1:0c:a7:ef:80:53:a6:54:2f:e1:82:48:ca:9c:3a:49: 3b:ca:8b:40:15:15:d6:31:c0:9c:9c:82:e9:4e:f6:60:52:53: b2:2a:81:b1:cd:cb:f9:5b:c6:79:a9:58:03:7f:29:e7:ca:da: 31:59:d4:52:f7:a8:41:08:aa:1e:91:52:26:55:15:47:5c:c7: c9:b5:d8:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjQxMDIzMDAzNDE1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4NDQ4Ny0wZTIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyyD/tm/chuIEwHFt5dEmvesKgSgc5jCMIhs8WNppy6FirhNIM0Eq905Hwvv PdAnDcL1HOqcSF3ZZunakXahMFsxSFBgRLwNH3AnjZL2rKooF3m2yN88MefilOLp POyPkCyppfPyh1GK3lifB8kyH4d5DQK2ej4NwOhsXkHtAMr0lf0TQsrnnEEoXlGu y1QCni9VymTt+sJxPWMFmAbY+CQ2KJrNPVN4Uh40GBPEKHwIzgVxeTfC4vP+0vNQ 540trPOUQ3sR+04nevhyNRakgzoV99gH1KqDAtjRPJS6wkU63nNeSEv5KsoC8mC8 nA/75QrB/OtZc+rKmlfPJjZ+8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLQNcEEI UYphgR4GA7j8L6HDy0yKMB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDOUIvQTQ2RTk4OUEzMjJCMTFFQzk3RjhDRjdDQzRGOUFFMDIvMjQyRUMxOUND QTZDMTFFRUE1N0RGODNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneIAwDQYJKoZIhvcNAQELBQADggEBAEAwjqZfHBKbikEy De4i9V0WRyfWpaO2AQjVrhHOTRfVA/391Q4x3h39JppBdFMNsw5Va/CMT2JgAs8t 9lAlt/jax7NpEUZV4LJ+f5RLRFI5jOQ16RtD8RhO1fQJGGiJUtTguReJBRm0yQR9 HhTVytUWyZXvQjFqEd11FwBkl1qKkCBgY34HQShb/M6AsNU5/oj2Zucmt4Ynzuk9 9CJigI+DCRf208aGbn2EGCBr4MIjjZfWVeNfsQyn74BTplQv4YJIypw6STvKi0AV FdYxwJycgulO9mBSU7IqgbHNy/lbxnmpWAN/KefK2jFZ1FL3qEEIqh6RUiZVFUdc x8m12Gg= -----END CERTIFICATE-----Generated at Sun Feb 16 15:42:42 2025 by rpki-client