$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/242EC19CCA6C11EEA57DF83EC4F9AE02.roa File: 242EC19CCA6C11EEA57DF83EC4F9AE02.roa (raw, json) Hash identifier: MZ9ynyjMMoyvdxohWqs56RTkpoXleK9tjEewKQ85xAA= Subject key identifier: 7A:66:C8:7F:5B:F1:A5:44:E1:AD:9A:C3:7E:95:89:29:EF:EC:73:1D Certificate issuer: /CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Certificate serial: 03CA Authority key identifier: 49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/242EC19CCA6C11EEA57DF83EC4F9AE02.roa Signing time: Tue 13 Feb 2024 12:33:51 +0000 ROA not before: Tue 13 Feb 2024 12:33:51 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 7018 IP address blocks: 103.120.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 02:16:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 970 (0x3ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0C9B/serialNumber=494202B031E9F427643157A06EFAA4C070C7F3ED Validity Not Before: Feb 13 12:33:51 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65cb61ae-a8fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:aa:22:5f:05:bb:4d:2d:04:b0:c6:4f:8d:6a: 47:e7:59:b8:cb:87:15:9f:58:29:57:67:62:5b:d8: 6a:15:cc:08:3c:ac:df:d9:8c:9e:fa:d6:46:5b:b1: 52:13:07:ce:4f:2c:56:cb:7b:97:25:ff:b2:0f:3f: 49:4d:60:2b:15:c1:c9:9d:99:f3:48:82:ab:f2:79: 29:21:59:63:a2:25:9e:f8:38:32:76:bd:bc:93:72: 72:52:d0:ce:4b:a6:bc:33:db:cb:0e:b8:7c:26:a7: 6c:a1:c5:dd:8f:98:e7:74:fa:65:da:0a:de:53:f6: 0c:a0:ff:3f:90:36:4b:82:99:89:00:74:ae:e6:df: 8f:a7:9f:12:a0:65:ac:6c:88:22:41:f1:42:0f:b4: ae:6b:e3:32:67:1c:92:ea:74:7f:59:04:91:cf:16: a1:6c:ae:06:b6:0a:0e:81:06:88:9c:ee:27:d3:44: 6f:35:aa:bc:04:92:44:b5:1f:61:89:d9:cd:34:98: d1:b0:81:f6:b3:9e:a6:ef:88:0e:4f:a7:ad:8f:2f: e8:4b:2c:7a:9f:0a:83:31:90:90:ae:96:df:a2:c8: 6f:0e:3a:c6:e7:08:2e:ec:f6:a4:69:63:4f:c8:01: 33:42:13:bc:d6:c2:41:dd:17:e6:6e:6d:06:f6:f8: 21:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:66:C8:7F:5B:F1:A5:44:E1:AD:9A:C3:7E:95:89:29:EF:EC:73:1D X509v3 Authority Key Identifier: keyid:49:42:02:B0:31:E9:F4:27:64:31:57:A0:6E:FA:A4:C0:70:C7:F3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/SUICsDHp9CdkMVegbvqkwHDH8-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SUICsDHp9CdkMVegbvqkwHDH8-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0C9B/A46E989A322B11EC97F8CF7CC4F9AE02/242EC19CCA6C11EEA57DF83EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.120.128.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:99:82:33:68:3e:0e:5d:4d:42:ce:e7:6e:e4:66:c6:79:78: 6e:9d:3b:80:18:54:d7:d8:1a:f8:35:ad:80:88:87:a6:d7:d2: 39:b7:7c:2c:9f:18:62:c0:cf:ce:40:eb:40:59:ed:a4:47:87: 40:0e:45:eb:81:c4:d9:eb:dc:0e:ff:6e:c4:43:4f:04:45:25: 6b:d5:82:27:74:e7:2c:d0:27:0f:e3:ff:6c:9e:a0:46:25:9d: de:68:24:6e:d5:67:9e:ce:a7:80:61:49:25:92:fb:17:c7:e0: 15:69:45:26:dc:a8:0a:86:0f:46:e1:82:2f:6a:eb:6d:e3:d9: 3b:c3:56:69:84:40:9e:21:f0:88:73:27:93:43:37:9a:73:16: 6f:bf:df:71:c2:29:87:f6:19:d1:23:d3:32:f9:e7:b5:05:2e: 35:87:87:d4:50:11:5e:84:3b:c4:88:ee:51:00:be:0e:74:84: af:9d:68:84:46:3e:9d:8d:7d:8c:99:12:85:de:ff:08:46:14: 0e:f5:7d:b7:d0:fb:36:a5:9b:7d:cc:38:28:3d:29:9c:56:00: a7:25:e9:47:e6:ee:e4:b4:a2:f4:93:55:a8:a4:38:1f:1d:96: 80:ac:48:69:7f:c3:44:70:3f:19:a8:39:23:33:0a:8b:a0:af: 1c:46:ba:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA8owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBDOUIxMTAvBgNVBAUTKDQ5NDIwMkIwMzFFOUY0Mjc2NDMxNTdBMDZFRkFBNEMw NzBDN0YzRUQwHhcNMjQwMjEzMTIzMzUxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNiNjFhZS1hOGZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4KoiXwW7TS0EsMZPjWpH51m4y4cVn1gpV2diW9hqFcwIPKzf2Yye+tZGW7FS EwfOTyxWy3uXJf+yDz9JTWArFcHJnZnzSIKr8nkpIVljoiWe+Dgydr28k3JyUtDO S6a8M9vLDrh8JqdsocXdj5jndPpl2greU/YMoP8/kDZLgpmJAHSu5t+Pp58SoGWs bIgiQfFCD7Sua+MyZxyS6nR/WQSRzxahbK4GtgoOgQaInO4n00RvNaq8BJJEtR9h idnNNJjRsIH2s56m74gOT6etjy/oSyx6nwqDMZCQrpbfoshvDjrG5wgu7PakaWNP yAEzQhO81sJB3Rfmbm0G9vghYQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHpmyH9b 8aVE4a2aw36ViSnv7HMdMB8GA1UdIwQYMBaAFElCArAx6fQnZDFXoG76pMBwx/Pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEM5Qi9BNDZFOTg5QTMy MkIxMUVDOTdGOENGN0NDNEY5QUUwMi9TVUlDc0RIcDlDZGtNVmVnYnZxa3dIREg4 LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NVSUNzREhwOUNka01WZWdidnFrd0hESDgtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBDOUIvQTQ2RTk4OUEzMjJCMTFFQzk3RjhDRjdDQzRGOUFFMDIvMjQyRUMxOUND QTZDMTFFRUE1N0RGODNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABneIAwDQYJKoZIhvcNAQELBQADggEBAF+ZgjNoPg5dTULO 527kZsZ5eG6dO4AYVNfYGvg1rYCIh6bX0jm3fCyfGGLAz85A60BZ7aRHh0AOReuB xNnr3A7/bsRDTwRFJWvVgid05yzQJw/j/2yeoEYlnd5oJG7VZ57Op4BhSSWS+xfH 4BVpRSbcqAqGD0bhgi9q623j2TvDVmmEQJ4h8IhzJ5NDN5pzFm+/33HCKYf2GdEj 0zL557UFLjWHh9RQEV6EO8SI7lEAvg50hK+daIRGPp2NfYyZEoXe/whGFA71fbfQ +zalm33MOCg9KZxWAKcl6Ufm7uS0ovSTVaikOB8dloCsSGl/w0RwPxmoOSMzCoug rxxGurU= -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:22 2024 by rpki-client on console-ams.rpki-client.org