$ rpki-client -vvf rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/1EF0CB38CEFB11EE9D1FB686C4F9AE02.roa File: 1EF0CB38CEFB11EE9D1FB686C4F9AE02.roa (raw, json) Hash identifier: TdWbrQouM5tMsxDZgyF71MAPlIDYzdDMiQL7lgFXRP8= Subject key identifier: 76:EA:9A:F9:1A:E5:67:CF:A1:DF:63:3B:68:87:96:16:E6:DF:F0:56 Certificate issuer: /CN=A9117602/serialNumber=E6FEB0603213687F7D4C0DD8C5D1E5F3271F966A Certificate serial: 75 Authority key identifier: E6:FE:B0:60:32:13:68:7F:7D:4C:0D:D8:C5:D1:E5:F3:27:1F:96:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5v6wYDITaH99TA3YxdHl8ycflmo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/1EF0CB38CEFB11EE9D1FB686C4F9AE02.roa Signing time: Tue 01 Oct 2024 06:19:27 +0000 ROA not before: Tue 01 Oct 2024 06:19:27 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 138444 IP address blocks: 103.125.140.0/23 maxlen: 24 103.125.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/5v6wYDITaH99TA3YxdHl8ycflmo.crl rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/5v6wYDITaH99TA3YxdHl8ycflmo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5v6wYDITaH99TA3YxdHl8ycflmo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 117 (0x75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117602/serialNumber=E6FEB0603213687F7D4C0DD8C5D1E5F3271F966A Validity Not Before: Oct 1 06:19:27 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fb946f-56ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:63:20:5c:83:44:ea:c8:ff:14:6c:9a:03:e7: 71:54:c2:77:52:45:a7:09:a2:c6:a4:f4:09:3c:fa: 04:db:e1:5a:d1:2a:5f:e3:d9:ff:bc:56:45:d5:2a: 0c:4d:34:9e:68:c4:6a:ed:19:15:58:22:e5:26:45: 79:9b:a5:10:aa:95:04:46:a2:6e:c4:17:90:4d:a7: 68:6d:8a:16:41:38:d5:2f:1c:f4:81:63:7c:9d:d6: b9:0c:95:7e:bf:4a:04:78:c5:bd:84:0a:33:a5:d0: 65:49:05:b5:bc:70:09:c8:db:55:7a:7f:c0:6a:e9: 24:1a:46:f3:97:50:67:7c:07:1f:87:7f:bf:1e:3d: 43:ea:c3:b9:24:67:ed:47:53:83:a1:1e:19:1b:d0: 28:d9:02:45:16:61:71:fe:2d:fd:14:6f:23:a1:2a: 43:ac:05:74:81:57:81:06:19:77:2d:1e:31:41:37: 54:9d:ed:20:34:ec:bf:8e:02:7d:41:c0:be:da:a8: c3:74:53:2e:b8:e7:97:18:c9:53:57:02:95:8d:c9: 69:1b:54:17:74:54:70:6e:46:84:0d:83:af:d0:8a: 0d:03:a0:b9:79:9b:8c:81:23:30:48:5c:13:33:23: 3c:10:09:85:3e:4f:a3:b3:76:0b:21:0f:f6:b3:b0: 44:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:EA:9A:F9:1A:E5:67:CF:A1:DF:63:3B:68:87:96:16:E6:DF:F0:56 X509v3 Authority Key Identifier: keyid:E6:FE:B0:60:32:13:68:7F:7D:4C:0D:D8:C5:D1:E5:F3:27:1F:96:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/5v6wYDITaH99TA3YxdHl8ycflmo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5v6wYDITaH99TA3YxdHl8ycflmo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117602/AEBC5CF6CEFA11EE97F88C85C4F9AE02/1EF0CB38CEFB11EE9D1FB686C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.125.140.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:3c:bf:ec:fa:1b:d0:c7:6a:16:ed:ea:bf:db:16:d7:99:a0: 0b:2d:d9:b0:d5:13:77:c3:eb:06:3a:47:7a:40:97:88:8d:e0: b9:c5:c1:46:b8:13:48:dc:e3:94:43:aa:9d:c1:fd:86:0f:51: 71:f0:41:9c:32:2e:fb:34:16:1b:a9:b7:7f:48:93:da:4f:05: 25:3b:a3:76:8c:a0:90:db:47:3a:75:3b:cc:38:29:c7:6a:ca: 21:d4:f6:f7:a1:6b:2d:d8:3c:1c:ea:f0:cb:08:4f:27:00:61: 8e:78:9a:67:2e:ee:d5:97:d5:53:02:7a:eb:f9:80:c9:d2:e8: 14:b3:5a:01:2d:d6:a1:32:2a:9e:9e:e6:7b:87:19:0d:00:6e: df:fb:d8:bd:db:fa:42:40:a8:38:76:3f:e8:f5:53:7c:fd:f5: 18:50:1e:18:bb:91:fb:77:fb:ff:57:b4:49:a0:e5:c8:9e:cc: 49:d1:a7:1c:2c:95:45:fd:3e:04:b6:74:69:a7:9b:80:7a:5e: 67:94:45:ec:21:4f:96:b8:c1:28:a7:1a:91:a2:11:eb:27:89: 67:c3:6c:05:e2:32:69:d2:fe:7c:79:bf:fd:89:55:d6:34:f5: df:81:9c:3d:fe:f5:45:23:86:15:c8:4b:7e:3e:18:4d:64:fd: 5f:dd:50:a3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBdTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzYwMjExMC8GA1UEBRMoRTZGRUIwNjAzMjEzNjg3RjdENEMwREQ4QzVEMUU1RjMy NzFGOTY2QTAeFw0yNDEwMDEwNjE5MjdaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZmI5NDZmLTU2YWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaYyBcg0TqyP8UbJoD53FUwndSRacJosak9Ak8+gTb4VrRKl/j2f+8VkXVKgxN NJ5oxGrtGRVYIuUmRXmbpRCqlQRGom7EF5BNp2htihZBONUvHPSBY3yd1rkMlX6/ SgR4xb2ECjOl0GVJBbW8cAnI21V6f8Bq6SQaRvOXUGd8Bx+Hf78ePUPqw7kkZ+1H U4OhHhkb0CjZAkUWYXH+Lf0UbyOhKkOsBXSBV4EGGXctHjFBN1Sd7SA07L+OAn1B wL7aqMN0Uy6455cYyVNXApWNyWkbVBd0VHBuRoQNg6/Qig0DoLl5m4yBIzBIXBMz IzwQCYU+T6OzdgshD/azsERzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUduqa+Rrl Z8+h32M7aIeWFubf8FYwHwYDVR0jBBgwFoAU5v6wYDITaH99TA3YxdHl8ycflmow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NjAyL0FFQkM1Q0Y2Q0VG QTExRUU5N0Y4OEM4NUM0RjlBRTAyLzV2NndZRElUYUg5OVRBM1l4ZEhsOHljZmxt by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNXY2d1lESVRhSDk5VEEzWXhkSGw4eWNmbG1vLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzYwMi9BRUJDNUNGNkNFRkExMUVFOTdGODhDODVDNEY5QUUwMi8xRUYwQ0IzOENF RkIxMUVFOUQxRkI2ODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmd9jDANBgkqhkiG9w0BAQsFAAOCAQEAXTy/7Pob0MdqFu3q v9sW15mgCy3ZsNUTd8PrBjpHekCXiI3gucXBRrgTSNzjlEOqncH9hg9RcfBBnDIu +zQWG6m3f0iT2k8FJTujdoygkNtHOnU7zDgpx2rKIdT296FrLdg8HOrwywhPJwBh jniaZy7u1ZfVUwJ66/mAydLoFLNaAS3WoTIqnp7me4cZDQBu3/vYvdv6QkCoOHY/ 6PVTfP31GFAeGLuR+3f7/1e0SaDlyJ7MSdGnHCyVRf0+BLZ0aaebgHpeZ5RF7CFP lrjBKKcakaIR6yeJZ8NsBeIyadL+fHm//YlV1jT134GcPf71RSOGFchLfj4YTWT9 X91Qow== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org