$ rpki-client -vvf rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/E118A9DA7CB911EABD07CE5EC4F9AE02.roa File: E118A9DA7CB911EABD07CE5EC4F9AE02.roa (raw, json) Hash identifier: 3BzJCKxq6lxeVjXVlpYVRMXqU7zHik0ruN2Ba5iWxOQ= Subject key identifier: E7:65:05:1F:E8:ED:13:4D:D8:7A:EB:83:68:0E:B0:3E:F4:41:35:73 Certificate issuer: /CN=A9117715/serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Certificate serial: 097E Authority key identifier: 86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/E118A9DA7CB911EABD07CE5EC4F9AE02.roa Signing time: Thu 14 Nov 2024 19:58:47 +0000 ROA not before: Thu 14 Nov 2024 19:58:47 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139701 IP address blocks: 103.143.211.0/24 maxlen: 24 103.144.195.0/24 maxlen: 24 2001:df1:9880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:52:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2430 (0x97e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117715/serialNumber=8617B9FE2AA7FEE225F2E0D2DC8764098137DE6D Validity Not Before: Nov 14 19:58:47 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67365677-fbac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:2e:57:34:f6:1f:9a:2d:98:4a:3b:a6:67:ca: e8:bb:84:8c:f7:46:78:e3:5a:dd:9d:8b:3a:20:22: 58:20:46:69:c7:eb:06:c5:8b:e3:e4:83:54:23:21: b7:60:87:1e:9f:f8:e4:9f:7b:9d:eb:1d:db:81:ab: 67:41:98:8b:e4:6e:da:f4:44:03:99:83:ec:b7:3a: c1:90:42:67:2c:a1:9b:5c:65:b2:6d:ee:4d:37:eb: 47:a5:eb:fa:02:28:74:40:ce:72:14:3b:e5:e3:63: 62:f2:1a:4f:d2:df:65:b6:b8:35:f0:d0:9d:22:3a: b7:28:2a:b7:58:53:e8:e8:c9:3d:ec:f6:27:65:ca: 47:7a:e3:ab:b9:c3:9b:d3:5a:9c:f9:3f:29:92:67: cb:26:30:46:d4:c5:4b:50:e4:77:a7:16:25:67:ef: 64:12:b9:ba:7c:30:ce:8d:52:b2:1a:4e:9c:aa:b2: b0:2a:e4:95:b8:c4:fc:77:b8:b1:c7:44:55:62:cb: d4:b3:f4:a2:83:94:2d:0f:45:b2:dd:44:ef:1a:cb: 01:3d:99:bd:c9:33:37:e8:72:7a:5a:b3:72:5f:c8: 64:b5:e7:8b:00:ff:c5:7e:7d:c1:76:23:dc:72:a4: 90:93:5f:e5:bc:43:e4:17:bf:36:86:77:04:38:85: 31:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:65:05:1F:E8:ED:13:4D:D8:7A:EB:83:68:0E:B0:3E:F4:41:35:73 X509v3 Authority Key Identifier: keyid:86:17:B9:FE:2A:A7:FE:E2:25:F2:E0:D2:DC:87:64:09:81:37:DE:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/hhe5_iqn_uIl8uDS3IdkCYE33m0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hhe5_iqn_uIl8uDS3IdkCYE33m0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117715/BC1C5F107CB811EAB0F6475DC4F9AE02/E118A9DA7CB911EABD07CE5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.211.0/24 103.144.195.0/24 IPv6: 2001:df1:9880::/48 Signature Algorithm: sha256WithRSAEncryption 4f:2f:e7:cc:4f:e4:89:c9:1d:54:13:fe:34:eb:be:7f:96:52: 4a:6a:2f:26:58:26:b1:75:ee:e6:4e:56:0d:3c:e3:80:35:fb: be:8d:12:5b:46:14:63:10:d0:a3:48:c8:ef:0a:48:63:68:09: 8c:60:31:27:01:54:ef:1f:d5:ad:c5:64:9b:55:e1:7b:c3:31: 98:ee:70:a9:08:23:47:c5:bd:98:91:c8:9e:54:de:c1:d7:7c: 48:2a:b7:3c:98:6c:4c:60:84:ac:5c:ca:d6:83:57:45:13:a8: 62:ac:b7:50:90:a3:36:71:74:22:29:d0:4e:2c:cb:da:2b:36: c6:6f:da:32:1b:70:76:eb:05:22:35:75:0c:8b:c7:67:97:69: a3:e1:9a:74:ae:95:f0:2b:c7:08:a3:7f:dc:ad:8f:83:64:52: bf:f8:5b:e4:96:b3:8f:2e:49:34:c4:9f:aa:42:7a:d9:ff:b2: 5b:b5:44:37:1a:79:17:9f:ce:23:69:f7:57:e2:98:f8:77:59: 3e:76:26:2b:c4:2e:c2:e6:e1:ab:85:f5:f2:60:1d:35:86:85: 78:32:d7:47:dd:09:a8:25:0c:92:b1:c3:5f:59:46:89:cd:2f: ad:f5:cf:f4:0d:da:8b:49:48:cc:88:64:c3:0c:7b:60:01:b8: 63:4e:e7:e0 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCX4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTc3MTUxMTAvBgNVBAUTKDg2MTdCOUZFMkFBN0ZFRTIyNUYyRTBEMkRDODc2NDA5 ODEzN0RFNkQwHhcNMjQxMTE0MTk1ODQ3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM2NTY3Ny1mYmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAki5XNPYfmi2YSjumZ8rou4SM90Z441rdnYs6ICJYIEZpx+sGxYvj5INUIyG3 YIcen/jkn3ud6x3bgatnQZiL5G7a9EQDmYPstzrBkEJnLKGbXGWybe5NN+tHpev6 Aih0QM5yFDvl42Ni8hpP0t9ltrg18NCdIjq3KCq3WFPo6Mk97PYnZcpHeuOrucOb 01qc+T8pkmfLJjBG1MVLUOR3pxYlZ+9kErm6fDDOjVKyGk6cqrKwKuSVuMT8d7ix x0RVYsvUs/Sig5QtD0Wy3UTvGssBPZm9yTM36HJ6WrNyX8hkteeLAP/Ffn3BdiPc cqSQk1/lvEPkF782hncEOIUx+wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFOdlBR/o 7RNN2Hrrg2gOsD70QTVzMB8GA1UdIwQYMBaAFIYXuf4qp/7iJfLg0tyHZAmBN95t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzcxNS9CQzFDNUYxMDdD QjgxMUVBQjBGNjQ3NURDNEY5QUUwMi9oaGU1X2lxbl91SWw4dURTM0lka0NZRTMz bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hoZTVfaXFuX3VJbDh1RFMzSWRrQ1lFMzNtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTc3MTUvQkMxQzVGMTA3Q0I4MTFFQUIwRjY0NzVEQzRGOUFFMDIvRTExOEE5REE3 Q0I5MTFFQUJEMDdDRTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnj9MDBABnkMMwDwQCAAIwCQMHACABDfGYgDANBgkqhkiG 9w0BAQsFAAOCAQEATy/nzE/kickdVBP+NOu+f5ZSSmovJlgmsXXu5k5WDTzjgDX7 vo0SW0YUYxDQo0jI7wpIY2gJjGAxJwFU7x/VrcVkm1Xhe8MxmO5wqQgjR8W9mJHI nlTewdd8SCq3PJhsTGCErFzK1oNXRROoYqy3UJCjNnF0IinQTizL2is2xm/aMhtw dusFIjV1DIvHZ5dpo+GadK6V8CvHCKN/3K2Pg2RSv/hb5Jazjy5JNMSfqkJ62f+y W7VENxp5F5/OI2n3V+KY+HdZPnYmK8Quwubhq4X18mAdNYaFeDLXR90JqCUMkrHD X1lGic0vrfXP9A3ai0lIzIhkwwx7YAG4Y07n4A== -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org