$ rpki-client -vvf rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/C7C28CAC4A0711EEBE153131C4F9AE02.roa File: C7C28CAC4A0711EEBE153131C4F9AE02.roa (raw, json) Hash identifier: fULv4mZtsqynbOZKV5hkIaFsTcwy4lbv2N6/j51k2ns= Subject key identifier: DA:3F:D4:D3:BC:16:1A:41:22:68:A2:30:DA:B3:B5:3D:29:67:CD:F7 Certificate issuer: /CN=A911EA9E/serialNumber=D6757FC32409DBC2F22B62C319B9E44DB9EA0799 Certificate serial: BE Authority key identifier: D6:75:7F:C3:24:09:DB:C2:F2:2B:62:C3:19:B9:E4:4D:B9:EA:07:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/C7C28CAC4A0711EEBE153131C4F9AE02.roa Signing time: Sat 31 Aug 2024 06:47:55 +0000 ROA not before: Sat 31 Aug 2024 06:47:55 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 151650 IP address blocks: 103.249.198.0/23 maxlen: 23 103.249.198.0/24 maxlen: 24 103.249.199.0/24 maxlen: 24 2401:2260::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.crl rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911EA9E/serialNumber=D6757FC32409DBC2F22B62C319B9E44DB9EA0799 Validity Not Before: Aug 31 06:47:55 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d2bc9b-7092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:d8:7f:a1:c2:90:6e:52:d4:19:cb:96:05:34: 11:db:13:c7:75:2a:41:39:69:7d:1c:3c:ec:6d:bb: 37:5b:cb:f5:69:fe:00:05:79:cf:b4:39:09:22:2c: 45:2f:64:d2:b5:16:ec:0f:4a:fc:f6:ce:c5:fe:7a: 2c:a2:49:80:3d:33:5d:bb:9e:7f:00:f7:6b:02:58: 9c:f6:ff:bd:25:07:68:f2:76:d7:ea:d7:58:c8:b2: 49:2d:27:c1:e8:67:70:5f:fe:3c:c6:43:e1:72:63: c0:f2:90:f8:14:3a:2b:a7:0f:5a:4f:c0:8c:e9:81: 25:e6:18:47:2f:7b:a2:16:76:b2:e4:7d:12:14:b4: 5e:16:97:64:3f:d9:05:f5:5e:58:e6:ab:07:30:ae: 0e:ea:37:58:7b:87:6c:a6:38:49:9c:e3:d0:cf:53: 65:55:51:4e:60:7f:60:16:1d:62:7d:3e:a7:54:95: 15:fd:3b:10:0b:aa:f9:42:bd:d3:d3:b0:25:ed:83: e7:de:fc:c5:21:23:0f:4a:99:97:27:8e:af:a0:f7: 30:8e:07:3b:90:5d:5c:df:71:22:67:3f:23:a9:fc: cb:0e:d0:c9:8f:4d:40:e4:b8:a1:98:18:49:d4:e4: 64:02:1d:2d:b9:38:27:6a:ec:d2:6a:e9:8b:1d:ea: 87:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3F:D4:D3:BC:16:1A:41:22:68:A2:30:DA:B3:B5:3D:29:67:CD:F7 X509v3 Authority Key Identifier: keyid:D6:75:7F:C3:24:09:DB:C2:F2:2B:62:C3:19:B9:E4:4D:B9:EA:07:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/1nV_wyQJ28LyK2LDGbnkTbnqB5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1nV_wyQJ28LyK2LDGbnkTbnqB5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911EA9E/66E0C6384A0711EEA1BF5030C4F9AE02/C7C28CAC4A0711EEBE153131C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.198.0/23 IPv6: 2401:2260::/32 Signature Algorithm: sha256WithRSAEncryption 8f:e2:a7:5d:7e:dd:48:69:12:38:b5:fb:4f:6e:d4:c4:a3:96: d6:6f:da:5d:5b:e5:96:7c:54:5b:92:e6:54:7a:86:3a:7d:8c: 9e:c2:70:58:51:59:30:f8:00:bd:9b:fe:d7:65:06:65:07:a5: ff:25:15:0f:29:c5:8d:80:ba:59:7e:af:bc:18:5c:7c:d8:c3: 6d:21:c7:d5:0f:6b:35:36:f2:82:3f:6a:8d:6c:94:54:95:76: 07:f9:c6:26:0f:ea:9a:e4:ec:cd:2d:cf:c8:d5:1d:c1:e6:b9: 9e:3d:15:c7:b3:73:eb:b1:f0:aa:35:30:cc:17:dd:51:94:33: 40:b2:83:77:4b:1e:4f:90:9e:81:42:c3:ba:f7:e3:f8:92:e0: f8:8d:19:48:ff:1a:ae:3d:57:fa:c7:44:a6:f3:dc:0c:96:72: 05:5b:99:bc:b3:b2:4b:6a:64:69:2e:25:ba:d3:6b:20:d6:7f: 0a:2e:ec:b9:33:2a:29:e7:3b:ce:0e:47:27:a2:d5:a0:6b:96: 94:e0:d6:61:96:79:a5:67:50:f7:e8:6e:2c:07:75:7c:61:b5: 89:72:9c:89:8d:dd:07:1b:e2:c8:f8:37:fd:7f:4f:85:e9:87: e5:86:cf:cd:f5:27:7b:7c:ff:a0:78:1b:d3:b2:61:ec:a8:6d: 5e:48:68:85 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUVBOUUxMTAvBgNVBAUTKEQ2NzU3RkMzMjQwOURCQzJGMjJCNjJDMzE5QjlFNDRE QjlFQTA3OTkwHhcNMjQwODMxMDY0NzU1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyYmM5Yi03MDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsdh/ocKQblLUGcuWBTQR2xPHdSpBOWl9HDzsbbs3W8v1af4ABXnPtDkJIixF L2TStRbsD0r89s7F/nosokmAPTNdu55/APdrAlic9v+9JQdo8nbX6tdYyLJJLSfB 6GdwX/48xkPhcmPA8pD4FDorpw9aT8CM6YEl5hhHL3uiFnay5H0SFLReFpdkP9kF 9V5Y5qsHMK4O6jdYe4dspjhJnOPQz1NlVVFOYH9gFh1ifT6nVJUV/TsQC6r5Qr3T 07Al7YPn3vzFISMPSpmXJ46voPcwjgc7kF1c33EiZz8jqfzLDtDJj01A5LihmBhJ 1ORkAh0tuTgnauzSaumLHeqH8wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNo/1NO8 FhpBImiiMNqztT0pZ833MB8GA1UdIwQYMBaAFNZ1f8MkCdvC8itiwxm55E256geZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRUE5RS82NkUwQzYzODRB MDcxMUVFQTFCRjUwMzBDNEY5QUUwMi8xblZfd3lRSjI4THlLMkxER2Jua1RibnFC NWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFuVl93eVFKMjhMeUsyTERHYm5rVGJucUI1ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUVBOUUvNjZFMEM2Mzg0QTA3MTFFRUExQkY1MDMwQzRGOUFFMDIvQzdDMjhDQUM0 QTA3MTFFRUJFMTUzMTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFn+cYwDQQCAAIwBwMFACQBImAwDQYJKoZIhvcNAQELBQAD ggEBAI/ip11+3UhpEji1+09u1MSjltZv2l1b5ZZ8VFuS5lR6hjp9jJ7CcFhRWTD4 AL2b/tdlBmUHpf8lFQ8pxY2Aull+r7wYXHzYw20hx9UPazU28oI/ao1slFSVdgf5 xiYP6prk7M0tz8jVHcHmuZ49Fcezc+ux8Ko1MMwX3VGUM0Cyg3dLHk+QnoFCw7r3 4/iS4PiNGUj/Gq49V/rHRKbz3AyWcgVbmbyzsktqZGkuJbrTayDWfwou7LkzKinn O84ORyei1aBrlpTg1mGWeaVnUPfobiwHdXxhtYlynImN3Qcb4sj4N/1/T4Xph+WG z831J3t8/6B4G9OyYeyobV5IaIU= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:01 2024 by rpki-client on console-ams.rpki-client.org