$ rpki-client -vvf rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/524CFDB27C1111EFBFC7363AC4F9AE02.roa File: 524CFDB27C1111EFBFC7363AC4F9AE02.roa (raw, json) Hash identifier: 2FhmgFAVYlSkuLyufZImw2MixSRSmicNo3aUOr/h5T8= Subject key identifier: 83:D7:49:96:1B:A0:78:BC:AB:F3:45:55:81:6A:72:A6:56:37:41:EB Certificate issuer: /CN=A9137242/serialNumber=EAB24A90C6D046CD83FB5EF4A3C598E4EA9A168C Certificate serial: 071F Authority key identifier: EA:B2:4A:90:C6:D0:46:CD:83:FB:5E:F4:A3:C5:98:E4:EA:9A:16:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6rJKkMbQRs2D-170o8WY5OqaFow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/524CFDB27C1111EFBFC7363AC4F9AE02.roa Signing time: Thu 26 Sep 2024 14:12:11 +0000 ROA not before: Thu 26 Sep 2024 14:12:11 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 138192 IP address blocks: 103.139.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/6rJKkMbQRs2D-170o8WY5OqaFow.crl rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/6rJKkMbQRs2D-170o8WY5OqaFow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6rJKkMbQRs2D-170o8WY5OqaFow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 13 Apr 2025 17:51:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1823 (0x71f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137242 Validity Not Before: Sep 26 14:12:11 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66f56bbb-a27a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3f:b2:ca:0b:0e:54:e7:48:ff:3f:14:9e:ea: eb:dc:d6:bf:44:77:0a:97:02:77:bb:81:e0:68:5f: 4c:3d:14:6c:d3:15:03:44:56:a7:94:d5:6e:89:33: 77:95:03:7e:e0:f5:34:05:09:90:ff:5e:20:6f:d4: 2a:f4:82:93:70:48:34:56:fa:d9:2f:67:03:41:af: 76:24:51:ca:f2:74:a6:53:21:a0:90:51:96:07:5b: 72:46:70:0f:12:e1:14:15:b4:b1:ab:b4:91:99:87: 74:2d:b6:fb:c9:68:b1:c4:3b:55:f2:16:c1:e6:d0: 91:a8:0d:98:66:82:82:0b:c5:c3:fa:e7:e3:62:98: 38:dc:ef:b1:ed:de:89:9d:c1:01:c5:1a:4c:65:f0: 49:b3:a0:39:f9:fd:38:e3:3a:67:da:94:2c:7e:15: 32:a8:56:d8:37:1a:d7:c9:41:84:75:fb:1c:17:b2: 44:13:bf:7a:bc:28:20:13:99:75:0a:87:5b:83:13: 8f:a4:01:71:87:8b:e6:28:83:ed:a4:83:50:e7:cb: 6f:ba:a2:83:f3:bb:0f:71:21:1d:7b:a8:a5:4a:a5: 94:a0:00:d6:01:0d:8c:f6:d2:74:a0:1b:3c:38:58: 06:56:ab:0b:25:44:d5:e9:12:ee:78:85:dd:8c:4c: 1e:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:D7:49:96:1B:A0:78:BC:AB:F3:45:55:81:6A:72:A6:56:37:41:EB X509v3 Authority Key Identifier: keyid:EA:B2:4A:90:C6:D0:46:CD:83:FB:5E:F4:A3:C5:98:E4:EA:9A:16:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/6rJKkMbQRs2D-170o8WY5OqaFow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6rJKkMbQRs2D-170o8WY5OqaFow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137242/0B608796CA3411E9BC769055C4F9AE02/524CFDB27C1111EFBFC7363AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.145.0/24 Signature Algorithm: sha256WithRSAEncryption 20:f1:6f:5f:36:ea:e0:78:5d:72:2e:3d:7b:f2:4f:26:8b:83: 6c:8a:7c:56:57:8a:bb:e4:30:2d:17:15:94:75:a7:60:ff:f9: 81:18:ac:d9:94:55:8a:f4:0b:1c:ea:55:b4:7e:35:e5:b0:5f: 3a:d1:fe:8c:b6:0c:4c:f6:98:7d:2b:7e:a4:9f:50:08:e8:f9: 48:c3:07:6d:d9:1e:e6:df:fe:be:2a:68:bf:b1:fc:91:2d:81: ef:d6:d6:4f:ab:36:e7:a0:10:0c:53:73:ab:2c:5d:89:a7:95: 41:d3:bc:49:42:f1:f0:a3:9c:6c:9a:75:5f:fa:98:ef:b5:c8: fb:b8:a3:4f:58:74:5e:53:22:93:ab:78:19:27:33:f8:71:38: 46:3d:cc:fe:d3:09:9a:d2:c9:72:1d:ba:5f:4a:19:e5:3b:13: 7b:a9:00:9a:c7:38:fc:f3:bb:d6:1a:a6:2b:93:57:23:db:92: 59:e1:0a:70:af:a8:fd:14:e1:78:11:a3:96:a5:5d:fb:04:96: c8:fa:51:69:70:75:e0:c8:03:f9:76:f9:5f:e8:94:a3:52:c4: b0:0b:d8:26:29:b8:06:26:8b:b4:86:ca:cf:71:e6:5a:44:3b: 7d:34:9c:52:e7:84:75:81:96:22:97:65:10:e7:e3:c1:b1:87: 96:da:30:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzcyNDIxMTAvBgNVBAUTKEVBQjI0QTkwQzZEMDQ2Q0Q4M0ZCNUVGNEEzQzU5OEU0 RUE5QTE2OEMwHhcNMjQwOTI2MTQxMjExWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1NmJiYi1hMjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvz+yygsOVOdI/z8Unurr3Na/RHcKlwJ3u4HgaF9MPRRs0xUDRFanlNVuiTN3 lQN+4PU0BQmQ/14gb9Qq9IKTcEg0VvrZL2cDQa92JFHK8nSmUyGgkFGWB1tyRnAP EuEUFbSxq7SRmYd0Lbb7yWixxDtV8hbB5tCRqA2YZoKCC8XD+ufjYpg43O+x7d6J ncEBxRpMZfBJs6A5+f044zpn2pQsfhUyqFbYNxrXyUGEdfscF7JEE796vCggE5l1 CodbgxOPpAFxh4vmKIPtpINQ58tvuqKD87sPcSEde6ilSqWUoADWAQ2M9tJ0oBs8 OFgGVqsLJUTV6RLueIXdjEwejwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIPXSZYb oHi8q/NFVYFqcqZWN0HrMB8GA1UdIwQYMBaAFOqySpDG0EbNg/te9KPFmOTqmhaM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNzI0Mi8wQjYwODc5NkNB MzQxMUU5QkM3NjkwNTVDNEY5QUUwMi82ckpLa01iUVJzMkQtMTcwbzhXWTVPcWFG b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZySktrTWJRUnMyRC0xNzBvOFdZNU9xYUZvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzcyNDIvMEI2MDg3OTZDQTM0MTFFOUJDNzY5MDU1QzRGOUFFMDIvNTI0Q0ZEQjI3 QzExMTFFRkJGQzczNjNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABni5EwDQYJKoZIhvcNAQELBQADggEBACDxb1826uB4XXIu PXvyTyaLg2yKfFZXirvkMC0XFZR1p2D/+YEYrNmUVYr0CxzqVbR+NeWwXzrR/oy2 DEz2mH0rfqSfUAjo+UjDB23ZHubf/r4qaL+x/JEtge/W1k+rNuegEAxTc6ssXYmn lUHTvElC8fCjnGyadV/6mO+1yPu4o09YdF5TIpOreBknM/hxOEY9zP7TCZrSyXId ul9KGeU7E3upAJrHOPzzu9YapiuTVyPbklnhCnCvqP0U4XgRo5alXfsElsj6UWlw deDIA/l2+V/olKNSxLAL2CYpuAYmi7SGys9x5lpEO300nFLnhHWBliKXZRDn48Gx h5baMOE= -----END CERTIFICATE-----Generated at Mon Apr 7 01:53:04 2025 by rpki-client