$ rpki-client -vvf rpki.apnic.net/member_repository/A913A7CB/062482B09D0A11EA801CB243C4F9AE02/0D7DDD3A9D0B11EAAD024D44C4F9AE02.roa File: 0D7DDD3A9D0B11EAAD024D44C4F9AE02.roa (raw, json) Hash identifier: lX+JZDDq3ZYyafGSIvld6YBtL+lupg7yLEB2CMhRXcg= Subject key identifier: 14:76:DC:80:48:F1:A5:AE:18:2E:87:24:7C:F7:3A:F6:6B:90:6C:C2 Certificate issuer: /CN=A913A7CB/serialNumber=59861AECCF0D45DB24A87EA8847BF19991FEFAF6 Certificate serial: 08C7 Authority key identifier: 59:86:1A:EC:CF:0D:45:DB:24:A8:7E:A8:84:7B:F1:99:91:FE:FA:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WYYa7M8NRdskqH6ohHvxmZH--vY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913A7CB/062482B09D0A11EA801CB243C4F9AE02/0D7DDD3A9D0B11EAAD024D44C4F9AE02.roa Signing time: Wed 16 Oct 2024 20:39:28 +0000 ROA not before: Wed 16 Oct 2024 20:39:28 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 137056 IP address blocks: 103.103.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913A7CB/062482B09D0A11EA801CB243C4F9AE02/WYYa7M8NRdskqH6ohHvxmZH--vY.crl rsync://rpki.apnic.net/member_repository/A913A7CB/062482B09D0A11EA801CB243C4F9AE02/WYYa7M8NRdskqH6ohHvxmZH--vY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WYYa7M8NRdskqH6ohHvxmZH--vY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:11:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2247 (0x8c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913A7CB/serialNumber=59861AECCF0D45DB24A87EA8847BF19991FEFAF6 Validity Not Before: Oct 16 20:39:28 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67102480-f562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:87:d1:ce:9e:f0:47:2f:e8:cc:12:23:72:be: ec:25:db:04:03:c8:07:81:73:0a:8b:84:4e:0f:32: 4e:cc:6f:ee:14:27:c2:18:ca:42:ea:b3:6b:3f:40: a6:70:c7:bb:a1:66:34:67:5d:8f:ad:5f:af:b3:14: 67:8a:20:fc:0c:44:37:a5:09:b4:bb:40:68:d7:99: 10:d6:b2:6d:90:2d:af:3d:00:58:e2:80:23:b0:51: 73:0f:d2:ca:98:08:36:2d:70:fe:77:b1:2e:2e:b6: 81:d0:47:c8:31:7c:40:0e:4e:09:8d:17:f2:d5:c5: 03:ed:4c:d7:64:ce:d2:8a:db:a1:c5:1c:ad:dc:5a: 91:eb:c8:3f:a4:ce:b1:40:a9:d7:ce:80:6c:73:fd: c7:e1:7d:ff:0a:71:74:e0:3d:d5:9a:09:ce:e6:a2: bd:71:98:85:4a:94:fd:bf:09:d7:34:3e:ad:4d:30: cd:fc:03:44:a5:9c:74:56:c8:08:07:31:51:2e:42: 7f:95:3a:de:11:28:d0:78:82:99:a7:36:a6:c5:a3: 1b:f9:f7:a8:48:1c:1b:6d:85:98:47:4c:d0:48:69: d4:5a:8d:a7:35:70:86:c8:ab:1d:07:2f:34:54:17: e7:33:39:c2:bd:e5:7f:62:f5:41:7a:85:f0:42:26: 4a:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:76:DC:80:48:F1:A5:AE:18:2E:87:24:7C:F7:3A:F6:6B:90:6C:C2 X509v3 Authority Key Identifier: keyid:59:86:1A:EC:CF:0D:45:DB:24:A8:7E:A8:84:7B:F1:99:91:FE:FA:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913A7CB/062482B09D0A11EA801CB243C4F9AE02/WYYa7M8NRdskqH6ohHvxmZH--vY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WYYa7M8NRdskqH6ohHvxmZH--vY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913A7CB/062482B09D0A11EA801CB243C4F9AE02/0D7DDD3A9D0B11EAAD024D44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.66.0/24 Signature Algorithm: sha256WithRSAEncryption 49:f7:a7:69:4f:89:54:38:22:f6:9d:93:78:c3:d9:a1:e6:17: 47:04:94:3d:92:e7:64:d1:25:42:d3:fc:34:f4:6d:f2:d2:08: 44:3f:f1:b6:47:29:82:c5:3a:49:b2:df:7d:b6:18:a4:f8:ca: d4:e6:17:ae:74:3e:6b:28:e5:94:ea:51:77:9a:1c:be:d9:d7: 28:9d:5b:5b:bf:01:5b:d4:38:7a:ed:5a:54:84:34:25:f9:da: 0a:d8:25:9c:1c:f9:91:71:57:9e:ae:ed:34:5c:24:2d:6c:e1: 24:00:79:d6:d5:92:ca:b0:7a:3a:43:7a:f6:29:e2:70:0a:ce: 64:52:46:57:d3:24:e8:a7:c0:db:5f:23:59:fd:d0:4e:35:d6: 51:e4:24:c2:fe:4d:90:c8:9c:f2:e5:6f:0c:25:7a:d1:95:9a: 05:79:e9:0c:f6:29:92:9b:27:f7:ca:a9:93:fc:39:80:48:22: f2:b6:6b:dd:59:c4:d3:ba:dc:8b:7b:62:47:c7:3b:02:39:2c: 14:f7:92:b8:a2:f7:50:eb:f8:d5:24:54:16:f5:69:85:af:23: cd:4f:cb:af:a4:61:d7:34:af:47:46:95:cb:01:ae:32:0a:67: 4b:72:06:e6:3c:47:23:8a:fc:b1:a8:2c:a3:f1:a2:ab:2c:43: dc:0b:d8:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0E3Q0IxMTAvBgNVBAUTKDU5ODYxQUVDQ0YwRDQ1REIyNEE4N0VBODg0N0JGMTk5 OTFGRUZBRjYwHhcNMjQxMDE2MjAzOTI4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwMjQ4MC1mNTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4fRzp7wRy/ozBIjcr7sJdsEA8gHgXMKi4RODzJOzG/uFCfCGMpC6rNrP0Cm cMe7oWY0Z12PrV+vsxRniiD8DEQ3pQm0u0Bo15kQ1rJtkC2vPQBY4oAjsFFzD9LK mAg2LXD+d7EuLraB0EfIMXxADk4JjRfy1cUD7UzXZM7SituhxRyt3FqR68g/pM6x QKnXzoBsc/3H4X3/CnF04D3VmgnO5qK9cZiFSpT9vwnXND6tTTDN/ANEpZx0VsgI BzFRLkJ/lTreESjQeIKZpzamxaMb+feoSBwbbYWYR0zQSGnUWo2nNXCGyKsdBy80 VBfnMznCveV/YvVBeoXwQiZKGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBR23IBI 8aWuGC6HJHz3OvZrkGzCMB8GA1UdIwQYMBaAFFmGGuzPDUXbJKh+qIR78ZmR/vr2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQTdDQi8wNjI0ODJCMDlE MEExMUVBODAxQ0IyNDNDNEY5QUUwMi9XWVlhN004TlJkc2txSDZvaEh2eG1aSC0t dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dZWWE3TThOUmRza3FINm9oSHZ4bVpILS12WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0E3Q0IvMDYyNDgyQjA5RDBBMTFFQTgwMUNCMjQzQzRGOUFFMDIvMEQ3REREM0E5 RDBCMTFFQUFEMDI0RDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnZ0IwDQYJKoZIhvcNAQELBQADggEBAEn3p2lPiVQ4Ivad k3jD2aHmF0cElD2S52TRJULT/DT0bfLSCEQ/8bZHKYLFOkmy3322GKT4ytTmF650 Pmso5ZTqUXeaHL7Z1yidW1u/AVvUOHrtWlSENCX52grYJZwc+ZFxV56u7TRcJC1s 4SQAedbVksqwejpDevYp4nAKzmRSRlfTJOinwNtfI1n90E411lHkJML+TZDInPLl bwwletGVmgV56Qz2KZKbJ/fKqZP8OYBIIvK2a91ZxNO63It7YkfHOwI5LBT3krii 91Dr+NUkVBb1aYWvI81Py6+kYdc0r0dGlcsBrjIKZ0tyBuY8RyOK/LGoLKPxoqss Q9wL2EE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:24 2024 by rpki-client on console-ams.rpki-client.org