$ rpki-client -vvf rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/325A2ABA2F6D11EBAE27D010C4F9AE02.roa File: 325A2ABA2F6D11EBAE27D010C4F9AE02.roa (raw, json) Hash identifier: pS+rknsKIRFZxced71y+WLIWbrwwq2gZOSPnZeQrMOM= Subject key identifier: 6E:9D:F7:52:14:53:BA:BA:E2:B3:BC:04:94:63:A6:E3:0A:7C:2D:88 Certificate issuer: /CN=A9148F18/serialNumber=25C2052CEF3D8EDEF1AE38855FE7FB11B4578115 Certificate serial: 06A5 Authority key identifier: 25:C2:05:2C:EF:3D:8E:DE:F1:AE:38:85:5F:E7:FB:11:B4:57:81:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcIFLO89jt7xrjiFX-f7EbRXgRU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/325A2ABA2F6D11EBAE27D010C4F9AE02.roa Signing time: Mon 12 Aug 2024 22:41:21 +0000 ROA not before: Mon 12 Aug 2024 22:41:21 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137903 IP address blocks: 103.116.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/JcIFLO89jt7xrjiFX-f7EbRXgRU.crl rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/JcIFLO89jt7xrjiFX-f7EbRXgRU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcIFLO89jt7xrjiFX-f7EbRXgRU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148F18/serialNumber=25C2052CEF3D8EDEF1AE38855FE7FB11B4578115 Validity Not Before: Aug 12 22:41:21 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ba8f91-9425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8d:60:4b:61:ed:f4:8b:76:4b:99:b4:35:05: 20:4e:8d:af:66:3e:4b:6e:6f:e8:f2:81:84:6a:04: a2:82:c3:4f:54:1e:77:b9:2c:45:f2:2e:67:ac:5e: da:12:3f:b8:20:fe:2b:39:e3:62:63:29:42:98:73: 77:8a:15:d1:c5:0b:8e:e2:d0:28:dc:38:8f:51:b6: 5b:70:89:7d:65:6e:7d:64:ed:72:7f:b7:10:2b:44: da:ad:14:03:60:cf:f9:a5:2f:11:3e:ee:99:01:36: ad:34:ad:2b:79:7d:4a:32:bf:01:94:56:71:21:01: 5d:c7:6e:0e:52:87:81:9e:17:b9:e4:2c:44:3f:41: 71:47:c9:28:db:66:61:30:b3:03:c2:f9:99:13:5f: 64:a1:a4:73:f9:59:5b:79:4e:ec:9b:12:2b:24:3f: e1:4f:29:5e:eb:03:09:b8:51:bd:83:7b:2c:3c:86: 49:20:b2:ce:25:48:da:23:8f:bb:6b:ba:f2:34:f1: 89:15:9f:3b:21:1e:6f:0b:f4:4f:0f:9a:a8:4c:ea: 4e:a2:28:ec:4c:34:c7:02:ba:32:18:93:87:7c:4e: f3:c8:56:4c:55:d6:d2:b2:ca:13:39:88:b9:f6:d7: 35:e0:de:73:48:92:fe:0a:67:f9:39:3c:c5:ff:80: 95:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:9D:F7:52:14:53:BA:BA:E2:B3:BC:04:94:63:A6:E3:0A:7C:2D:88 X509v3 Authority Key Identifier: keyid:25:C2:05:2C:EF:3D:8E:DE:F1:AE:38:85:5F:E7:FB:11:B4:57:81:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/JcIFLO89jt7xrjiFX-f7EbRXgRU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JcIFLO89jt7xrjiFX-f7EbRXgRU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148F18/6C14168E2F6411EBB5CFCF5EC4F9AE02/325A2ABA2F6D11EBAE27D010C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.211.0/24 Signature Algorithm: sha256WithRSAEncryption 01:55:fa:91:fb:8f:1f:52:52:b9:bf:91:81:b0:52:d7:e2:1d: 82:08:46:24:41:11:75:b6:9f:80:69:55:47:65:5b:b6:a7:8d: 48:e5:2e:c4:1d:2c:d1:bd:ce:f4:fc:f6:cd:bb:89:5a:2c:85: 3f:3d:c1:15:ad:9c:42:ad:39:a9:56:ee:67:a1:79:ad:93:96: d7:b8:ca:8c:29:2e:bc:b7:c8:b1:3d:69:8a:dc:2e:c1:0d:eb: 6a:7a:70:f5:e7:15:ef:9f:1c:ff:27:df:9d:51:ad:5c:9f:92: f8:21:7a:fd:0b:40:ab:1f:ae:2a:5f:3e:f5:56:ab:76:ee:93: 0e:40:09:fa:ef:db:bf:ab:96:bb:dc:8e:3b:4f:c8:8b:77:05: ff:39:43:d7:14:a5:75:46:f9:88:2a:c2:72:f6:2d:bc:53:ff: 09:73:0e:81:56:2e:09:71:27:c4:fd:41:1c:f0:1a:be:3d:d9: 7c:a0:61:6a:2a:05:f3:a5:92:41:24:7e:39:bb:15:0c:b5:c5: 8e:21:87:22:3c:97:6e:6b:82:9d:c7:f5:fc:75:65:36:d7:61: 64:ba:1b:bc:2d:c7:52:7f:c0:84:b1:ce:1f:ad:4a:2b:28:3e: c8:d6:46:a4:87:e8:2c:6c:f3:b2:ab:d3:9a:f0:25:4a:46:ae: 78:60:ad:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhGMTgxMTAvBgNVBAUTKDI1QzIwNTJDRUYzRDhFREVGMUFFMzg4NTVGRTdGQjEx QjQ1NzgxMTUwHhcNMjQwODEyMjI0MTIxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJhOGY5MS05NDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5o1gS2Ht9It2S5m0NQUgTo2vZj5Lbm/o8oGEagSigsNPVB53uSxF8i5nrF7a Ej+4IP4rOeNiYylCmHN3ihXRxQuO4tAo3DiPUbZbcIl9ZW59ZO1yf7cQK0TarRQD YM/5pS8RPu6ZATatNK0reX1KMr8BlFZxIQFdx24OUoeBnhe55CxEP0FxR8ko22Zh MLMDwvmZE19koaRz+VlbeU7smxIrJD/hTyle6wMJuFG9g3ssPIZJILLOJUjaI4+7 a7ryNPGJFZ87IR5vC/RPD5qoTOpOoijsTDTHAroyGJOHfE7zyFZMVdbSssoTOYi5 9tc14N5zSJL+Cmf5OTzF/4CVpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFG6d91IU U7q64rO8BJRjpuMKfC2IMB8GA1UdIwQYMBaAFCXCBSzvPY7e8a44hV/n+xG0V4EV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEYxOC82QzE0MTY4RTJG NjQxMUVCQjVDRkNGNUVDNEY5QUUwMi9KY0lGTE84OWp0N3hyamlGWC1mN0ViUlhn UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pjSUZMTzg5anQ3eHJqaUZYLWY3RWJSWGdSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhGMTgvNkMxNDE2OEUyRjY0MTFFQkI1Q0ZDRjVFQzRGOUFFMDIvMzI1QTJBQkEy RjZEMTFFQkFFMjdEMDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABndNMwDQYJKoZIhvcNAQELBQADggEBAAFV+pH7jx9SUrm/ kYGwUtfiHYIIRiRBEXW2n4BpVUdlW7anjUjlLsQdLNG9zvT89s27iVoshT89wRWt nEKtOalW7mehea2Tlte4yowpLry3yLE9aYrcLsEN62p6cPXnFe+fHP8n351RrVyf kvghev0LQKsfripfPvVWq3bukw5ACfrv27+rlrvcjjtPyIt3Bf85Q9cUpXVG+Ygq wnL2LbxT/wlzDoFWLglxJ8T9QRzwGr492XygYWoqBfOlkkEkfjm7FQy1xY4hhyI8 l25rgp3H9fx1ZTbXYWS6G7wtx1J/wISxzh+tSisoPsjWRqSH6Cxs87Kr05rwJUpG rnhgrSk= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:39 2024 by rpki-client on console-ams.rpki-client.org