$ rpki-client -vvf rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa File: FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa (raw, json) Hash identifier: RACB3YknB3cdpFyJZW5lQ48vMsl9eTtZug3dtaWvByM= Subject key identifier: 49:14:47:F8:3A:A0:83:ED:96:CA:8E:3B:5C:DA:AE:D1:3F:5C:03:A7 Certificate issuer: /CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Certificate serial: 010E Authority key identifier: 2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa Signing time: Fri 05 Jul 2024 05:06:23 +0000 ROA not before: Fri 05 Jul 2024 05:06:23 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 10225 IP address blocks: 103.187.190.0/23 maxlen: 23 103.187.190.0/24 maxlen: 24 103.187.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:38:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9171927/serialNumber=2A69D699F13C041BFDA3DAA57E21FFAB3C53ED5F Validity Not Before: Jul 5 05:06:23 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66877f4f-6893 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:0c:6b:8b:06:66:48:fd:0d:bf:8b:30:c0:13: b4:98:e4:dc:32:81:33:9b:16:79:36:fd:e6:82:90: ea:ea:f8:dc:b9:e7:6e:7f:a5:54:f7:18:d0:c2:21: cd:d0:91:38:7e:7a:65:59:42:49:18:79:f8:ae:ee: 7d:32:a7:98:fb:cc:c4:80:67:50:bd:54:5d:21:24: 8f:a9:05:2a:62:2d:78:64:1d:c3:e6:c6:f8:b6:1f: 49:87:51:b2:92:ca:92:e0:1e:f5:e8:44:88:d4:7a: 21:0b:78:f4:e3:c4:5d:8f:ac:cc:64:fa:6e:d4:a5: 31:71:4e:74:9e:65:37:05:8d:1d:7c:b3:34:18:d2: 16:1b:12:d5:6a:4b:28:71:d8:3c:b0:99:f4:43:c2: e1:86:be:03:0c:5d:75:e8:1c:9b:4d:57:9a:c9:1b: 43:37:14:17:55:88:d5:8b:37:dc:fb:9d:60:8a:c1: 89:fe:91:52:a4:44:80:15:83:12:3e:62:9b:9a:4d: 1d:a4:5c:cb:9d:03:a7:8e:8a:df:e4:9b:44:61:d5: c3:c9:a9:66:ef:95:43:90:e0:a0:a2:d5:7f:00:d8: 5b:7b:1f:06:52:0c:94:67:67:8b:9b:08:73:a9:3f: 2c:27:8d:a6:92:1e:b3:74:a0:e8:df:70:74:cf:36: d8:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:14:47:F8:3A:A0:83:ED:96:CA:8E:3B:5C:DA:AE:D1:3F:5C:03:A7 X509v3 Authority Key Identifier: keyid:2A:69:D6:99:F1:3C:04:1B:FD:A3:DA:A5:7E:21:FF:AB:3C:53:ED:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/KmnWmfE8BBv9o9qlfiH_qzxT7V8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KmnWmfE8BBv9o9qlfiH_qzxT7V8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9171927/FD8B22B0BC2F11EDA8F7653EC4F9AE02/FD41FC5EEA6811EDBE3EE23CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.190.0/23 Signature Algorithm: sha256WithRSAEncryption a6:51:72:5f:a0:05:f2:57:5f:ef:25:99:18:ca:b8:5e:b2:3d: 3d:9d:f6:94:54:5c:b0:7c:78:09:6a:15:16:e5:e2:4e:be:58: 5b:b4:68:d1:4e:3d:df:25:94:15:c7:74:89:c7:ee:1c:12:62: f1:af:b5:f3:5d:d6:e7:86:0a:8b:de:1e:37:f6:e3:59:fe:78: b6:2b:3a:9f:86:77:ac:11:e8:dd:84:1c:84:1b:2a:ee:09:62: b9:fa:3e:03:88:f6:73:fe:c7:fb:9d:bd:bb:70:e0:93:81:16: 98:9b:a1:3e:17:ff:dd:2f:d6:8c:e2:e8:d0:61:bb:74:70:7e: 4b:1f:a0:e8:3e:eb:29:9a:4f:0a:66:e2:5e:79:bb:9a:00:05: 8b:1c:8d:7d:26:aa:b8:15:f9:65:ad:4c:46:89:cb:f1:3a:5f: d1:e5:0c:1a:cf:3c:d0:dd:fe:e3:5d:b7:1f:c1:c3:c3:8d:ef: f2:61:87:4c:fd:7c:d4:69:00:88:07:73:59:7c:39:37:d1:03: 6b:0c:46:ec:a0:d8:30:d5:cd:99:e0:e2:09:61:e3:7a:5d:af: 9e:75:32:87:79:4c:5e:5e:37:10:c0:f4:a3:e8:2c:22:91:26: c0:3a:4b:97:97:34:39:83:18:20:31:26:8a:df:b6:d3:a8:cb: 3b:c4:46:b2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzE5MjcxMTAvBgNVBAUTKDJBNjlENjk5RjEzQzA0MUJGREEzREFBNTdFMjFGRkFC M0M1M0VENUYwHhcNMjQwNzA1MDUwNjIzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3N2Y0Zi02ODkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuwxriwZmSP0Nv4swwBO0mOTcMoEzmxZ5Nv3mgpDq6vjcueduf6VU9xjQwiHN 0JE4fnplWUJJGHn4ru59MqeY+8zEgGdQvVRdISSPqQUqYi14ZB3D5sb4th9Jh1Gy ksqS4B716ESI1HohC3j048Rdj6zMZPpu1KUxcU50nmU3BY0dfLM0GNIWGxLVakso cdg8sJn0Q8Lhhr4DDF116BybTVeayRtDNxQXVYjVizfc+51gisGJ/pFSpESAFYMS PmKbmk0dpFzLnQOnjorf5JtEYdXDyalm75VDkOCgotV/ANhbex8GUgyUZ2eLmwhz qT8sJ42mkh6zdKDo33B0zzbYIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEkUR/g6 oIPtlsqOO1zartE/XAOnMB8GA1UdIwQYMBaAFCpp1pnxPAQb/aPapX4h/6s8U+1f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MTkyNy9GRDhCMjJCMEJD MkYxMUVEQThGNzY1M0VDNEY5QUUwMi9LbW5XbWZFOEJCdjlvOXFsZmlIX3F6eFQ3 VjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ttbldtZkU4QkJ2OW85cWxmaUhfcXp4VDdWOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzE5MjcvRkQ4QjIyQjBCQzJGMTFFREE4Rjc2NTNFQzRGOUFFMDIvRkQ0MUZDNUVF QTY4MTFFREJFM0VFMjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnu74wDQYJKoZIhvcNAQELBQADggEBAKZRcl+gBfJXX+8l mRjKuF6yPT2d9pRUXLB8eAlqFRbl4k6+WFu0aNFOPd8llBXHdInH7hwSYvGvtfNd 1ueGCoveHjf241n+eLYrOp+Gd6wR6N2EHIQbKu4JYrn6PgOI9nP+x/udvbtw4JOB FpiboT4X/90v1ozi6NBhu3RwfksfoOg+6ymaTwpm4l55u5oABYscjX0mqrgV+WWt TEaJy/E6X9HlDBrPPNDd/uNdtx/Bw8ON7/Jhh0z9fNRpAIgHc1l8OTfRA2sMRuyg 2DDVzZng4glh43pdr551Mod5TF5eNxDA9KPoLCKRJsA6S5eXNDmDGCAxJorfttOo yzvERrI= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:06 2024 by rpki-client on console-ams.rpki-client.org