$ rpki-client -vvf rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/8620180E00EE11EDBC60AA4FC4F9AE02.roa File: 8620180E00EE11EDBC60AA4FC4F9AE02.roa (raw, json) Hash identifier: 8amN8Nk9oVQpcGLG743ZVOV+dvrusSJP1h0AZ4Q+u2o= Subject key identifier: 32:1B:3A:3A:6D:48:03:A0:3D:2D:6E:93:47:E4:E4:28:A6:92:A1:5F Certificate issuer: /CN=A917314A/serialNumber=272CAE5F21C8BF6B6B4915AF0004C7EFCFC7DB3D Certificate serial: 022D Authority key identifier: 27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/8620180E00EE11EDBC60AA4FC4F9AE02.roa Signing time: Wed 09 Oct 2024 02:15:43 +0000 ROA not before: Wed 09 Oct 2024 02:15:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150111 IP address blocks: 103.23.95.0/24 maxlen: 24 103.190.199.0/24 maxlen: 24 2001:df0:f1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 557 (0x22d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917314A/serialNumber=272CAE5F21C8BF6B6B4915AF0004C7EFCFC7DB3D Validity Not Before: Oct 9 02:15:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6705e74e-cead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:71:ee:77:a4:ce:32:01:1f:a4:51:c7:6f:08: 7b:0d:6e:44:53:57:e0:33:ff:6c:51:6c:fb:21:8e: 20:42:8b:51:7d:73:66:dc:0f:f4:22:3d:d8:e4:0e: fb:24:ad:ae:77:9e:60:c1:0a:ee:09:eb:28:f2:28: a0:af:c3:75:1e:37:2a:09:61:2f:4a:96:0f:ae:e7: 7f:5e:69:13:17:40:29:5b:93:44:61:9f:3a:3d:2a: 8a:ff:18:f1:92:36:0d:de:3a:cb:9d:37:13:ee:bb: 28:48:e2:4b:c4:ea:6c:8b:1b:33:1f:22:c9:9e:c5: 9e:0b:0b:73:e3:73:a3:04:42:7e:7a:7b:20:3f:72: 3f:6a:83:bf:aa:9f:c3:9c:b3:35:65:37:6d:d2:16: 35:bc:4f:91:0d:63:10:e8:c3:86:b0:1b:d0:e8:90: b5:fe:c1:c7:11:79:68:3e:17:0c:fa:44:39:c6:f4: bf:5f:87:4e:b6:56:38:d8:52:bf:5f:ff:40:9f:1b: ff:3b:9e:fd:e1:a7:a8:0b:f9:15:a2:92:83:ce:ea: 6b:77:7a:af:db:ef:e4:63:fe:5d:78:53:d2:7c:a4: 56:e6:4f:1e:c1:73:3a:93:18:80:1b:01:bb:4f:15: 4d:2d:33:e6:07:0f:1f:21:d0:f8:8e:c0:f1:2e:14: c7:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:1B:3A:3A:6D:48:03:A0:3D:2D:6E:93:47:E4:E4:28:A6:92:A1:5F X509v3 Authority Key Identifier: keyid:27:2C:AE:5F:21:C8:BF:6B:6B:49:15:AF:00:04:C7:EF:CF:C7:DB:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/JyyuXyHIv2trSRWvAATH78_H2z0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JyyuXyHIv2trSRWvAATH78_H2z0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917314A/5EF8A91600EA11ED9C0CB332C4F9AE02/8620180E00EE11EDBC60AA4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.95.0/24 103.190.199.0/24 IPv6: 2001:df0:f1c0::/48 Signature Algorithm: sha256WithRSAEncryption 80:19:1d:94:57:11:bb:1c:92:9a:e5:3e:7f:2c:af:1c:35:5d: 8d:3f:88:f6:46:5a:09:e4:82:3c:ff:f9:0a:38:8a:8c:ed:e1: 60:b7:7a:93:67:ef:0e:28:75:fa:b9:1f:b9:fd:54:51:c2:1e: 0c:65:e7:7a:5d:32:7c:8a:e8:bf:65:37:c0:7a:56:65:9b:de: a3:ac:20:14:a8:7f:0f:e1:0c:04:4c:0a:05:f4:ca:03:59:38: 19:68:f2:28:fe:b7:5c:41:98:46:09:63:1a:11:55:0d:57:bc: 93:32:f6:75:25:b2:81:cf:8b:41:7f:cb:c7:2a:c5:24:8c:d7: 4f:2b:8d:58:e1:3d:d4:1c:23:a4:3e:74:40:1b:08:5b:93:b6: de:03:4f:b0:4f:e0:79:a2:f9:3b:56:5d:d1:13:63:1a:f3:74: 99:09:14:e1:17:32:6b:36:0e:2c:9c:5f:9d:5f:77:94:c8:b5: a9:ef:18:e0:f1:df:15:93:96:6e:88:ff:21:d1:4a:46:21:f9: f6:74:7b:33:7f:89:df:44:9c:ec:f9:a1:cd:f4:20:51:ab:90: 08:47:6a:b0:1b:a6:d1:0f:75:29:c2:07:e8:ad:67:ea:45:b2: 76:32:9c:f7:24:f0:9f:5b:be:a9:c5:2e:73:8d:90:d2:18:08: a7:3b:ce:53 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAi0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxNEExMTAvBgNVBAUTKDI3MkNBRTVGMjFDOEJGNkI2QjQ5MTVBRjAwMDRDN0VG Q0ZDN0RCM0QwHhcNMjQxMDA5MDIxNTQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1ZTc0ZS1jZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3Hud6TOMgEfpFHHbwh7DW5EU1fgM/9sUWz7IY4gQotRfXNm3A/0Ij3Y5A77 JK2ud55gwQruCeso8iigr8N1HjcqCWEvSpYPrud/XmkTF0ApW5NEYZ86PSqK/xjx kjYN3jrLnTcT7rsoSOJLxOpsixszHyLJnsWeCwtz43OjBEJ+ensgP3I/aoO/qp/D nLM1ZTdt0hY1vE+RDWMQ6MOGsBvQ6JC1/sHHEXloPhcM+kQ5xvS/X4dOtlY42FK/ X/9Anxv/O5794aeoC/kVopKDzuprd3qv2+/kY/5deFPSfKRW5k8ewXM6kxiAGwG7 TxVNLTPmBw8fIdD4jsDxLhTHHwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFDIbOjpt SAOgPS1uk0fk5CimkqFfMB8GA1UdIwQYMBaAFCcsrl8hyL9ra0kVrwAEx+/Px9s9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzE0QS81RUY4QTkxNjAw RUExMUVEOUMwQ0IzMzJDNEY5QUUwMi9KeXl1WHlISXYydHJTUld2QUFUSDc4X0gy ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p5eXVYeUhJdjJ0clNSV3ZBQVRINzhfSDJ6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMxNEEvNUVGOEE5MTYwMEVBMTFFRDlDMENCMzMyQzRGOUFFMDIvODYyMDE4MEUw MEVFMTFFREJDNjBBQTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnF18DBABnvscwDwQCAAIwCQMHACABDfDxwDANBgkqhkiG 9w0BAQsFAAOCAQEAgBkdlFcRuxySmuU+fyyvHDVdjT+I9kZaCeSCPP/5CjiKjO3h YLd6k2fvDih1+rkfuf1UUcIeDGXnel0yfIrov2U3wHpWZZveo6wgFKh/D+EMBEwK BfTKA1k4GWjyKP63XEGYRgljGhFVDVe8kzL2dSWygc+LQX/LxyrFJIzXTyuNWOE9 1BwjpD50QBsIW5O23gNPsE/geaL5O1Zd0RNjGvN0mQkU4RcyazYOLJxfnV93lMi1 qe8Y4PHfFZOWboj/IdFKRiH59nR7M3+J30Sc7PmhzfQgUauQCEdqsBum0Q91KcIH 6K1n6kWydjKc9yTwn1u+qcUuc42Q0hgIpzvOUw== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:39 2024 by rpki-client on console-fra.rpki-client.org