$ rpki-client -vvf rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/E043A9A4B14511E5B83D2120C4F9AE02.roa File: E043A9A4B14511E5B83D2120C4F9AE02.roa (raw, json) Hash identifier: QfOFkTtfD/JlyUCDGr1ycwluY2IPcNmYuET79lfR5ic= Subject key identifier: 3D:A1:13:1E:D1:3F:CF:5F:86:97:E8:FC:16:C2:F7:C0:01:96:50:87 Certificate issuer: /CN=A9179581/serialNumber=6478EE7115A3661B071BB9BA526E5073578B139C Certificate serial: 2230 Authority key identifier: 64:78:EE:71:15:A3:66:1B:07:1B:B9:BA:52:6E:50:73:57:8B:13:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/E043A9A4B14511E5B83D2120C4F9AE02.roa Signing time: Wed 08 May 2024 16:33:59 +0000 ROA not before: Wed 08 May 2024 16:33:59 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 134119 IP address blocks: 103.54.68.0/24 maxlen: 24 103.54.69.0/24 maxlen: 24 103.54.70.0/24 maxlen: 24 103.54.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.crl rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:46:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8752 (0x2230) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179581/serialNumber=6478EE7115A3661B071BB9BA526E5073578B139C Validity Not Before: May 8 16:33:59 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663ba977-caa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:cb:ea:ce:e9:b3:5d:41:07:a2:3c:97:06:74: 46:4a:80:60:56:92:2a:37:70:89:97:47:6f:ea:5e: 7f:25:07:dd:e4:5c:44:fe:ce:3a:3d:65:6f:a9:6d: 0b:22:ad:d3:e5:ce:5b:c6:8d:67:22:8b:03:c0:80: e4:d2:a2:84:68:25:1c:2b:ea:4e:3b:00:8b:99:70: 26:b4:89:e8:b9:d5:1c:b1:c8:be:2b:f2:1e:06:56: 02:45:c5:5f:cd:aa:17:ee:2d:46:0b:3d:e8:2a:d6: ce:40:da:42:e1:ad:a3:9b:15:6c:bc:f4:c1:1b:82: b2:06:44:ac:b4:96:05:0e:0b:53:0c:db:ab:42:c7: 2f:8e:a6:3c:85:4f:27:09:d4:c5:88:83:e4:c3:c6: 41:1d:b2:ab:a0:dc:b9:b3:60:73:d1:33:17:15:9e: f7:92:48:3d:0a:31:10:ac:4f:ed:d3:a0:e8:3e:3e: d6:db:a9:a3:40:7f:f8:29:25:18:5f:0e:ce:c1:36: 7e:dc:ae:45:e8:97:c3:24:28:8b:9e:ae:0c:38:ca: 43:9c:4c:c7:f3:57:20:88:12:a2:9e:3e:e1:9d:42: 1a:8a:9a:b6:60:19:be:89:d2:99:57:43:8c:f0:f7: ab:64:d0:86:75:f4:94:56:fe:6b:78:b2:c4:9a:62: 53:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A1:13:1E:D1:3F:CF:5F:86:97:E8:FC:16:C2:F7:C0:01:96:50:87 X509v3 Authority Key Identifier: keyid:64:78:EE:71:15:A3:66:1B:07:1B:B9:BA:52:6E:50:73:57:8B:13:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZHjucRWjZhsHG7m6Um5Qc1eLE5w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179581/7972707A94BC11E59134727CC4F9AE02/E043A9A4B14511E5B83D2120C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.54.68.0/22 Signature Algorithm: sha256WithRSAEncryption 11:9e:7b:e6:90:90:b0:84:ce:28:72:63:a0:1b:e8:33:ef:93: ee:27:f0:60:a3:de:c6:b4:53:52:3b:4b:95:13:ca:9e:3c:d0: 3b:25:9e:b8:d0:83:ac:71:35:3f:2e:18:bc:ec:a1:f2:1f:b6: 8d:6c:af:54:c5:48:9b:c2:86:ca:0b:30:fa:f9:11:be:59:a0: 5e:7f:7f:ba:a9:fc:6f:9c:64:44:01:8a:0e:f4:f8:1b:ac:2e: 58:ba:a1:63:e5:81:e4:b0:99:a5:dc:64:65:45:14:50:4b:a5: 98:3f:aa:11:21:5c:32:44:d8:a8:31:58:88:e0:46:a5:f1:b7: 2b:aa:28:04:3d:3c:57:17:66:2d:74:a4:25:ce:9f:90:fb:5c: 3d:21:ef:92:c1:01:69:e0:2e:29:b8:c2:0d:a3:60:17:80:51: b3:03:3c:85:8a:64:fd:a1:28:c4:47:1f:09:a4:54:f4:bb:32: 3b:47:5f:fb:55:dd:db:bf:c9:f8:aa:06:f3:54:a8:90:eb:cf: 1b:3c:f4:a2:75:8d:5c:e1:14:44:1e:2b:40:27:b9:b8:dc:0b: 33:04:55:64:91:8a:ef:8b:49:ad:72:4d:3a:fe:ad:65:bb:f6: 99:b4:b7:e5:b8:9f:c3:ac:b0:c6:b1:6f:74:d2:82:85:a5:ed: e8:bc:56:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzk1ODExMTAvBgNVBAUTKDY0NzhFRTcxMTVBMzY2MUIwNzFCQjlCQTUyNkU1MDcz NTc4QjEzOUMwHhcNMjQwNTA4MTYzMzU5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNiYTk3Ny1jYWEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48vqzumzXUEHojyXBnRGSoBgVpIqN3CJl0dv6l5/JQfd5FxE/s46PWVvqW0L Iq3T5c5bxo1nIosDwIDk0qKEaCUcK+pOOwCLmXAmtInoudUcsci+K/IeBlYCRcVf zaoX7i1GCz3oKtbOQNpC4a2jmxVsvPTBG4KyBkSstJYFDgtTDNurQscvjqY8hU8n CdTFiIPkw8ZBHbKroNy5s2Bz0TMXFZ73kkg9CjEQrE/t06DoPj7W26mjQH/4KSUY Xw7OwTZ+3K5F6JfDJCiLnq4MOMpDnEzH81cgiBKinj7hnUIaipq2YBm+idKZV0OM 8PerZNCGdfSUVv5reLLEmmJTKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD2hEx7R P89fhpfo/BbC98ABllCHMB8GA1UdIwQYMBaAFGR47nEVo2YbBxu5ulJuUHNXixOc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OTU4MS83OTcyNzA3QTk0 QkMxMUU1OTEzNDcyN0NDNEY5QUUwMi9aSGp1Y1JXalpoc0hHN202VW01UWMxZUxF NXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pIanVjUldqWmhzSEc3bTZVbTVRYzFlTEU1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzk1ODEvNzk3MjcwN0E5NEJDMTFFNTkxMzQ3MjdDQzRGOUFFMDIvRTA0M0E5QTRC MTQ1MTFFNUI4M0QyMTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnNkQwDQYJKoZIhvcNAQELBQADggEBABGee+aQkLCEzihy Y6Ab6DPvk+4n8GCj3sa0U1I7S5UTyp480DslnrjQg6xxNT8uGLzsofIfto1sr1TF SJvChsoLMPr5Eb5ZoF5/f7qp/G+cZEQBig70+BusLli6oWPlgeSwmaXcZGVFFFBL pZg/qhEhXDJE2KgxWIjgRqXxtyuqKAQ9PFcXZi10pCXOn5D7XD0h75LBAWngLim4 wg2jYBeAUbMDPIWKZP2hKMRHHwmkVPS7MjtHX/tV3du/yfiqBvNUqJDrzxs89KJ1 jVzhFEQeK0AnubjcCzMEVWSRiu+LSa1yTTr+rWW79pm0t+W4n8OssMaxb3TSgoWl 7ei8VjQ= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:17 2024 by rpki-client on console-ams.rpki-client.org