$ rpki-client -vvf rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/E10C2796B42D11EEBCE04D61C4F9AE02.roa File: E10C2796B42D11EEBCE04D61C4F9AE02.roa (raw, json) Hash identifier: dJfXhzg8XYwoUOs2sQdFfnXRTK5+51aUZ+Zq8zrXhMs= Subject key identifier: 9F:27:A9:C4:68:F3:85:58:60:63:56:E5:26:A1:C7:81:DF:06:AC:D0 Certificate issuer: /CN=A917E00F/serialNumber=12C48972F26D067A9F21B4C4FA0C86633E02C019 Certificate serial: 5C Authority key identifier: 12:C4:89:72:F2:6D:06:7A:9F:21:B4:C4:FA:0C:86:63:3E:02:C0:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EsSJcvJtBnqfIbTE-gyGYz4CwBk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/E10C2796B42D11EEBCE04D61C4F9AE02.roa Signing time: Fri 05 Jul 2024 01:02:22 +0000 ROA not before: Fri 05 Jul 2024 01:02:22 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142577 IP address blocks: 103.169.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/EsSJcvJtBnqfIbTE-gyGYz4CwBk.crl rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/EsSJcvJtBnqfIbTE-gyGYz4CwBk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EsSJcvJtBnqfIbTE-gyGYz4CwBk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 92 (0x5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E00F/serialNumber=12C48972F26D067A9F21B4C4FA0C86633E02C019 Validity Not Before: Jul 5 01:02:22 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6687461d-1be0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:91:fc:50:6a:17:99:da:58:e1:f9:e8:e0:fa: 8d:91:62:19:bf:21:9f:df:0b:c3:ca:5b:a9:fc:06: 6b:99:86:56:f9:21:94:3b:89:a3:9b:51:40:b5:4d: 1b:70:a5:68:b1:43:6d:f3:6c:a9:c0:41:cf:9e:9c: 50:3f:9f:a8:3d:7b:ea:e8:22:48:1b:ed:ff:ec:23: e8:4c:a5:81:0f:bd:cc:7c:06:42:76:ad:97:36:ba: 21:81:46:e2:42:25:02:8f:ee:63:e7:65:2a:4e:a3: 1e:10:0d:89:46:06:f8:4d:c7:e6:4c:8a:a2:61:b6: c5:2f:90:42:68:3e:4f:01:31:a3:21:58:c3:59:e7: 82:fd:b7:53:f8:a6:c6:d7:83:03:00:72:21:0d:9b: a2:08:6f:d8:c1:41:72:95:0b:8c:f3:0e:64:e6:c6: 3f:a4:50:b1:8e:0f:49:3a:00:7d:4b:4d:1e:cd:5b: 5e:14:de:fb:92:4c:5c:4f:bd:f9:71:e6:91:f9:0e: d1:99:2d:2b:11:af:e6:8c:b8:ad:2c:34:83:94:66: e9:19:22:fc:63:2d:89:53:21:56:aa:57:49:c8:b9: 23:ee:e3:2d:85:f5:3e:0d:b5:06:61:06:4d:7e:9a: 39:0c:7c:69:64:ad:94:8a:a1:af:d9:fa:22:8a:53: 9e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:27:A9:C4:68:F3:85:58:60:63:56:E5:26:A1:C7:81:DF:06:AC:D0 X509v3 Authority Key Identifier: keyid:12:C4:89:72:F2:6D:06:7A:9F:21:B4:C4:FA:0C:86:63:3E:02:C0:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/EsSJcvJtBnqfIbTE-gyGYz4CwBk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EsSJcvJtBnqfIbTE-gyGYz4CwBk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E00F/EDE48B9CEE2911EB8084B638C4F9AE02/E10C2796B42D11EEBCE04D61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.169.209.0/24 Signature Algorithm: sha256WithRSAEncryption 75:0a:c3:7e:dd:9b:00:f5:0f:58:55:12:8f:24:b2:f5:29:c5: ef:18:14:33:15:a9:50:29:83:0a:b7:e6:70:fd:77:1c:6e:64: 24:01:eb:89:7b:09:c9:d1:04:5f:89:92:91:f4:ca:cd:0f:61: 77:3e:9d:84:17:e1:1e:41:b9:48:bd:ac:5a:13:fd:67:f6:42: 2e:c4:ee:ce:60:de:1b:e8:76:c6:ac:30:7a:a6:79:b8:ff:15: 5e:31:b4:8f:40:c9:24:2b:03:73:0e:1f:71:ad:42:34:31:3e: 14:68:3b:f9:86:54:cd:bd:7b:89:d7:f8:77:43:88:e0:bc:41: ce:8b:24:62:91:73:9c:c8:db:b0:bd:61:72:35:8f:9f:9b:d6: d6:12:e6:43:b9:e5:4b:6d:47:42:32:1b:a6:f4:7c:d6:1c:2e: 3d:39:84:fe:82:f6:8a:d6:6c:e3:06:bb:df:40:81:d9:f4:2a: d7:6b:46:68:aa:15:64:96:9a:02:f7:02:14:e3:dc:8d:94:d3: ce:2d:f5:93:84:7a:17:02:c9:3c:65:04:cf:66:6a:f2:06:f4: 11:e3:6c:e3:2e:bb:70:22:ef:fa:bd:7b:d6:50:91:76:75:75: 66:b3:ca:21:b2:c2:de:bc:02:ce:0d:6b:fe:e1:2a:34:82:cb: ef:a2:8f:b2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTAwRjExMC8GA1UEBRMoMTJDNDg5NzJGMjZEMDY3QTlGMjFCNEM0RkEwQzg2NjMz RTAyQzAxOTAeFw0yNDA3MDUwMTAyMjJaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODc0NjFkLTFiZTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxkfxQaheZ2ljh+ejg+o2RYhm/IZ/fC8PKW6n8BmuZhlb5IZQ7iaObUUC1TRtw pWixQ23zbKnAQc+enFA/n6g9e+roIkgb7f/sI+hMpYEPvcx8BkJ2rZc2uiGBRuJC JQKP7mPnZSpOox4QDYlGBvhNx+ZMiqJhtsUvkEJoPk8BMaMhWMNZ54L9t1P4psbX gwMAciENm6IIb9jBQXKVC4zzDmTmxj+kULGOD0k6AH1LTR7NW14U3vuSTFxPvflx 5pH5DtGZLSsRr+aMuK0sNIOUZukZIvxjLYlTIVaqV0nIuSPu4y2F9T4NtQZhBk1+ mjkMfGlkrZSKoa/Z+iKKU54RAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUnyepxGjz hVhgY1blJqHHgd8GrNAwHwYDVR0jBBgwFoAUEsSJcvJtBnqfIbTE+gyGYz4CwBkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMDBGL0VERTQ4QjlDRUUy OTExRUI4MDg0QjYzOEM0RjlBRTAyL0VzU0pjdkp0Qm5xZkliVEUtZ3lHWXo0Q3dC ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRXNTSmN2SnRCbnFmSWJURS1neUdZejRDd0JrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTAwRi9FREU0OEI5Q0VFMjkxMUVCODA4NEI2MzhDNEY5QUUwMi9FMTBDMjc5NkI0 MkQxMUVFQkNFMDRENjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGep0TANBgkqhkiG9w0BAQsFAAOCAQEAdQrDft2bAPUPWFUS jySy9SnF7xgUMxWpUCmDCrfmcP13HG5kJAHriXsJydEEX4mSkfTKzQ9hdz6dhBfh HkG5SL2sWhP9Z/ZCLsTuzmDeG+h2xqwweqZ5uP8VXjG0j0DJJCsDcw4fca1CNDE+ FGg7+YZUzb17idf4d0OI4LxBzoskYpFznMjbsL1hcjWPn5vW1hLmQ7nlS21HQjIb pvR81hwuPTmE/oL2itZs4wa730CB2fQq12tGaKoVZJaaAvcCFOPcjZTTzi31k4R6 FwLJPGUEz2Zq8gb0EeNs4y67cCLv+r171lCRdnV1ZrPKIbLC3rwCzg1r/uEqNILL 76KPsg== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:43 2024 by rpki-client on console-ams.rpki-client.org