$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1043B2347BBD11EA8356C986C4F9AE02.roa File: 1043B2347BBD11EA8356C986C4F9AE02.roa (raw, json) Hash identifier: 5JEqGqZjOXkDQpngg62rkwfruwetrEFqTjvsf4P8Fxo= Subject key identifier: 52:D1:B4:FB:35:95:AB:EE:E7:BD:43:A2:A9:DF:31:47:48:DF:AD:78 Certificate issuer: /CN=A9110C51/serialNumber=8D7E3058350BB8DFEFFCE7770BBC8C86B762A1E4 Certificate serial: 0944 Authority key identifier: 8D:7E:30:58:35:0B:B8:DF:EF:FC:E7:77:0B:BC:8C:86:B7:62:A1:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1043B2347BBD11EA8356C986C4F9AE02.roa Signing time: Wed 12 Jun 2024 22:07:50 +0000 ROA not before: Wed 12 Jun 2024 22:07:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137580 IP address blocks: 103.114.24.0/24 maxlen: 24 103.114.25.0/24 maxlen: 24 103.114.26.0/24 maxlen: 24 103.114.27.0/24 maxlen: 24 2407:44c0::/32 maxlen: 32 2407:44c0:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.crl rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2372 (0x944) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C51/serialNumber=8D7E3058350BB8DFEFFCE7770BBC8C86B762A1E4 Validity Not Before: Jun 12 22:07:50 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666a1c35-7800 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:23:f6:3e:34:7f:22:09:fc:2c:f6:88:0b:83: c2:3b:a2:ba:3b:10:b5:27:21:a7:18:c0:9d:92:1f: e1:aa:ab:fe:87:f6:3d:fb:31:dd:1f:2a:af:8d:4c: d9:54:44:81:6a:9d:b4:e9:b9:c7:55:36:09:79:f6: b0:40:31:1d:2f:a3:6b:3a:11:fc:1a:97:40:81:9b: 0c:c6:2f:2a:c9:79:44:e0:b8:84:b3:77:96:92:8f: f9:8b:f1:02:78:4a:00:16:a6:92:75:4a:aa:77:73: 3c:c7:b6:f5:6f:8a:29:14:b0:46:9c:4c:4a:b9:f9: b9:e4:51:32:35:ff:0b:78:ea:9c:09:eb:b0:ea:c1: b9:e5:ee:f4:4b:ab:15:d4:3c:2a:ea:8d:62:b1:37: d5:ae:82:40:bf:5b:44:65:d5:cb:d9:e9:a3:08:d3: 19:8d:d0:e4:ad:16:e2:41:d3:73:be:9f:a2:fc:01: de:d5:6f:a5:ef:a0:12:bc:5b:50:12:89:97:df:c3: b7:1f:40:d0:92:58:04:5f:28:e1:57:9f:68:73:e9: 8c:ca:7c:0a:7b:83:19:86:ca:79:d1:8a:81:59:c9: 76:77:24:c6:41:5d:f7:02:dd:b1:ad:24:d8:08:80: 43:43:f4:11:5f:b4:3d:bb:8d:2a:29:0c:3e:c1:7d: 19:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:D1:B4:FB:35:95:AB:EE:E7:BD:43:A2:A9:DF:31:47:48:DF:AD:78 X509v3 Authority Key Identifier: keyid:8D:7E:30:58:35:0B:B8:DF:EF:FC:E7:77:0B:BC:8C:86:B7:62:A1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1043B2347BBD11EA8356C986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.24.0/22 IPv6: 2407:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 22:c1:12:c6:3f:fd:44:fd:18:a7:5f:85:dc:59:ab:8e:97:c7: d5:2b:31:c5:de:df:8b:db:85:7d:24:56:0d:34:3a:b0:8e:c8: 6f:3d:f2:2d:d8:80:a1:41:a9:75:a5:95:14:74:a2:e7:fe:ca: 14:1d:2d:ff:08:b9:b7:67:c4:8b:bb:da:87:7a:f3:1a:ed:98: 14:85:a2:23:e6:0d:81:a3:4c:d5:b3:59:61:f5:f5:75:58:e1: d9:3a:4b:b5:23:f4:e8:6b:b8:02:94:a0:16:27:68:9c:b4:23: a2:39:c0:c7:f6:37:7a:12:cb:9e:d3:fa:e2:9b:c0:2b:cc:36: 55:1b:80:1c:0f:14:f7:7f:f1:e4:f5:eb:cf:2c:11:7b:0c:a1: 8d:06:2c:ca:f7:ed:64:1a:64:18:f8:94:17:fc:9c:bb:31:90: cd:a5:13:20:0c:01:80:42:23:8f:1a:a8:ae:96:12:f8:36:ff: a8:e5:31:76:56:35:c9:c1:64:db:47:f1:2d:48:6c:9a:a1:36: 4b:c6:a0:38:58:11:08:68:40:38:84:14:3a:2a:63:ea:86:c9: 5e:c4:bd:72:19:6b:4b:8e:68:64:ac:12:e6:ad:7e:3b:2b:40: de:57:2e:eb:95:0b:26:86:03:4b:54:57:92:50:cc:f3:8c:05: 7b:8e:8e:53 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDNTExMTAvBgNVBAUTKDhEN0UzMDU4MzUwQkI4REZFRkZDRTc3NzBCQkM4Qzg2 Qjc2MkExRTQwHhcNMjQwNjEyMjIwNzUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZhMWMzNS03ODAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CP2PjR/Ign8LPaIC4PCO6K6OxC1JyGnGMCdkh/hqqv+h/Y9+zHdHyqvjUzZ VESBap206bnHVTYJefawQDEdL6NrOhH8GpdAgZsMxi8qyXlE4LiEs3eWko/5i/EC eEoAFqaSdUqqd3M8x7b1b4opFLBGnExKufm55FEyNf8LeOqcCeuw6sG55e70S6sV 1Dwq6o1isTfVroJAv1tEZdXL2emjCNMZjdDkrRbiQdNzvp+i/AHe1W+l76ASvFtQ EomX38O3H0DQklgEXyjhV59oc+mMynwKe4MZhsp50YqBWcl2dyTGQV33At2xrSTY CIBDQ/QRX7Q9u40qKQw+wX0ZkQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFLRtPs1 lavu571DoqnfMUdI3614MB8GA1UdIwQYMBaAFI1+MFg1C7jf7/zndwu8jIa3YqHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM1MS80NzZBN0JFMDdC QkMxMUVBOTYzRjM2ODZDNEY5QUUwMi9qWDR3V0RVTHVOX3ZfT2QzQzd5TWhyZGlv ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pYNHdXRFVMdU5fdl9PZDNDN3lNaHJkaW9lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBDNTEvNDc2QTdCRTA3QkJDMTFFQTk2M0YzNjg2QzRGOUFFMDIvMTA0M0IyMzQ3 QkJEMTFFQTgzNTZDOTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnchgwDQQCAAIwBwMFACQHRMAwDQYJKoZIhvcNAQELBQAD ggEBACLBEsY//UT9GKdfhdxZq46Xx9UrMcXe34vbhX0kVg00OrCOyG898i3YgKFB qXWllRR0ouf+yhQdLf8IubdnxIu72od68xrtmBSFoiPmDYGjTNWzWWH19XVY4dk6 S7Uj9OhruAKUoBYnaJy0I6I5wMf2N3oSy57T+uKbwCvMNlUbgBwPFPd/8eT1688s EXsMoY0GLMr37WQaZBj4lBf8nLsxkM2lEyAMAYBCI48aqK6WEvg2/6jlMXZWNcnB ZNtH8S1IbJqhNkvGoDhYEQhoQDiEFDoqY+qGyV7EvXIZa0uOaGSsEuatfjsrQN5X LuuVCyaGA0tUV5JQzPOMBXuOjlM= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:20 2024 by rpki-client on console-ams.rpki-client.org