$ rpki-client -vvf rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1101AA0A7BBD11EA8356C986C4F9AE02.roa File: 1101AA0A7BBD11EA8356C986C4F9AE02.roa (raw, json) Hash identifier: hfyqDfJeSxqhT99GEIvr8pFOI6W0IKirni37fpXz9Bo= Subject key identifier: 72:57:02:A1:D2:35:F5:7A:1A:F8:07:80:07:6E:9E:59:54:F7:C3:47 Certificate issuer: /CN=A9110C51/serialNumber=8D7E3058350BB8DFEFFCE7770BBC8C86B762A1E4 Certificate serial: 0946 Authority key identifier: 8D:7E:30:58:35:0B:B8:DF:EF:FC:E7:77:0B:BC:8C:86:B7:62:A1:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1101AA0A7BBD11EA8356C986C4F9AE02.roa Signing time: Wed 12 Jun 2024 22:07:52 +0000 ROA not before: Wed 12 Jun 2024 22:07:52 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 23752 IP address blocks: 103.114.24.0/24 maxlen: 24 103.114.25.0/24 maxlen: 24 103.114.26.0/24 maxlen: 24 103.114.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.crl rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:51:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2374 (0x946) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110C51/serialNumber=8D7E3058350BB8DFEFFCE7770BBC8C86B762A1E4 Validity Not Before: Jun 12 22:07:52 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=666a1c37-5dd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:8c:58:59:10:4c:61:6e:12:c3:3c:7e:c1:57: 14:8a:04:77:93:bf:13:44:ec:ae:61:94:f2:df:ab: e0:7e:30:77:95:6a:71:e6:3d:b5:d6:1a:bb:88:c3: 3e:3c:b0:f9:b4:dd:e7:de:05:e5:28:34:ef:36:62: 49:86:da:93:6c:98:c2:5c:89:05:96:de:98:06:f5: c0:ec:75:e8:82:8e:b2:b5:95:3e:a5:f9:25:5c:a5: 2b:f6:b5:38:0c:8d:2d:ea:47:91:13:70:1d:4d:f0: 47:e8:0f:42:b7:ea:6d:76:7d:06:d7:eb:cf:90:22: 8c:c0:b5:8d:c9:11:89:11:4a:2c:de:23:c1:b8:ed: a9:44:24:18:ae:77:b7:63:cf:24:03:4a:ad:3b:a0: 39:ce:e2:fc:a7:c9:d2:bf:1b:32:5a:61:b7:25:8f: 0f:8b:55:b7:1c:e3:c3:07:65:5b:3a:48:20:0f:c2: 90:07:1f:44:49:b9:bd:6f:bc:47:2e:a7:fa:b3:20: 65:b3:0d:3f:fd:21:69:5f:d2:72:17:51:38:71:90: 13:e3:25:77:c3:4d:b0:47:bf:94:7a:27:cf:93:df: 6d:c0:c7:61:19:ae:75:50:38:d0:50:ca:f8:53:1b: 4f:4c:3d:1a:9f:b9:00:54:45:32:6c:87:e0:6e:3f: 9d:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:57:02:A1:D2:35:F5:7A:1A:F8:07:80:07:6E:9E:59:54:F7:C3:47 X509v3 Authority Key Identifier: keyid:8D:7E:30:58:35:0B:B8:DF:EF:FC:E7:77:0B:BC:8C:86:B7:62:A1:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/jX4wWDULuN_v_Od3C7yMhrdioeQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jX4wWDULuN_v_Od3C7yMhrdioeQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110C51/476A7BE07BBC11EA963F3686C4F9AE02/1101AA0A7BBD11EA8356C986C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.24.0/22 Signature Algorithm: sha256WithRSAEncryption 5d:96:2a:ac:79:a3:5b:9f:5b:dc:9a:c1:9f:4c:bd:ef:ef:05: d6:32:c3:3d:c3:2e:7d:64:dd:98:6b:ce:c8:84:e8:88:ec:5f: 49:55:4e:37:b6:cc:56:4e:4c:40:7f:59:89:60:76:b8:8a:ec: 19:89:ce:be:ac:71:15:4c:19:c6:fa:1f:e2:2a:50:05:8f:e2: b2:cd:4f:9d:4f:c6:b6:53:04:02:a5:bf:81:b5:87:e4:0f:2c: d0:e4:27:5b:81:e8:45:49:3f:15:d1:09:67:b7:58:49:da:e9: c0:05:7c:5e:18:df:0d:97:7c:72:0b:11:d8:ed:b1:27:a9:92: c2:c6:1d:21:f5:f8:9d:94:17:a6:f2:a4:fc:50:9a:80:4e:6e: dd:23:b3:49:3c:b5:f0:ea:54:b3:e1:55:63:bf:9c:08:77:39: b5:2b:d0:52:b3:f1:cd:dc:9d:b1:72:eb:fe:3d:19:a9:2a:00: 1c:e4:b1:ce:0a:53:d0:75:b0:2e:3a:3f:5f:95:43:55:bf:89: be:33:26:73:96:db:c2:89:26:74:6c:5d:c5:c5:a1:1e:38:14: 56:12:f1:5a:12:24:ca:02:81:a7:19:8e:e5:e5:46:19:f7:dc: 38:0e:af:08:75:10:d1:6c:0b:71:46:f6:da:f9:36:59:63:24: 73:6b:38:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBDNTExMTAvBgNVBAUTKDhEN0UzMDU4MzUwQkI4REZFRkZDRTc3NzBCQkM4Qzg2 Qjc2MkExRTQwHhcNMjQwNjEyMjIwNzUyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZhMWMzNy01ZGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34xYWRBMYW4Swzx+wVcUigR3k78TROyuYZTy36vgfjB3lWpx5j211hq7iMM+ PLD5tN3n3gXlKDTvNmJJhtqTbJjCXIkFlt6YBvXA7HXogo6ytZU+pfklXKUr9rU4 DI0t6keRE3AdTfBH6A9Ct+ptdn0G1+vPkCKMwLWNyRGJEUos3iPBuO2pRCQYrne3 Y88kA0qtO6A5zuL8p8nSvxsyWmG3JY8Pi1W3HOPDB2VbOkggD8KQBx9ESbm9b7xH Lqf6syBlsw0//SFpX9JyF1E4cZAT4yV3w02wR7+UeifPk99twMdhGa51UDjQUMr4 UxtPTD0an7kAVEUybIfgbj+dXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHJXAqHS NfV6GvgHgAdunllU98NHMB8GA1UdIwQYMBaAFI1+MFg1C7jf7/zndwu8jIa3YqHk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEM1MS80NzZBN0JFMDdC QkMxMUVBOTYzRjM2ODZDNEY5QUUwMi9qWDR3V0RVTHVOX3ZfT2QzQzd5TWhyZGlv ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pYNHdXRFVMdU5fdl9PZDNDN3lNaHJkaW9lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBDNTEvNDc2QTdCRTA3QkJDMTFFQTk2M0YzNjg2QzRGOUFFMDIvMTEwMUFBMEE3 QkJEMTFFQTgzNTZDOTg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnchgwDQYJKoZIhvcNAQELBQADggEBAF2WKqx5o1ufW9ya wZ9Mve/vBdYywz3DLn1k3ZhrzsiE6IjsX0lVTje2zFZOTEB/WYlgdriK7BmJzr6s cRVMGcb6H+IqUAWP4rLNT51PxrZTBAKlv4G1h+QPLNDkJ1uB6EVJPxXRCWe3WEna 6cAFfF4Y3w2XfHILEdjtsSepksLGHSH1+J2UF6bypPxQmoBObt0js0k8tfDqVLPh VWO/nAh3ObUr0FKz8c3cnbFy6/49GakqABzksc4KU9B1sC46P1+VQ1W/ib4zJnOW 28KJJnRsXcXFoR44FFYS8VoSJMoCgacZjuXlRhn33DgOrwh1ENFsC3FG9tr5Nllj JHNrOLM= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org