$ rpki-client -vvf rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/ECDFCD86656711EDBED7F511C4F9AE02.roa File: ECDFCD86656711EDBED7F511C4F9AE02.roa (raw, json) Hash identifier: lL1Uo6lKBPims7sIcK6Rx8lWBhL0RLQ4pwqUL45ZkTE= Subject key identifier: BC:A1:B6:06:09:B7:9D:24:0C:AA:50:60:78:2A:E0:39:68:E8:E6:BC Certificate issuer: /CN=A9112571/serialNumber=7A2CA09A857129B1804282492312433DAB75E6C2 Certificate serial: 0169 Authority key identifier: 7A:2C:A0:9A:85:71:29:B1:80:42:82:49:23:12:43:3D:AB:75:E6:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eiygmoVxKbGAQoJJIxJDPat15sI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/ECDFCD86656711EDBED7F511C4F9AE02.roa Signing time: Wed 25 Sep 2024 02:36:44 +0000 ROA not before: Wed 25 Sep 2024 02:36:44 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 150342 IP address blocks: 103.17.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/eiygmoVxKbGAQoJJIxJDPat15sI.crl rsync://rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/eiygmoVxKbGAQoJJIxJDPat15sI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eiygmoVxKbGAQoJJIxJDPat15sI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:02:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 361 (0x169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112571/serialNumber=7A2CA09A857129B1804282492312433DAB75E6C2 Validity Not Before: Sep 25 02:36:44 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66f3773b-b116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:86:c5:79:28:7e:90:09:e1:bb:ac:71:43:b0: c0:1b:ad:d9:d2:dd:56:a2:43:45:f9:8e:a5:1a:bb: a5:6d:a8:65:75:9f:ab:69:88:f7:b3:d6:8c:13:8a: 0e:c6:b3:b5:f7:f1:09:4f:00:d1:c0:09:a8:de:46: 9a:5e:ad:c5:ff:f9:59:12:95:ff:72:dd:15:df:f5: 68:b2:cb:5f:50:b3:ee:3a:50:29:e2:f9:f6:9a:23: 46:c8:d3:fc:ad:b5:f9:ee:f7:02:fc:e6:3b:7d:18: 97:6a:b5:06:d5:92:88:7c:35:32:8c:6d:4d:33:92: a1:fd:87:73:73:55:19:2a:56:fb:1c:09:9e:a8:98: bd:ff:7f:a2:0c:3d:06:1d:e8:f0:6b:19:76:cc:42: c8:4e:53:1a:17:00:c3:d1:9c:03:9e:6d:0f:5c:ba: d7:73:fb:06:65:1f:0b:8d:df:23:19:30:f9:d7:6c: 4f:27:78:30:84:39:3f:57:09:fe:d4:a1:43:cb:ac: 5d:7d:fd:cc:82:9f:10:4a:0c:81:89:24:d8:60:f9: ff:9e:2e:6e:a0:3c:24:4d:c6:d2:d7:9e:a3:bb:c9: 1d:44:93:2c:71:cc:58:ad:69:65:42:86:11:49:c3: ff:71:bb:16:b7:77:f3:8d:ef:9f:23:3f:f3:fe:5e: 34:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:A1:B6:06:09:B7:9D:24:0C:AA:50:60:78:2A:E0:39:68:E8:E6:BC X509v3 Authority Key Identifier: keyid:7A:2C:A0:9A:85:71:29:B1:80:42:82:49:23:12:43:3D:AB:75:E6:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/eiygmoVxKbGAQoJJIxJDPat15sI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eiygmoVxKbGAQoJJIxJDPat15sI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112571/209949E461EF11EDA768A967C4F9AE02/ECDFCD86656711EDBED7F511C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.17.4.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:a3:8b:75:ab:29:fc:d2:69:96:69:14:cf:65:72:04:0c:86: 93:46:da:79:5b:62:b0:6c:16:ed:8e:99:2f:34:8a:29:c0:a2: ce:f8:47:33:74:cd:be:68:50:a4:b8:54:b7:72:de:a8:2b:57: 74:2a:32:a9:dd:aa:9b:80:9f:92:69:f1:ed:09:48:34:03:f9: ee:65:8b:0e:56:69:74:d5:b9:c5:db:35:d5:65:fe:c3:33:01: ef:de:68:0a:ba:93:f8:4d:04:18:de:4f:05:85:f4:b3:9f:f8: e8:10:ec:ea:8f:c3:99:04:b6:40:36:01:ad:27:3d:6a:58:76: 4c:d4:1c:9a:ac:5d:ec:ef:8b:7a:3a:d6:ab:f3:2a:55:3f:ac: 6f:06:5e:cc:dc:f1:71:f7:52:93:c1:97:7e:05:0d:21:fc:b3: a6:fe:62:30:7b:18:20:cc:59:78:9e:80:eb:e7:d9:05:31:4d: 93:79:88:49:7c:a5:3d:48:8f:57:43:6b:c9:9c:69:3f:80:65: 77:69:64:c3:06:37:bc:ac:90:a4:58:b1:0e:93:63:40:7d:ea: 84:35:ed:e7:4f:29:cf:73:9a:fd:4a:f5:a4:e8:71:5d:df:36: fa:9d:95:9a:ca:24:d4:48:84:e0:4b:59:97:35:8b:01:6f:f7: c6:80:68:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAWkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI1NzExMTAvBgNVBAUTKDdBMkNBMDlBODU3MTI5QjE4MDQyODI0OTIzMTI0MzNE QUI3NUU2QzIwHhcNMjQwOTI1MDIzNjQ0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzNzczYi1iMTE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA74bFeSh+kAnhu6xxQ7DAG63Z0t1WokNF+Y6lGrulbahldZ+raYj3s9aME4oO xrO19/EJTwDRwAmo3kaaXq3F//lZEpX/ct0V3/VosstfULPuOlAp4vn2miNGyNP8 rbX57vcC/OY7fRiXarUG1ZKIfDUyjG1NM5Kh/Ydzc1UZKlb7HAmeqJi9/3+iDD0G Hejwaxl2zELITlMaFwDD0ZwDnm0PXLrXc/sGZR8Ljd8jGTD512xPJ3gwhDk/Vwn+ 1KFDy6xdff3Mgp8QSgyBiSTYYPn/ni5uoDwkTcbS156ju8kdRJMsccxYrWllQoYR ScP/cbsWt3fzje+fIz/z/l40XwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLyhtgYJ t50kDKpQYHgq4Dlo6Oa8MB8GA1UdIwQYMBaAFHosoJqFcSmxgEKCSSMSQz2rdebC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjU3MS8yMDk5NDlFNDYx RUYxMUVEQTc2OEE5NjdDNEY5QUUwMi9laXlnbW9WeEtiR0FRb0pKSXhKRFBhdDE1 c0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VpeWdtb1Z4S2JHQVFvSkpJeEpEUGF0MTVzSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI1NzEvMjA5OTQ5RTQ2MUVGMTFFREE3NjhBOTY3QzRGOUFFMDIvRUNERkNEODY2 NTY3MTFFREJFRDdGNTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnEQQwDQYJKoZIhvcNAQELBQADggEBAAqji3WrKfzSaZZp FM9lcgQMhpNG2nlbYrBsFu2OmS80iinAos74RzN0zb5oUKS4VLdy3qgrV3QqMqnd qpuAn5Jp8e0JSDQD+e5liw5WaXTVucXbNdVl/sMzAe/eaAq6k/hNBBjeTwWF9LOf +OgQ7OqPw5kEtkA2Aa0nPWpYdkzUHJqsXezvi3o61qvzKlU/rG8GXszc8XH3UpPB l34FDSH8s6b+YjB7GCDMWXiegOvn2QUxTZN5iEl8pT1Ij1dDa8mcaT+AZXdpZMMG N7yskKRYsQ6TY0B96oQ17edPKc9zmv1K9aTocV3fNvqdlZrKJNRIhOBLWZc1iwFv 98aAaKI= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:32 2024 by rpki-client on console-ams.rpki-client.org