$ rpki-client -vvf rpki.apnic.net/member_repository/A9113066/6782E2DA4E3F11ECA2B52B31C4F9AE02/DD6C545E09C811EE8591800EC4F9AE02.roa File: DD6C545E09C811EE8591800EC4F9AE02.roa (raw, json) Hash identifier: XHEj0/VOcaEAp8kGdqYnSsA9MJOujRUQRX0ZVKAE4yE= Subject key identifier: 52:51:FD:97:9B:8F:97:6E:54:0D:01:58:13:0A:25:B7:BE:D8:A3:20 Certificate issuer: /CN=A9113066/serialNumber=11BE935002F028C17CEFCB5F0A586839925B534A Certificate serial: 041F Authority key identifier: 11:BE:93:50:02:F0:28:C1:7C:EF:CB:5F:0A:58:68:39:92:5B:53:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eb6TUALwKMF878tfClhoOZJbU0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113066/6782E2DA4E3F11ECA2B52B31C4F9AE02/DD6C545E09C811EE8591800EC4F9AE02.roa Signing time: Tue 29 Oct 2024 00:26:28 +0000 ROA not before: Tue 29 Oct 2024 00:26:28 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 210488 IP address blocks: 103.177.45.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113066/6782E2DA4E3F11ECA2B52B31C4F9AE02/Eb6TUALwKMF878tfClhoOZJbU0o.crl rsync://rpki.apnic.net/member_repository/A9113066/6782E2DA4E3F11ECA2B52B31C4F9AE02/Eb6TUALwKMF878tfClhoOZJbU0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eb6TUALwKMF878tfClhoOZJbU0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1055 (0x41f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113066/serialNumber=11BE935002F028C17CEFCB5F0A586839925B534A Validity Not Before: Oct 29 00:26:28 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=67202bb3-2ca1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:30:a5:c3:e2:f6:3d:1e:82:0f:6a:e1:25:b1: 94:dc:6d:2e:ad:be:c3:15:1b:dd:5d:05:2b:05:18: 93:db:92:6d:99:54:98:27:39:e8:dd:38:55:3f:c7: 62:3f:cb:6e:aa:95:e7:71:8c:36:7a:b8:8f:77:39: 18:ee:da:c8:2e:df:23:99:16:12:a3:6e:c8:f4:b9: 49:53:1a:2b:0b:23:75:7b:86:59:7a:bc:1b:fe:e9: 8e:cf:ef:c7:7f:6d:b4:61:0a:15:62:b0:8c:4a:91: e2:f6:d6:91:65:44:99:9b:80:50:99:68:7b:b3:83: a0:93:04:76:96:76:06:db:17:23:43:1f:34:40:19: c8:6e:1b:7f:da:2f:81:c9:11:fe:30:64:98:7b:58: 1d:a0:1b:87:88:97:96:e9:49:0e:1d:62:76:09:fe: 90:9c:2e:a4:0f:e5:b6:e7:2c:0a:37:37:83:54:b9: a3:b0:15:a1:0b:f1:bc:f8:d2:40:64:94:46:69:6e: 49:67:15:5a:75:1b:87:79:ec:47:91:bc:1d:3f:fb: e3:a7:2d:28:1a:16:9d:a6:6d:a6:3f:3a:d8:65:41: 3b:c9:29:63:0a:a3:ba:5e:b0:b0:fc:1f:06:a2:1e: 69:4b:18:cd:e6:32:a5:11:de:fc:66:7f:15:0a:ae: 2d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:51:FD:97:9B:8F:97:6E:54:0D:01:58:13:0A:25:B7:BE:D8:A3:20 X509v3 Authority Key Identifier: keyid:11:BE:93:50:02:F0:28:C1:7C:EF:CB:5F:0A:58:68:39:92:5B:53:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113066/6782E2DA4E3F11ECA2B52B31C4F9AE02/Eb6TUALwKMF878tfClhoOZJbU0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eb6TUALwKMF878tfClhoOZJbU0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113066/6782E2DA4E3F11ECA2B52B31C4F9AE02/DD6C545E09C811EE8591800EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.177.45.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:95:af:64:cb:5c:8c:eb:2a:ab:03:ae:2e:1a:f6:6a:32:0d: 91:18:cb:85:3e:c9:3f:80:9f:17:60:99:cc:fb:9a:95:82:e2: 72:00:0a:25:58:12:b9:8d:b0:85:80:f9:50:62:9b:17:93:45: 2c:70:ba:3e:cb:f6:d7:9a:05:09:50:1f:49:42:7c:2f:28:6e: 29:ff:95:0f:b1:80:df:f2:51:67:8f:3e:5a:12:e8:6e:f4:75: 0e:10:f2:3c:83:4f:dd:07:79:40:38:25:d8:01:b2:71:98:c2: 4e:2c:0e:c6:58:ab:45:f8:e4:76:c5:1b:4c:09:28:53:f1:19: 60:03:0f:42:08:80:a0:7d:93:b2:ee:f2:1a:02:e5:d5:5f:d9: 3d:f3:22:0b:5d:0b:be:10:06:70:77:83:5c:45:b8:fa:49:fc: f9:48:00:2e:36:34:f9:3b:1f:1c:2b:ed:c7:0e:d2:08:81:05: 69:be:17:56:30:60:0d:4b:a9:cd:07:18:30:bd:00:fd:dc:0a: 82:e4:3d:44:26:85:c1:d9:b7:fc:d6:de:61:93:3f:4d:93:39: 54:c8:48:dc:f3:2f:62:79:5f:2b:78:ed:0f:34:1b:a6:8a:54: a2:be:7d:23:90:2f:6a:7c:c2:a1:35:04:7f:bb:71:56:ef:65: fe:a9:9e:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTMwNjYxMTAvBgNVBAUTKDExQkU5MzUwMDJGMDI4QzE3Q0VGQ0I1RjBBNTg2ODM5 OTI1QjUzNEEwHhcNMjQxMDI5MDAyNjI4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMmJiMy0yY2ExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvjClw+L2PR6CD2rhJbGU3G0urb7DFRvdXQUrBRiT25JtmVSYJzno3ThVP8di P8tuqpXncYw2eriPdzkY7trILt8jmRYSo27I9LlJUxorCyN1e4ZZerwb/umOz+/H f220YQoVYrCMSpHi9taRZUSZm4BQmWh7s4OgkwR2lnYG2xcjQx80QBnIbht/2i+B yRH+MGSYe1gdoBuHiJeW6UkOHWJ2Cf6QnC6kD+W25ywKNzeDVLmjsBWhC/G8+NJA ZJRGaW5JZxVadRuHeexHkbwdP/vjpy0oGhadpm2mPzrYZUE7ySljCqO6XrCw/B8G oh5pSxjN5jKlEd78Zn8VCq4tnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFJR/Zeb j5duVA0BWBMKJbe+2KMgMB8GA1UdIwQYMBaAFBG+k1AC8CjBfO/LXwpYaDmSW1NK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMzA2Ni82NzgyRTJEQTRF M0YxMUVDQTJCNTJCMzFDNEY5QUUwMi9FYjZUVUFMd0tNRjg3OHRmQ2xob09aSmJV MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ViNlRVQUx3S01GODc4dGZDbGhvT1pKYlUwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTMwNjYvNjc4MkUyREE0RTNGMTFFQ0EyQjUyQjMxQzRGOUFFMDIvREQ2QzU0NUUw OUM4MTFFRTg1OTE4MDBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsS0wDQYJKoZIhvcNAQELBQADggEBAC6Vr2TLXIzrKqsD ri4a9moyDZEYy4U+yT+Anxdgmcz7mpWC4nIACiVYErmNsIWA+VBimxeTRSxwuj7L 9teaBQlQH0lCfC8obin/lQ+xgN/yUWePPloS6G70dQ4Q8jyDT90HeUA4JdgBsnGY wk4sDsZYq0X45HbFG0wJKFPxGWADD0IIgKB9k7Lu8hoC5dVf2T3zIgtdC74QBnB3 g1xFuPpJ/PlIAC42NPk7Hxwr7ccO0giBBWm+F1YwYA1Lqc0HGDC9AP3cCoLkPUQm hcHZt/zW3mGTP02TOVTISNzzL2J5Xyt47Q80G6aKVKK+fSOQL2p8wqE1BH+7cVbv Zf6pnqA= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:55 2024 by rpki-client on console-ams.rpki-client.org