$ rpki-client -vvf rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/627A6758DF2A11EEBC440C5EC4F9AE02.roa File: 627A6758DF2A11EEBC440C5EC4F9AE02.roa (raw, json) Hash identifier: Pd8L7s4R6wRwdLV9+7BZMCdFVQ0DCoXNeo8OuEc6g0M= Subject key identifier: 75:84:5A:2E:29:33:FB:06:82:C5:31:5C:37:87:D8:53:A3:62:73:F2 Certificate issuer: /CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Certificate serial: 0237 Authority key identifier: 36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/627A6758DF2A11EEBC440C5EC4F9AE02.roa Signing time: Sat 03 Aug 2024 03:34:21 +0000 ROA not before: Sat 03 Aug 2024 03:34:21 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138622 IP address blocks: 103.189.236.0/23 maxlen: 23 103.189.236.0/24 maxlen: 24 103.189.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:15:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113BE5/serialNumber=3646EB1F370B7E63D1F36DEB36C2476C96E6BAE8 Validity Not Before: Aug 3 03:34:21 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ada53d-06da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:01:2f:84:51:50:47:00:0f:e1:03:98:12:0a: 95:58:8f:8f:27:8e:5d:40:2c:0a:6a:f7:25:03:d3: 63:39:bb:a4:bd:3d:4a:ed:f9:98:13:d9:5e:43:b1: 6d:fb:c7:2e:b2:5c:9a:4c:1e:60:85:db:64:aa:da: 6c:a5:a9:d4:70:7d:5d:6b:e2:f4:e9:11:40:40:23: 12:b5:89:85:95:45:96:3a:5a:99:c1:0e:9f:f7:6d: 4a:f7:a5:3e:a3:9c:47:c8:74:ec:85:23:18:60:6a: 1d:60:d9:35:d2:ce:8f:bc:7f:3e:df:6b:da:04:54: 56:13:f7:a8:04:7c:df:ad:ea:6e:26:8e:3d:a9:45: 01:dd:d0:22:27:2f:f3:2b:1b:e8:1a:25:1b:1d:31: d5:d0:84:c8:f2:b3:8b:b6:23:be:72:28:88:24:bf: 6e:5e:2c:0e:6c:3a:5a:f4:12:21:b5:f0:aa:de:4d: 9b:1c:cb:e7:61:8f:44:56:48:ce:8f:7b:85:30:50: fa:94:87:9e:cb:96:8f:30:9b:9e:44:ef:96:6a:f0: 5b:31:ca:d2:d0:05:2a:dc:a7:0b:c1:f7:6f:f8:d0: 1e:a5:06:5d:95:79:aa:fa:8e:70:5f:34:b3:c5:bd: c3:88:d3:51:61:c7:20:82:27:b7:ce:c3:7b:0c:b7: 1d:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:84:5A:2E:29:33:FB:06:82:C5:31:5C:37:87:D8:53:A3:62:73:F2 X509v3 Authority Key Identifier: keyid:36:46:EB:1F:37:0B:7E:63:D1:F3:6D:EB:36:C2:47:6C:96:E6:BA:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/NkbrHzcLfmPR823rNsJHbJbmuug.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkbrHzcLfmPR823rNsJHbJbmuug.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113BE5/611C512CF0F311EC84B29C80C4F9AE02/627A6758DF2A11EEBC440C5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.236.0/23 Signature Algorithm: sha256WithRSAEncryption b0:71:70:1b:a6:ed:e6:a7:ea:5c:25:1d:0b:f9:8a:80:cb:25: 0d:91:7d:2f:4f:5a:a6:0a:8a:52:f0:8d:61:ce:44:63:37:84: ed:0d:d3:3d:f8:d3:ac:a3:29:8d:9e:fc:37:63:48:6d:e9:7d: f6:41:96:14:29:35:f7:57:46:45:48:e4:2f:c3:55:a8:16:48: 06:62:c3:05:09:dd:fa:8c:77:58:84:96:2e:a5:a0:5d:e2:d1: 3f:86:04:4d:f5:43:af:6f:c8:58:99:c7:07:b3:27:a7:b3:f9: ac:c8:fc:29:32:ad:30:25:6e:41:42:f4:25:e6:17:1e:66:d8: 5e:93:65:16:b8:c5:a1:9a:85:a8:74:eb:c4:da:fe:ed:df:05: be:bb:6e:a2:63:03:eb:ae:f1:1b:a7:8d:0c:80:d7:b9:3c:2c: c7:38:61:77:04:58:d3:c4:d3:07:d4:8a:d0:d7:12:d1:d5:2b: 16:fa:b0:81:92:3a:11:c7:0b:bf:63:00:fc:33:d5:be:0d:d3: c8:a8:91:c8:9a:56:b7:ed:9d:c1:69:05:3f:a1:8c:04:91:68: f3:65:88:01:4e:cc:f7:a2:fc:d8:b3:21:b1:83:b3:c7:b9:e9: 06:7a:b1:c6:bd:8f:f8:ec:af:0a:21:f1:1f:89:e4:b7:71:b9: 49:da:ff:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTNCRTUxMTAvBgNVBAUTKDM2NDZFQjFGMzcwQjdFNjNEMUYzNkRFQjM2QzI0NzZD OTZFNkJBRTgwHhcNMjQwODAzMDMzNDIxWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkYTUzZC0wNmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwEvhFFQRwAP4QOYEgqVWI+PJ45dQCwKavclA9NjObukvT1K7fmYE9leQ7Ft +8cuslyaTB5ghdtkqtpspanUcH1da+L06RFAQCMStYmFlUWWOlqZwQ6f921K96U+ o5xHyHTshSMYYGodYNk10s6PvH8+32vaBFRWE/eoBHzfrepuJo49qUUB3dAiJy/z KxvoGiUbHTHV0ITI8rOLtiO+ciiIJL9uXiwObDpa9BIhtfCq3k2bHMvnYY9EVkjO j3uFMFD6lIeey5aPMJueRO+WavBbMcrS0AUq3KcLwfdv+NAepQZdlXmq+o5wXzSz xb3DiNNRYccggie3zsN7DLcdlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHWEWi4p M/sGgsUxXDeH2FOjYnPyMB8GA1UdIwQYMBaAFDZG6x83C35j0fNt6zbCR2yW5rro MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExM0JFNS82MTFDNTEyQ0Yw RjMxMUVDODRCMjlDODBDNEY5QUUwMi9Oa2JySHpjTGZtUFI4MjNyTnNKSGJKYm11 dWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rYnJIemNMZm1QUjgyM3JOc0pIYkpibXV1Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTNCRTUvNjExQzUxMkNGMEYzMTFFQzg0QjI5QzgwQzRGOUFFMDIvNjI3QTY3NThE RjJBMTFFRUJDNDQwQzVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnvewwDQYJKoZIhvcNAQELBQADggEBALBxcBum7ean6lwl HQv5ioDLJQ2RfS9PWqYKilLwjWHORGM3hO0N0z3406yjKY2e/DdjSG3pffZBlhQp NfdXRkVI5C/DVagWSAZiwwUJ3fqMd1iEli6loF3i0T+GBE31Q69vyFiZxwezJ6ez +azI/CkyrTAlbkFC9CXmFx5m2F6TZRa4xaGahah068Ta/u3fBb67bqJjA+uu8Run jQyA17k8LMc4YXcEWNPE0wfUitDXEtHVKxb6sIGSOhHHC79jAPwz1b4N08iokcia VrftncFpBT+hjASRaPNliAFOzPei/NizIbGDs8e56QZ6sca9j/jsrwoh8R+J5Ldx uUna/yo= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:32 2024 by rpki-client on console-ams.rpki-client.org