$ rpki-client -vvf rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa File: 9EF724BE2A4911EE81BCF50FC4F9AE02.roa (raw, json) Hash identifier: RgZyk1M0eEMoNtFOvPy85ZKQKHabcvIY9dY7CkjXass= Subject key identifier: 7A:37:60:24:D0:C6:CE:3E:44:82:7A:15:72:C2:15:1E:10:48:83:F2 Certificate issuer: /CN=A911710E/serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Certificate serial: 0102 Authority key identifier: CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa Signing time: Fri 30 Aug 2024 14:32:20 +0000 ROA not before: Fri 30 Aug 2024 14:32:20 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 7720 IP address blocks: 103.213.4.0/23 maxlen: 24 2401:5a0:1000::/44 maxlen: 48 2401:5a0:1010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:05:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911710E/serialNumber=CD1841B6C5BEF7C4782E67F663F3C19746199383 Validity Not Before: Aug 30 14:32:20 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66d1d7f3-368d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:cd:1a:46:47:9a:25:1c:19:57:b5:b7:12:e0: 14:39:e8:22:cb:c2:72:9c:01:af:80:db:c5:5c:61: e4:49:60:eb:cb:b7:88:3d:c6:9b:f7:c5:07:e9:5d: 76:4f:e0:62:f5:88:e1:db:d8:fc:4a:24:dc:ec:bd: 6e:7e:59:89:50:2c:5a:bf:de:0b:cd:8e:e2:8e:a1: a4:c4:2e:30:4e:7d:46:be:0a:27:01:7e:d7:ed:b0: a1:5f:71:51:2d:76:67:0e:38:3c:b5:3c:d7:63:ee: 87:d5:8e:75:6a:c9:7c:e8:d4:a6:f0:08:62:dc:5d: de:b7:86:cc:b7:40:ea:05:d4:38:8d:c1:18:6d:50: a2:9e:60:35:c6:0a:29:f3:26:3a:57:ee:e6:50:3f: 73:e2:66:f1:1f:3e:4e:9c:d6:99:c0:06:88:8a:36: 9a:f0:24:24:30:24:6e:c1:e4:d5:f1:24:d4:6b:8a: cd:65:78:28:4e:bc:79:18:41:7d:c4:39:58:9b:ab: 89:d1:65:e3:94:5a:a7:9a:79:66:ca:f0:2b:e3:30: 01:98:4f:e2:3d:ba:75:61:af:07:84:0a:1b:5e:8d: 85:a3:20:b4:04:88:e7:8e:67:50:33:7c:b5:12:13: 8e:02:57:b1:cf:dd:9e:97:0c:3d:9f:46:9e:e0:28: 2c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:37:60:24:D0:C6:CE:3E:44:82:7A:15:72:C2:15:1E:10:48:83:F2 X509v3 Authority Key Identifier: keyid:CD:18:41:B6:C5:BE:F7:C4:78:2E:67:F6:63:F3:C1:97:46:19:93:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zRhBtsW-98R4Lmf2Y_PBl0YZk4M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911710E/C93E178A01B511EE89F6EB78C4F9AE02/9EF724BE2A4911EE81BCF50FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.4.0/23 IPv6: 2401:5a0:1000::-2401:5a0:1010:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption c5:06:c8:cd:ba:02:9e:9d:75:5c:9b:3e:d6:b1:c6:ac:91:44: 81:2d:be:ad:35:9e:38:f4:8e:3e:48:36:e1:fe:94:a8:44:0a: 82:f6:d1:92:8b:a9:cf:cb:37:82:1d:2a:75:89:9f:53:0e:72: 88:77:82:e2:ab:e0:38:09:d1:be:b2:39:16:0e:99:f6:e1:c7: 90:0d:3b:b0:3c:da:a6:57:39:ca:ab:2d:94:e1:9c:35:fb:03: 34:2e:a9:27:3e:de:a7:d2:21:91:e9:53:bd:4f:f1:a5:7f:36: 5f:2a:69:b6:fa:b2:9c:fc:ec:42:dc:87:01:ce:a3:ba:23:d6: 41:fe:7e:9e:3b:f7:1d:f7:fc:4a:c5:f4:96:20:e7:62:42:a7: 32:9f:e1:25:8d:b3:83:d7:1d:16:28:a1:c8:77:e7:23:73:75: 81:a9:56:8c:21:dc:0e:84:47:1b:0a:fd:a3:95:15:2c:8c:3d: 6e:9a:f9:9a:8f:5b:54:66:a0:01:a7:9d:e9:b0:8d:5a:5a:29: c2:4e:50:ff:13:dc:3a:14:a2:35:16:44:12:0d:80:da:b8:63: e4:07:98:8f:c9:aa:be:6c:b9:be:9b:ef:29:af:8f:36:11:89: f7:d2:de:6d:dc:9c:f3:9a:f7:ba:40:61:a5:06:b2:50:27:82: 0f:64:e3:36 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcxMEUxMTAvBgNVBAUTKENEMTg0MUI2QzVCRUY3QzQ3ODJFNjdGNjYzRjNDMTk3 NDYxOTkzODMwHhcNMjQwODMwMTQzMjIwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxZDdmMy0zNjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA080aRkeaJRwZV7W3EuAUOegiy8JynAGvgNvFXGHkSWDry7eIPcab98UH6V12 T+Bi9Yjh29j8SiTc7L1uflmJUCxav94LzY7ijqGkxC4wTn1GvgonAX7X7bChX3FR LXZnDjg8tTzXY+6H1Y51asl86NSm8Ahi3F3et4bMt0DqBdQ4jcEYbVCinmA1xgop 8yY6V+7mUD9z4mbxHz5OnNaZwAaIijaa8CQkMCRuweTV8STUa4rNZXgoTrx5GEF9 xDlYm6uJ0WXjlFqnmnlmyvAr4zABmE/iPbp1Ya8HhAobXo2FoyC0BIjnjmdQM3y1 EhOOAlexz92elww9n0ae4CgsUwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFHo3YCTQ xs4+RIJ6FXLCFR4QSIPyMB8GA1UdIwQYMBaAFM0YQbbFvvfEeC5n9mPzwZdGGZOD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzEwRS9DOTNFMTc4QTAx QjUxMUVFODlGNkVCNzhDNEY5QUUwMi96UmhCdHNXLTk4UjRMbWYyWV9QQmwwWVpr NE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pSaEJ0c1ctOThSNExtZjJZX1BCbDBZWms0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTcxMEUvQzkzRTE3OEEwMUI1MTFFRTg5RjZFQjc4QzRGOUFFMDIvOUVGNzI0QkUy QTQ5MTFFRTgxQkNGNTBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMAwEAgABMAYDBAFn1QQwGQQCAAIwEzARAwYEJAEFoBADBwAkAQWgEBAwDQYJ KoZIhvcNAQELBQADggEBAMUGyM26Ap6ddVybPtaxxqyRRIEtvq01njj0jj5INuH+ lKhECoL20ZKLqc/LN4IdKnWJn1MOcoh3guKr4DgJ0b6yORYOmfbhx5ANO7A82qZX OcqrLZThnDX7AzQuqSc+3qfSIZHpU71P8aV/Nl8qabb6spz87ELchwHOo7oj1kH+ fp479x33/ErF9JYg52JCpzKf4SWNs4PXHRYooch35yNzdYGpVowh3A6ERxsK/aOV FSyMPW6a+ZqPW1RmoAGnnemwjVpaKcJOUP8T3DoUojUWRBINgNq4Y+QHmI/Jqr5s ub6b7ymvjzYRiffS3m3cnPOa97pAYaUGslAngg9k4zY= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:53 2024 by rpki-client on console-fra.rpki-client.org