$ rpki-client -vvf rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/B4576B628C8511EF8E80211BC4F9AE02.roa File: B4576B628C8511EF8E80211BC4F9AE02.roa (raw, json) Hash identifier: 77EOR6iqn7Sqyog/DCd7QD6pc49nRiL5X6ZllwMwXEE= Subject key identifier: 3D:21:35:88:66:6A:01:F6:8F:84:2D:C7:B5:8F:51:07:D1:30:6E:48 Certificate issuer: /CN=A9117257/serialNumber=E9B600C9E6DD8CEEC972195D6349C89838F745BE Certificate serial: 010E Authority key identifier: E9:B6:00:C9:E6:DD:8C:EE:C9:72:19:5D:63:49:C8:98:38:F7:45:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6bYAyebdjO7JchldY0nImDj3Rb4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/B4576B628C8511EF8E80211BC4F9AE02.roa Signing time: Tue 29 Oct 2024 04:00:48 +0000 ROA not before: Tue 29 Oct 2024 04:00:48 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 7489 IP address blocks: 103.122.246.0/24 maxlen: 24 103.122.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/6bYAyebdjO7JchldY0nImDj3Rb4.crl rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/6bYAyebdjO7JchldY0nImDj3Rb4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6bYAyebdjO7JchldY0nImDj3Rb4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 270 (0x10e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9117257/serialNumber=E9B600C9E6DD8CEEC972195D6349C89838F745BE Validity Not Before: Oct 29 04:00:48 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67205df0-fd29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:10:fb:ad:77:b1:bd:f7:80:49:99:44:13:b8: 36:47:2f:4b:c1:c6:13:ef:3b:51:56:b8:49:79:5b: a9:78:44:38:d3:a8:27:dc:06:cb:a3:8c:e4:ab:ae: 7a:9e:79:30:34:e2:02:37:da:0a:33:2d:d8:1b:71: bf:8b:c5:e2:ab:42:1e:bd:9a:0a:1e:1d:9d:e7:70: 2e:d3:f4:0b:2a:96:05:14:d8:90:ff:4e:8c:b2:ba: 36:d4:16:79:4e:27:69:0a:33:33:7b:3b:f7:6c:05: e0:25:84:5d:14:fd:3e:7c:d5:88:e3:d2:d8:1c:2d: 97:7b:e2:c4:eb:57:a2:b4:8d:e2:23:b9:25:bd:4e: 64:dd:8f:c4:a1:38:1d:0d:1f:e9:2b:4d:cb:fd:2d: 70:fe:e4:57:4b:8e:d2:ce:8a:aa:c3:00:73:b0:21: 7a:25:0c:27:02:26:4b:1e:1e:ef:4e:e2:f9:71:17: 11:cf:99:d5:1e:66:34:a5:f6:6f:6b:95:ed:83:d0: ad:46:55:4e:d5:3e:7e:f4:ec:ec:9a:7f:5d:9b:f3: 68:d7:8c:8b:ec:88:04:ed:09:0a:c6:52:e8:6e:ce: b8:0c:7f:c2:0c:8f:73:d5:43:e9:0a:bb:0c:ce:ee: 2e:a3:79:b2:e0:4b:39:00:f5:16:60:40:81:76:b3: b3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:21:35:88:66:6A:01:F6:8F:84:2D:C7:B5:8F:51:07:D1:30:6E:48 X509v3 Authority Key Identifier: keyid:E9:B6:00:C9:E6:DD:8C:EE:C9:72:19:5D:63:49:C8:98:38:F7:45:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/6bYAyebdjO7JchldY0nImDj3Rb4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6bYAyebdjO7JchldY0nImDj3Rb4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9117257/94F497EE1E8211EE90B6263BC4F9AE02/B4576B628C8511EF8E80211BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.246.0/23 Signature Algorithm: sha256WithRSAEncryption b0:62:94:92:c3:33:31:5e:10:19:d7:d3:cc:6f:6c:21:b6:32: f9:37:0a:bf:84:8d:96:02:b2:ab:48:6d:8d:29:0d:12:13:d0: cd:ef:0f:05:4e:41:34:2a:fb:5e:4b:23:99:69:4a:11:28:ed: 82:c6:85:2d:3c:bb:c5:56:1e:b4:c2:fb:1d:ad:8e:5e:66:3b: 53:bb:66:6a:1b:b1:68:b0:28:45:2a:e0:09:0b:b0:e7:9d:4f: b7:10:f8:01:bf:6a:f7:6b:8c:61:ac:9c:31:1d:c7:50:ae:b0: b6:21:02:2e:54:22:1a:bb:a9:7d:90:b2:86:77:ff:36:76:1b: 60:03:50:1e:37:e4:c2:e4:2f:d9:ba:15:62:88:42:fe:59:03: 34:9c:65:62:e2:5d:1f:c4:8d:f0:85:4a:43:5b:a0:12:be:28: 36:94:0d:79:e2:e8:21:34:b5:25:68:1b:f2:2d:41:a5:10:8d: 57:4e:73:92:3b:93:da:95:39:0f:8b:e2:75:b6:8a:7e:0b:f7: 4e:b7:42:27:e9:01:1c:19:85:99:94:63:40:d7:fa:c5:e1:25: 64:d9:ec:45:e6:f9:ab:35:fa:b6:55:5f:a1:29:87:1b:27:47: d8:57:cb:95:70:cf:dc:0c:d7:6f:63:79:3c:65:c9:6e:23:4e: e8:9f:cd:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTcyNTcxMTAvBgNVBAUTKEU5QjYwMEM5RTZERDhDRUVDOTcyMTk1RDYzNDlDODk4 MzhGNzQ1QkUwHhcNMjQxMDI5MDQwMDQ4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwNWRmMC1mZDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhD7rXexvfeASZlEE7g2Ry9LwcYT7ztRVrhJeVupeEQ406gn3AbLo4zkq656 nnkwNOICN9oKMy3YG3G/i8Xiq0IevZoKHh2d53Au0/QLKpYFFNiQ/06Msro21BZ5 TidpCjMzezv3bAXgJYRdFP0+fNWI49LYHC2Xe+LE61eitI3iI7klvU5k3Y/EoTgd DR/pK03L/S1w/uRXS47SzoqqwwBzsCF6JQwnAiZLHh7vTuL5cRcRz5nVHmY0pfZv a5Xtg9CtRlVO1T5+9Ozsmn9dm/No14yL7IgE7QkKxlLobs64DH/CDI9z1UPpCrsM zu4uo3my4Es5APUWYECBdrOzSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD0hNYhm agH2j4Qtx7WPUQfRMG5IMB8GA1UdIwQYMBaAFOm2AMnm3YzuyXIZXWNJyJg490W+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNzI1Ny85NEY0OTdFRTFF ODIxMUVFOTBCNjI2M0JDNEY5QUUwMi82YllBeWViZGpPN0pjaGxkWTBuSW1EajNS YjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZiWUF5ZWJkak83SmNobGRZMG5JbURqM1JiNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTcyNTcvOTRGNDk3RUUxRTgyMTFFRTkwQjYyNjNCQzRGOUFFMDIvQjQ1NzZCNjI4 Qzg1MTFFRjhFODAyMTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnevYwDQYJKoZIhvcNAQELBQADggEBALBilJLDMzFeEBnX 08xvbCG2Mvk3Cr+EjZYCsqtIbY0pDRIT0M3vDwVOQTQq+15LI5lpShEo7YLGhS08 u8VWHrTC+x2tjl5mO1O7ZmobsWiwKEUq4AkLsOedT7cQ+AG/avdrjGGsnDEdx1Cu sLYhAi5UIhq7qX2QsoZ3/zZ2G2ADUB435MLkL9m6FWKIQv5ZAzScZWLiXR/EjfCF SkNboBK+KDaUDXni6CE0tSVoG/ItQaUQjVdOc5I7k9qVOQ+L4nW2in4L9063Qifp ARwZhZmUY0DX+sXhJWTZ7EXm+as1+rZVX6EphxsnR9hXy5Vwz9wM129jeTxlyW4j TuifzQI= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:00 2024 by rpki-client on console-ams.rpki-client.org