$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EC081D70FA4811EDA9C77777C4F9AE02.roa File: EC081D70FA4811EDA9C77777C4F9AE02.roa (raw, json) Hash identifier: uOURo9p9h7PukY6N/mlaaUWR4t1hYqlrzWQoyxCS6ME= Subject key identifier: 3E:94:92:67:81:B4:41:8E:3D:06:BB:B1:1D:1E:1A:D8:44:94:F3:42 Certificate issuer: /CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Certificate serial: D2 Authority key identifier: 24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EC081D70FA4811EDA9C77777C4F9AE02.roa Signing time: Fri 07 Jun 2024 07:40:57 +0000 ROA not before: Fri 07 Jun 2024 07:40:57 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136969 IP address blocks: 103.199.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:59:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Validity Not Before: Jun 7 07:40:57 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6662b989-40ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:16:1e:21:df:01:83:ee:8f:46:c4:6d:2c:30: 6f:a1:2d:69:f9:8e:3c:ca:0b:82:e5:4f:d1:e1:b0: 73:a1:e2:b1:66:58:da:3e:43:59:53:7f:26:19:59: 79:0c:68:62:f6:fc:4c:52:11:7f:ae:52:a8:2c:b9: 73:c6:4b:e3:04:54:c9:4b:9a:06:bb:95:f8:89:6a: d4:0d:b9:0d:7f:ec:94:c2:28:30:45:8b:ee:b9:27: 3a:f5:1f:39:23:06:82:9e:3c:51:64:3a:8f:ee:25: 01:3c:b4:99:26:3a:f2:20:53:3a:8f:2b:91:4e:bb: f9:04:63:2b:68:24:60:64:ac:43:bd:89:41:1f:fe: 36:87:9e:b0:58:b6:c2:7b:ef:d9:bf:79:e0:2e:2d: 53:05:e5:b2:6c:fc:5f:b6:37:52:b5:62:8c:6f:6b: e8:96:d2:50:43:04:d6:06:bb:fc:21:9b:0c:15:59: 4c:37:ba:19:b2:dd:1e:19:fc:97:a3:89:6e:e5:2f: a1:44:89:3c:27:e9:f1:87:7f:84:d0:10:25:12:ea: d5:78:45:22:3c:7a:28:a6:57:73:72:c9:48:a4:12: f6:65:62:f6:90:d2:43:d8:20:6a:c5:28:08:e7:8f: 7c:2e:e8:7d:eb:6c:06:1a:a1:4d:c0:db:2d:a4:f4: 64:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:94:92:67:81:B4:41:8E:3D:06:BB:B1:1D:1E:1A:D8:44:94:F3:42 X509v3 Authority Key Identifier: keyid:24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EC081D70FA4811EDA9C77777C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.141.0/24 Signature Algorithm: sha256WithRSAEncryption 57:86:07:f1:bd:0e:1c:d0:6d:8b:07:0a:ef:bf:ec:d9:d1:80: ae:9e:1f:38:04:5f:3e:09:5f:63:15:33:41:fa:ba:58:0a:70: 71:b2:59:b8:3e:c2:93:f3:37:bf:3d:21:6d:8e:1d:fd:76:e4: 82:d6:30:87:24:e9:96:79:0e:f2:7d:ec:a5:77:df:98:6b:c0: 77:bf:ef:59:22:e3:76:cf:88:75:ee:05:89:4c:e1:ce:44:17: 38:37:53:0b:1f:ee:bd:96:9d:2c:13:1d:5c:de:00:1c:ad:ac: c9:62:ab:3b:3a:f0:3c:49:cb:d4:55:3f:74:d4:3f:f1:51:bf: d7:5f:62:74:7e:f3:a4:15:47:df:6b:91:48:59:42:0e:45:80: 69:2d:a3:d7:86:34:5f:67:0f:f2:82:8b:e9:e2:c7:23:a9:a0: 70:7a:08:5c:a9:db:73:78:d2:c5:54:15:44:e3:4e:69:16:1a: 9d:9a:26:c4:d3:8c:fb:ec:a3:ed:95:a2:1a:6e:1e:b3:17:ef: 95:2a:85:1f:7d:01:9f:8d:c9:68:79:85:9e:96:74:35:3a:d8: 14:c2:d9:13:db:0b:9a:ac:0f:40:72:1b:41:9f:ba:28:6f:99: e1:d8:19:d4:35:4f:ad:97:05:02:da:6e:f4:2a:fe:73:5d:ab: 7b:c1:ee:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFMjQxMTAvBgNVBAUTKDI0MjIzRDBDN0QxMDFEQjdBRDdFM0NCOEREQjE3MDYy OTM2NUNBRUUwHhcNMjQwNjA3MDc0MDU3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyYjk4OS00MGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxYeId8Bg+6PRsRtLDBvoS1p+Y48yguC5U/R4bBzoeKxZljaPkNZU38mGVl5 DGhi9vxMUhF/rlKoLLlzxkvjBFTJS5oGu5X4iWrUDbkNf+yUwigwRYvuuSc69R85 IwaCnjxRZDqP7iUBPLSZJjryIFM6jyuRTrv5BGMraCRgZKxDvYlBH/42h56wWLbC e+/Zv3ngLi1TBeWybPxftjdStWKMb2voltJQQwTWBrv8IZsMFVlMN7oZst0eGfyX o4lu5S+hRIk8J+nxh3+E0BAlEurVeEUiPHoopldzcslIpBL2ZWL2kNJD2CBqxSgI 5498Luh962wGGqFNwNstpPRkWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD6UkmeB tEGOPQa7sR0eGthElPNCMB8GA1UdIwQYMBaAFCQiPQx9EB23rX48uN2xcGKTZcru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUUyNC9GMkY2NzVGRUYz RkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhiZXRmank0M2JGd1lwTmx5 dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDSTlESDBRSGJldGZqeTQzYkZ3WXBObHl1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFMjQvRjJGNjc1RkVGM0ZGMTFFRDk1MkQ3NDFDQzRGOUFFMDIvRUMwODFENzBG QTQ4MTFFREE5Qzc3Nzc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnx40wDQYJKoZIhvcNAQELBQADggEBAFeGB/G9DhzQbYsH Cu+/7NnRgK6eHzgEXz4JX2MVM0H6ulgKcHGyWbg+wpPzN789IW2OHf125ILWMIck 6ZZ5DvJ97KV335hrwHe/71ki43bPiHXuBYlM4c5EFzg3Uwsf7r2WnSwTHVzeAByt rMliqzs68DxJy9RVP3TUP/FRv9dfYnR+86QVR99rkUhZQg5FgGkto9eGNF9nD/KC i+nixyOpoHB6CFyp23N40sVUFUTjTmkWGp2aJsTTjPvso+2VohpuHrMX75UqhR99 AZ+NyWh5hZ6WdDU62BTC2RPbC5qsD0ByG0GfuihvmeHYGdQ1T62XBQLabvQq/nNd q3vB7v4= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:00 2024 by rpki-client on console-ams.rpki-client.org