$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa File: EDDDD55C252E11EEB91A8941C4F9AE02.roa (raw, json) Hash identifier: m4/XYPyR0t0QTdVUGQuibqisDKdS4FjJbYWDjlXAYpQ= Subject key identifier: 1E:32:D0:71:54:F4:FC:70:DB:E9:8B:27:D9:FB:4E:97:B2:3E:8E:7B Certificate issuer: /CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Certificate serial: D3 Authority key identifier: 24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa Signing time: Fri 07 Jun 2024 07:40:58 +0000 ROA not before: Fri 07 Jun 2024 07:40:58 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151333 IP address blocks: 103.199.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE24/serialNumber=24223D0C7D101DB7AD7E3CB8DDB170629365CAEE Validity Not Before: Jun 7 07:40:58 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6662b98a-caf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:fd:01:7c:a1:c0:eb:1e:31:46:0f:35:3b:cb: 54:87:5e:ca:40:c1:46:22:00:ee:5e:bc:41:dd:5a: c7:d4:73:62:7b:83:cf:d8:2d:48:aa:15:85:ab:32: 83:0b:42:18:46:90:93:bf:eb:29:5f:da:aa:d2:c5: 63:f0:2e:d6:e1:fb:80:e1:37:a3:40:f0:b8:cf:90: ec:a3:98:98:de:24:7b:10:d0:ee:fd:c7:b6:20:81: 38:cb:d4:c7:6c:c5:20:42:1b:e2:55:ee:f5:0a:44: 62:8c:92:59:fe:81:25:d3:95:b7:3b:df:1a:03:0e: 30:c4:28:74:6a:7e:25:48:c1:a5:6a:14:56:10:48: 78:27:ab:6e:ef:ef:6e:03:94:86:d8:10:d7:f8:59: f4:45:31:3a:cc:bc:5b:e2:e1:6b:f5:87:40:7a:89: c3:5b:5a:68:be:e0:b8:69:90:cd:25:5f:3f:63:d6: 0d:6a:b3:28:d5:81:34:12:d4:2e:c8:44:df:0c:7c: 5b:d2:6e:9b:c8:fc:06:8b:c8:a6:bf:e6:14:6f:bc: 2e:86:85:72:3b:e0:42:92:c5:6b:0e:8e:2a:cf:34: 30:ac:ee:8e:fd:38:88:c7:14:15:01:6f:6a:3c:bd: a4:1c:69:19:00:8d:2d:a6:ed:96:2f:ba:5c:4e:73: c0:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:32:D0:71:54:F4:FC:70:DB:E9:8B:27:D9:FB:4E:97:B2:3E:8E:7B X509v3 Authority Key Identifier: keyid:24:22:3D:0C:7D:10:1D:B7:AD:7E:3C:B8:DD:B1:70:62:93:65:CA:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/JCI9DH0QHbetfjy43bFwYpNlyu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JCI9DH0QHbetfjy43bFwYpNlyu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE24/F2F675FEF3FF11ED952D741CC4F9AE02/EDDDD55C252E11EEB91A8941C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.199.141.0/24 Signature Algorithm: sha256WithRSAEncryption 90:06:58:3a:a4:9f:8f:eb:9b:53:a4:11:1c:61:cd:00:cf:08: 07:7c:73:99:98:a5:1f:2a:f0:c4:44:1c:0c:87:2b:e1:b5:08: 3f:06:1c:c9:40:e9:72:b0:3d:1a:87:ec:93:cc:55:27:21:59: 7c:d0:31:0b:5d:0b:95:b9:5e:43:72:4f:29:6b:c1:3b:ad:b7: 86:1d:ad:85:a5:7f:02:cf:fb:f4:6e:02:43:c2:0d:b4:e6:aa: 7b:2d:82:23:3c:92:b1:36:d0:d9:08:e6:47:69:66:fa:38:8b: a7:31:e7:da:e8:fc:63:b2:d1:e3:f2:a5:13:0f:ce:07:6d:1d: 5f:6c:4e:d7:f4:ad:3e:4c:19:b1:d2:75:a1:70:ee:19:18:c7: 85:24:72:15:c0:d1:0e:fd:94:67:9b:4f:4d:32:5a:5a:80:48: 4a:3c:92:af:c4:b4:38:e6:00:03:98:2a:bf:81:11:5f:89:d0: 39:eb:89:df:39:4c:1b:14:32:14:0d:48:0a:2c:88:64:29:12: cb:2a:8c:11:1f:50:35:87:1a:90:9f:83:de:dd:c1:a4:3a:63: f9:5b:06:73:89:bb:af:44:3a:29:24:5d:28:c9:c9:d0:cc:b5: 6b:c2:09:99:40:7c:8a:47:1c:3b:36:0c:1f:b5:4c:be:d7:09: 95:c3:14:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFMjQxMTAvBgNVBAUTKDI0MjIzRDBDN0QxMDFEQjdBRDdFM0NCOEREQjE3MDYy OTM2NUNBRUUwHhcNMjQwNjA3MDc0MDU4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyYjk4YS1jYWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmv0BfKHA6x4xRg81O8tUh17KQMFGIgDuXrxB3VrH1HNie4PP2C1IqhWFqzKD C0IYRpCTv+spX9qq0sVj8C7W4fuA4TejQPC4z5Dso5iY3iR7ENDu/ce2IIE4y9TH bMUgQhviVe71CkRijJJZ/oEl05W3O98aAw4wxCh0an4lSMGlahRWEEh4J6tu7+9u A5SG2BDX+Fn0RTE6zLxb4uFr9YdAeonDW1povuC4aZDNJV8/Y9YNarMo1YE0EtQu yETfDHxb0m6byPwGi8imv+YUb7wuhoVyO+BCksVrDo4qzzQwrO6O/TiIxxQVAW9q PL2kHGkZAI0tpu2WL7pcTnPAIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB4y0HFU 9Pxw2+mLJ9n7TpeyPo57MB8GA1UdIwQYMBaAFCQiPQx9EB23rX48uN2xcGKTZcru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUUyNC9GMkY2NzVGRUYz RkYxMUVEOTUyRDc0MUNDNEY5QUUwMi9KQ0k5REgwUUhiZXRmank0M2JGd1lwTmx5 dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pDSTlESDBRSGJldGZqeTQzYkZ3WXBObHl1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFMjQvRjJGNjc1RkVGM0ZGMTFFRDk1MkQ3NDFDQzRGOUFFMDIvRUREREQ1NUMy NTJFMTFFRUI5MUE4OTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnx40wDQYJKoZIhvcNAQELBQADggEBAJAGWDqkn4/rm1Ok ERxhzQDPCAd8c5mYpR8q8MREHAyHK+G1CD8GHMlA6XKwPRqH7JPMVSchWXzQMQtd C5W5XkNyTylrwTutt4YdrYWlfwLP+/RuAkPCDbTmqnstgiM8krE20NkI5kdpZvo4 i6cx59ro/GOy0ePypRMPzgdtHV9sTtf0rT5MGbHSdaFw7hkYx4UkchXA0Q79lGeb T00yWlqASEo8kq/EtDjmAAOYKr+BEV+J0Dnrid85TBsUMhQNSAosiGQpEssqjBEf UDWHGpCfg97dwaQ6Y/lbBnOJu69EOikkXSjJydDMtWvCCZlAfIpHHDs2DB+1TL7X CZXDFLY= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:44 2024 by rpki-client on console-fra.rpki-client.org