$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/1CB1C32E69CC11EF85A51547C4F9AE02.roa File: 1CB1C32E69CC11EF85A51547C4F9AE02.roa (raw, json) Hash identifier: Tk7TmPKu6HXa9S0L6i939WD4Cb/7QJ+CpQ5gmwJKHis= Subject key identifier: 11:9C:99:B9:66:8B:E0:38:72:AD:29:0E:DA:F2:DB:19:92:3E:C4:B4 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06B9 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/1CB1C32E69CC11EF85A51547C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:43:07 +0000 ROA not before: Thu 24 Oct 2024 23:43:07 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 3223 IP address blocks: 103.228.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1721 (0x6b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:43:07 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb8b-e778 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5d:a4:8f:c4:c5:96:6c:29:57:fb:69:d3:21: 37:6b:f8:91:e0:c6:76:b1:4c:3c:fc:96:bd:f3:9a: 11:5d:48:20:d8:24:48:47:7c:f7:e5:3b:38:30:d5: 0d:0f:4d:6f:57:b1:f1:78:78:05:dd:aa:c8:3f:5c: 02:77:82:f1:95:d6:a7:a9:d5:f0:f1:eb:7e:31:32: 27:21:e1:c1:f9:ce:f5:dd:1c:c1:6c:09:86:5c:be: c9:a7:23:f8:7f:67:52:69:a2:bd:4a:f2:52:e6:f0: c7:cd:9a:7c:f2:4b:82:28:5b:d7:27:bf:c6:04:60: d8:03:f4:ea:39:7b:37:43:d3:cb:42:1f:9e:e4:f5: 2f:ca:92:24:56:a0:f8:98:d5:c1:9d:ef:c6:a3:c0: 45:57:00:ad:88:48:67:39:fd:f2:63:82:2c:9a:5e: f4:88:49:c1:03:9d:82:a7:85:41:8b:04:ce:06:e9: 31:71:b9:90:98:5b:62:2d:64:56:50:19:b3:75:e2: f0:54:00:90:0e:58:8c:cf:83:8e:3c:28:4f:a9:41: d9:e7:8d:ad:09:a3:a4:ce:48:6e:11:8a:d5:46:56: a2:c5:95:f6:80:05:e4:0b:10:15:5d:15:23:48:df: 96:93:f9:2b:b5:c7:81:c2:47:d4:20:0c:ff:e1:f1: c7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:9C:99:B9:66:8B:E0:38:72:AD:29:0E:DA:F2:DB:19:92:3E:C4:B4 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/1CB1C32E69CC11EF85A51547C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.64.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:aa:b8:a7:ff:bf:a1:56:be:99:e7:d5:95:f7:d3:fd:bd:7e: e8:3d:41:cc:6c:04:45:3c:43:01:32:72:18:0a:cc:44:e2:63: 27:ae:62:91:f9:ea:01:51:a5:c4:81:18:37:c1:44:5a:bf:97: ef:d3:3f:20:96:24:e7:a3:47:06:0d:71:82:49:cd:33:8a:39: 2f:53:95:78:d7:75:b9:b2:62:5d:17:94:62:42:1a:da:0c:06: bb:2c:bb:ca:93:8c:1a:74:e1:ef:98:35:da:7e:fe:3f:65:97: 06:42:95:2f:09:5f:28:fc:b2:10:f4:20:d0:e1:4c:7d:df:48: 9a:eb:14:cb:68:1e:90:da:2c:b2:2c:dd:31:b8:d4:32:3c:2d: 13:5f:e2:fd:9e:84:67:8c:ec:52:02:1d:29:6b:bf:7d:1a:38: 4b:fd:82:5c:60:e3:f0:87:60:63:7a:a4:ba:c5:b8:a5:93:ee: 12:a1:50:a5:b6:07:a5:3a:85:5e:9c:15:68:2e:00:39:0f:c6: 04:07:05:04:7b:5e:e9:35:00:b3:b7:04:74:5c:3e:f1:8e:3f: e9:ef:bd:f1:36:8b:f4:e5:91:6a:6c:33:3a:fa:13:b0:30:84: 10:41:cf:03:ac:0f:4e:73:6c:bf:a4:64:62:22:02:b7:b4:75: 16:b3:53:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MzA3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI4Yi1lNzc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3F2kj8TFlmwpV/tp0yE3a/iR4MZ2sUw8/Ja985oRXUgg2CRIR3z35Ts4MNUN D01vV7HxeHgF3arIP1wCd4LxldanqdXw8et+MTInIeHB+c713RzBbAmGXL7JpyP4 f2dSaaK9SvJS5vDHzZp88kuCKFvXJ7/GBGDYA/TqOXs3Q9PLQh+e5PUvypIkVqD4 mNXBne/Go8BFVwCtiEhnOf3yY4Isml70iEnBA52Cp4VBiwTOBukxcbmQmFtiLWRW UBmzdeLwVACQDliMz4OOPChPqUHZ542tCaOkzkhuEYrVRlaixZX2gAXkCxAVXRUj SN+Wk/krtceBwkfUIAz/4fHHrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBGcmblm i+A4cq0pDtry2xmSPsS0MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvMUNCMUMzMkU2 OUNDMTFFRjg1QTUxNTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5EAwDQYJKoZIhvcNAQELBQADggEBAHyquKf/v6FWvpnn 1ZX30/29fug9QcxsBEU8QwEychgKzETiYyeuYpH56gFRpcSBGDfBRFq/l+/TPyCW JOejRwYNcYJJzTOKOS9TlXjXdbmyYl0XlGJCGtoMBrssu8qTjBp04e+YNdp+/j9l lwZClS8JXyj8shD0INDhTH3fSJrrFMtoHpDaLLIs3TG41DI8LRNf4v2ehGeM7FIC HSlrv30aOEv9glxg4/CHYGN6pLrFuKWT7hKhUKW2B6U6hV6cFWguADkPxgQHBQR7 Xuk1ALO3BHRcPvGOP+nvvfE2i/TlkWpsMzr6E7AwhBBBzwOsD05zbL+kZGIiAre0 dRazU/k= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org