$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/32774EE811D111EF9084EB51C4F9AE02.roa File: 32774EE811D111EF9084EB51C4F9AE02.roa (raw, json) Hash identifier: xP6a2Fm0PA5GcUsRivI8UKiG6GftNlKvei6R3Wuqt8Q= Subject key identifier: AC:E1:23:56:32:DE:6C:85:7A:C4:01:DF:98:8F:5A:7F:CC:CD:4B:69 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06B0 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/32774EE811D111EF9084EB51C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:42:57 +0000 ROA not before: Thu 24 Oct 2024 23:42:57 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 140630 IP address blocks: 103.209.235.0/24 maxlen: 24 163.53.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1712 (0x6b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:42:57 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb81-771e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:14:6d:c8:c7:34:88:b6:0b:fc:09:ad:27:9b: d9:0b:94:e7:30:d9:73:ea:62:41:b2:9b:6c:59:89: 41:db:7e:a7:e7:25:d6:6b:f4:b5:24:2e:c2:07:b9: f8:29:a1:ef:f2:cc:76:99:8f:9a:3d:06:bd:3b:b3: 23:c1:66:cb:87:22:f1:46:48:39:04:a3:f9:92:5d: 20:af:07:42:42:68:e9:3c:f7:75:28:88:7e:ef:b6: 3d:82:c7:e1:b8:14:7c:9b:1e:33:87:ce:29:87:99: e9:fc:c6:b0:52:06:34:48:74:ec:1a:ae:80:39:48: f6:29:7c:0a:89:c5:64:dc:87:7f:15:09:26:fe:d1: 68:86:d5:8c:f8:f1:42:13:01:54:ae:e0:10:49:36: 29:9d:da:00:4a:89:58:93:54:7c:34:49:21:da:d8: d4:ce:d1:61:88:dd:4f:f9:a0:a4:1d:2e:17:87:eb: 26:31:01:6f:49:59:97:75:0d:12:f8:ec:71:fc:48: 9a:57:7e:21:75:04:a2:0c:be:f0:5b:b0:df:3c:6a: 3b:23:38:a3:81:fb:ed:17:c2:c2:65:cf:a6:68:6f: ba:01:4f:5e:71:b0:1e:90:65:c3:3a:0c:19:71:43: c4:9a:e2:3e:a7:b5:14:99:ce:2d:6a:f0:48:cc:29: 99:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E1:23:56:32:DE:6C:85:7A:C4:01:DF:98:8F:5A:7F:CC:CD:4B:69 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/32774EE811D111EF9084EB51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.209.235.0/24 163.53.19.0/24 Signature Algorithm: sha256WithRSAEncryption a6:75:a3:bd:2b:b2:7e:3c:f4:78:29:30:50:d0:1d:15:b7:f4: 89:cb:d9:07:e5:14:b3:cf:ae:57:1c:b9:44:59:a1:b7:87:5f: 84:ed:0f:79:6f:e8:02:50:74:ce:2e:19:fd:ec:4b:ab:62:c7: 32:dc:7f:a7:44:c5:69:67:8a:23:b1:f3:f1:d3:8f:96:7e:21: 9d:7e:67:73:1d:04:68:34:60:91:9c:bb:2c:31:26:0e:8b:25: d6:bd:ca:e2:ad:dd:39:7f:d4:bd:d3:f9:b4:ed:51:7b:a1:aa: 81:e6:1a:1b:69:01:39:1e:fa:d9:79:48:66:9d:0d:d5:7a:ee: cd:44:87:d8:81:fd:f2:d2:f4:b7:32:10:26:8c:a1:ec:2c:0e: 11:ea:a5:db:69:66:3a:39:32:de:44:59:e4:5a:bc:49:47:e8: ed:ec:91:58:40:f0:6a:96:f3:ac:ac:cd:c1:cf:c9:c1:ff:76: 83:57:64:92:3d:16:bf:f7:fc:8a:ae:56:b5:8b:92:6f:c9:bc: 7e:6d:8d:76:ac:83:53:73:db:91:39:2c:77:9d:b8:2b:d1:70: 71:ae:78:b7:f2:d3:a2:e6:9f:6c:49:71:44:30:26:11:21:d0: 3b:32:9a:73:65:93:a7:bd:68:48:c3:bf:8c:eb:46:f4:79:b1: c9:18:ac:7a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBrAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MjU3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI4MS03NzFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqRRtyMc0iLYL/AmtJ5vZC5TnMNlz6mJBsptsWYlB236n5yXWa/S1JC7CB7n4 KaHv8sx2mY+aPQa9O7MjwWbLhyLxRkg5BKP5kl0grwdCQmjpPPd1KIh+77Y9gsfh uBR8mx4zh84ph5np/MawUgY0SHTsGq6AOUj2KXwKicVk3Id/FQkm/tFohtWM+PFC EwFUruAQSTYpndoASolYk1R8NEkh2tjUztFhiN1P+aCkHS4Xh+smMQFvSVmXdQ0S +Oxx/EiaV34hdQSiDL7wW7DfPGo7IzijgfvtF8LCZc+maG+6AU9ecbAekGXDOgwZ cUPEmuI+p7UUmc4tavBIzCmZtwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKzhI1Yy 3myFesQB35iPWn/MzUtpMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvMzI3NzRFRTgx MUQxMTFFRjkwODRFQjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn0esDBACjNRMwDQYJKoZIhvcNAQELBQADggEBAKZ1o70r sn489HgpMFDQHRW39InL2QflFLPPrlccuURZobeHX4TtD3lv6AJQdM4uGf3sS6ti xzLcf6dExWlniiOx8/HTj5Z+IZ1+Z3MdBGg0YJGcuywxJg6LJda9yuKt3Tl/1L3T +bTtUXuhqoHmGhtpATke+tl5SGadDdV67s1Eh9iB/fLS9LcyECaMoewsDhHqpdtp Zjo5Mt5EWeRavElH6O3skVhA8GqW86yszcHPycH/doNXZJI9Fr/3/IquVrWLkm/J vH5tjXasg1Nz25E5LHeduCvRcHGueLfy06Lmn2xJcUQwJhEh0DsymnNlk6e9aEjD v4zrRvR5sckYrHo= -----END CERTIFICATE-----Generated at Thu Nov 21 00:21:18 2024 by rpki-client on console-fra.rpki-client.org