$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9EB8A27A675C11EE81835581C4F9AE02.roa File: 9EB8A27A675C11EE81835581C4F9AE02.roa (raw, json) Hash identifier: OEqTkDyc1rPh8C5CXLgkDLbM+SU7rHYFTB3EDRvvg8I= Subject key identifier: DD:2B:38:B6:82:63:90:E0:E4:DA:79:20:DB:C7:EE:E6:EB:3D:5B:E5 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06B5 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9EB8A27A675C11EE81835581C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:43:02 +0000 ROA not before: Thu 24 Oct 2024 23:43:02 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 147002 IP address blocks: 43.229.154.0/24 maxlen: 24 103.20.222.0/24 maxlen: 24 103.48.169.0/24 maxlen: 24 103.225.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1717 (0x6b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:43:02 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb85-f3f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d0:db:5a:12:9c:b1:b5:df:ce:06:f0:87:cc: eb:8c:ba:c3:55:02:85:63:8a:02:18:ce:91:57:3f: 31:2c:b4:7d:e2:dd:fe:1b:67:b1:41:55:a1:e7:2f: e8:d3:a7:3f:be:3b:66:40:48:9f:d3:c2:3a:30:31: 02:c4:64:5f:82:37:5f:41:e7:a2:8b:e7:44:e5:b9: c8:af:1f:dc:28:e1:06:15:8b:d0:8f:7d:68:d4:00: 63:ff:bf:a2:ea:8c:e2:e0:ab:ec:fd:68:7f:5c:c0: cb:9e:10:62:82:84:85:b3:86:7d:9b:bf:52:90:97: 72:58:c3:e9:13:a3:68:9a:76:60:80:58:ec:d2:a5: 48:d4:14:9b:75:e9:83:72:ee:29:3c:d4:90:9f:dc: 55:17:89:b1:54:20:47:60:21:cd:83:3c:2c:8c:0f: dc:2a:3f:85:8f:15:0b:5b:3c:81:a7:e4:3b:b3:aa: bc:ad:54:e4:76:3e:82:0d:4c:a0:6e:74:80:ed:5d: e2:f6:6e:2a:f1:ec:78:c4:d8:e1:6a:e9:6e:76:fc: 18:7c:7f:9c:a8:b2:16:b0:f5:8c:20:f4:31:a6:8f: 23:d0:36:14:ec:5a:6d:c8:da:27:26:e8:61:f4:6b: 49:f2:32:4b:ac:77:9e:dd:0d:c4:3c:97:9d:9a:64: 51:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:2B:38:B6:82:63:90:E0:E4:DA:79:20:DB:C7:EE:E6:EB:3D:5B:E5 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9EB8A27A675C11EE81835581C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.154.0/24 103.20.222.0/24 103.48.169.0/24 103.225.199.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:4b:3c:03:96:00:0b:51:b8:55:05:4d:55:a0:30:61:2b:51: 6d:48:ab:9d:f9:34:2f:66:25:36:99:45:9f:0f:ff:07:bc:5e: 3d:3a:96:85:9c:bb:65:40:0a:0e:76:7b:36:68:77:35:8c:0f: e2:0c:d0:c1:56:b6:30:eb:4e:21:12:af:0a:07:f0:17:ae:42: db:9c:a8:a7:f7:cf:61:a3:65:a2:f9:82:6e:a9:71:25:c2:70: 5d:47:00:f0:8b:e8:d4:96:63:d0:0a:ae:d5:4b:38:49:1e:f4: 03:e6:b5:ba:91:c7:08:ce:59:1c:8d:e6:34:a2:1a:bb:de:e4: 26:09:ce:b1:7d:40:63:6e:41:0f:25:45:2d:df:c3:bf:86:0c: a5:64:a1:d7:48:cf:37:cc:a7:a1:d6:90:5e:64:a1:f3:11:3c: 97:fe:98:74:5a:64:41:ee:38:19:28:76:c8:b0:96:98:e3:4c: c4:d1:e9:93:9b:a7:e0:8d:6d:d8:30:9b:96:b9:6a:d0:4d:d8: 0b:9f:37:32:06:df:3a:fc:77:86:73:77:67:be:2b:2f:69:7e: 52:65:42:c0:cf:48:c8:5b:8c:89:fc:b5:3e:29:9e:81:d1:9d: 46:77:df:90:d0:8a:d5:b6:93:a1:99:fd:96:c3:3a:5f:8f:d9: 35:f2:87:89 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBrUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MzAyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI4NS1mM2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59DbWhKcsbXfzgbwh8zrjLrDVQKFY4oCGM6RVz8xLLR94t3+G2exQVWh5y/o 06c/vjtmQEif08I6MDECxGRfgjdfQeeii+dE5bnIrx/cKOEGFYvQj31o1ABj/7+i 6ozi4Kvs/Wh/XMDLnhBigoSFs4Z9m79SkJdyWMPpE6NomnZggFjs0qVI1BSbdemD cu4pPNSQn9xVF4mxVCBHYCHNgzwsjA/cKj+FjxULWzyBp+Q7s6q8rVTkdj6CDUyg bnSA7V3i9m4q8ex4xNjhauludvwYfH+cqLIWsPWMIPQxpo8j0DYU7FptyNonJuhh 9GtJ8jJLrHee3Q3EPJedmmRR6QIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFN0rOLaC Y5Dg5Np5INvH7ubrPVvlMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvOUVCOEEyN0E2 NzVDMTFFRTgxODM1NTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAr5ZoDBABnFN4DBABnMKkDBABn4ccwDQYJKoZIhvcNAQEL BQADggEBAF5LPAOWAAtRuFUFTVWgMGErUW1Iq535NC9mJTaZRZ8P/we8Xj06loWc u2VACg52ezZodzWMD+IM0MFWtjDrTiESrwoH8BeuQtucqKf3z2GjZaL5gm6pcSXC cF1HAPCL6NSWY9AKrtVLOEke9APmtbqRxwjOWRyN5jSiGrve5CYJzrF9QGNuQQ8l RS3fw7+GDKVkoddIzzfMp6HWkF5kofMRPJf+mHRaZEHuOBkodsiwlpjjTMTR6ZOb p+CNbdgwm5a5atBN2AufNzIG3zr8d4Zzd2e+Ky9pflJlQsDPSMhbjIn8tT4pnoHR nUZ335DQitW2k6GZ/ZbDOl+P2TXyh4k= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org