$ rpki-client -vvf rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/E4804004737211EC866EAC24C4F9AE02.roa File: E4804004737211EC866EAC24C4F9AE02.roa (raw, json) Hash identifier: NdcrODMvzPxbGahsHjIC859CSUu00GxcxQ7bS9fv+uc= Subject key identifier: 07:29:76:C1:00:83:23:0D:30:FE:54:F8:B2:05:0E:28:F8:55:6C:5A Certificate issuer: /CN=A912AC33/serialNumber=C95CE9D1B6B31081C025D46A3A167FCFDFA72634 Certificate serial: 0390 Authority key identifier: C9:5C:E9:D1:B6:B3:10:81:C0:25:D4:6A:3A:16:7F:CF:DF:A7:26:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/E4804004737211EC866EAC24C4F9AE02.roa Signing time: Wed 11 Sep 2024 03:35:06 +0000 ROA not before: Wed 11 Sep 2024 03:35:06 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 59253 IP address blocks: 103.47.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.crl rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 912 (0x390) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AC33/serialNumber=C95CE9D1B6B31081C025D46A3A167FCFDFA72634 Validity Not Before: Sep 11 03:35:06 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e10fe9-a802 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:dd:53:2d:4c:53:6b:de:2b:1b:30:90:bf:ef: 51:ec:b1:c2:92:91:9b:ee:2b:bf:a0:5e:8c:31:1a: af:a9:aa:2d:0f:2d:f9:cd:0e:f0:35:d5:9a:e2:47: 3d:1f:11:e0:b4:7e:64:76:82:07:38:2e:ea:fb:db: 99:0d:b5:31:86:d4:82:dc:cc:4c:ca:28:30:ad:94: b8:68:8c:18:37:4e:8a:04:04:1b:94:87:0f:5d:a1: 54:03:b2:b6:5f:46:77:95:a7:22:c6:ce:d0:74:60: ff:5d:18:bb:93:bd:81:8f:67:aa:da:e5:40:90:13: 76:18:44:1b:96:e4:b0:ab:cc:8f:50:0e:a2:82:7e: e2:6a:c2:e0:78:dd:21:c7:8b:d2:7c:d7:a5:1e:eb: 0e:06:ec:4f:0a:a5:14:26:37:61:69:38:f3:76:97: 8f:9e:ec:35:72:a9:e8:e4:92:be:ba:80:a7:a0:90: d6:f5:d6:62:fd:83:56:ea:4a:1d:cb:38:8f:a0:93: 5f:a7:be:c1:08:5a:44:f1:f6:c3:8c:48:c4:36:eb: cd:8f:ac:4f:1e:06:3e:19:f4:c0:71:8e:65:ec:51: d8:30:0a:cd:a4:9d:71:e5:54:53:fa:26:e9:84:81: 28:58:e2:b3:57:15:b7:72:d0:6a:59:f7:dd:54:fc: d3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:29:76:C1:00:83:23:0D:30:FE:54:F8:B2:05:0E:28:F8:55:6C:5A X509v3 Authority Key Identifier: keyid:C9:5C:E9:D1:B6:B3:10:81:C0:25:D4:6A:3A:16:7F:CF:DF:A7:26:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVzp0bazEIHAJdRqOhZ_z9-nJjQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AC33/04B3348872BC11EC86116D5EC4F9AE02/E4804004737211EC866EAC24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.47.155.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:fb:82:42:c2:a6:69:a5:a9:da:71:f1:2c:0c:45:30:f4:16: b7:d6:93:9a:ed:c1:51:c6:72:c4:93:da:6d:e9:74:9f:6d:e4: e6:df:26:3b:cb:29:c6:43:f3:62:80:2f:99:cf:09:a9:95:50: d2:ef:41:eb:e8:c0:61:83:e8:e3:7b:15:5d:d2:30:68:d2:eb: f6:5b:bc:2c:03:88:e7:1d:d7:c6:ba:d8:38:0c:40:9e:79:1d: 92:5c:32:18:d9:07:d3:b3:97:42:19:dd:76:85:b7:31:55:ae: b9:4f:48:96:68:ef:e8:8c:2d:ba:61:f5:1d:fa:89:a6:11:29: 42:3b:86:3f:d9:cb:e3:34:20:60:95:1c:a2:84:e2:3d:d1:9f: 52:07:20:de:b7:dd:45:d4:a6:75:dc:80:f6:70:69:9a:5e:eb: 40:cc:62:5c:22:9f:c2:f0:2d:03:f2:c8:e9:59:94:6b:9a:53: 96:2e:49:dd:89:c6:89:44:74:e1:06:b8:fa:a3:e1:f0:5a:a0: 23:8e:1f:96:a6:4e:58:7a:80:91:48:71:16:62:a8:a1:48:0d: 14:0f:bb:d8:65:2e:fc:6d:31:01:70:0b:59:38:c9:c7:84:1e: 85:a4:f7:9f:38:e7:8d:38:70:3d:94:97:4b:7e:d6:76:0f:a7: da:17:92:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA5AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFDMzMxMTAvBgNVBAUTKEM5NUNFOUQxQjZCMzEwODFDMDI1RDQ2QTNBMTY3RkNG REZBNzI2MzQwHhcNMjQwOTExMDMzNTA2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUxMGZlOS1hODAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqd1TLUxTa94rGzCQv+9R7LHCkpGb7iu/oF6MMRqvqaotDy35zQ7wNdWa4kc9 HxHgtH5kdoIHOC7q+9uZDbUxhtSC3MxMyigwrZS4aIwYN06KBAQblIcPXaFUA7K2 X0Z3lacixs7QdGD/XRi7k72Bj2eq2uVAkBN2GEQbluSwq8yPUA6ign7iasLgeN0h x4vSfNelHusOBuxPCqUUJjdhaTjzdpePnuw1cqno5JK+uoCnoJDW9dZi/YNW6kod yziPoJNfp77BCFpE8fbDjEjENuvNj6xPHgY+GfTAcY5l7FHYMArNpJ1x5VRT+ibp hIEoWOKzVxW3ctBqWffdVPzTIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAcpdsEA gyMNMP5U+LIFDij4VWxaMB8GA1UdIwQYMBaAFMlc6dG2sxCBwCXUajoWf8/fpyY0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUMzMy8wNEIzMzQ4ODcy QkMxMUVDODYxMTZENUVDNEY5QUUwMi95VnpwMGJhekVJSEFKZFJxT2haX3o5LW5K alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lWenAwYmF6RUlIQUpkUnFPaFpfejktbkpqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFDMzMvMDRCMzM0ODg3MkJDMTFFQzg2MTE2RDVFQzRGOUFFMDIvRTQ4MDQwMDQ3 MzcyMTFFQzg2NkVBQzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnL5swDQYJKoZIhvcNAQELBQADggEBAE/7gkLCpmmlqdpx 8SwMRTD0FrfWk5rtwVHGcsST2m3pdJ9t5ObfJjvLKcZD82KAL5nPCamVUNLvQevo wGGD6ON7FV3SMGjS6/ZbvCwDiOcd18a62DgMQJ55HZJcMhjZB9Ozl0IZ3XaFtzFV rrlPSJZo7+iMLbph9R36iaYRKUI7hj/Zy+M0IGCVHKKE4j3Rn1IHIN633UXUpnXc gPZwaZpe60DMYlwin8LwLQPyyOlZlGuaU5YuSd2JxolEdOEGuPqj4fBaoCOOH5am Tlh6gJFIcRZiqKFIDRQPu9hlLvxtMQFwC1k4yceEHoWk95845404cD2Ul0t+1nYP p9oXkj4= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:20 2024 by rpki-client on console-ams.rpki-client.org