$ rpki-client -vvf rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa File: 627B1438281211EA881CC32DC4F9AE02.roa (raw, json) Hash identifier: g8z7pfsZjZXsZNzC0de4NUY66eo2G1FWTU8PNhYjoTA= Subject key identifier: 75:0B:89:AD:F6:F5:F6:95:FE:59:C9:2A:17:36:40:F3:FD:A6:17:9D Certificate issuer: /CN=A912D70A/serialNumber=ED330820FFABD0AB2841BA93E902EA682992DAA9 Certificate serial: 0B22 Authority key identifier: ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa Signing time: Thu 16 May 2024 20:28:57 +0000 ROA not before: Thu 16 May 2024 20:28:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.229.8.0/24 maxlen: 24 103.229.9.0/24 maxlen: 24 103.229.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2850 (0xb22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912D70A Validity Not Before: May 16 20:28:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66466c89-d16f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:75:93:d1:09:ec:d6:6a:f5:02:61:ea:f1:f1: a2:fb:8e:2d:35:bd:42:33:4e:bb:40:74:22:10:f4: 91:e8:72:31:b3:06:ed:21:01:8b:9d:1b:8d:7a:31: 0b:e6:6c:1c:ab:92:f1:ee:fa:25:31:f3:8a:ab:9e: 58:97:72:79:19:13:e4:dd:6a:fe:e0:cb:ad:52:f3: 38:18:cb:f1:e2:d6:7a:29:93:80:1f:37:57:73:3e: 0d:a2:86:13:7f:d9:a4:9d:cb:b3:e3:a8:c7:23:e1: 88:3e:4c:d5:7f:d6:ae:d9:06:32:82:f2:96:b3:23: 3e:fd:e6:a2:64:12:5a:32:a1:5e:0d:07:65:a1:d3: 3d:13:e6:7d:3d:f9:f2:d2:dc:f7:fa:31:8c:e9:0e: c1:c5:79:5c:a9:b8:77:af:ca:b1:5c:0e:da:e8:b6: 60:4f:5e:0b:6e:32:ab:59:cf:3a:54:4b:73:f8:c8: 28:fc:97:35:5d:62:9b:44:2c:00:b7:cd:39:a0:7a: e6:c4:c5:ba:9e:43:5f:f6:20:4e:03:0a:7d:bd:ae: 43:4a:d2:b4:bd:91:45:5b:29:c0:4a:d4:68:7b:6c: fa:15:65:8b:73:d1:21:53:4f:98:4e:5f:89:4e:9c: 6a:00:4e:32:d1:dc:7d:39:64:33:54:6e:80:8f:41: 11:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:0B:89:AD:F6:F5:F6:95:FE:59:C9:2A:17:36:40:F3:FD:A6:17:9D X509v3 Authority Key Identifier: keyid:ED:33:08:20:FF:AB:D0:AB:28:41:BA:93:E9:02:EA:68:29:92:DA:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/7TMIIP-r0KsoQbqT6QLqaCmS2qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7TMIIP-r0KsoQbqT6QLqaCmS2qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912D70A/41ABD29E1B8611EA9C9AF243C4F9AE02/627B1438281211EA881CC32DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.8.0-103.229.10.255 Signature Algorithm: sha256WithRSAEncryption 4d:2e:c1:f3:65:6f:ac:ec:94:f2:1f:80:34:1c:0c:8f:7e:14: b8:cc:30:c3:47:ba:6b:9b:fb:63:f6:d0:ad:5d:0d:07:17:26: 71:a6:bc:70:21:07:3e:ea:77:cf:f3:1c:8f:34:3a:48:33:69: 55:70:17:e6:c3:77:c3:37:c6:22:f1:be:ec:d8:2e:3f:4b:0f: 2e:2e:5e:65:1a:fe:f3:b1:14:53:19:6c:79:06:61:4e:04:39: f6:6f:f8:60:4a:3a:67:40:65:15:82:7c:fb:1b:91:d8:e8:81: 11:b5:a5:35:1e:95:d4:31:06:e0:9d:07:a0:a5:3e:84:24:73: 54:b7:25:e8:1f:d0:1a:bb:32:6e:ac:4e:c1:07:46:38:c3:10: 08:65:cd:8d:c8:54:98:2d:dd:5d:b2:a0:94:d9:9c:af:15:1a: 7d:e7:d3:9a:cf:5e:61:cb:b5:59:23:fb:5c:9c:41:c0:9e:10: a4:09:12:17:2b:af:07:69:8b:27:da:82:7d:fb:5c:db:56:79: 01:2a:2d:33:0d:ff:dc:a6:21:b6:46:e3:8f:0e:56:c2:06:aa: bd:dc:71:58:36:23:93:9e:05:1f:69:92:fc:37:c0:40:ca:6e: d3:cc:ea:49:0b:38:be:a7:9a:92:b8:34:14:6f:b8:eb:cd:fc: 84:5f:79:b4 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICCyIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkQ3MEExMTAvBgNVBAUTKEVEMzMwODIwRkZBQkQwQUIyODQxQkE5M0U5MDJFQTY4 Mjk5MkRBQTkwHhcNMjQwNTE2MjAyODU3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2NmM4OS1kMTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XWT0Qns1mr1AmHq8fGi+44tNb1CM067QHQiEPSR6HIxswbtIQGLnRuNejEL 5mwcq5Lx7volMfOKq55Yl3J5GRPk3Wr+4MutUvM4GMvx4tZ6KZOAHzdXcz4NooYT f9mkncuz46jHI+GIPkzVf9au2QYygvKWsyM+/eaiZBJaMqFeDQdlodM9E+Z9Pfny 0tz3+jGM6Q7BxXlcqbh3r8qxXA7a6LZgT14LbjKrWc86VEtz+Mgo/Jc1XWKbRCwA t805oHrmxMW6nkNf9iBOAwp9va5DStK0vZFFWynAStRoe2z6FWWLc9EhU0+YTl+J TpxqAE4y0dx9OWQzVG6Aj0ERcwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFHULia32 9faV/lnJKhc2QPP9phedMB8GA1UdIwQYMBaAFO0zCCD/q9CrKEG6k+kC6mgpktqp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRDcwQS80MUFCRDI5RTFC ODYxMUVBOUM5QUYyNDNDNEY5QUUwMi83VE1JSVAtcjBLc29RYnFUNlFMcWFDbVMy cWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdUTUlJUC1yMEtzb1FicVQ2UUxxYUNtUzJxay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkQ3MEEvNDFBQkQyOUUxQjg2MTFFQTlDOUFGMjQzQzRGOUFFMDIvNjI3QjE0Mzgy ODEyMTFFQTg4MUNDMzJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEA2flCAMEAGflCjANBgkqhkiG9w0BAQsFAAOCAQEATS7B 82VvrOyU8h+ANBwMj34UuMwww0e6a5v7Y/bQrV0NBxcmcaa8cCEHPup3z/McjzQ6 SDNpVXAX5sN3wzfGIvG+7NguP0sPLi5eZRr+87EUUxlseQZhTgQ59m/4YEo6Z0Bl FYJ8+xuR2OiBEbWlNR6V1DEG4J0HoKU+hCRzVLcl6B/QGrsybqxOwQdGOMMQCGXN jchUmC3dXbKglNmcrxUafefTms9eYcu1WSP7XJxBwJ4QpAkSFyuvB2mLJ9qCfftc 21Z5ASotMw3/3KYhtkbjjw5WwgaqvdxxWDYjk54FH2mS/DfAQMpu08zqSQs4vqea krg0FG+46838hF95tA== -----END CERTIFICATE-----Generated at Sun Feb 16 15:45:20 2025 by rpki-client