$ rpki-client -vvf rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/E84DCBC422D211EDAF1F924EC4F9AE02.roa File: E84DCBC422D211EDAF1F924EC4F9AE02.roa (raw, json) Hash identifier: DSJZavi/LmOaDs/V5ru83cEJvd41YvTKAbFr9jXt5Xk= Subject key identifier: 5B:D9:84:9D:2D:02:F3:CB:53:3C:E7:87:20:CF:D6:E4:32:0D:EA:28 Certificate issuer: /CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Certificate serial: 0607 Authority key identifier: A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/E84DCBC422D211EDAF1F924EC4F9AE02.roa Signing time: Fri 04 Oct 2024 23:02:05 +0000 ROA not before: Fri 04 Oct 2024 23:02:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132382 IP address blocks: 103.14.172.0/24 maxlen: 24 103.14.173.0/24 maxlen: 24 103.14.174.0/24 maxlen: 24 103.14.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1543 (0x607) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131EDD/serialNumber=A4694BE47C4F3BC94805D4A366A007C69070512E Validity Not Before: Oct 4 23:02:05 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670073ec-28eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7a:82:60:29:60:39:1d:19:d0:b0:c4:f3:a6: 6f:90:62:2a:19:10:e8:1b:b5:77:c7:b8:5b:de:89: 8e:9d:1c:be:dc:49:28:c7:b9:13:13:d6:f1:1d:22: 13:1c:09:82:e1:0b:f7:bf:aa:6e:63:11:51:01:7b: 11:57:92:05:ee:53:da:64:f8:76:c0:45:c8:60:03: 83:1f:62:08:84:2b:cd:a0:6e:ff:ab:c8:c5:85:ef: 44:e9:88:30:6e:ee:3b:5f:03:c0:dd:ae:5d:c6:2d: 10:f8:96:98:a9:41:37:49:0b:8b:e7:d1:14:57:23: cd:b0:c2:37:09:12:c1:e5:4f:06:f2:a1:6e:79:73: 87:c2:77:ba:95:fd:0a:b3:88:c7:76:ef:0f:bc:09: ac:f3:34:aa:24:5d:6e:8c:b7:c3:1c:6d:72:04:ca: b3:72:61:e9:65:ce:97:31:81:bb:dd:df:fe:f7:3e: c3:dc:fc:47:09:7c:e7:bc:8a:54:c9:6b:55:6d:2b: 78:19:6b:cb:79:b2:5e:44:e7:d5:e3:d8:18:2a:be: 6a:8d:8c:fb:56:f8:3f:b7:20:01:0d:75:c8:72:61: 9f:9a:c0:16:b3:93:39:71:28:6e:59:6e:9f:2c:b3: bc:90:bb:3e:9d:ec:2f:a3:83:35:f1:98:a5:05:e5: 4e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D9:84:9D:2D:02:F3:CB:53:3C:E7:87:20:CF:D6:E4:32:0D:EA:28 X509v3 Authority Key Identifier: keyid:A4:69:4B:E4:7C:4F:3B:C9:48:05:D4:A3:66:A0:07:C6:90:70:51:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/pGlL5HxPO8lIBdSjZqAHxpBwUS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pGlL5HxPO8lIBdSjZqAHxpBwUS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131EDD/210B43047BBF11EBA02A4339C4F9AE02/E84DCBC422D211EDAF1F924EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.14.172.0/22 Signature Algorithm: sha256WithRSAEncryption a6:c4:7f:df:fe:67:52:82:f5:cb:5f:42:a8:e3:f4:24:ab:d0: ad:ca:44:a1:8b:c2:6a:df:66:da:18:3a:7f:cd:29:15:96:28: 5e:a7:c0:68:30:d2:ec:ab:23:0d:0e:c4:86:cf:71:1b:f5:13: 9d:c3:8a:1e:e0:df:ed:f8:d3:cd:5a:a2:d9:dc:7b:db:42:fb: 2d:c9:3a:65:da:85:d4:d6:9c:80:12:6d:38:06:74:68:5f:46: 89:73:5f:a0:7e:f0:49:21:da:53:30:cd:01:d2:af:d3:2c:02: 6b:b3:a1:7e:da:35:f2:7d:29:80:b9:dc:47:2a:89:d4:7a:62: 26:3e:93:36:65:8e:e3:bf:ef:d1:a6:40:a2:c7:6b:cd:6f:ea: 14:d9:d2:d2:2f:d2:43:53:e0:af:b3:bc:af:49:ac:cb:e8:fc: 2d:bd:d0:ca:59:5f:be:ba:59:b5:da:90:14:99:bb:de:dd:ea: f8:b5:0a:f3:2e:fe:29:e0:7f:dd:7b:10:c8:1e:8c:e9:9e:ff: b0:f7:ca:c4:17:77:55:6c:f8:f2:51:09:b3:c5:72:ae:4a:2f: 45:7d:45:f3:a7:47:ed:85:58:03:63:91:20:2d:b6:21:36:cf: 03:7c:97:f3:b4:99:bf:14:a6:3a:18:6a:9d:ee:f4:93:2e:3f: 73:ef:06:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFFREQxMTAvBgNVBAUTKEE0Njk0QkU0N0M0RjNCQzk0ODA1RDRBMzY2QTAwN0M2 OTA3MDUxMkUwHhcNMjQxMDA0MjMwMjA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwNzNlYy0yOGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnqCYClgOR0Z0LDE86ZvkGIqGRDoG7V3x7hb3omOnRy+3Ekox7kTE9bxHSIT HAmC4Qv3v6puYxFRAXsRV5IF7lPaZPh2wEXIYAODH2IIhCvNoG7/q8jFhe9E6Ygw bu47XwPA3a5dxi0Q+JaYqUE3SQuL59EUVyPNsMI3CRLB5U8G8qFueXOHwne6lf0K s4jHdu8PvAms8zSqJF1ujLfDHG1yBMqzcmHpZc6XMYG73d/+9z7D3PxHCXznvIpU yWtVbSt4GWvLebJeROfV49gYKr5qjYz7Vvg/tyABDXXIcmGfmsAWs5M5cShuWW6f LLO8kLs+newvo4M18ZilBeVOAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFvZhJ0t AvPLUzznhyDP1uQyDeooMB8GA1UdIwQYMBaAFKRpS+R8TzvJSAXUo2agB8aQcFEu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUVERC8yMTBCNDMwNDdC QkYxMUVCQTAyQTQzMzlDNEY5QUUwMi9wR2xMNUh4UE84bElCZFNqWnFBSHhwQndV UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BHbEw1SHhQTzhsSUJkU2pacUFIeHBCd1VTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFFREQvMjEwQjQzMDQ3QkJGMTFFQkEwMkE0MzM5QzRGOUFFMDIvRTg0RENCQzQy MkQyMTFFREFGMUY5MjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnDqwwDQYJKoZIhvcNAQELBQADggEBAKbEf9/+Z1KC9ctf Qqjj9CSr0K3KRKGLwmrfZtoYOn/NKRWWKF6nwGgw0uyrIw0OxIbPcRv1E53Dih7g 3+34081aotnce9tC+y3JOmXahdTWnIASbTgGdGhfRolzX6B+8Ekh2lMwzQHSr9Ms AmuzoX7aNfJ9KYC53EcqidR6YiY+kzZljuO/79GmQKLHa81v6hTZ0tIv0kNT4K+z vK9JrMvo/C290MpZX766WbXakBSZu97d6vi1CvMu/ingf917EMgejOme/7D3ysQX d1Vs+PJRCbPFcq5KL0V9RfOnR+2FWANjkSAttiE2zwN8l/O0mb8UpjoYap3u9JMu P3PvBko= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:37 2024 by rpki-client on console-ams.rpki-client.org