$ rpki-client -vvf rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/1EF2D862C9F511ED8771C865C4F9AE02.roa File: 1EF2D862C9F511ED8771C865C4F9AE02.roa (raw, json) Hash identifier: EksXJqRj0KH07WsHueUwybeZ3O7OwOE6F+VFPhINzRQ= Subject key identifier: B8:B4:0D:D7:7C:6D:C2:70:F7:EA:01:B2:44:82:C0:39:06:0F:08:FC Certificate issuer: /CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Certificate serial: 0121 Authority key identifier: 1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/1EF2D862C9F511ED8771C865C4F9AE02.roa Signing time: Sun 29 Sep 2024 03:17:36 +0000 ROA not before: Sun 29 Sep 2024 03:17:36 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 136798 IP address blocks: 103.96.128.0/24 maxlen: 24 103.96.129.0/24 maxlen: 24 103.96.130.0/24 maxlen: 24 103.96.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:42:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 289 (0x121) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1 Validity Not Before: Sep 29 03:17:36 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66f8c6d0-7e51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:de:cd:1b:85:ee:a4:80:a3:a8:5d:56:e7:14: d6:2e:b6:85:14:24:4a:df:cd:ef:50:a7:0c:d8:df: 31:68:17:32:3d:3e:2d:7d:71:24:f2:ab:72:96:1f: 81:46:c3:62:01:b1:7a:15:ac:3e:28:2c:52:74:ba: 97:1f:a1:86:65:6f:b3:50:3d:89:77:43:45:da:e8: a0:ba:dc:0d:06:0c:49:73:fa:c1:1f:8d:b2:64:64: ec:fb:f4:86:3f:e5:89:1a:a3:78:8e:4a:5f:7c:cc: 60:80:44:75:ee:c1:ca:4a:99:66:7b:0a:a5:3b:86: 3b:47:b1:6d:3c:20:18:5a:8a:4e:ec:37:81:b7:cd: 2f:fe:36:b1:34:dc:18:42:e2:ae:23:fa:3d:73:60: 93:f4:f9:3b:79:03:e6:a2:d0:ab:84:74:ce:05:7a: 33:fa:27:40:e2:c3:90:65:7c:70:e5:f2:05:09:51: 51:c3:0f:63:29:80:d8:35:cd:a7:06:a8:23:61:c5: 6b:15:cd:7e:bb:2f:43:0e:21:c0:91:b3:bb:15:a8: 77:84:72:18:7e:26:7b:fe:76:44:f5:14:fa:67:a5: 2c:33:9d:18:34:ab:07:d0:34:09:14:33:3c:f0:06: 07:ec:8e:a6:fe:39:9f:e9:ee:c8:f0:21:4d:ce:46: 94:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:B4:0D:D7:7C:6D:C2:70:F7:EA:01:B2:44:82:C0:39:06:0F:08:FC X509v3 Authority Key Identifier: keyid:1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/1EF2D862C9F511ED8771C865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.96.128.0/22 Signature Algorithm: sha256WithRSAEncryption b5:94:03:27:f4:dc:de:18:8d:98:89:26:fc:ff:fc:f5:0f:a6: d0:3a:f9:d4:0f:46:0f:7b:22:60:8e:07:e7:5e:9f:df:a6:12: 02:42:ee:12:71:ab:84:c3:e0:f6:89:f4:ce:ab:85:db:b5:ce: 9d:0f:d4:41:07:e4:56:dd:1e:18:98:73:71:44:50:4f:f2:ef: 6a:5e:f8:1d:e9:78:91:28:da:9d:1c:b1:3d:7f:a9:ad:f5:49: dc:86:f1:90:9f:65:63:34:6a:93:6d:ed:6e:39:35:e5:37:20: bd:b8:5a:10:64:78:57:b2:86:f3:d3:fa:fa:ee:62:00:80:16: 29:d4:8e:9f:65:f1:07:3b:9e:e1:91:88:1e:83:2b:59:7f:39: 8d:e1:f4:87:6a:e7:95:c9:49:7a:03:92:f7:6d:7c:2c:db:ac: f8:02:24:dc:eb:c6:ed:c2:20:c0:12:b8:9a:f2:f2:f6:ec:52: 79:77:48:95:f0:4b:83:7c:0c:18:b5:37:99:33:83:81:b0:98: 46:6b:f8:e6:e9:74:80:02:ed:06:05:0f:ff:45:2c:b4:8c:c6: 2c:fa:f1:59:b2:11:46:9a:81:e7:a7:82:fd:54:b0:f2:2a:48: 09:6c:f6:b8:46:f2:b7:d2:92:d2:75:80:56:9c:ed:50:97:38: b7:8e:c4:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICASEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI3N0MxMTAvBgNVBAUTKDFDRDQ5RUZCQzM3RUY0QThDNkM4ODc2NTYyQkQxMTMz NDRCQzdFRDEwHhcNMjQwOTI5MDMxNzM2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4YzZkMC03ZTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqd7NG4XupICjqF1W5xTWLraFFCRK383vUKcM2N8xaBcyPT4tfXEk8qtylh+B RsNiAbF6Faw+KCxSdLqXH6GGZW+zUD2Jd0NF2uigutwNBgxJc/rBH42yZGTs+/SG P+WJGqN4jkpffMxggER17sHKSplmewqlO4Y7R7FtPCAYWopO7DeBt80v/jaxNNwY QuKuI/o9c2CT9Pk7eQPmotCrhHTOBXoz+idA4sOQZXxw5fIFCVFRww9jKYDYNc2n BqgjYcVrFc1+uy9DDiHAkbO7Fah3hHIYfiZ7/nZE9RT6Z6UsM50YNKsH0DQJFDM8 8AYH7I6m/jmf6e7I8CFNzkaU4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLi0Ddd8 bcJw9+oBskSCwDkGDwj8MB8GA1UdIwQYMBaAFBzUnvvDfvSoxsiHZWK9ETNEvH7R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjc3Qy9COTdDNzM5NkM5 RjIxMUVEQTFEOTlFNjVDNEY5QUUwMi9ITlNlLThOLTlLakd5SWRsWXIwUk0wUzhm dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hOU2UtOE4tOUtqR3lJZGxZcjBSTTBTOGZ0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzI3N0MvQjk3QzczOTZDOUYyMTFFREExRDk5RTY1QzRGOUFFMDIvMUVGMkQ4NjJD OUY1MTFFRDg3NzFDODY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnYIAwDQYJKoZIhvcNAQELBQADggEBALWUAyf03N4YjZiJ Jvz//PUPptA6+dQPRg97ImCOB+den9+mEgJC7hJxq4TD4PaJ9M6rhdu1zp0P1EEH 5FbdHhiYc3FEUE/y72pe+B3peJEo2p0csT1/qa31SdyG8ZCfZWM0apNt7W45NeU3 IL24WhBkeFeyhvPT+vruYgCAFinUjp9l8Qc7nuGRiB6DK1l/OY3h9Idq55XJSXoD kvdtfCzbrPgCJNzrxu3CIMASuJry8vbsUnl3SJXwS4N8DBi1N5kzg4GwmEZr+Obp dIAC7QYFD/9FLLSMxiz68VmyEUaageengv1UsPIqSAls9rhG8rfSktJ1gFac7VCX OLeOxOo= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:46 2024 by rpki-client on console-fra.rpki-client.org