$ rpki-client -vvf rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/59AFB718ECB911ED99732649C4F9AE02.roa File: 59AFB718ECB911ED99732649C4F9AE02.roa (raw, json) Hash identifier: +N1Z+YRZBmqUzAg48fb4th5gmmSesIwu/VfApSVKW6g= Subject key identifier: 4E:31:DA:2D:13:CE:8F:0A:22:30:83:50:6F:1A:E5:6E:C6:4A:10:21 Certificate issuer: /CN=A9132DC8/serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B Certificate serial: DA Authority key identifier: C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/59AFB718ECB911ED99732649C4F9AE02.roa Signing time: Tue 25 Jun 2024 05:38:47 +0000 ROA not before: Tue 25 Jun 2024 05:38:47 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 139037 IP address blocks: 103.138.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 218 (0xda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132DC8/serialNumber=C4D26AC06C8A65258AD4491B69DF83290BE1837B Validity Not Before: Jun 25 05:38:47 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667a57e6-5841 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:70:ee:a7:14:2c:e7:5f:e2:6d:8f:9e:a5:00: 2d:cc:24:95:ca:4c:65:1a:a6:af:fa:37:1a:f3:e8: 17:ed:1b:e5:3a:c0:6f:c8:6b:12:d4:29:82:47:82: 66:2d:1c:9c:94:5f:9b:29:b6:4a:00:56:cd:85:53: ac:ee:61:ab:7a:05:c3:0e:0a:35:c2:63:17:d9:8b: 8f:a4:52:bf:ef:5f:81:da:b2:6c:2f:32:7e:32:b5: 38:4d:c6:dc:09:38:90:ac:d7:21:b7:3a:93:d5:b2: ef:c1:43:35:62:b3:2d:74:15:d3:78:7b:47:f2:c3: b1:71:8f:40:f5:56:04:a7:a9:2c:30:6f:9f:66:45: b8:f7:75:2e:25:06:68:b6:a3:fb:c9:32:00:a7:63: e1:1a:4b:24:3a:17:8b:35:91:6b:d3:66:5e:4d:73: 6f:bd:6c:85:29:75:e9:66:d7:cb:f1:b7:0b:58:40: 6e:a0:bb:7e:f2:68:c7:24:29:93:e7:78:f6:61:3e: 0b:a5:d1:b2:e3:8b:f8:6d:e9:58:2f:92:5d:d9:8e: 65:b7:ae:4c:f8:cd:07:f1:05:01:4a:21:a9:36:38: 27:1a:e1:4f:da:af:f6:ef:e2:c4:2c:c4:ea:00:df: aa:69:0a:e6:99:f2:df:25:7b:83:5d:c0:b3:1e:62: cf:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:31:DA:2D:13:CE:8F:0A:22:30:83:50:6F:1A:E5:6E:C6:4A:10:21 X509v3 Authority Key Identifier: keyid:C4:D2:6A:C0:6C:8A:65:25:8A:D4:49:1B:69:DF:83:29:0B:E1:83:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/xNJqwGyKZSWK1Ekbad-DKQvhg3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xNJqwGyKZSWK1Ekbad-DKQvhg3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132DC8/444C6F14ECB511ED9D68C450C4F9AE02/59AFB718ECB911ED99732649C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.201.0/24 Signature Algorithm: sha256WithRSAEncryption 16:d6:d1:12:e7:7d:5c:9c:83:88:c5:b3:8b:c6:c8:49:ca:b4: c0:fd:43:e1:8b:08:3e:84:a2:9b:1c:a4:e7:ac:ad:b0:ff:59: e2:29:40:69:03:0b:8d:f0:63:0c:6e:83:ae:a5:16:54:23:8c: c3:6d:d8:85:c2:03:18:95:8c:2e:f8:37:56:22:7e:d0:7f:c4: aa:c7:7c:49:e9:41:61:9e:79:80:14:92:0b:ed:63:d0:7b:be: 2b:9c:b6:43:f8:d6:f6:10:f9:fe:1d:35:8a:85:f4:c8:37:70: dd:a4:99:dc:7b:63:61:3a:f8:c8:f3:77:81:5a:4e:d6:c3:0a: e9:a0:b6:4c:01:1f:db:20:66:5b:de:c0:ef:3d:01:b2:3a:a4: c3:f6:b2:3a:6a:bd:fb:82:60:a7:4e:9c:98:f6:47:c6:78:12: 45:b4:dc:dd:f3:14:6c:77:86:f3:c7:b0:0a:f7:83:52:5a:18: e2:c6:4b:af:48:4c:02:dc:7b:39:90:53:2f:ed:f2:e9:0c:e4: 54:64:14:3c:d1:9a:cb:39:2d:79:de:16:56:c5:81:cf:b4:82: b2:fc:72:69:86:cf:cc:95:4d:3e:07:37:4f:70:bd:9c:6d:40: f5:9a:16:90:f4:a3:91:20:18:17:97:79:73:c1:6f:11:b3:be: 24:18:20:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJEQzgxMTAvBgNVBAUTKEM0RDI2QUMwNkM4QTY1MjU4QUQ0NDkxQjY5REY4MzI5 MEJFMTgzN0IwHhcNMjQwNjI1MDUzODQ3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdhNTdlNi01ODQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtnDupxQs51/ibY+epQAtzCSVykxlGqav+jca8+gX7RvlOsBvyGsS1CmCR4Jm LRyclF+bKbZKAFbNhVOs7mGregXDDgo1wmMX2YuPpFK/71+B2rJsLzJ+MrU4Tcbc CTiQrNchtzqT1bLvwUM1YrMtdBXTeHtH8sOxcY9A9VYEp6ksMG+fZkW493UuJQZo tqP7yTIAp2PhGkskOheLNZFr02ZeTXNvvWyFKXXpZtfL8bcLWEBuoLt+8mjHJCmT 53j2YT4LpdGy44v4belYL5Jd2Y5lt65M+M0H8QUBSiGpNjgnGuFP2q/27+LELMTq AN+qaQrmmfLfJXuDXcCzHmLP2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFE4x2i0T zo8KIjCDUG8a5W7GShAhMB8GA1UdIwQYMBaAFMTSasBsimUlitRJG2nfgykL4YN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkRDOC80NDRDNkYxNEVD QjUxMUVEOUQ2OEM0NTBDNEY5QUUwMi94Tkpxd0d5S1pTV0sxRWtiYWQtREtRdmhn M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hOSnF3R3lLWlNXSzFFa2JhZC1ES1F2aGczcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJEQzgvNDQ0QzZGMTRFQ0I1MTFFRDlENjhDNDUwQzRGOUFFMDIvNTlBRkI3MThF Q0I5MTFFRDk5NzMyNjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniskwDQYJKoZIhvcNAQELBQADggEBABbW0RLnfVycg4jF s4vGyEnKtMD9Q+GLCD6EopscpOesrbD/WeIpQGkDC43wYwxug66lFlQjjMNt2IXC AxiVjC74N1YiftB/xKrHfEnpQWGeeYAUkgvtY9B7viuctkP41vYQ+f4dNYqF9Mg3 cN2kmdx7Y2E6+Mjzd4FaTtbDCumgtkwBH9sgZlvewO89AbI6pMP2sjpqvfuCYKdO nJj2R8Z4EkW03N3zFGx3hvPHsAr3g1JaGOLGS69ITALcezmQUy/t8ukM5FRkFDzR mss5LXneFlbFgc+0grL8cmmGz8yVTT4HN09wvZxtQPWaFpD0o5EgGBeXeXPBbxGz viQYIEU= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:37 2024 by rpki-client on console-ams.rpki-client.org