$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/217830E8779A11EE903E3E53C4F9AE02.roa File: 217830E8779A11EE903E3E53C4F9AE02.roa (raw, json) Hash identifier: Oo2zi/EhRzrqSn7zolKGlTcLvnJSb95h9fMiilyRJ1I= Subject key identifier: 69:A7:F7:D4:5E:29:E7:B2:49:09:10:6D:A9:70:91:9E:04:C7:BA:B2 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 062F Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/217830E8779A11EE903E3E53C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:15 +0000 ROA not before: Tue 03 Sep 2024 01:14:15 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 20473 IP address blocks: 103.231.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1583 (0x62f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 3 01:14:15 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d662e7-bdaa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ec:b0:6c:e1:ab:4a:88:77:18:5c:48:58:99: 53:f8:9b:5d:b6:ca:b6:e3:b6:04:6b:6f:bd:a9:0e: 3d:ad:a3:29:4d:e5:67:dc:6e:7d:14:d9:11:ab:2f: 87:03:b0:37:ab:bd:73:9f:d7:e9:ca:03:e9:2d:54: 18:e8:1d:72:62:0e:06:b5:0a:c3:79:c5:d3:7a:6e: 32:4f:33:c7:25:a2:9e:e8:ea:69:98:d9:e5:05:c9: 9a:5d:1a:48:5c:b7:9a:3f:5d:5f:71:95:ab:f1:cd: 3a:cc:9b:62:bb:77:8f:22:c9:32:9a:5c:fa:95:12: 5d:f8:30:49:1b:fc:8b:84:d6:cc:c8:fb:10:7b:e7: e5:f6:0a:9e:b2:a5:83:0b:ba:dd:d7:35:91:b6:e0: 4d:66:d8:ea:c6:d9:45:2c:c7:6a:50:09:6b:4e:64: 95:8a:09:b9:31:9a:20:ec:a1:9d:83:36:38:82:42: aa:22:fb:ca:6a:4a:d9:a6:17:ff:d1:08:01:e0:46: 25:55:b9:c2:cd:c5:0e:f3:c0:a3:ac:36:9d:37:25: c6:e9:fc:c2:f2:3b:de:d1:a7:13:a0:8a:d0:d2:1d: a2:88:a4:33:8f:08:ad:17:49:32:a2:38:52:c9:ca: 67:d5:8c:33:05:14:b3:aa:93:b9:23:c1:80:72:b3: 29:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A7:F7:D4:5E:29:E7:B2:49:09:10:6D:A9:70:91:9E:04:C7:BA:B2 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/217830E8779A11EE903E3E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.58.0/24 Signature Algorithm: sha256WithRSAEncryption b2:33:47:ff:3c:e6:a4:56:d8:0c:f6:f0:c6:1d:d6:12:cd:c3: 2f:fc:62:a8:14:3a:61:ab:89:04:f0:c4:8f:86:8b:1d:80:98: 8a:42:32:63:57:19:85:f8:4d:68:d5:82:f5:9f:2d:02:23:67: cc:7a:ba:e1:64:6f:14:a2:43:23:5e:6e:71:50:9a:52:9f:5b: 5c:5f:2f:bd:7c:f8:20:26:49:bd:79:76:ca:dc:40:74:84:3b: 8c:ba:2f:11:86:40:b9:7f:e6:cd:f7:23:93:61:e4:26:07:49: 44:21:de:f1:a1:6e:f3:e2:40:6a:f3:b9:70:34:95:83:5d:50: 05:d3:63:8e:fa:63:4c:c2:81:f6:71:d8:87:76:44:bd:87:cd: 64:77:8f:d3:bc:7f:08:a6:ab:5d:61:0b:9a:91:90:76:1a:e5: 81:f9:99:50:14:39:9e:bb:d4:6c:37:1e:11:fe:00:09:82:7d: 06:eb:f0:60:ab:d7:8e:f0:78:62:a9:da:6c:17:a0:6c:0a:54: 4e:7b:73:29:ab:a3:59:e7:f4:6a:61:35:a4:5b:cd:8e:56:59: cc:3f:d3:d1:e9:55:dc:3b:14:05:62:63:9e:08:44:a8:fe:c2: 90:e1:36:3a:a5:37:1e:d6:c8:9f:65:4f:34:93:27:42:0e:cb: 31:0a:0a:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwOTAzMDExNDE1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjJlNy1iZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOywbOGrSoh3GFxIWJlT+Jtdtsq247YEa2+9qQ49raMpTeVn3G59FNkRqy+H A7A3q71zn9fpygPpLVQY6B1yYg4GtQrDecXTem4yTzPHJaKe6OppmNnlBcmaXRpI XLeaP11fcZWr8c06zJtiu3ePIskymlz6lRJd+DBJG/yLhNbMyPsQe+fl9gqesqWD C7rd1zWRtuBNZtjqxtlFLMdqUAlrTmSVigm5MZog7KGdgzY4gkKqIvvKakrZphf/ 0QgB4EYlVbnCzcUO88CjrDadNyXG6fzC8jve0acToIrQ0h2iiKQzjwitF0kyojhS ycpn1YwzBRSzqpO5I8GAcrMpfwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGmn99Re KeeySQkQbalwkZ4Ex7qyMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvMjE3ODMwRTg3 NzlBMTFFRTkwM0UzRTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5zowDQYJKoZIhvcNAQELBQADggEBALIzR/885qRW2Az2 8MYd1hLNwy/8YqgUOmGriQTwxI+Gix2AmIpCMmNXGYX4TWjVgvWfLQIjZ8x6uuFk bxSiQyNebnFQmlKfW1xfL718+CAmSb15dsrcQHSEO4y6LxGGQLl/5s33I5Nh5CYH SUQh3vGhbvPiQGrzuXA0lYNdUAXTY476Y0zCgfZx2Id2RL2HzWR3j9O8fwimq11h C5qRkHYa5YH5mVAUOZ671Gw3HhH+AAmCfQbr8GCr147weGKp2mwXoGwKVE57cymr o1nn9GphNaRbzY5WWcw/09HpVdw7FAViY54IRKj+wpDhNjqlNx7WyJ9lTzSTJ0IO yzEKCpI= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:26 2024 by rpki-client on console-ams.rpki-client.org