$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/6904305CA65111EEAAF77C79C4F9AE02.roa File: 6904305CA65111EEAAF77C79C4F9AE02.roa (raw, json) Hash identifier: ur7qihZtIhvtBQTlWZmGrFYPbQjlVO+hgQ6kWnGMVbE= Subject key identifier: 90:D1:21:AE:5F:12:50:AB:52:23:2C:24:ED:FF:E8:30:2D:5E:1D:41 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0620 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/6904305CA65111EEAAF77C79C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:00 +0000 ROA not before: Tue 03 Sep 2024 01:14:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 10111 IP address blocks: 103.231.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1568 (0x620) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 3 01:14:00 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d662d8-4fa3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d6:36:47:49:ea:91:33:bf:d7:44:44:bf:cf: c3:ab:bd:4a:b6:2b:e3:18:e5:65:2c:c2:df:92:56: 5a:18:27:a7:f1:68:14:51:fc:17:bf:9a:d5:19:7c: d9:fb:ff:e0:6f:06:d6:e0:1e:55:a1:74:cf:b8:5a: 36:d4:76:84:e7:51:a6:dc:03:84:4e:d2:83:c6:c7: ae:9c:b4:19:1d:a9:06:f6:59:f6:33:71:18:a3:cd: 2c:52:ee:da:43:e1:4a:c1:53:fc:57:8b:50:09:1b: ab:77:aa:4f:20:a6:f7:78:09:08:cf:ea:97:f1:3d: 60:dc:2f:25:01:40:10:9a:f3:37:33:29:2c:0c:3a: 0b:30:1c:3f:6c:05:d4:ca:39:8e:ff:4e:e3:47:41: be:b4:7b:f1:95:1c:de:16:bd:1b:28:1b:fe:4f:90: 25:93:97:da:fd:d3:b4:16:64:9f:2a:5b:c9:ad:a6: 0a:5c:e2:8f:d0:22:c9:9a:22:d6:12:f3:76:ad:9a: 62:49:ac:d6:92:73:b3:67:d4:40:10:9d:32:7b:47: f7:84:1a:2f:a1:61:cb:53:17:60:03:79:6e:3a:01: 7e:57:77:27:ac:75:1e:d7:85:dc:a1:0f:6b:7b:a5: a6:f1:38:08:4c:cb:80:5b:c3:f0:7f:48:b3:21:da: 00:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:D1:21:AE:5F:12:50:AB:52:23:2C:24:ED:FF:E8:30:2D:5E:1D:41 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/6904305CA65111EEAAF77C79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.56.0/24 Signature Algorithm: sha256WithRSAEncryption 74:4b:ef:13:62:e7:28:21:3a:79:89:4f:e2:7e:b2:5f:0b:78: dd:0a:6d:b5:26:c9:c1:67:a6:a6:fb:54:86:3b:f7:1f:05:b8: eb:d7:d6:00:9f:0c:b8:23:32:19:62:4c:e0:16:57:24:73:1c: 68:1b:17:93:5c:27:0e:52:33:87:ee:d9:f8:be:37:19:7d:16: 6d:b7:99:a6:12:4b:85:93:fa:52:8b:48:7f:4b:9a:d5:50:22: 8a:f2:b9:cd:96:41:0f:4d:d6:94:7d:22:6e:0a:e6:41:ed:04: 51:bc:c8:52:08:41:0b:22:e9:42:d6:b8:aa:9f:3f:93:db:4c: ed:28:97:19:90:cd:ee:61:e7:fc:bc:31:be:64:b0:bd:a6:ed: bd:72:27:cf:cd:4e:11:d6:a5:d1:69:df:12:62:f5:3f:94:75: 22:1b:e2:2f:b8:13:ec:da:d9:8f:b4:1c:d0:e3:11:c1:77:ac: 5d:3b:bb:a3:56:54:f6:72:fe:1d:10:1c:43:3b:9a:11:9a:a2: b4:54:fe:96:7d:8f:c1:e9:85:6b:b3:2d:51:6c:2a:20:86:5a: d4:7a:ab:23:bf:86:16:ae:d1:5a:ec:f3:9d:71:0f:08:52:8f: 1e:93:42:bf:8d:b3:11:79:b3:3d:51:55:e7:c3:a3:1e:c8:ea: 8c:93:fe:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwOTAzMDExNDAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjJkOC00ZmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNY2R0nqkTO/10REv8/Dq71KtivjGOVlLMLfklZaGCen8WgUUfwXv5rVGXzZ +//gbwbW4B5VoXTPuFo21HaE51Gm3AOETtKDxseunLQZHakG9ln2M3EYo80sUu7a Q+FKwVP8V4tQCRurd6pPIKb3eAkIz+qX8T1g3C8lAUAQmvM3MyksDDoLMBw/bAXU yjmO/07jR0G+tHvxlRzeFr0bKBv+T5Alk5fa/dO0FmSfKlvJraYKXOKP0CLJmiLW EvN2rZpiSazWknOzZ9RAEJ0ye0f3hBovoWHLUxdgA3luOgF+V3cnrHUe14XcoQ9r e6Wm8TgITMuAW8Pwf0izIdoAQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJDRIa5f ElCrUiMsJO3/6DAtXh1BMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvNjkwNDMwNUNB NjUxMTFFRUFBRjc3Qzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5zgwDQYJKoZIhvcNAQELBQADggEBAHRL7xNi5yghOnmJ T+J+sl8LeN0KbbUmycFnpqb7VIY79x8FuOvX1gCfDLgjMhliTOAWVyRzHGgbF5Nc Jw5SM4fu2fi+Nxl9Fm23maYSS4WT+lKLSH9LmtVQIoryuc2WQQ9N1pR9Im4K5kHt BFG8yFIIQQsi6ULWuKqfP5PbTO0olxmQze5h5/y8Mb5ksL2m7b1yJ8/NThHWpdFp 3xJi9T+UdSIb4i+4E+za2Y+0HNDjEcF3rF07u6NWVPZy/h0QHEM7mhGaorRU/pZ9 j8HphWuzLVFsKiCGWtR6qyO/hhau0Vrs851xDwhSjx6TQr+NsxF5sz1RVefDox7I 6oyT/oY= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:56 2024 by rpki-client on console-ams.rpki-client.org