$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/8E6DB97451C111EE9E564B29C4F9AE02.roa File: 8E6DB97451C111EE9E564B29C4F9AE02.roa (raw, json) Hash identifier: Q55QocLIlctTLBOj+usdwg0kwa2pJ3fgOJxquQPk9+Q= Subject key identifier: 5E:D1:25:35:35:C1:76:60:91:9A:2B:ED:93:61:F2:BF:80:41:D3:C4 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0626 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/8E6DB97451C111EE9E564B29C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:06 +0000 ROA not before: Tue 03 Sep 2024 01:14:06 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 141676 IP address blocks: 103.24.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1574 (0x626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322 Validity Not Before: Sep 3 01:14:06 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d662de-468e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b8:51:d4:fc:c3:c3:5e:ba:8c:ec:f6:96:87: ff:c6:2e:53:36:75:a6:8f:ab:7a:2f:c1:76:ec:d0: b1:b7:58:3b:53:29:ad:e9:5c:5c:06:04:4b:b2:da: ef:26:8c:39:c2:e2:15:72:06:6e:42:8f:d1:9f:49: e8:d0:f1:33:48:29:ab:4b:91:eb:c1:8d:b4:e9:63: 55:c1:31:6d:2f:b2:81:db:26:e4:e2:83:34:ed:56: d5:ba:f5:41:ec:ba:6a:7c:8d:b8:2a:f9:0d:16:89: 5c:bf:ab:51:f8:89:16:96:e0:af:c7:2a:a6:d5:22: 08:03:02:3e:03:e7:ad:92:fd:fb:fd:0d:1f:03:09: b4:9e:60:26:4f:94:88:f4:51:18:94:42:2e:09:70: 27:3c:6c:92:92:a4:ff:eb:b4:f9:72:90:69:cb:69: e9:d1:69:c3:e3:3b:26:f7:0d:8d:ff:75:e7:f4:ad: 08:ef:88:06:3f:33:48:b2:24:48:ff:94:1c:c0:4c: 49:16:f4:49:76:3a:aa:a4:5f:a0:1f:65:b4:94:d0: 5f:66:15:78:54:82:7f:7c:a4:a6:ac:13:97:f6:a5: d2:cd:78:a4:3d:0a:41:a6:62:f3:7d:b3:7d:c3:88: 1a:3c:29:f9:9e:c5:82:59:80:9c:7d:e5:86:bc:30: bd:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D1:25:35:35:C1:76:60:91:9A:2B:ED:93:61:F2:BF:80:41:D3:C4 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/8E6DB97451C111EE9E564B29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.216.0/24 Signature Algorithm: sha256WithRSAEncryption 79:8d:8c:f8:04:16:4f:b9:14:c9:0b:a6:20:2d:dc:13:e9:a2: cf:66:a7:c5:f7:77:0d:44:f6:b4:03:40:97:22:f4:94:4c:8e: a2:1d:d2:6a:fe:e2:bf:b1:3f:e8:12:c9:1c:5a:c5:2b:83:f7: 33:74:c7:d2:98:9a:b3:71:ec:4a:19:ff:9d:ca:99:f2:24:6f: 6d:0a:0c:65:ad:9e:e4:de:f1:41:6c:c7:f2:1c:85:e0:bd:43: f3:95:de:09:a7:7a:ac:4f:98:d7:50:da:38:c4:5e:65:40:90: bb:18:eb:93:25:b5:d8:f5:e2:32:77:6b:fe:a8:29:af:a6:df: b5:ad:46:ce:cc:d1:26:82:e3:3f:b7:62:db:32:74:69:0d:91: 40:27:8c:a1:6d:8f:11:3e:76:84:e4:da:ba:30:eb:b8:9f:6a: e4:58:6d:41:a3:3f:51:9d:01:3f:80:19:11:5c:06:3b:31:2c: 97:86:1e:31:7f:08:6a:33:20:92:0b:3c:b9:8a:f5:05:a5:63: 6a:bb:40:44:23:b0:9f:10:db:28:dd:9b:a0:71:1a:ae:59:01: 29:b5:bd:fb:bb:e1:a0:e2:ea:14:00:e7:31:37:17:10:53:19: e8:59:da:a8:d6:f3:be:2a:4a:8e:5d:cc:29:91:23:20:82:51: f1:41:1b:90 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwOTAzMDExNDA2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjJkZS00NjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubhR1PzDw166jOz2lof/xi5TNnWmj6t6L8F27NCxt1g7Uymt6VxcBgRLstrv Jow5wuIVcgZuQo/Rn0no0PEzSCmrS5HrwY206WNVwTFtL7KB2ybk4oM07VbVuvVB 7LpqfI24KvkNFolcv6tR+IkWluCvxyqm1SIIAwI+A+etkv37/Q0fAwm0nmAmT5SI 9FEYlEIuCXAnPGySkqT/67T5cpBpy2np0WnD4zsm9w2N/3Xn9K0I74gGPzNIsiRI /5QcwExJFvRJdjqqpF+gH2W0lNBfZhV4VIJ/fKSmrBOX9qXSzXikPQpBpmLzfbN9 w4gaPCn5nsWCWYCcfeWGvDC9iQIDAQABo4IClTCCApEwHQYDVR0OBBYEFF7RJTU1 wXZgkZor7ZNh8r+AQdPEMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvOEU2REI5NzQ1 MUMxMTFFRTlFNTY0QjI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGNgwDQYJKoZIhvcNAQELBQADggEBAHmNjPgEFk+5FMkL piAt3BPpos9mp8X3dw1E9rQDQJci9JRMjqId0mr+4r+xP+gSyRxaxSuD9zN0x9KY mrNx7EoZ/53KmfIkb20KDGWtnuTe8UFsx/IcheC9Q/OV3gmneqxPmNdQ2jjEXmVA kLsY65Mltdj14jJ3a/6oKa+m37WtRs7M0SaC4z+3YtsydGkNkUAnjKFtjxE+doTk 2row67ifauRYbUGjP1GdAT+AGRFcBjsxLJeGHjF/CGozIJILPLmK9QWlY2q7QEQj sJ8Q2yjdm6BxGq5ZASm1vfu74aDi6hQA5zE3FxBTGehZ2qjW874qSo5dzCmRIyCC UfFBG5A= -----END CERTIFICATE-----Generated at Sun Feb 16 20:57:58 2025 by rpki-client