$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9EE451A08ABE11EFA0AEF447C4F9AE02.roa File: 9EE451A08ABE11EFA0AEF447C4F9AE02.roa (raw, json) Hash identifier: d2+7r39Eg9rjdbItDMc03X9V+mH89DguSdjx3CwlpWg= Subject key identifier: 0B:CA:8F:DB:C3:85:58:F0:07:23:20:C5:D9:96:DD:60:6A:1C:BB:8F Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0673 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9EE451A08ABE11EFA0AEF447C4F9AE02.roa Signing time: Tue 15 Oct 2024 06:27:58 +0000 ROA not before: Tue 15 Oct 2024 06:27:58 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.240.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1651 (0x673) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Oct 15 06:27:58 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670e0b6e-021f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0f:f0:05:89:25:bd:99:8c:73:82:bd:1c:38: 6d:7c:f8:da:59:e8:b4:c5:cd:ae:e9:0a:04:2a:13: d3:92:b3:ca:bd:b6:6a:cc:9f:01:89:df:88:d7:16: f0:b1:ee:3c:90:24:6a:a8:d0:7e:cf:77:1e:b1:ee: f2:45:05:1b:c0:38:cc:05:9f:63:ea:ed:d2:05:11: 75:4c:6a:7c:79:29:e5:ab:1e:2c:92:6c:f7:72:5e: 35:3a:07:16:8a:94:e5:79:59:3c:1d:71:a5:e6:51: 1b:c2:dd:37:e6:0b:41:d4:e4:52:75:6e:d0:52:9c: 8f:a7:ad:e8:fb:0d:ac:99:dc:66:17:1d:d1:81:f8: 47:59:db:6d:ee:db:6f:45:b0:1f:a7:57:0f:52:c7: 7b:a0:c7:36:c8:00:34:73:e1:16:52:ca:89:9e:72: 90:bf:39:29:38:a9:f4:a8:b1:48:f8:4a:5c:d5:f7: e8:3d:86:72:7b:40:b9:bb:b3:d3:d3:d6:ea:b8:96: 1d:ef:b8:ff:92:30:a8:49:ef:ff:3b:12:e7:a9:c3: 18:3c:fe:cd:40:3c:ca:e5:6e:0d:76:1b:40:a4:9e: 41:c6:59:e3:5e:fe:04:79:fa:d1:bd:a5:a4:aa:1a: 6c:00:34:c0:72:b5:ff:02:2b:69:9d:8f:95:43:7f: 59:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:CA:8F:DB:C3:85:58:F0:07:23:20:C5:D9:96:DD:60:6A:1C:BB:8F X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9EE451A08ABE11EFA0AEF447C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.198.0/24 Signature Algorithm: sha256WithRSAEncryption 57:15:96:b8:c0:a0:74:34:c0:55:f9:c9:0a:75:1b:4d:a9:5b: 06:9f:c5:da:5f:7c:ed:46:0b:20:fc:5f:15:66:e7:d5:bd:b4: 1c:22:98:a3:bb:0e:a3:4f:fc:44:c3:4f:93:39:ed:ed:79:1b: 64:fd:56:b8:fe:9f:81:ae:8f:ad:0b:24:a8:f4:c2:4c:03:9d: 87:a6:46:07:50:04:29:ae:17:51:7d:2b:53:74:4f:d1:0f:3b: a6:47:56:c8:77:ca:80:c6:ef:06:e6:6a:d6:43:12:23:66:4a: ac:a9:00:46:73:5a:c5:d3:01:6a:91:3f:9f:72:b2:97:39:ee: 69:85:65:d6:16:5b:04:dc:a3:84:2a:67:26:81:95:e4:e5:7d: 3c:a1:34:74:70:11:1f:07:6c:b9:7d:8e:a3:8e:29:1f:9e:b2: fd:9e:5b:9e:2c:32:5c:c2:e6:fd:6d:c3:0e:f4:8e:1e:91:77: 68:f9:38:3b:ce:1b:50:e2:90:cb:60:20:1e:1b:62:23:69:79: bc:8d:91:02:2d:92:21:83:83:55:74:6b:e7:a7:77:6c:d3:ac: 07:cb:69:69:14:9a:be:d3:c6:d9:ce:d8:7b:88:7b:6c:07:7b: 52:52:02:11:4b:b0:16:c1:8b:4c:f9:57:1b:6f:2d:ad:6e:15: 0f:6f:9b:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQxMDE1MDYyNzU4WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBlMGI2ZS0wMjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvQ/wBYklvZmMc4K9HDhtfPjaWei0xc2u6QoEKhPTkrPKvbZqzJ8Bid+I1xbw se48kCRqqNB+z3cese7yRQUbwDjMBZ9j6u3SBRF1TGp8eSnlqx4skmz3cl41OgcW ipTleVk8HXGl5lEbwt035gtB1ORSdW7QUpyPp63o+w2smdxmFx3RgfhHWdtt7ttv RbAfp1cPUsd7oMc2yAA0c+EWUsqJnnKQvzkpOKn0qLFI+Epc1ffoPYZye0C5u7PT 09bquJYd77j/kjCoSe//OxLnqcMYPP7NQDzK5W4NdhtApJ5BxlnjXv4EefrRvaWk qhpsADTAcrX/AitpnY+VQ39ZswIDAQABo4IClTCCApEwHQYDVR0OBBYEFAvKj9vD hVjwByMgxdmW3WBqHLuPMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvOUVFNDUxQTA4 QUJFMTFFRkEwQUVGNDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn8MYwDQYJKoZIhvcNAQELBQADggEBAFcVlrjAoHQ0wFX5 yQp1G02pWwafxdpffO1GCyD8XxVm59W9tBwimKO7DqNP/ETDT5M57e15G2T9Vrj+ n4Guj60LJKj0wkwDnYemRgdQBCmuF1F9K1N0T9EPO6ZHVsh3yoDG7wbmatZDEiNm SqypAEZzWsXTAWqRP59yspc57mmFZdYWWwTco4QqZyaBleTlfTyhNHRwER8HbLl9 jqOOKR+esv2eW54sMlzC5v1tww70jh6Rd2j5ODvOG1DikMtgIB4bYiNpebyNkQIt kiGDg1V0a+end2zTrAfLaWkUmr7TxtnO2HuIe2wHe1JSAhFLsBbBi0z5VxtvLa1u FQ9vm+U= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:21 2024 by rpki-client on console-ams.rpki-client.org