$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9FA2A3588ABE11EFA0AEF447C4F9AE02.roa File: 9FA2A3588ABE11EFA0AEF447C4F9AE02.roa (raw, json) Hash identifier: zuHY12P7XQtiC4QFmx7mr2cUPD02esdm9dT5uRSuL5E= Subject key identifier: 79:FA:3E:45:10:DB:9D:BF:E8:F1:1D:01:E0:D1:A7:7F:BF:C4:77:4D Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0674 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9FA2A3588ABE11EFA0AEF447C4F9AE02.roa Signing time: Tue 15 Oct 2024 06:28:00 +0000 ROA not before: Tue 15 Oct 2024 06:28:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 103.240.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1652 (0x674) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Oct 15 06:28:00 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670e0b70-7bde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:5e:43:99:1c:0e:15:f8:8d:4a:83:13:55:f2: d1:69:16:ac:a6:fb:de:eb:cd:b4:d7:f4:24:7d:1b: 57:8c:9e:60:88:7f:29:77:59:d6:d8:9b:dd:3d:27: ea:78:32:ca:15:f3:a2:68:a9:46:5a:d5:4c:1c:fe: b8:c4:fb:f3:89:11:87:22:da:d7:52:c3:60:d8:b4: 43:cb:72:45:60:1c:ed:8b:09:75:32:f9:4b:05:98: c5:e6:03:b0:0f:25:cd:80:97:39:57:66:dd:bf:71: c2:9f:b3:fe:ba:47:df:c4:83:5e:8b:8d:85:e5:56: 3c:0d:b0:8f:e1:69:2d:0f:14:82:68:4f:28:6d:01: 42:81:e2:84:24:c1:ec:84:6f:7e:22:55:1a:4a:e3: 0f:04:53:d8:45:aa:f6:9c:68:42:bf:b7:b4:f0:38: 2c:d0:40:1e:e1:9f:ee:01:af:31:ae:0b:3f:e2:70: 0d:6a:fe:45:8c:89:d1:db:7a:bc:a8:fa:dc:d7:82: 78:5e:63:8e:e9:51:22:53:b3:d6:d1:5a:a4:8f:f1: c3:4e:d9:53:f6:b5:c0:af:15:4e:b3:49:7a:1b:1c: f4:12:56:d8:5e:3b:01:55:2e:e5:9f:6c:82:d1:3b: bf:4b:e6:f2:f5:74:77:fd:36:f1:58:e9:de:2b:82: 5b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:FA:3E:45:10:DB:9D:BF:E8:F1:1D:01:E0:D1:A7:7F:BF:C4:77:4D X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/9FA2A3588ABE11EFA0AEF447C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.198.0/24 Signature Algorithm: sha256WithRSAEncryption ab:0b:84:52:9a:6a:83:e1:d8:64:60:1b:fe:53:8d:72:45:f6: 3b:3e:2d:ec:ba:86:73:7b:2e:71:50:fc:94:70:20:46:ec:e4: a9:b9:18:4e:a8:25:ea:a8:53:09:6b:9d:c2:59:d6:b3:c7:1e: 8b:af:6f:d1:83:e3:b5:55:83:e1:eb:a5:ef:24:cf:15:c0:b4: 02:cc:dd:d8:a6:41:34:eb:f5:e9:b6:2a:c7:f5:25:7c:a6:dc: b4:6c:76:97:86:c3:ac:88:dc:ee:77:27:b8:5e:dc:68:01:23: db:53:f4:60:79:0b:51:d1:3c:2f:62:14:75:ba:8a:e3:50:ed: 14:fd:16:9d:47:02:86:eb:bb:8d:e4:2c:32:92:c8:93:26:76: 41:8e:cc:23:34:3b:f1:50:4a:db:66:74:1f:68:e5:2b:e7:11: ac:06:f7:9c:83:b0:a0:9a:43:b3:ea:3f:23:1c:d2:9a:63:8b: 43:56:ed:29:89:54:71:f5:19:b6:a4:b1:60:84:f1:1a:e3:a9: db:33:18:c7:30:92:41:13:7f:87:1b:c9:35:f4:76:99:7d:1f: 40:69:74:57:19:42:4a:1d:4b:c5:80:e6:67:24:94:a3:19:5e: 57:b7:aa:96:e9:ce:b9:87:0f:1d:56:09:00:22:b5:21:10:b3: 24:38:16:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQxMDE1MDYyODAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBlMGI3MC03YmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnF5DmRwOFfiNSoMTVfLRaRaspvve68201/QkfRtXjJ5giH8pd1nW2JvdPSfq eDLKFfOiaKlGWtVMHP64xPvziRGHItrXUsNg2LRDy3JFYBztiwl1MvlLBZjF5gOw DyXNgJc5V2bdv3HCn7P+ukffxINei42F5VY8DbCP4WktDxSCaE8obQFCgeKEJMHs hG9+IlUaSuMPBFPYRar2nGhCv7e08Dgs0EAe4Z/uAa8xrgs/4nANav5FjInR23q8 qPrc14J4XmOO6VEiU7PW0Vqkj/HDTtlT9rXArxVOs0l6Gxz0ElbYXjsBVS7ln2yC 0Tu/S+by9XR3/TbxWOneK4JbxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHn6PkUQ 252/6PEdAeDRp3+/xHdNMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvOUZBMkEzNTg4 QUJFMTFFRkEwQUVGNDQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn8MYwDQYJKoZIhvcNAQELBQADggEBAKsLhFKaaoPh2GRg G/5TjXJF9js+Ley6hnN7LnFQ/JRwIEbs5Km5GE6oJeqoUwlrncJZ1rPHHouvb9GD 47VVg+Hrpe8kzxXAtALM3dimQTTr9em2Ksf1JXym3LRsdpeGw6yI3O53J7he3GgB I9tT9GB5C1HRPC9iFHW6iuNQ7RT9Fp1HAobru43kLDKSyJMmdkGOzCM0O/FQSttm dB9o5SvnEawG95yDsKCaQ7PqPyMc0ppji0NW7SmJVHH1GbaksWCE8RrjqdszGMcw kkETf4cbyTX0dpl9H0BpdFcZQkodS8WA5mcklKMZXle3qpbpzrmHDx1WCQAitSEQ syQ4FjA= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:56 2024 by rpki-client on console-ams.rpki-client.org