$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/CED6A59A032B11EFAC30281BC4F9AE02.roa File: CED6A59A032B11EFAC30281BC4F9AE02.roa (raw, json) Hash identifier: KV9EsH/6ydbVoA8GLbzM6wTi6I3o6HJnv8d8mygGAR0= Subject key identifier: 50:6F:EE:92:80:EF:0E:2F:0A:A1:8E:10:70:64:88:59:6E:7E:E8:64 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 064A Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/CED6A59A032B11EFAC30281BC4F9AE02.roa Signing time: Sun 29 Sep 2024 23:23:49 +0000 ROA not before: Sun 29 Sep 2024 23:23:49 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 51847 IP address blocks: 103.24.217.0/24 maxlen: 24 103.240.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 29 23:23:49 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f9e184-dbc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e7:1b:32:7d:32:a8:56:e5:b1:ed:bc:93:ef: 90:c9:49:49:4b:cc:19:32:cb:76:de:e1:13:4d:c3: 6d:90:12:27:19:39:eb:bb:88:00:c6:36:9d:3a:71: 26:be:cb:77:ce:07:d9:94:52:5c:44:7d:3f:37:4b: ba:5e:d1:a4:11:3d:c4:9d:a5:76:06:8c:db:df:a0: 97:03:ae:dc:97:62:1a:11:b8:42:c3:5e:f0:5c:7d: 52:5e:f2:6f:b2:f9:02:b6:b3:a8:15:8c:fd:82:b6: 66:83:ed:3f:1f:76:ce:c9:f3:c5:7b:a2:75:aa:29: 53:26:35:c6:df:27:48:48:30:8f:b2:a8:24:3c:45: e2:52:05:b4:9d:ca:83:b5:3d:54:4d:46:14:63:d9: b3:d0:4e:5b:64:36:97:86:03:51:79:03:3c:68:6d: 5c:39:d3:a3:f2:57:4b:16:e6:e8:aa:92:80:81:5a: 98:9a:6b:56:31:5a:fc:a0:e9:f3:ef:6a:74:6d:4e: 78:3e:ed:f8:58:a5:67:6e:2b:41:9b:e7:1f:34:ba: a1:42:32:1c:76:18:4c:9b:43:35:2d:fa:5a:19:d8: 67:3c:53:6d:f6:e2:81:05:97:fe:fe:c6:46:fe:88: 77:d2:ca:c2:46:5b:49:a2:54:95:b6:52:b7:73:64: ba:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:6F:EE:92:80:EF:0E:2F:0A:A1:8E:10:70:64:88:59:6E:7E:E8:64 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/CED6A59A032B11EFAC30281BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.217.0/24 103.240.199.0/24 Signature Algorithm: sha256WithRSAEncryption 23:a3:b4:bb:99:23:a5:30:cd:38:d3:62:9e:34:09:61:20:fa: 84:64:17:ff:6b:35:cb:aa:b6:c0:cf:16:e1:72:64:ef:1b:7d: 04:d7:87:33:ca:6a:56:b6:a7:fe:0b:5c:e1:2a:1e:59:2d:6b: f2:18:34:4e:0f:49:f2:9a:bd:a7:5c:fc:6b:40:91:b4:ca:ae: 18:fe:58:9e:cf:8b:07:70:9b:92:91:c2:24:50:5d:5b:24:59: 96:9f:95:66:e8:10:d2:e0:57:51:35:b2:57:fa:c9:47:3c:9c: 13:8c:2b:27:05:c3:da:92:36:96:51:06:37:cc:33:e4:e6:c2: e6:bc:c8:7d:b1:56:45:00:43:28:4b:57:8a:8b:3e:84:f8:46: af:e6:fb:b8:93:37:3a:82:ca:de:27:ce:bb:f1:23:fb:1a:bb: 3b:9d:fe:c5:12:4e:d0:87:40:d6:ef:d7:71:38:9c:54:a7:e1: e0:f0:1e:d7:37:b1:ee:6d:fb:fa:a0:24:e1:3f:bf:2c:ac:53: 3f:e3:31:eb:ee:1a:78:4a:b5:e3:54:9f:08:d8:7f:3d:ba:3d: 4e:dc:97:bf:4c:9b:a3:d6:85:b3:72:0e:1f:cb:b5:16:98:88: 0a:ff:80:58:a3:cd:7e:b5:b8:d2:f6:84:ac:38:c8:23:5a:52: 78:97:6d:08 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwOTI5MjMyMzQ5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY5ZTE4NC1kYmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOcbMn0yqFblse28k++QyUlJS8wZMst23uETTcNtkBInGTnru4gAxjadOnEm vst3zgfZlFJcRH0/N0u6XtGkET3EnaV2Bozb36CXA67cl2IaEbhCw17wXH1SXvJv svkCtrOoFYz9grZmg+0/H3bOyfPFe6J1qilTJjXG3ydISDCPsqgkPEXiUgW0ncqD tT1UTUYUY9mz0E5bZDaXhgNReQM8aG1cOdOj8ldLFuboqpKAgVqYmmtWMVr8oOnz 72p0bU54Pu34WKVnbitBm+cfNLqhQjIcdhhMm0M1LfpaGdhnPFNt9uKBBZf+/sZG /oh30srCRltJolSVtlK3c2S68QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFBv7pKA 7w4vCqGOEHBkiFlufuhkMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvQ0VENkE1OUEw MzJCMTFFRkFDMzAyODFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnGNkDBABn8McwDQYJKoZIhvcNAQELBQADggEBACOjtLuZ I6UwzTjTYp40CWEg+oRkF/9rNcuqtsDPFuFyZO8bfQTXhzPKala2p/4LXOEqHlkt a/IYNE4PSfKavadc/GtAkbTKrhj+WJ7Piwdwm5KRwiRQXVskWZaflWboENLgV1E1 slf6yUc8nBOMKycFw9qSNpZRBjfMM+Tmwua8yH2xVkUAQyhLV4qLPoT4Rq/m+7iT NzqCyt4nzrvxI/sauzud/sUSTtCHQNbv13E4nFSn4eDwHtc3se5t+/qgJOE/vyys Uz/jMevuGnhKteNUnwjYfz26PU7cl79Mm6PWhbNyDh/LtRaYiAr/gFijzX61uNL2 hKw4yCNaUniXbQg= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:56 2024 by rpki-client on console-ams.rpki-client.org