$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/ED1F311669F211EE80D21411C4F9AE02.roa File: ED1F311669F211EE80D21411C4F9AE02.roa (raw, json) Hash identifier: W6lI8/Zg/LZowUOVNTBJAfGISvKfbKLxWwUWdC8LjAs= Subject key identifier: 82:85:1E:EB:79:61:6D:4A:A4:29:66:B9:B3:BF:8B:23:19:4F:33:68 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0621 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/ED1F311669F211EE80D21411C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:01 +0000 ROA not before: Tue 03 Sep 2024 01:14:01 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132335 IP address blocks: 103.231.59.0/24 maxlen: 24 103.240.197.0/24 maxlen: 24 103.240.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 3 01:14:01 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d662d8-cd64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b5:f8:dd:9d:ff:25:ff:21:9d:cd:39:88:3f: af:63:4b:0c:ac:d4:42:fc:04:3d:71:d6:71:ce:ff: 98:5a:df:bc:04:bb:da:85:f1:5b:6b:e1:52:24:1e: 5f:ac:43:42:92:c9:0c:ed:70:85:a5:92:f9:00:e6: 80:f0:d9:42:79:5a:ae:01:65:04:0c:7e:c7:0e:20: 61:b9:a5:90:93:bd:61:30:68:71:85:f4:b4:11:97: 1f:6e:3e:7a:6a:e0:0d:e9:e6:90:3b:64:a9:02:29: 73:2d:9a:cb:2a:79:26:63:82:ad:e9:e9:a5:2a:31: 5c:85:cc:ae:1a:42:af:b5:ee:48:73:d5:78:12:5c: 24:97:0d:3d:8b:46:0c:c8:74:de:90:3f:3d:f5:2a: bd:f2:45:5b:1c:f4:92:f1:2f:69:b6:e8:e2:d6:39: 80:81:19:ec:c2:6e:22:62:7d:f3:09:f0:b5:a9:5c: 12:37:b0:05:de:ea:ed:ae:2f:a9:96:c0:11:60:4e: 62:a7:51:ee:03:ef:a6:a0:4a:2d:5b:da:53:20:0b: 4e:15:4f:13:58:c7:52:49:7f:62:cd:39:56:bb:81: 97:0f:68:36:c2:0b:cf:a8:dc:4c:2d:d8:1b:59:d9: 58:49:aa:fe:54:37:1f:de:19:ab:bb:df:8a:67:e7: bb:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:85:1E:EB:79:61:6D:4A:A4:29:66:B9:B3:BF:8B:23:19:4F:33:68 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/ED1F311669F211EE80D21411C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.231.59.0/24 103.240.197.0-103.240.198.255 Signature Algorithm: sha256WithRSAEncryption 0c:39:de:b3:1d:9d:c7:f8:b7:e2:86:78:4b:2a:74:76:b9:19: cf:a6:4b:54:a7:c9:4e:a1:46:aa:0b:1f:62:15:94:5a:83:b5: 86:f4:3e:75:af:8c:c4:95:c0:cd:99:bb:c1:0f:ac:2d:88:49: 7b:06:fd:26:f0:6c:7b:2e:98:c0:ad:49:a5:95:4c:2d:67:d1: 60:29:03:f4:b1:14:53:60:38:e2:0b:24:6b:af:5b:e6:ed:53: 4e:21:72:59:3c:69:19:33:af:bb:00:fb:fd:8e:a4:dc:74:98: 6e:8d:c3:d6:7d:28:62:47:ee:6e:85:b2:f9:de:6e:91:6b:95: 1a:12:73:95:e1:b0:7c:97:2c:39:6c:0b:47:86:92:77:e0:d3: 4e:f1:ed:ab:ec:7e:fc:ae:ef:10:7e:43:a3:11:9e:d8:b3:2d: 48:4e:91:9b:b2:e5:f1:a8:b1:04:8d:0d:0b:20:20:28:1f:1c: 7b:a7:0d:c3:a5:de:56:42:11:9f:69:aa:ba:96:5f:28:03:c9: 85:4c:95:6f:3b:eb:ac:15:10:d1:5a:87:38:b2:78:22:7e:f8: 05:51:36:0b:0b:0f:63:0f:73:cd:04:81:fa:79:a3:da:b6:78: 6d:19:17:e6:eb:71:94:03:ee:92:cf:4c:47:1e:2c:b6:69:fd: a7:f1:05:77 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwOTAzMDExNDAxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjJkOC1jZDY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLX43Z3/Jf8hnc05iD+vY0sMrNRC/AQ9cdZxzv+YWt+8BLvahfFba+FSJB5f rENCkskM7XCFpZL5AOaA8NlCeVquAWUEDH7HDiBhuaWQk71hMGhxhfS0EZcfbj56 auAN6eaQO2SpAilzLZrLKnkmY4Kt6emlKjFchcyuGkKvte5Ic9V4Elwklw09i0YM yHTekD899Sq98kVbHPSS8S9ptuji1jmAgRnswm4iYn3zCfC1qVwSN7AF3urtri+p lsARYE5ip1HuA++moEotW9pTIAtOFU8TWMdSSX9izTlWu4GXD2g2wgvPqNxMLdgb WdlYSar+VDcf3hmru9+KZ+e7/wIDAQABo4ICozCCAp8wHQYDVR0OBBYEFIKFHut5 YW1KpClmubO/iyMZTzNoMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvRUQxRjMxMTY2 OUYyMTFFRTgwRDIxNDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABn5zswDAMEAGfwxQMEAGfwxjANBgkqhkiG9w0BAQsFAAOC AQEADDnesx2dx/i34oZ4Syp0drkZz6ZLVKfJTqFGqgsfYhWUWoO1hvQ+da+MxJXA zZm7wQ+sLYhJewb9JvBsey6YwK1JpZVMLWfRYCkD9LEUU2A44gska69b5u1TTiFy WTxpGTOvuwD7/Y6k3HSYbo3D1n0oYkfuboWy+d5ukWuVGhJzleGwfJcsOWwLR4aS d+DTTvHtq+x+/K7vEH5DoxGe2LMtSE6Rm7Ll8aixBI0NCyAgKB8ce6cNw6XeVkIR n2mqupZfKAPJhUyVbzvrrBUQ0VqHOLJ4In74BVE2CwsPYw9zzQSB+nmj2rZ4bRkX 5utxlAPuks9MRx4stmn9p/EFdw== -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:56 2024 by rpki-client on console-ams.rpki-client.org