$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/F3E5A660E69E11ED841AC682C4F9AE02.roa File: F3E5A660E69E11ED841AC682C4F9AE02.roa (raw, json) Hash identifier: VfvmI0FjW1ey2lLJifvpSJkDuW60zS8WURvHj/vHV0g= Subject key identifier: 7D:9A:C6:BC:09:17:5C:2C:E2:0F:8B:9B:88:60:78:4C:6C:AB:67:8E Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0625 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/F3E5A660E69E11ED841AC682C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:05 +0000 ROA not before: Tue 03 Sep 2024 01:14:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136557 IP address blocks: 103.24.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 3 01:14:05 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d662dd-1f68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:21:7b:55:09:c7:2a:87:2f:cc:9e:e1:ec:14: 5f:fd:f0:65:52:9d:c0:5f:11:72:be:d0:7f:8e:9c: 99:e5:30:21:07:c5:0d:bb:e1:04:23:d5:a0:95:c8: 18:e9:a1:26:41:66:20:c1:3d:8d:b8:a8:ea:b9:25: 83:19:5b:21:e2:86:3d:f6:5f:44:a3:69:c7:bf:e0: b9:eb:92:29:d1:4b:3a:d6:b6:1f:a7:92:a3:23:2f: 98:88:5d:65:e5:19:bf:fe:42:bf:5c:51:2c:c9:5b: a9:4d:89:85:4d:6e:60:55:cb:ba:db:69:68:06:3b: 78:c8:b2:7a:96:e8:4e:51:2d:76:7a:d9:0a:76:6b: d9:51:d7:9b:1c:91:42:c7:de:70:ce:75:f0:ec:bc: 62:02:8c:e2:75:1f:8c:d1:6e:af:be:90:ce:ec:5b: 86:d6:f3:96:f5:19:77:37:ad:f5:b8:10:23:5a:c3: f0:95:89:7a:29:1e:13:c7:2f:68:b5:7f:c0:46:fd: 18:b2:c7:f5:63:e9:99:3f:83:c9:45:6f:13:01:67: 80:ca:a2:92:78:f2:39:2d:93:ce:65:aa:e7:da:38: 5a:e7:66:b4:2e:b0:3b:28:e2:7f:63:ca:9d:14:a6: 74:b1:b2:00:00:1b:94:04:b7:f1:74:bf:ef:21:6d: a1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:9A:C6:BC:09:17:5C:2C:E2:0F:8B:9B:88:60:78:4C:6C:AB:67:8E X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/F3E5A660E69E11ED841AC682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.219.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:15:e9:84:5a:6f:ba:98:b8:d0:64:43:8b:69:f2:b8:0e:17: 2d:fb:7b:db:3b:e3:ba:a6:be:1b:7e:1f:fc:03:98:97:a5:a9: 9b:a4:03:e9:bb:93:3e:51:5e:e8:fc:69:58:32:a9:4f:a4:f8: c2:f0:92:48:2a:70:95:e6:0e:98:a3:ca:f1:d6:64:d5:c9:8f: a6:45:4a:13:bd:d0:60:8a:73:7f:8a:4c:05:a7:b5:25:0c:2c: 45:5f:b7:b4:14:42:a9:d0:ad:2d:ff:dd:cf:d5:f2:d4:f2:66: 20:83:ba:9d:c6:8e:5e:60:bc:98:4c:80:30:d1:78:2e:fa:2d: 91:ff:95:83:cc:26:79:6f:99:bb:a5:7f:c7:9c:13:d8:9e:ae: 61:a0:c7:29:d2:92:cb:52:68:6f:2b:b9:3c:ed:22:e2:de:e3: 2b:98:c8:57:ab:85:9e:ef:80:bd:b9:ba:9e:51:b8:b2:5d:b1: ef:2e:06:ed:19:15:ba:85:59:c2:95:75:e3:68:c8:83:72:eb: 1e:cb:13:f0:58:e3:fc:56:53:88:0b:98:52:89:c0:4a:20:56: f0:4c:66:65:fc:80:46:69:93:56:5c:f4:32:b8:3b:ee:8c:af: 60:a5:6d:1d:1a:c5:69:a4:60:5a:41:05:6d:09:a8:9e:96:1e: d7:f9:29:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwOTAzMDExNDA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjJkZC0xZjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iF7VQnHKocvzJ7h7BRf/fBlUp3AXxFyvtB/jpyZ5TAhB8UNu+EEI9WglcgY 6aEmQWYgwT2NuKjquSWDGVsh4oY99l9Eo2nHv+C565Ip0Us61rYfp5KjIy+YiF1l 5Rm//kK/XFEsyVupTYmFTW5gVcu622loBjt4yLJ6luhOUS12etkKdmvZUdebHJFC x95wznXw7LxiAozidR+M0W6vvpDO7FuG1vOW9Rl3N631uBAjWsPwlYl6KR4Txy9o tX/ARv0Yssf1Y+mZP4PJRW8TAWeAyqKSePI5LZPOZarn2jha52a0LrA7KOJ/Y8qd FKZ0sbIAABuUBLfxdL/vIW2hywIDAQABo4IClTCCApEwHQYDVR0OBBYEFH2axrwJ F1ws4g+Lm4hgeExsq2eOMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvRjNFNUE2NjBF NjlFMTFFRDg0MUFDNjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnGNswDQYJKoZIhvcNAQELBQADggEBAF4V6YRab7qYuNBk Q4tp8rgOFy37e9s747qmvht+H/wDmJelqZukA+m7kz5RXuj8aVgyqU+k+MLwkkgq cJXmDpijyvHWZNXJj6ZFShO90GCKc3+KTAWntSUMLEVft7QUQqnQrS3/3c/V8tTy ZiCDup3Gjl5gvJhMgDDReC76LZH/lYPMJnlvmbulf8ecE9iermGgxynSkstSaG8r uTztIuLe4yuYyFerhZ7vgL25up5RuLJdse8uBu0ZFbqFWcKVdeNoyINy6x7LE/BY 4/xWU4gLmFKJwEogVvBMZmX8gEZpk1Zc9DK4O+6Mr2ClbR0axWmkYFpBBW0JqJ6W Htf5Kag= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:56 2024 by rpki-client on console-ams.rpki-client.org