$ rpki-client -vvf rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/9B528A5AB7D611EDACEDEC79C4F9AE02.roa File: 9B528A5AB7D611EDACEDEC79C4F9AE02.roa (raw, json) Hash identifier: svX2pEtgxUojcQAs8QTB1gnzlB9OXDf4D6NAzD6E1rw= Subject key identifier: 0F:C1:09:47:74:38:6B:DA:D1:B6:04:DE:CC:5F:D5:8C:B0:D0:31:71 Certificate issuer: /CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Certificate serial: 0498 Authority key identifier: 87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/9B528A5AB7D611EDACEDEC79C4F9AE02.roa Signing time: Wed 13 Nov 2024 00:42:49 +0000 ROA not before: Wed 13 Nov 2024 00:42:49 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 64098 IP address blocks: 43.227.108.0/23 maxlen: 23 43.227.108.0/24 maxlen: 24 43.227.109.0/24 maxlen: 24 43.227.110.0/24 maxlen: 24 43.227.111.0/24 maxlen: 24 103.46.220.0/24 maxlen: 24 103.46.221.0/24 maxlen: 24 103.46.222.0/24 maxlen: 24 103.46.223.0/24 maxlen: 24 103.197.146.0/24 maxlen: 24 103.197.147.0/24 maxlen: 24 203.23.68.0/24 maxlen: 24 203.23.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1176 (0x498) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913AE13/serialNumber=87D3BD7D0ADE06509EB85AC6BA59489D95401F7F Validity Not Before: Nov 13 00:42:49 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6733f608-5a14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:bd:4d:b8:74:b6:1c:64:24:15:ea:77:14:10: 55:5c:3c:9d:e5:d1:b9:1e:88:0b:87:63:0b:2e:dc: ee:ab:6c:2c:1a:d7:c1:c5:db:a3:e5:b9:5c:be:2f: 5b:19:b9:cc:81:03:8c:eb:cf:14:56:70:6e:b2:3f: e2:ca:5b:3b:69:4c:bc:44:10:8e:81:b9:4c:6d:04: e8:02:88:65:1e:95:ca:31:02:87:a1:d2:89:08:df: fc:d0:03:2d:f7:9e:9a:85:8d:66:8f:1e:06:db:f6: 1f:c0:7d:db:0f:fd:a5:01:43:77:52:4c:d1:07:b3: 1a:a0:d3:ca:ff:c8:94:f2:69:62:b6:c4:91:ae:b2: e5:22:c5:32:4e:cb:2e:7b:19:b0:30:a5:0d:a3:5f: 60:8a:cc:25:3f:a5:a3:71:7c:55:96:4f:b0:e9:7b: f4:39:4b:84:c1:03:2e:c1:03:49:8f:69:c5:ee:c5: 77:8e:05:d9:89:09:f0:51:75:a0:ea:c4:7a:86:2d: 0c:08:37:b0:e4:7d:fd:62:4b:c4:84:38:82:ea:0e: 87:f8:07:76:bd:c1:63:42:63:c5:3b:a2:5a:6a:04: ad:6d:9e:57:1a:51:67:cd:8d:97:b5:02:81:eb:a5: 90:1a:51:f2:57:10:64:2e:b3:41:5f:19:d9:99:99: af:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C1:09:47:74:38:6B:DA:D1:B6:04:DE:CC:5F:D5:8C:B0:D0:31:71 X509v3 Authority Key Identifier: keyid:87:D3:BD:7D:0A:DE:06:50:9E:B8:5A:C6:BA:59:48:9D:95:40:1F:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/h9O9fQreBlCeuFrGullInZVAH38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h9O9fQreBlCeuFrGullInZVAH38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913AE13/8936357826FB11ECA7135D73C4F9AE02/9B528A5AB7D611EDACEDEC79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.227.108.0/22 103.46.220.0/22 103.197.146.0/23 203.23.68.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:4c:74:d0:f7:09:c2:f4:23:09:21:40:69:9d:fb:9f:f7:b8: fb:c3:c1:44:39:1d:9e:3e:8c:ff:e4:00:db:af:f5:bd:9c:ee: 24:99:72:a6:bf:12:c3:6e:68:bf:29:92:c2:1e:95:ef:2e:41: 0a:7f:7d:bf:af:b5:19:52:2f:ea:aa:ed:08:5c:07:e2:be:db: cb:4e:aa:4c:80:73:09:c8:2d:5d:c6:b9:fe:db:20:e9:0e:cd: ea:0f:fa:8a:93:7c:da:a4:36:13:94:35:af:c4:58:e1:da:95: 60:fd:be:e5:bb:88:19:e2:42:a3:e7:df:1f:a3:89:5c:bc:b0: bd:65:d1:c4:71:d5:fe:02:56:de:fb:49:60:e0:fa:66:e0:4d: 18:d3:75:2f:6a:6a:91:6c:2f:99:1e:96:dd:bc:97:59:f9:d9: 8e:0f:05:f6:12:e2:f7:de:3a:96:19:55:ff:d2:ce:78:eb:e0: f6:dd:aa:e2:d3:fa:92:4f:f6:56:fa:ef:32:15:c1:1a:d7:aa: ad:57:af:1e:7c:2b:c2:09:59:38:27:f4:ed:ac:23:e0:52:97: c7:99:a8:a3:09:1e:31:c0:dd:1b:6d:96:9b:49:9a:03:22:c3: 3d:5a:f3:76:f8:89:f1:be:04:e8:b6:42:0e:e0:57:9e:76:9e: 62:40:4f:6f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0FFMTMxMTAvBgNVBAUTKDg3RDNCRDdEMEFERTA2NTA5RUI4NUFDNkJBNTk0ODlE OTU0MDFGN0YwHhcNMjQxMTEzMDA0MjQ5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzZjYwOC01YTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn71NuHS2HGQkFep3FBBVXDyd5dG5HogLh2MLLtzuq2wsGtfBxduj5blcvi9b GbnMgQOM688UVnBusj/iyls7aUy8RBCOgblMbQToAohlHpXKMQKHodKJCN/80AMt 956ahY1mjx4G2/YfwH3bD/2lAUN3UkzRB7MaoNPK/8iU8mlitsSRrrLlIsUyTssu exmwMKUNo19giswlP6WjcXxVlk+w6Xv0OUuEwQMuwQNJj2nF7sV3jgXZiQnwUXWg 6sR6hi0MCDew5H39YkvEhDiC6g6H+Ad2vcFjQmPFO6JaagStbZ5XGlFnzY2XtQKB 66WQGlHyVxBkLrNBXxnZmZmvwwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFA/BCUd0 OGva0bYE3sxf1Yyw0DFxMB8GA1UdIwQYMBaAFIfTvX0K3gZQnrhaxrpZSJ2VQB9/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQUUxMy84OTM2MzU3ODI2 RkIxMUVDQTcxMzVENzNDNEY5QUUwMi9oOU85ZlFyZUJsQ2V1RnJHdWxsSW5aVkFI MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g5TzlmUXJlQmxDZXVGckd1bGxJblpWQUgzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0FFMTMvODkzNjM1NzgyNkZCMTFFQ0E3MTM1RDczQzRGOUFFMDIvOUI1MjhBNUFC N0Q2MTFFREFDRURFQzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr42wDBAJnLtwDBAFnxZIDBAHLF0QwDQYJKoZIhvcNAQEL BQADggEBAG1MdND3CcL0IwkhQGmd+5/3uPvDwUQ5HZ4+jP/kANuv9b2c7iSZcqa/ EsNuaL8pksIele8uQQp/fb+vtRlSL+qq7QhcB+K+28tOqkyAcwnILV3Guf7bIOkO zeoP+oqTfNqkNhOUNa/EWOHalWD9vuW7iBniQqPn3x+jiVy8sL1l0cRx1f4CVt77 SWDg+mbgTRjTdS9qapFsL5kelt28l1n52Y4PBfYS4vfeOpYZVf/Sznjr4PbdquLT +pJP9lb67zIVwRrXqq1Xrx58K8IJWTgn9O2sI+BSl8eZqKMJHjHA3RttlptJmgMi wz1a83b4ifG+BOi2Qg7gV552nmJAT28= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:33 2024 by rpki-client on console-fra.rpki-client.org