$ rpki-client -vvf rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa File: ED8E5BC8CFD411EBA3172446C4F9AE02.roa (raw, json) Hash identifier: IXowuRlQe6UH8KyuFR1EZdr9hdzxAlrcZo/khNKyUOs= Subject key identifier: 42:BD:CB:60:1E:F1:4D:49:6A:96:E4:14:D2:AA:AB:57:05:22:4C:DB Certificate issuer: /CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Certificate serial: 06F8 Authority key identifier: 3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa Signing time: Fri 04 Oct 2024 22:03:24 +0000 ROA not before: Fri 04 Oct 2024 22:03:24 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 45426 IP address blocks: 103.198.41.0/24 maxlen: 24 103.198.42.0/24 maxlen: 24 202.129.244.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1784 (0x6f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140A8F/serialNumber=3D93EB66D81A276A039246168D3278B267EBAEEC Validity Not Before: Oct 4 22:03:24 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6700662b-558a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:75:c7:13:71:ec:5c:61:3b:7f:47:c7:1a:1d: 0d:79:c1:30:c1:e3:16:aa:a3:a1:0f:fc:bd:13:9d: 2d:77:97:2d:ac:db:95:32:c9:de:bb:1f:b2:dc:82: ff:39:46:64:87:61:9f:5e:ca:c5:dd:d8:0c:54:89: 69:93:c7:07:37:46:26:a3:26:61:a8:1b:b1:3b:e4: 2f:e0:16:f0:3c:6c:93:c8:15:d3:74:3e:9f:f7:2c: 16:c5:3c:57:1b:e0:d2:d5:5a:fa:07:e3:e7:72:08: de:12:cd:0c:9c:00:14:1c:12:99:b0:e3:d6:8b:34: 98:14:88:9b:52:ce:15:b1:3b:a2:31:6a:26:d5:4d: cc:ba:3b:9e:5f:64:84:f1:f3:cf:d7:3a:29:8d:0d: 0e:d3:a6:de:bf:de:8f:38:3b:10:e7:30:7b:bd:78: 24:c7:b5:fc:aa:5d:09:df:b4:7b:a3:f3:63:1a:52: f4:7b:ae:7e:d3:42:0f:c0:15:08:58:3c:c8:ab:d8: bf:44:2c:93:60:5a:c4:83:5c:c0:87:c9:88:0d:b0: 8d:41:5c:4c:2f:6f:fb:ba:63:42:ad:bc:28:ab:0e: ae:90:f5:5b:ce:5d:a9:b6:ed:d7:7b:5a:67:7b:28: 9b:fb:30:6d:6a:5b:ed:94:46:78:3f:d2:0b:96:25: 5c:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:BD:CB:60:1E:F1:4D:49:6A:96:E4:14:D2:AA:AB:57:05:22:4C:DB X509v3 Authority Key Identifier: keyid:3D:93:EB:66:D8:1A:27:6A:03:92:46:16:8D:32:78:B2:67:EB:AE:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/PZPrZtgaJ2oDkkYWjTJ4smfrruw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PZPrZtgaJ2oDkkYWjTJ4smfrruw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140A8F/3305247A233C11EB849C5D6EC4F9AE02/ED8E5BC8CFD411EBA3172446C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.41.0-103.198.42.255 202.129.244.0/22 Signature Algorithm: sha256WithRSAEncryption b1:c9:a3:0c:55:aa:c1:4a:17:fc:e7:01:1b:e4:1c:bb:1e:71: 9b:b6:3e:bf:2d:06:16:89:7b:eb:85:08:74:ba:87:61:35:d8: eb:38:13:c7:53:dc:47:c2:1f:15:e9:d9:50:18:1b:d8:80:ab: 27:f4:e8:63:36:94:bd:6c:fe:63:32:73:d7:4d:79:09:fd:90: 1c:c3:b5:f8:16:19:dd:d3:62:b1:30:3f:d8:88:ed:b8:00:96: 64:27:99:c6:fc:1b:b6:81:7c:8d:f5:1b:84:79:12:e9:c9:43: 4d:2c:c5:17:bd:c4:5c:b3:c8:74:4e:12:81:5a:ad:1e:54:44: 90:7d:e7:98:39:c6:0e:41:0a:f6:93:be:66:b7:90:17:eb:1e: 43:43:c1:c0:5f:80:88:b9:f2:86:fd:d5:29:92:eb:6b:a9:da: 55:af:d3:30:a5:36:d8:62:8f:1f:9e:d1:15:06:a6:c3:4c:0d: d6:bf:40:63:f9:fb:f0:4e:11:91:93:42:85:af:bb:b3:bb:98: 45:21:4d:a0:e4:6c:af:9d:99:f4:74:bf:d7:50:48:17:d4:e4: ff:33:e2:e0:4d:35:aa:1f:34:6d:29:b7:d7:00:b9:88:2d:7a: cf:64:26:ad:bf:8e:01:07:7f:bb:e6:e9:13:1b:9e:6c:c2:5f: 7f:2e:29:7b -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBBOEYxMTAvBgNVBAUTKDNEOTNFQjY2RDgxQTI3NkEwMzkyNDYxNjhEMzI3OEIy NjdFQkFFRUMwHhcNMjQxMDA0MjIwMzI0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwNjYyYi01NThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznXHE3HsXGE7f0fHGh0NecEwweMWqqOhD/y9E50td5ctrNuVMsneux+y3IL/ OUZkh2GfXsrF3dgMVIlpk8cHN0YmoyZhqBuxO+Qv4BbwPGyTyBXTdD6f9ywWxTxX G+DS1Vr6B+PncgjeEs0MnAAUHBKZsOPWizSYFIibUs4VsTuiMWom1U3MujueX2SE 8fPP1zopjQ0O06bev96PODsQ5zB7vXgkx7X8ql0J37R7o/NjGlL0e65+00IPwBUI WDzIq9i/RCyTYFrEg1zAh8mIDbCNQVxML2/7umNCrbwoqw6ukPVbzl2ptu3Xe1pn eyib+zBtalvtlEZ4P9ILliVcpQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFEK9y2Ae 8U1JapbkFNKqq1cFIkzbMB8GA1UdIwQYMBaAFD2T62bYGidqA5JGFo0yeLJn667s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEE4Ri8zMzA1MjQ3QTIz M0MxMUVCODQ5QzVENkVDNEY5QUUwMi9QWlByWnRnYUoyb0Rra1lXalRKNHNtZnJy dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BaUHJadGdhSjJvRGtrWVdqVEo0c21mcnJ1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBBOEYvMzMwNTI0N0EyMzNDMTFFQjg0OUM1RDZFQzRGOUFFMDIvRUQ4RTVCQzhD RkQ0MTFFQkEzMTcyNDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGfGKQMEAGfGKgMEAsqB9DANBgkqhkiG9w0BAQsFAAOC AQEAscmjDFWqwUoX/OcBG+Qcux5xm7Y+vy0GFol764UIdLqHYTXY6zgTx1PcR8If FenZUBgb2ICrJ/ToYzaUvWz+YzJz1015Cf2QHMO1+BYZ3dNisTA/2IjtuACWZCeZ xvwbtoF8jfUbhHkS6clDTSzFF73EXLPIdE4SgVqtHlREkH3nmDnGDkEK9pO+ZreQ F+seQ0PBwF+AiLnyhv3VKZLra6naVa/TMKU22GKPH57RFQamw0wN1r9AY/n78E4R kZNCha+7s7uYRSFNoORsr52Z9HS/11BIF9Tk/zPi4E01qh80bSm31wC5iC16z2Qm rb+OAQd/u+bpExuebMJffy4pew== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:38 2024 by rpki-client on console-ams.rpki-client.org