$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/ED7C0BCC287211EFA1483A2FC4F9AE02.roa File: ED7C0BCC287211EFA1483A2FC4F9AE02.roa (raw, json) Hash identifier: TrqB+PZze3/PHsx+S+f9vvK9WuKsfRUtYIK0Ow1+dU4= Subject key identifier: A9:3F:5B:95:88:DE:06:00:CC:83:BB:89:D1:D0:75:56:21:26:91:74 Certificate issuer: /CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Certificate serial: 47 Authority key identifier: 41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/ED7C0BCC287211EFA1483A2FC4F9AE02.roa Signing time: Fri 27 Sep 2024 06:29:53 +0000 ROA not before: Fri 27 Sep 2024 06:29:53 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151990 IP address blocks: 103.70.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BED/serialNumber=419F27A4CFECF461DB82F6F906764FB6D65F23CF Validity Not Before: Sep 27 06:29:53 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66f650e1-c891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:29:35:1b:58:16:31:55:e2:fe:26:53:82:6a: 7e:7a:a7:b4:f5:a2:78:45:f4:73:90:68:56:51:4f: 08:33:4a:78:a6:c2:bb:0e:cb:4d:1e:98:47:43:b6: d2:87:e4:e8:51:da:89:15:ba:66:ea:df:bf:47:71: 0e:34:a0:9f:b1:70:dd:d8:0f:5b:40:3e:e3:f2:fa: 42:b8:ca:02:30:c5:bd:48:e0:8b:cb:18:1c:53:1d: 08:9b:1b:a8:eb:6c:dd:8d:d5:80:66:a5:5f:10:6d: 95:d6:21:7b:29:f3:c3:d0:ce:30:d8:3e:d2:39:3e: 79:d9:7b:66:20:bb:b5:a1:f3:0b:2b:3a:26:c4:96: f7:a3:a2:bf:3f:60:dd:e2:26:87:97:58:3f:e9:81: 17:21:0b:15:6c:e2:2c:76:ee:37:08:50:e3:40:c5: 4a:a3:4b:6c:86:75:e4:14:8c:e5:fe:a3:46:4f:b0: 08:bd:22:e7:d7:c6:87:a4:ab:5b:7b:3f:f2:e9:4a: 18:39:62:b6:07:68:d0:e8:bf:f1:a5:b3:d2:f2:2d: ea:a4:0e:28:b3:e9:1f:54:c6:6c:05:14:c7:83:d3: 42:7c:65:55:a1:b3:e1:8d:1a:8c:9e:f5:d0:9a:f1: 29:2b:cc:bc:19:fc:e3:f9:8f:a5:c3:8c:57:6e:59: 0d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:3F:5B:95:88:DE:06:00:CC:83:BB:89:D1:D0:75:56:21:26:91:74 X509v3 Authority Key Identifier: keyid:41:9F:27:A4:CF:EC:F4:61:DB:82:F6:F9:06:76:4F:B6:D6:5F:23:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/QZ8npM_s9GHbgvb5BnZPttZfI88.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZ8npM_s9GHbgvb5BnZPttZfI88.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BED/08E0E0661F3811EFB059B665C4F9AE02/ED7C0BCC287211EFA1483A2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.112.0/23 Signature Algorithm: sha256WithRSAEncryption d8:ad:bc:f6:ea:6f:58:b7:db:e6:e1:b2:c9:dd:35:d2:de:87: 7f:98:b7:84:e5:f3:aa:60:93:d7:10:6d:09:04:23:57:0f:d2: 87:dc:e0:0f:27:69:90:5e:d0:6b:d5:3d:fc:6f:27:70:2c:98: 8c:83:f7:a0:8a:52:c4:bd:7e:57:21:12:9e:ee:0f:54:8e:36: 60:99:bf:94:8e:4d:19:44:f6:ab:1c:71:40:30:42:25:62:23: fe:83:19:c7:b1:97:18:70:e6:d5:bf:ee:dd:4e:a1:52:6b:b8: 89:95:35:2e:6a:58:26:6b:92:df:bf:6b:e3:48:87:e3:9b:d7: d1:be:87:40:54:21:11:0c:19:28:f3:b5:99:ce:a3:91:96:e7: 5f:8c:42:5e:b1:53:74:5b:01:0b:d3:60:37:44:1a:e7:32:a7: 3f:42:8f:88:d8:4e:fa:f9:9c:a4:fd:f7:9f:5c:43:47:7e:3f: 68:1d:ea:fa:04:e6:4e:20:16:e2:38:31:a6:ee:88:e4:ca:a4: 57:24:cc:0a:05:32:25:aa:57:94:db:d3:19:72:48:22:a3:56: 6a:6c:8a:15:b2:c7:99:9a:f8:df:39:44:4e:5c:da:34:73:5f: d6:da:f9:93:21:2e:d5:b1:bf:f9:04:c2:cf:04:6a:c4:0f:df: 92:b4:81:3a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MEJFRDExMC8GA1UEBRMoNDE5RjI3QTRDRkVDRjQ2MURCODJGNkY5MDY3NjRGQjZE NjVGMjNDRjAeFw0yNDA5MjcwNjI5NTNaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZjY1MGUxLWM4OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDQKTUbWBYxVeL+JlOCan56p7T1onhF9HOQaFZRTwgzSnimwrsOy00emEdDttKH 5OhR2okVumbq379HcQ40oJ+xcN3YD1tAPuPy+kK4ygIwxb1I4IvLGBxTHQibG6jr bN2N1YBmpV8QbZXWIXsp88PQzjDYPtI5PnnZe2Ygu7Wh8wsrOibElvejor8/YN3i JoeXWD/pgRchCxVs4ix27jcIUONAxUqjS2yGdeQUjOX+o0ZPsAi9IufXxoekq1t7 P/LpShg5YrYHaNDov/Gls9LyLeqkDiiz6R9UxmwFFMeD00J8ZVWhs+GNGoye9dCa 8SkrzLwZ/OP5j6XDjFduWQ1lAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUqT9blYje BgDMg7uJ0dB1ViEmkXQwHwYDVR0jBBgwFoAUQZ8npM/s9GHbgvb5BnZPttZfI88w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQwQkVELzA4RTBFMDY2MUYz ODExRUZCMDU5QjY2NUM0RjlBRTAyL1FaOG5wTV9zOUdIYmd2YjVCblpQdHRaZkk4 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUVo4bnBNX3M5R0hiZ3ZiNUJuWlB0dFpmSTg4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MEJFRC8wOEUwRTA2NjFGMzgxMUVGQjA1OUI2NjVDNEY5QUUwMi9FRDdDMEJDQzI4 NzIxMUVGQTE0ODNBMkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWdGcDANBgkqhkiG9w0BAQsFAAOCAQEA2K289upvWLfb5uGy yd010t6Hf5i3hOXzqmCT1xBtCQQjVw/Sh9zgDydpkF7Qa9U9/G8ncCyYjIP3oIpS xL1+VyESnu4PVI42YJm/lI5NGUT2qxxxQDBCJWIj/oMZx7GXGHDm1b/u3U6hUmu4 iZU1LmpYJmuS379r40iH45vX0b6HQFQhEQwZKPO1mc6jkZbnX4xCXrFTdFsBC9Ng N0Qa5zKnP0KPiNhO+vmcpP33n1xDR34/aB3q+gTmTiAW4jgxpu6I5MqkVyTMCgUy JapXlNvTGXJIIqNWamyKFbLHmZr43zlETlzaNHNf1tr5kyEu1bG/+QTCzwRqxA/f krSBOg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:24 2024 by rpki-client on console-fra.rpki-client.org