$ rpki-client -vvf rpki.apnic.net/member_repository/A9144436/6407E06665E911E8B527A323C4F9AE02/1086CEC42ACA11EE88AEAE19C4F9AE02.roa File: 1086CEC42ACA11EE88AEAE19C4F9AE02.roa (raw, json) Hash identifier: 6D0gW6FWFI2VeP1xT9SYxSMf8UjausKvml76wHWoNrY= Subject key identifier: 5F:2E:66:3E:ED:43:82:55:2D:DD:E3:45:D0:55:07:42:6F:84:B6:71 Certificate issuer: /CN=A9144436/serialNumber=CC69231C1CA15BCE00EE8D45D3CCFFDE452D4B92 Certificate serial: 140C Authority key identifier: CC:69:23:1C:1C:A1:5B:CE:00:EE:8D:45:D3:CC:FF:DE:45:2D:4B:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zGkjHByhW84A7o1F08z_3kUtS5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9144436/6407E06665E911E8B527A323C4F9AE02/1086CEC42ACA11EE88AEAE19C4F9AE02.roa Signing time: Tue 02 Jul 2024 17:24:33 +0000 ROA not before: Tue 02 Jul 2024 17:24:33 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137862 IP address blocks: 103.115.240.0/23 maxlen: 23 103.115.240.0/24 maxlen: 24 103.115.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9144436/6407E06665E911E8B527A323C4F9AE02/zGkjHByhW84A7o1F08z_3kUtS5I.crl rsync://rpki.apnic.net/member_repository/A9144436/6407E06665E911E8B527A323C4F9AE02/zGkjHByhW84A7o1F08z_3kUtS5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zGkjHByhW84A7o1F08z_3kUtS5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:47:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5132 (0x140c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9144436/serialNumber=CC69231C1CA15BCE00EE8D45D3CCFFDE452D4B92 Validity Not Before: Jul 2 17:24:33 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668437d0-59f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:37:47:4b:a1:20:54:6d:97:48:9c:a6:d5:c5: 59:e0:30:0d:d8:cc:b0:08:b3:5f:fb:23:5b:52:ca: 7c:74:69:da:2e:9b:c7:2f:77:c3:62:5b:8d:cd:9a: cf:6f:a8:1d:aa:b5:47:d7:e2:c0:db:44:97:5c:13: 9d:83:40:d0:6c:41:10:9e:f0:b3:e1:14:18:c5:03: ec:a6:1e:a5:2c:0b:b5:9b:7b:de:7a:96:3c:03:c7: f9:ca:92:46:90:14:c4:64:d0:21:40:f0:b8:be:68: 72:f6:17:68:96:cf:88:78:2f:71:bd:f9:a3:35:1b: 29:de:51:69:5b:b1:eb:b4:a7:61:aa:f0:cc:3e:d2: cf:b0:c1:3d:d3:7a:68:83:c1:84:04:57:d0:96:28: 6b:38:36:fe:67:1d:1a:7b:3a:c2:95:34:00:18:be: 7a:f4:9d:31:7e:9f:83:1a:cf:dc:a4:28:75:94:7d: c3:2b:98:7b:7f:13:36:ba:11:89:ed:5a:2e:4e:44: f6:2d:8d:5c:51:c4:3c:b9:9a:34:37:b0:4b:ec:95: 9d:4e:7a:3f:74:eb:2b:84:ce:88:da:22:b6:4d:2c: d6:18:85:00:27:94:0f:00:14:42:7f:94:d8:ff:a5: 1e:95:5b:06:c6:b5:8a:aa:45:6d:37:73:56:67:47: 9d:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2E:66:3E:ED:43:82:55:2D:DD:E3:45:D0:55:07:42:6F:84:B6:71 X509v3 Authority Key Identifier: keyid:CC:69:23:1C:1C:A1:5B:CE:00:EE:8D:45:D3:CC:FF:DE:45:2D:4B:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9144436/6407E06665E911E8B527A323C4F9AE02/zGkjHByhW84A7o1F08z_3kUtS5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zGkjHByhW84A7o1F08z_3kUtS5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9144436/6407E06665E911E8B527A323C4F9AE02/1086CEC42ACA11EE88AEAE19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.240.0/23 Signature Algorithm: sha256WithRSAEncryption 74:90:dc:96:10:0c:55:db:b1:4b:2d:9e:aa:bc:85:c2:ee:8e: 00:a1:f3:09:ef:83:4c:73:f9:3c:88:29:ff:40:15:ff:0c:96: fe:a0:d4:16:06:30:9b:40:07:b6:63:bf:69:80:ff:f5:67:12: 8a:f5:27:08:b1:a7:73:00:d2:09:0d:75:18:e8:fe:9f:0b:25: c4:1a:f0:22:7c:73:30:b5:54:ca:0f:90:1e:cb:7c:d5:d3:68: 23:80:0d:71:8f:10:4e:82:e9:ce:eb:88:b5:15:81:ef:2b:79: f4:28:db:42:c7:3a:cb:62:5a:48:df:f9:dc:3c:ac:80:3e:58: 06:bb:ee:ba:83:1c:8d:78:37:16:4a:f0:41:7f:a9:6c:e5:3e: 20:6c:4f:a7:5b:5a:6e:55:a3:cb:fc:c3:68:96:cc:ff:4b:59: c7:a9:64:e0:8d:93:c8:6f:35:18:12:5d:84:cb:06:de:55:45: 69:65:6d:80:d5:81:9b:1e:77:b9:d4:90:bc:b8:7a:67:65:c7: 8b:1f:0e:fa:7c:e2:f1:0c:e8:0f:d5:b8:0a:9a:4b:61:93:08: 6d:09:c6:a5:4e:33:e9:ce:b3:4a:5b:ac:90:3a:7b:bc:39:06: aa:b3:3c:55:30:63:56:9b:a3:df:18:84:7e:14:17:ac:e2:65: ce:ad:7c:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDQ0MzYxMTAvBgNVBAUTKENDNjkyMzFDMUNBMTVCQ0UwMEVFOEQ0NUQzQ0NGRkRF NDUyRDRCOTIwHhcNMjQwNzAyMTcyNDMzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0MzdkMC01OWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjdHS6EgVG2XSJym1cVZ4DAN2MywCLNf+yNbUsp8dGnaLpvHL3fDYluNzZrP b6gdqrVH1+LA20SXXBOdg0DQbEEQnvCz4RQYxQPsph6lLAu1m3veepY8A8f5ypJG kBTEZNAhQPC4vmhy9hdols+IeC9xvfmjNRsp3lFpW7HrtKdhqvDMPtLPsME903po g8GEBFfQlihrODb+Zx0aezrClTQAGL569J0xfp+DGs/cpCh1lH3DK5h7fxM2uhGJ 7VouTkT2LY1cUcQ8uZo0N7BL7JWdTno/dOsrhM6I2iK2TSzWGIUAJ5QPABRCf5TY /6UelVsGxrWKqkVtN3NWZ0ed2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFF8uZj7t Q4JVLd3jRdBVB0JvhLZxMB8GA1UdIwQYMBaAFMxpIxwcoVvOAO6NRdPM/95FLUuS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NDQzNi82NDA3RTA2NjY1 RTkxMUU4QjUyN0EzMjNDNEY5QUUwMi96R2tqSEJ5aFc4NEE3bzFGMDh6XzNrVXRT NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pHa2pIQnloVzg0QTdvMUYwOHpfM2tVdFM1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDQ0MzYvNjQwN0UwNjY2NUU5MTFFOEI1MjdBMzIzQzRGOUFFMDIvMTA4NkNFQzQy QUNBMTFFRTg4QUVBRTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnc/AwDQYJKoZIhvcNAQELBQADggEBAHSQ3JYQDFXbsUst nqq8hcLujgCh8wnvg0xz+TyIKf9AFf8Mlv6g1BYGMJtAB7Zjv2mA//VnEor1Jwix p3MA0gkNdRjo/p8LJcQa8CJ8czC1VMoPkB7LfNXTaCOADXGPEE6C6c7riLUVge8r efQo20LHOstiWkjf+dw8rIA+WAa77rqDHI14NxZK8EF/qWzlPiBsT6dbWm5Vo8v8 w2iWzP9LWcepZOCNk8hvNRgSXYTLBt5VRWllbYDVgZsed7nUkLy4emdlx4sfDvp8 4vEM6A/VuAqaS2GTCG0JxqVOM+nOs0pbrJA6e7w5BqqzPFUwY1abo98YhH4UF6zi Zc6tfFM= -----END CERTIFICATE-----Generated at Sun Nov 24 18:36:19 2024 by rpki-client on console-fra.rpki-client.org