$ rpki-client -vvf rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/5E24BEAADA7C11ED8156D867C4F9AE02.roa File: 5E24BEAADA7C11ED8156D867C4F9AE02.roa (raw, json) Hash identifier: ktK9vCE7vIpwa3GinrPFia6DHxl96KzteCFThN1eca8= Subject key identifier: 07:AA:38:45:D0:C0:9B:E1:CC:80:5C:35:6A:49:75:0C:DA:65:84:EB Certificate issuer: /CN=A9145D4C/serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Certificate serial: 01AD Authority key identifier: 40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/5E24BEAADA7C11ED8156D867C4F9AE02.roa Signing time: Wed 25 Sep 2024 02:36:16 +0000 ROA not before: Wed 25 Sep 2024 02:36:16 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 10080 IP address blocks: 103.143.156.0/23 maxlen: 23 103.143.156.0/24 maxlen: 24 103.143.157.0/24 maxlen: 24 203.31.252.0/24 maxlen: 24 2400:a2e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9145D4C/serialNumber=40D8377CAA5A6EAB91133E962EFF7E21B5113DB9 Validity Not Before: Sep 25 02:36:16 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f37720-e111 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9e:13:9a:1a:cb:a3:69:ef:b6:49:92:71:69: c4:8e:23:aa:46:66:ba:4b:90:0d:fb:31:0e:d4:96: e0:c1:a1:4c:a8:8c:ef:1e:78:0c:53:4f:f4:cb:ce: c4:cf:fa:6a:71:52:7f:d5:f8:fd:bb:37:22:ee:d0: 97:de:23:7d:3c:41:d3:f1:a4:cd:90:54:fc:ed:ce: ad:a9:21:6c:9c:f5:9c:82:e6:9d:d6:b3:59:f8:29: f0:75:03:30:fd:4f:f6:a7:e1:08:b3:66:b8:17:06: c6:8b:33:67:26:7f:f0:e9:ca:1b:22:9b:57:66:08: 3c:56:5c:24:73:57:35:88:92:75:39:79:9b:bd:ea: 98:a0:cd:e0:5e:d7:be:aa:3b:46:6d:88:9f:a3:b4: 6b:66:61:5f:0a:3a:54:95:be:6c:39:08:ac:10:e6: cc:53:a8:1b:0c:11:0e:0d:9b:1b:6e:3c:0a:05:62: 94:f0:9e:18:b0:5e:b6:41:a8:6f:13:4d:b1:f4:c6: 8a:2a:5c:ff:51:37:3c:78:77:a1:b3:b2:0b:1e:20: 01:0a:3b:04:42:6c:78:bc:40:5e:88:3d:03:1f:56: 3f:7b:0d:38:76:12:35:6b:49:d2:77:e5:3e:c6:07: 2a:95:74:b4:ee:90:03:ce:67:72:82:5a:92:e3:d9: 07:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:AA:38:45:D0:C0:9B:E1:CC:80:5C:35:6A:49:75:0C:DA:65:84:EB X509v3 Authority Key Identifier: keyid:40:D8:37:7C:AA:5A:6E:AB:91:13:3E:96:2E:FF:7E:21:B5:11:3D:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/QNg3fKpabquREz6WLv9-IbURPbk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QNg3fKpabquREz6WLv9-IbURPbk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9145D4C/F422FD12325811EDBD16D624C4F9AE02/5E24BEAADA7C11ED8156D867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.156.0/23 203.31.252.0/24 IPv6: 2400:a2e0::/32 Signature Algorithm: sha256WithRSAEncryption 17:21:0c:94:c8:d5:b9:25:34:31:3a:a2:22:4c:60:7a:92:13: 7e:83:08:94:03:66:40:03:39:a7:77:04:6d:61:0c:6f:ec:8f: d2:75:c1:38:d3:c4:3e:9a:a8:56:69:fc:1e:97:5b:cd:53:03: 5f:6e:9f:ba:48:71:f2:00:a6:8d:8e:67:d3:19:67:46:aa:50: 03:21:ce:9d:9b:f3:62:8c:7b:da:62:30:e1:24:97:ed:68:c4: 9c:a4:8d:70:cf:e7:56:2c:25:ee:4c:f4:03:83:c6:c3:86:75: b1:d9:63:15:e5:0f:58:e1:9d:36:ed:e6:6e:ef:e5:95:1a:58: 87:b1:ef:dd:83:93:b1:67:d8:e0:fd:09:48:e5:37:f8:e9:14: 47:1d:d3:39:93:ed:74:03:fa:b4:86:46:9f:90:1b:d7:ad:d8: df:b1:20:c7:f4:ca:c4:a3:31:99:02:e4:25:50:6e:39:22:c1: 62:4d:f0:89:8d:0f:60:4d:8a:36:71:a0:17:c0:ae:b1:6b:19: 31:ff:7f:4b:f4:78:40:04:9d:0c:f1:e3:a7:da:ef:cd:1a:91: 0f:62:b7:b2:01:a1:0f:66:a6:61:4c:a5:b8:e4:e6:60:d9:3c: e9:6c:13:21:1b:92:cd:de:e4:90:ce:52:dc:b7:64:c3:ad:0f: f1:61:54:e3 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDVENEMxMTAvBgNVBAUTKDQwRDgzNzdDQUE1QTZFQUI5MTEzM0U5NjJFRkY3RTIx QjUxMTNEQjkwHhcNMjQwOTI1MDIzNjE2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzNzcyMC1lMTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz54TmhrLo2nvtkmScWnEjiOqRma6S5AN+zEO1JbgwaFMqIzvHngMU0/0y87E z/pqcVJ/1fj9uzci7tCX3iN9PEHT8aTNkFT87c6tqSFsnPWcguad1rNZ+CnwdQMw /U/2p+EIs2a4FwbGizNnJn/w6cobIptXZgg8Vlwkc1c1iJJ1OXmbveqYoM3gXte+ qjtGbYifo7RrZmFfCjpUlb5sOQisEObMU6gbDBEODZsbbjwKBWKU8J4YsF62Qahv E02x9MaKKlz/UTc8eHehs7ILHiABCjsEQmx4vEBeiD0DH1Y/ew04dhI1a0nSd+U+ xgcqlXS07pADzmdyglqS49kHswIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAeqOEXQ wJvhzIBcNWpJdQzaZYTrMB8GA1UdIwQYMBaAFEDYN3yqWm6rkRM+li7/fiG1ET25 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NUQ0Qy9GNDIyRkQxMjMy NTgxMUVEQkQxNkQ2MjRDNEY5QUUwMi9RTmczZktwYWJxdVJFejZXTHY5LUliVVJQ YmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FOZzNmS3BhYnF1UkV6NldMdjktSWJVUlBiay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDVENEMvRjQyMkZEMTIzMjU4MTFFREJEMTZENjI0QzRGOUFFMDIvNUUyNEJFQUFE QTdDMTFFRDgxNTZEODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnj5wDBADLH/wwDQQCAAIwBwMFACQAouAwDQYJKoZIhvcN AQELBQADggEBABchDJTI1bklNDE6oiJMYHqSE36DCJQDZkADOad3BG1hDG/sj9J1 wTjTxD6aqFZp/B6XW81TA19un7pIcfIApo2OZ9MZZ0aqUAMhzp2b82KMe9piMOEk l+1oxJykjXDP51YsJe5M9AODxsOGdbHZYxXlD1jhnTbt5m7v5ZUaWIex792Dk7Fn 2OD9CUjlN/jpFEcd0zmT7XQD+rSGRp+QG9et2N+xIMf0ysSjMZkC5CVQbjkiwWJN 8ImND2BNijZxoBfArrFrGTH/f0v0eEAEnQzx46fa780akQ9it7IBoQ9mpmFMpbjk 5mDZPOlsEyEbks3e5JDOUty3ZMOtD/FhVOM= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:35 2024 by rpki-client on console-fra.rpki-client.org