$ rpki-client -vvf rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/1268CB8C4E3E11EF891FC80CC4F9AE02.roa File: 1268CB8C4E3E11EF891FC80CC4F9AE02.roa (raw, json) Hash identifier: 4HGe1cjFbJfQFWJ6cnAj+BysIZgPQf+tvO/SplIzyq4= Subject key identifier: 11:DE:D5:87:2D:00:C3:1A:35:CC:0F:E8:83:8C:B1:C4:B5:A6:99:F3 Certificate issuer: /CN=A9147609/serialNumber=02E28F9D460511137B21478823A7B48339565212 Certificate serial: 37 Authority key identifier: 02:E2:8F:9D:46:05:11:13:7B:21:47:88:23:A7:B4:83:39:56:52:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AuKPnUYFERN7IUeII6e0gzlWUhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/1268CB8C4E3E11EF891FC80CC4F9AE02.roa Signing time: Thu 31 Oct 2024 05:40:23 +0000 ROA not before: Thu 31 Oct 2024 05:40:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 137578 IP address blocks: 103.114.10.0/23 maxlen: 23 103.114.10.0/24 maxlen: 24 103.114.11.0/24 maxlen: 24 2405:4440::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/AuKPnUYFERN7IUeII6e0gzlWUhI.crl rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/AuKPnUYFERN7IUeII6e0gzlWUhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AuKPnUYFERN7IUeII6e0gzlWUhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55 (0x37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147609/serialNumber=02E28F9D460511137B21478823A7B48339565212 Validity Not Before: Oct 31 05:40:23 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67231847-f675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2a:9c:14:2b:c6:a9:4f:ce:0f:ca:35:5e:a3: 20:a8:2c:b6:7f:88:21:93:37:04:a6:08:67:ab:c8: 0a:c1:98:6d:18:49:af:ea:0f:eb:86:f1:ad:cc:96: b8:c7:b7:f7:42:dc:b6:be:32:72:d1:bc:b9:af:af: 16:e1:1c:70:61:ec:17:a4:19:32:95:34:e3:2d:06: a1:10:02:4b:e0:01:0a:aa:bb:f9:cf:83:30:80:3c: 55:6b:41:b6:88:ef:40:33:15:f1:90:9b:e2:5a:ec: 4a:a6:a7:87:76:60:bc:96:43:d0:e9:83:3a:7e:4b: 25:ee:ac:10:0b:72:ee:6f:8e:2b:05:fb:b2:ec:7e: 1d:0b:1d:bf:dd:d2:94:b0:7e:ac:29:5e:cc:bf:cc: a0:68:f2:89:2c:aa:39:fd:54:84:02:9a:81:7d:fb: 19:25:55:ef:41:d6:ab:df:e6:11:45:18:0a:ec:4c: d2:24:f6:b4:41:25:8a:40:53:c2:61:89:01:54:97: cb:05:c4:d5:9f:d3:9b:22:67:7e:9f:fa:40:cf:67: 6c:34:e2:9e:4a:56:a5:fc:66:2b:c3:9d:3e:5c:69: 02:6d:91:31:f2:3c:44:fa:66:17:15:f0:cb:0b:c4: 80:ab:58:7e:4c:fe:6c:0d:64:dc:8f:96:57:20:b7: 5c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:DE:D5:87:2D:00:C3:1A:35:CC:0F:E8:83:8C:B1:C4:B5:A6:99:F3 X509v3 Authority Key Identifier: keyid:02:E2:8F:9D:46:05:11:13:7B:21:47:88:23:A7:B4:83:39:56:52:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/AuKPnUYFERN7IUeII6e0gzlWUhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AuKPnUYFERN7IUeII6e0gzlWUhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147609/632C30AE440E11E8903D3A5BC4F9AE02/1268CB8C4E3E11EF891FC80CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.10.0/23 IPv6: 2405:4440::/32 Signature Algorithm: sha256WithRSAEncryption 81:8a:1d:f3:e9:b6:41:4e:c4:89:d2:fd:9b:91:69:9f:56:65: f6:ee:47:a3:02:e4:58:26:66:d0:07:20:07:11:2e:1f:e9:c4: cd:ba:87:c6:cb:07:63:db:4b:50:65:3a:ef:de:10:f4:e7:33: 8c:7f:07:12:8f:4b:e1:d6:f2:06:ef:0b:67:5c:11:30:4e:1f: d3:05:d2:64:b9:99:d8:cb:3d:a2:a5:99:38:3c:d4:04:7a:57: 5d:3f:a1:bc:74:43:ec:e0:c7:1c:b0:2e:c7:6c:82:01:a4:71: 5c:b0:5e:59:87:5f:70:ba:b5:2a:a6:c7:02:8a:33:30:39:3a: 06:60:f1:2d:a7:2a:28:58:5a:29:0c:23:a2:6c:e5:44:8f:9e: d9:7f:71:1a:8a:c8:3f:bc:37:38:d3:f0:cb:72:11:0d:47:fd: 91:80:c8:bd:91:f2:9c:ed:5e:2a:1b:8c:ad:f1:e3:5a:72:b5: cb:07:c7:03:23:0f:b8:6f:82:66:ae:62:da:81:45:dc:1f:eb: b0:af:0b:93:cd:46:77:35:0e:90:64:6d:71:87:0a:72:2d:f9: 5a:7e:29:8f:3c:e8:de:f1:ba:24:6f:91:90:4f:30:1a:7e:5e: fe:e3:13:16:d2:ad:41:92:b6:38:b2:59:da:b2:39:86:10:23: 22:77:b5:c5 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBNzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NzYwOTExMC8GA1UEBRMoMDJFMjhGOUQ0NjA1MTExMzdCMjE0Nzg4MjNBN0I0ODMz OTU2NTIxMjAeFw0yNDEwMzEwNTQwMjNaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjMxODQ3LWY2NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC2KpwUK8apT84PyjVeoyCoLLZ/iCGTNwSmCGeryArBmG0YSa/qD+uG8a3MlrjH t/dC3La+MnLRvLmvrxbhHHBh7BekGTKVNOMtBqEQAkvgAQqqu/nPgzCAPFVrQbaI 70AzFfGQm+Ja7Eqmp4d2YLyWQ9Dpgzp+SyXurBALcu5vjisF+7Lsfh0LHb/d0pSw fqwpXsy/zKBo8oksqjn9VIQCmoF9+xklVe9B1qvf5hFFGArsTNIk9rRBJYpAU8Jh iQFUl8sFxNWf05siZ36f+kDPZ2w04p5KVqX8ZivDnT5caQJtkTHyPET6ZhcV8MsL xICrWH5M/mwNZNyPllcgt1z1AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUEd7Vhy0A wxo1zA/og4yxxLWmmfMwHwYDVR0jBBgwFoAUAuKPnUYFERN7IUeII6e0gzlWUhIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ3NjA5LzYzMkMzMEFFNDQw RTExRTg5MDNEM0E1QkM0RjlBRTAyL0F1S1BuVVlGRVJON0lVZUlJNmUwZ3psV1Vo SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQXVLUG5VWUZFUk43SVVlSUk2ZTBnemxXVWhJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NzYwOS82MzJDMzBBRTQ0MEUxMUU4OTAzRDNBNUJDNEY5QUUwMi8xMjY4Q0I4QzRF M0UxMUVGODkxRkM4MENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWdyCjANBAIAAjAHAwUAJAVEQDANBgkqhkiG9w0BAQsFAAOC AQEAgYod8+m2QU7EidL9m5Fpn1Zl9u5HowLkWCZm0AcgBxEuH+nEzbqHxssHY9tL UGU6794Q9OczjH8HEo9L4dbyBu8LZ1wRME4f0wXSZLmZ2Ms9oqWZODzUBHpXXT+h vHRD7ODHHLAux2yCAaRxXLBeWYdfcLq1KqbHAoozMDk6BmDxLacqKFhaKQwjomzl RI+e2X9xGorIP7w3ONPwy3IRDUf9kYDIvZHynO1eKhuMrfHjWnK1ywfHAyMPuG+C Zq5i2oFF3B/rsK8Lk81GdzUOkGRtcYcKci35Wn4pjzzo3vG6JG+RkE8wGn5e/uMT FtKtQZK2OLJZ2rI5hhAjIne1xQ== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:43 2024 by rpki-client on console-fra.rpki-client.org