$ rpki-client -vvf rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/CD0710DA3F3511ED84AFEA5BC4F9AE02.roa File: CD0710DA3F3511ED84AFEA5BC4F9AE02.roa (raw, json) Hash identifier: OhYJKozvfID8ylqYGKB5GjbLkxxbmKyR5Jo0rIME+Bo= Subject key identifier: DF:F0:0F:AA:12:1F:04:4B:CB:A5:2A:56:E7:4D:E2:DA:DF:4F:09:7A Certificate issuer: /CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Certificate serial: 0753 Authority key identifier: 0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/CD0710DA3F3511ED84AFEA5BC4F9AE02.roa Signing time: Fri 06 Sep 2024 22:10:59 +0000 ROA not before: Fri 06 Sep 2024 22:10:59 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58715 IP address blocks: 103.155.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914ED2B/serialNumber=0FD97A1841C9974F1F49042EDA3E728421AAE5FE Validity Not Before: Sep 6 22:10:59 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66db7df3-1110 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:7f:71:1a:86:75:21:f2:2e:7b:ce:8e:ff:9f: b5:de:f4:03:1b:f3:08:ea:b6:55:ab:e6:f6:1c:91: b2:86:75:86:96:00:73:9b:86:34:48:2c:2a:10:8a: c0:63:bd:3c:ec:b6:45:20:0e:70:88:b9:cf:11:78: fd:df:74:c6:3f:96:be:1b:db:53:0a:d1:56:64:70: 8e:0d:87:84:89:ea:d3:15:49:92:a3:8d:13:06:80: f8:e0:44:20:b7:c1:2a:c7:ce:d1:79:07:c9:fa:22: 21:58:10:86:57:1a:a5:db:7a:b8:9a:20:6c:24:78: 33:61:78:4a:7b:e2:27:6a:9c:45:d3:93:b4:a5:7b: 3f:2d:e4:a3:f7:b5:3b:fa:44:28:03:95:0a:99:1b: ad:7a:33:b1:c9:05:0d:fc:df:cd:cc:14:1b:ba:fa: bd:38:ad:22:47:7b:49:e5:a6:6a:fe:bf:90:d9:b1: 4f:2a:ae:b1:8a:78:0a:33:0e:35:fa:9c:ef:54:e1: 08:64:24:4b:61:32:a8:45:fa:40:c1:fe:ee:80:3a: 82:87:8c:dc:af:a7:8d:44:dd:7b:02:a4:60:a3:0f: f4:04:39:1c:25:a4:65:cd:1b:08:1b:9a:62:c3:df: 88:7a:ee:3f:e7:5e:9f:0c:9e:89:74:13:ab:9d:28: 98:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:F0:0F:AA:12:1F:04:4B:CB:A5:2A:56:E7:4D:E2:DA:DF:4F:09:7A X509v3 Authority Key Identifier: keyid:0F:D9:7A:18:41:C9:97:4F:1F:49:04:2E:DA:3E:72:84:21:AA:E5:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/D9l6GEHJl08fSQQu2j5yhCGq5f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D9l6GEHJl08fSQQu2j5yhCGq5f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914ED2B/8B6700A6F40811EA90AC566FC4F9AE02/CD0710DA3F3511ED84AFEA5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.118.0/24 Signature Algorithm: sha256WithRSAEncryption bf:e5:98:c8:50:b9:3a:8c:6b:43:e4:1d:77:c9:3e:9d:d4:5b: 89:83:d0:da:64:82:6d:b2:1e:6e:11:34:2c:d5:44:13:55:f2: 7a:17:d9:5f:45:2a:61:9b:4a:80:93:9e:a0:75:15:be:31:17: 7b:03:45:a9:4b:be:2f:c7:dd:9d:50:76:f5:23:8a:82:2f:d6: 0d:a5:58:a0:c9:68:36:24:84:41:38:f1:1a:e9:ae:9a:1a:e3: a5:e5:0a:ac:f6:84:87:8e:f6:6b:aa:f4:f9:a4:56:1e:3a:25: cf:b0:3e:60:4a:07:21:6d:db:8a:64:44:22:49:8b:27:0b:fa: 75:d2:ff:3e:fe:7c:5b:92:d8:8a:fe:2f:f6:59:39:b4:c3:91: 8e:d7:25:6e:ef:7d:c7:e5:5d:89:f0:8d:01:83:2a:81:81:02: 5b:2c:5e:28:a7:39:ae:c3:16:a6:79:fd:0b:8f:92:f7:7c:92: eb:18:08:ce:d0:b6:03:1f:d4:67:1f:a6:b6:e0:68:00:a0:8b: 47:f7:ac:4f:ce:34:15:27:b6:06:42:eb:ac:9a:37:a5:a0:5e: a5:1e:30:36:29:39:d2:da:f4:a4:86:0a:85:11:46:8b:bf:3f: 70:61:e6:7d:e5:af:3f:a5:06:18:e8:be:6a:e2:9c:56:b3:55: 93:e8:73:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVEMkIxMTAvBgNVBAUTKDBGRDk3QTE4NDFDOTk3NEYxRjQ5MDQyRURBM0U3Mjg0 MjFBQUU1RkUwHhcNMjQwOTA2MjIxMDU5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiN2RmMy0xMTEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsn9xGoZ1IfIue86O/5+13vQDG/MI6rZVq+b2HJGyhnWGlgBzm4Y0SCwqEIrA Y7087LZFIA5wiLnPEXj933TGP5a+G9tTCtFWZHCODYeEierTFUmSo40TBoD44EQg t8Eqx87ReQfJ+iIhWBCGVxql23q4miBsJHgzYXhKe+InapxF05O0pXs/LeSj97U7 +kQoA5UKmRutejOxyQUN/N/NzBQbuvq9OK0iR3tJ5aZq/r+Q2bFPKq6xingKMw41 +pzvVOEIZCRLYTKoRfpAwf7ugDqCh4zcr6eNRN17AqRgow/0BDkcJaRlzRsIG5pi w9+Ieu4/516fDJ6JdBOrnSiY4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFN/wD6oS HwRLy6UqVudN4trfTwl6MB8GA1UdIwQYMBaAFA/ZehhByZdPH0kELto+coQhquX+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUQyQi84QjY3MDBBNkY0 MDgxMUVBOTBBQzU2NkZDNEY5QUUwMi9EOWw2R0VISmwwOGZTUVF1Mmo1eWhDR3E1 ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Q5bDZHRUhKbDA4ZlNRUXUyajV5aENHcTVmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVEMkIvOEI2NzAwQTZGNDA4MTFFQTkwQUM1NjZGQzRGOUFFMDIvQ0QwNzEwREEz RjM1MTFFRDg0QUZFQTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnm3YwDQYJKoZIhvcNAQELBQADggEBAL/lmMhQuTqMa0Pk HXfJPp3UW4mD0Npkgm2yHm4RNCzVRBNV8noX2V9FKmGbSoCTnqB1Fb4xF3sDRalL vi/H3Z1QdvUjioIv1g2lWKDJaDYkhEE48Rrprpoa46XlCqz2hIeO9muq9PmkVh46 Jc+wPmBKByFt24pkRCJJiycL+nXS/z7+fFuS2Ir+L/ZZObTDkY7XJW7vfcflXYnw jQGDKoGBAlssXiinOa7DFqZ5/QuPkvd8kusYCM7QtgMf1GcfprbgaACgi0f3rE/O NBUntgZC66yaN6WgXqUeMDYpOdLa9KSGCoURRou/P3Bh5n3lrz+lBhjovmrinFaz VZPoc2s= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:26 2024 by rpki-client on console-ams.rpki-client.org