$ rpki-client -vvf rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/FD557922606A11EF8B9F6820C4F9AE02.roa File: FD557922606A11EF8B9F6820C4F9AE02.roa (raw, json) Hash identifier: zTIt7VVx9LOh+fElZbmBDVws/qIJ7/N6iFJRXVOkuO4= Subject key identifier: 52:A0:7D:5A:D4:31:27:03:44:5F:69:1C:B6:D3:40:81:36:23:68:40 Certificate issuer: /CN=A9154973/serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Certificate serial: 02 Authority key identifier: D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/FD557922606A11EF8B9F6820C4F9AE02.roa Signing time: Thu 22 Aug 2024 09:43:30 +0000 ROA not before: Thu 22 Aug 2024 09:43:30 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 56229 IP address blocks: 103.224.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154973/serialNumber=D600350737EA424B401B2481053D2BC2916CBAD1 Validity Not Before: Aug 22 09:43:30 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66c70842-55aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:62:c1:dc:7e:74:98:4b:91:de:23:60:f9:92: e7:3a:53:23:2a:b7:71:f8:3b:6f:5f:3f:8d:90:2d: 85:d2:11:ab:8b:c6:b0:4b:14:80:24:24:11:8f:76: 0f:67:6e:c0:5b:31:54:16:5a:7c:7e:7e:a5:e5:f9: 5e:26:93:18:ac:50:4e:be:89:56:43:0f:08:36:63: 0c:a9:04:45:b9:ec:ab:16:ed:17:4a:82:c4:ee:8b: d2:81:6b:88:47:9d:5b:ec:34:4f:aa:c1:a1:c8:9d: 6f:4f:04:08:0c:b0:0a:7f:ea:72:15:d2:eb:67:aa: 8b:a0:fc:80:77:87:63:64:51:41:c9:5e:fe:43:b9: b6:7c:ba:7f:1f:e6:74:ff:ab:c3:e5:d7:e8:63:ba: 62:92:88:2d:76:d3:d4:5a:0a:46:b7:4a:99:16:45: 89:f3:b7:91:15:d9:7d:22:d0:34:d9:1e:d0:d9:fe: b8:6b:04:3a:0e:4f:e3:18:bc:d9:74:d8:0e:2b:19: e5:4b:28:95:b7:03:17:39:0d:d5:84:69:e7:d5:5e: 6d:c0:de:00:63:01:98:42:e4:ac:d0:4e:a1:04:07: 84:2c:5e:f8:2b:b1:67:98:34:f2:8d:bd:f3:31:19: dc:a9:54:0b:d8:db:79:0b:ec:2f:d8:10:1e:bc:e2: ce:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:A0:7D:5A:D4:31:27:03:44:5F:69:1C:B6:D3:40:81:36:23:68:40 X509v3 Authority Key Identifier: keyid:D6:00:35:07:37:EA:42:4B:40:1B:24:81:05:3D:2B:C2:91:6C:BA:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/1gA1BzfqQktAGySBBT0rwpFsutE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1gA1BzfqQktAGySBBT0rwpFsutE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154973/A65BC626606A11EF898EDB1FC4F9AE02/FD557922606A11EF8B9F6820C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.224.19.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:f4:92:34:f8:7a:e6:c5:27:d0:ea:03:34:d2:aa:54:cf:20: b2:61:ad:fa:b8:5f:1b:e8:e4:57:72:a4:21:31:14:a1:d9:ff: 8f:2d:5a:50:d1:a2:ec:34:ff:2c:80:f7:13:98:87:31:83:7a: 42:3f:8a:93:a0:66:b1:58:d8:51:16:2b:18:43:38:de:38:56: 40:64:84:66:eb:79:47:c0:bb:20:ec:e5:86:b3:2a:f3:d1:27: 88:5b:48:4e:0c:e7:52:7c:46:5a:fd:e4:c6:09:e4:c0:6d:c3: b6:78:26:4c:cb:36:e6:0e:ba:9c:5e:94:76:d5:3d:d1:ad:41: f1:bc:b3:e1:4e:92:36:05:55:e1:5f:f3:f5:c3:cd:eb:5a:a9: ff:ad:76:61:f2:81:d4:53:55:9a:58:3d:d5:89:aa:24:31:a9: 0d:15:55:01:02:ed:7e:3e:4e:60:00:6a:fd:50:f6:fc:4f:3b: 4d:81:ef:81:0b:fd:69:27:96:bd:8a:ab:ac:a9:97:67:01:c0: 98:15:39:43:c3:99:98:e9:6b:4e:70:85:71:43:f0:46:5c:ef: 21:ee:16:ce:6d:5c:d1:dc:03:62:d5:4d:ec:55:f5:70:dc:a7: d5:5e:b3:5d:be:50:f0:1c:a7:83:42:fb:55:7e:de:7e:d6:ea: 09:48:60:94 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NDk3MzExMC8GA1UEBRMoRDYwMDM1MDczN0VBNDI0QjQwMUIyNDgxMDUzRDJCQzI5 MTZDQkFEMTAeFw0yNDA4MjIwOTQzMzBaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzcwODQyLTU1YWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDiYsHcfnSYS5HeI2D5kuc6UyMqt3H4O29fP42QLYXSEauLxrBLFIAkJBGPdg9n bsBbMVQWWnx+fqXl+V4mkxisUE6+iVZDDwg2YwypBEW57KsW7RdKgsTui9KBa4hH nVvsNE+qwaHInW9PBAgMsAp/6nIV0utnqoug/IB3h2NkUUHJXv5DubZ8un8f5nT/ q8Pl1+hjumKSiC1209RaCka3SpkWRYnzt5EV2X0i0DTZHtDZ/rhrBDoOT+MYvNl0 2A4rGeVLKJW3Axc5DdWEaefVXm3A3gBjAZhC5KzQTqEEB4QsXvgrsWeYNPKNvfMx GdypVAvY23kL7C/YEB684s5tAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUUqB9WtQx JwNEX2kcttNAgTYjaEAwHwYDVR0jBBgwFoAU1gA1BzfqQktAGySBBT0rwpFsutEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0OTczL0E2NUJDNjI2NjA2 QTExRUY4OThFREIxRkM0RjlBRTAyLzFnQTFCemZxUWt0QUd5U0JCVDByd3BGc3V0 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWdBMUJ6ZnFRa3RBR3lTQkJUMHJ3cEZzdXRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDk3My9BNjVCQzYyNjYwNkExMUVGODk4RURCMUZDNEY5QUUwMi9GRDU1NzkyMjYw NkExMUVGOEI5RjY4MjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGfgEzANBgkqhkiG9w0BAQsFAAOCAQEAavSSNPh65sUn0OoD NNKqVM8gsmGt+rhfG+jkV3KkITEUodn/jy1aUNGi7DT/LID3E5iHMYN6Qj+Kk6Bm sVjYURYrGEM43jhWQGSEZut5R8C7IOzlhrMq89EniFtITgznUnxGWv3kxgnkwG3D tngmTMs25g66nF6UdtU90a1B8byz4U6SNgVV4V/z9cPN61qp/612YfKB1FNVmlg9 1YmqJDGpDRVVAQLtfj5OYABq/VD2/E87TYHvgQv9aSeWvYqrrKmXZwHAmBU5Q8OZ mOlrTnCFcUPwRlzvIe4Wzm1c0dwDYtVN7FX1cNyn1V6zXb5Q8Byng0L7VX7eftbq CUhglA== -----END CERTIFICATE-----Generated at Sat Nov 23 07:45:02 2024 by rpki-client on console-ams.rpki-client.org