$ rpki-client -vvf rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/14000EECD46811EEBDB9C07CC4F9AE02.roa File: 14000EECD46811EEBDB9C07CC4F9AE02.roa (raw, json) Hash identifier: x9CLj2cdmqCa7FminMsieO3V37ck1mU0c7WqDPKF2xY= Subject key identifier: AD:C4:4A:27:C6:01:F6:5E:7B:D9:46:ED:5E:30:F6:49:74:F6:E1:91 Certificate issuer: /CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Certificate serial: 035B Authority key identifier: 28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/14000EECD46811EEBDB9C07CC4F9AE02.roa Signing time: Thu 26 Sep 2024 06:54:55 +0000 ROA not before: Thu 26 Sep 2024 06:54:55 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 132825 IP address blocks: 43.230.10.0/24 maxlen: 24 43.230.11.0/24 maxlen: 24 103.239.100.0/24 maxlen: 24 103.239.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 859 (0x35b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916557B/serialNumber=2853BDA1638C599A84C3095310E69BFD260AA978 Validity Not Before: Sep 26 06:54:55 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=66f5053f-84b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ad:46:65:7f:b1:6c:11:e9:01:b7:5d:2d:85: d8:8d:f6:6e:76:f0:95:55:49:11:b1:19:d1:f8:58: 98:65:3f:43:63:89:ea:0b:09:12:c5:a6:53:fe:62: 0b:92:5e:eb:88:13:4d:0e:ef:45:08:99:00:26:d8: a3:86:ce:fe:5b:27:6b:7f:58:a6:53:e3:18:e1:b8: 61:1d:0b:7d:f8:fc:64:37:50:dc:e1:a6:7d:48:c1: 4c:19:cd:9b:be:db:da:78:26:5f:b7:98:1f:28:e2: 3b:de:ee:ac:79:c9:a6:da:20:09:30:ca:26:ed:64: d7:99:fb:4f:67:a7:cf:b9:fa:b9:d0:69:34:f3:1d: 4e:1c:c3:49:1d:05:8e:77:bc:8c:3f:3d:5a:5b:59: 42:c9:3b:27:4a:88:93:30:8e:76:02:8f:4d:b8:7c: 1b:98:bd:04:bc:4f:67:29:ce:3d:80:3f:ca:ab:47: f7:1e:bc:3a:6e:fa:12:f7:ad:4c:64:96:a3:a1:c7: 10:23:40:bf:91:d3:50:7f:6b:2e:32:54:86:f6:e6: 30:0d:f0:fc:80:fc:21:f5:58:e8:a7:d1:18:80:f7: f0:56:b7:bb:37:ec:e9:d8:56:f0:03:33:88:23:60: fa:75:6c:72:5f:3c:77:30:76:68:64:71:e3:e5:f7: 3b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:C4:4A:27:C6:01:F6:5E:7B:D9:46:ED:5E:30:F6:49:74:F6:E1:91 X509v3 Authority Key Identifier: keyid:28:53:BD:A1:63:8C:59:9A:84:C3:09:53:10:E6:9B:FD:26:0A:A9:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/KFO9oWOMWZqEwwlTEOab_SYKqXg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KFO9oWOMWZqEwwlTEOab_SYKqXg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916557B/8DA72640C1FA11ECB30EE21AC4F9AE02/14000EECD46811EEBDB9C07CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.10.0/23 103.239.100.0/23 Signature Algorithm: sha256WithRSAEncryption 85:61:d0:26:b3:8e:4b:c3:8d:41:37:6a:20:a8:1d:b3:71:1e: 62:17:e7:87:2e:9a:39:87:93:f0:a1:5a:24:ce:97:de:a9:ad: b5:b6:c9:48:bf:01:e3:17:53:5b:9b:05:73:d3:5f:18:51:80: 4a:0b:9e:62:4f:1d:64:46:77:b8:35:a6:ba:ad:d4:32:a7:a5: 18:97:03:f7:18:fd:03:56:ba:60:41:c7:a8:e4:32:bf:ae:1c: 21:e1:79:c9:a9:f0:a2:de:52:b9:a6:9e:bb:c9:2c:92:11:b9: 0e:83:be:a0:89:45:58:d1:e1:ce:0e:f0:ae:20:9f:0c:07:8e: 30:55:8f:58:a8:08:20:e4:40:cc:cc:19:2b:b0:06:dc:f5:45: 1a:50:06:a1:d5:b2:b3:7e:ef:5e:a1:37:ff:73:da:ea:4d:31: ec:f5:48:58:ba:26:46:4f:0e:d7:30:32:34:86:ad:6f:46:a1: 19:12:46:20:77:26:4e:cd:d0:bd:54:38:70:ce:25:13:8b:b1: b0:b7:f3:23:e6:eb:4a:12:87:0b:fe:11:47:f3:db:0d:eb:b0: a2:9e:b0:4b:53:2f:1b:af:1d:e0:16:bf:ce:c0:73:8b:36:64: 04:71:8b:4f:09:e4:60:70:b0:fa:b1:9f:24:78:88:85:cc:4c: fd:4b:16:53 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA1swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjU1N0IxMTAvBgNVBAUTKDI4NTNCREExNjM4QzU5OUE4NEMzMDk1MzEwRTY5QkZE MjYwQUE5NzgwHhcNMjQwOTI2MDY1NDU1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY1MDUzZi04NGIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxq1GZX+xbBHpAbddLYXYjfZudvCVVUkRsRnR+FiYZT9DY4nqCwkSxaZT/mIL kl7riBNNDu9FCJkAJtijhs7+Wydrf1imU+MY4bhhHQt9+PxkN1Dc4aZ9SMFMGc2b vtvaeCZft5gfKOI73u6secmm2iAJMMom7WTXmftPZ6fPufq50Gk08x1OHMNJHQWO d7yMPz1aW1lCyTsnSoiTMI52Ao9NuHwbmL0EvE9nKc49gD/Kq0f3Hrw6bvoS961M ZJajoccQI0C/kdNQf2suMlSG9uYwDfD8gPwh9Vjop9EYgPfwVre7N+zp2FbwAzOI I2D6dWxyXzx3MHZoZHHj5fc7HwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFK3ESifG AfZee9lG7V4w9kl09uGRMB8GA1UdIwQYMBaAFChTvaFjjFmahMMJUxDmm/0mCql4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTU3Qi84REE3MjY0MEMx RkExMUVDQjMwRUUyMUFDNEY5QUUwMi9LRk85b1dPTVdacUV3d2xURU9hYl9TWUtx WGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tGTzlvV09NV1pxRXd3bFRFT2FiX1NZS3FYZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjU1N0IvOERBNzI2NDBDMUZBMTFFQ0IzMEVFMjFBQzRGOUFFMDIvMTQwMDBFRUNE NDY4MTFFRUJEQjlDMDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEr5goDBAFn72QwDQYJKoZIhvcNAQELBQADggEBAIVh0Caz jkvDjUE3aiCoHbNxHmIX54cumjmHk/ChWiTOl96prbW2yUi/AeMXU1ubBXPTXxhR gEoLnmJPHWRGd7g1prqt1DKnpRiXA/cY/QNWumBBx6jkMr+uHCHhecmp8KLeUrmm nrvJLJIRuQ6DvqCJRVjR4c4O8K4gnwwHjjBVj1ioCCDkQMzMGSuwBtz1RRpQBqHV srN+716hN/9z2upNMez1SFi6JkZPDtcwMjSGrW9GoRkSRiB3Jk7N0L1UOHDOJROL sbC38yPm60oShwv+EUfz2w3rsKKesEtTLxuvHeAWv87Ac4s2ZARxi08J5GBwsPqx nyR4iIXMTP1LFlM= -----END CERTIFICATE-----Generated at Mon Nov 25 02:48:57 2024 by rpki-client on console-ams.rpki-client.org