$ rpki-client -vvf rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/CC954D50577211EEA63EF217C4F9AE02.roa File: CC954D50577211EEA63EF217C4F9AE02.roa (raw, json) Hash identifier: EiQjdRFuXlYtCLTZbFxXGgOgXEXHeuVWajTCS8s1TyA= Subject key identifier: E4:D6:08:0C:2D:C6:A8:1E:5F:00:3D:83:EA:2F:21:56:8B:15:A4:47 Certificate issuer: /CN=A9165CEF/serialNumber=B44A307A58C26D6FAE07FE3F285ED6A382B4CB43 Certificate serial: D3 Authority key identifier: B4:4A:30:7A:58:C2:6D:6F:AE:07:FE:3F:28:5E:D6:A3:82:B4:CB:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tEoweljCbW-uB_4_KF7Wo4K0y0M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/CC954D50577211EEA63EF217C4F9AE02.roa Signing time: Sun 27 Oct 2024 04:15:41 +0000 ROA not before: Sun 27 Oct 2024 04:15:41 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 151815 IP address blocks: 103.140.110.0/23 maxlen: 23 103.140.110.0/24 maxlen: 24 103.140.111.0/24 maxlen: 24 2401:3ae0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/tEoweljCbW-uB_4_KF7Wo4K0y0M.crl rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/tEoweljCbW-uB_4_KF7Wo4K0y0M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tEoweljCbW-uB_4_KF7Wo4K0y0M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 211 (0xd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9165CEF/serialNumber=B44A307A58C26D6FAE07FE3F285ED6A382B4CB43 Validity Not Before: Oct 27 04:15:41 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671dbe6c-c6d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:95:80:e0:26:2e:d7:e1:97:0a:84:ac:53:a4: 9c:92:2a:9c:c2:5b:27:8d:52:75:ef:8a:e4:9e:e9: 80:75:14:eb:81:49:9f:e1:bd:90:c2:dd:e4:08:67: 50:85:49:1a:c3:4b:58:f0:03:34:b5:47:49:df:0c: be:0b:56:42:62:c1:0a:31:27:ed:91:a2:fc:8b:da: c5:83:d3:4d:93:2c:f0:c7:d6:5a:72:27:22:fd:91: f7:2d:91:8a:3b:3a:5e:f9:9d:cb:27:10:85:5f:26: fc:ab:85:f3:37:c9:59:03:6e:c7:3e:60:9b:6c:cc: 05:66:52:fe:dc:e3:84:d6:5f:f2:5d:85:3a:dd:cc: 7d:97:e5:3a:6a:13:95:fe:49:c5:ce:8e:5a:89:53: 81:0b:a5:86:ca:2d:fd:49:af:9b:3c:e4:ac:02:7c: 62:2d:b3:8f:61:96:f8:88:08:ad:e8:15:cc:22:80: e3:52:a4:18:d1:b3:d7:44:55:37:6b:d9:89:fd:ed: 9c:46:18:b8:36:b0:9f:15:bc:aa:eb:49:a0:f2:aa: 7b:e1:81:72:af:a8:b6:a5:9b:81:19:ce:d2:59:33: b9:e3:13:5b:6f:41:61:5a:c6:f5:8b:91:8d:a5:e3: 84:ce:3a:0e:72:9e:1d:e2:df:45:1f:f8:85:a7:c7: 3b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D6:08:0C:2D:C6:A8:1E:5F:00:3D:83:EA:2F:21:56:8B:15:A4:47 X509v3 Authority Key Identifier: keyid:B4:4A:30:7A:58:C2:6D:6F:AE:07:FE:3F:28:5E:D6:A3:82:B4:CB:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/tEoweljCbW-uB_4_KF7Wo4K0y0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tEoweljCbW-uB_4_KF7Wo4K0y0M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9165CEF/27749C36577211EE9DAE6155C4F9AE02/CC954D50577211EEA63EF217C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.110.0/23 IPv6: 2401:3ae0::/32 Signature Algorithm: sha256WithRSAEncryption 38:1f:35:d6:b3:f6:dd:fd:d6:f5:f3:6b:16:ed:e4:25:05:7d: f2:fe:0c:06:2b:27:d8:c8:4a:df:34:74:6f:2f:cd:46:3c:28: d6:70:59:10:cd:99:88:bd:50:b4:34:fb:74:5c:9b:6b:82:ef: 44:ae:bf:48:ad:22:de:11:09:65:59:94:d1:1f:4b:e8:95:be: cd:fb:bd:6a:b7:93:14:5d:40:db:77:b8:8d:47:31:9d:62:50: d3:3c:6d:14:7d:68:6b:3a:09:fe:5d:35:21:89:d0:ef:ec:25: dc:0b:04:62:22:c9:a1:9b:ca:ca:fa:1c:39:fa:02:2b:08:85: 92:db:4d:3f:de:bf:ca:8e:1e:0a:68:5d:35:26:d5:79:fe:2a: 2b:44:2f:b7:81:df:00:3a:dc:6d:4e:28:1f:2f:f2:e8:af:23: e5:38:66:76:26:ed:d4:07:6d:ab:19:af:da:17:3c:63:7e:28: f8:65:4d:35:59:78:31:f2:fe:d3:48:30:5f:15:57:55:f2:0f: e7:e1:6b:6d:79:e3:1e:38:13:e7:3c:35:da:eb:b7:15:06:9d: 61:19:86:16:95:55:53:1f:ad:61:8f:7a:39:76:64:79:9c:6a: 52:73:ef:81:64:0f:23:a5:f1:bc:bf:72:4d:a2:94:ce:60:8a: 14:27:46:28 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICANMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjVDRUYxMTAvBgNVBAUTKEI0NEEzMDdBNThDMjZENkZBRTA3RkUzRjI4NUVENkEz ODJCNENCNDMwHhcNMjQxMDI3MDQxNTQxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkYmU2Yy1jNmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ZWA4CYu1+GXCoSsU6SckiqcwlsnjVJ174rknumAdRTrgUmf4b2Qwt3kCGdQ hUkaw0tY8AM0tUdJ3wy+C1ZCYsEKMSftkaL8i9rFg9NNkyzwx9Zacici/ZH3LZGK Ozpe+Z3LJxCFXyb8q4XzN8lZA27HPmCbbMwFZlL+3OOE1l/yXYU63cx9l+U6ahOV /knFzo5aiVOBC6WGyi39Sa+bPOSsAnxiLbOPYZb4iAit6BXMIoDjUqQY0bPXRFU3 a9mJ/e2cRhi4NrCfFbyq60mg8qp74YFyr6i2pZuBGc7SWTO54xNbb0FhWsb1i5GN peOEzjoOcp4d4t9FH/iFp8c7owIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOTWCAwt xqgeXwA9g+ovIVaLFaRHMB8GA1UdIwQYMBaAFLRKMHpYwm1vrgf+Pyhe1qOCtMtD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NUNFRi8yNzc0OUMzNjU3 NzIxMUVFOURBRTYxNTVDNEY5QUUwMi90RW93ZWxqQ2JXLXVCXzRfS0Y3V280SzB5 ME0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RFb3dlbGpDYlctdUJfNF9LRjdXbzRLMHkwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjVDRUYvMjc3NDlDMzY1NzcyMTFFRTlEQUU2MTU1QzRGOUFFMDIvQ0M5NTRENTA1 NzcyMTFFRUE2M0VGMjE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjG4wDQQCAAIwBwMFACQBOuAwDQYJKoZIhvcNAQELBQAD ggEBADgfNdaz9t391vXzaxbt5CUFffL+DAYrJ9jISt80dG8vzUY8KNZwWRDNmYi9 ULQ0+3Rcm2uC70Suv0itIt4RCWVZlNEfS+iVvs37vWq3kxRdQNt3uI1HMZ1iUNM8 bRR9aGs6Cf5dNSGJ0O/sJdwLBGIiyaGbysr6HDn6AisIhZLbTT/ev8qOHgpoXTUm 1Xn+KitEL7eB3wA63G1OKB8v8uivI+U4ZnYm7dQHbasZr9oXPGN+KPhlTTVZeDHy /tNIMF8VV1XyD+fha2154x44E+c8NdrrtxUGnWEZhhaVVVMfrWGPejl2ZHmcalJz 74FkDyOl8by/ck2ilM5gihQnRig= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:08 2024 by rpki-client on console-ams.rpki-client.org