$ rpki-client -vvf rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/AEDDF3C45DF811EFB3B36B3CC4F9AE02.roa File: AEDDF3C45DF811EFB3B36B3CC4F9AE02.roa (raw, json) Hash identifier: ghYYdpH6aSDJ1crLSps3LxltxjGl3+yLyW2ydKFjnnQ= Subject key identifier: 62:E8:D9:9F:87:A5:D2:A0:B6:ED:DE:55:63:F6:07:A0:4B:18:CF:F7 Certificate issuer: /CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Certificate serial: E1 Authority key identifier: 45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/AEDDF3C45DF811EFB3B36B3CC4F9AE02.roa Signing time: Thu 17 Oct 2024 04:38:28 +0000 ROA not before: Thu 17 Oct 2024 04:38:28 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 137871 IP address blocks: 103.240.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174589/serialNumber=458CDDCA3E8FB64C9D1A23492528BA777FCDD234 Validity Not Before: Oct 17 04:38:28 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671094c3-5d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e5:0e:a4:40:3d:f3:b2:9a:fe:94:75:3d:db: 12:d0:5d:0f:dc:ce:49:b1:88:4b:89:e7:e8:b1:48: 65:82:d4:90:cc:9a:c6:1d:b8:a2:28:83:d9:08:8b: 2e:46:49:fc:1f:47:da:7d:90:62:6a:50:5b:5c:7f: 1c:90:d3:5e:53:04:68:84:8b:76:dc:12:b0:3e:40: 01:97:fa:bd:29:53:e4:fe:3a:9b:30:3f:b4:ff:c7: b4:9e:e5:0a:42:5c:d9:cb:75:51:54:0f:e5:51:0f: c5:22:07:7b:52:41:ae:b8:03:b0:4d:c8:9a:a2:56: 22:f7:ce:57:a5:83:c7:ca:40:ea:68:9f:59:b2:8a: 16:66:35:8c:42:3f:36:21:6b:58:46:55:ac:0d:80: f3:fc:1b:a4:67:de:e2:55:06:40:d9:8b:17:5d:22: 6d:5a:05:97:af:66:f4:68:84:35:05:d8:51:df:6f: f3:42:ea:94:70:a3:25:a7:9d:d3:17:57:98:43:0c: a5:2b:6c:bf:f4:69:cd:47:8c:91:c0:ed:43:ec:8d: 35:f1:89:43:7f:87:3b:34:3a:fd:09:7c:2c:8c:52: 53:eb:36:1b:b2:c9:3a:e7:59:50:99:ce:70:a3:55: b9:07:fe:a0:e9:7a:f4:51:1c:64:1a:a2:3e:40:47: 5e:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:E8:D9:9F:87:A5:D2:A0:B6:ED:DE:55:63:F6:07:A0:4B:18:CF:F7 X509v3 Authority Key Identifier: keyid:45:8C:DD:CA:3E:8F:B6:4C:9D:1A:23:49:25:28:BA:77:7F:CD:D2:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/RYzdyj6PtkydGiNJJSi6d3_N0jQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYzdyj6PtkydGiNJJSi6d3_N0jQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174589/5FC627C461C411EEBB151C4BC4F9AE02/AEDDF3C45DF811EFB3B36B3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.240.2.0/23 Signature Algorithm: sha256WithRSAEncryption bc:78:f2:7e:3e:6b:a1:48:1b:9f:5c:60:10:7f:44:ca:cb:2a: cc:34:05:4d:57:13:eb:2d:c2:d4:79:71:96:db:2a:78:15:94: 4a:83:71:76:6f:4c:0a:cc:6c:3a:dc:b1:d1:c1:a6:80:7d:31: f9:a3:2a:7c:3c:d7:43:cf:7b:1b:1d:cc:dc:7e:54:12:89:c4: 0f:df:67:3f:90:8d:bb:e1:0d:b8:b0:1f:9c:96:15:ab:5b:d8: 79:00:c7:eb:c6:60:0e:b6:37:71:6b:49:04:4e:58:b6:16:83: 85:35:0b:42:fd:60:3e:f2:cd:0d:77:46:cc:14:99:9e:d3:b5: 25:58:77:2c:f0:07:a1:1d:d4:46:99:c3:3c:d8:ce:f2:18:c2: fa:48:93:0c:d8:c8:97:2c:a5:22:26:57:06:ac:69:10:ab:ba: 2c:e0:fd:3e:f6:b6:6d:5b:66:18:ac:ee:dd:6e:1c:27:2c:9e: 9d:d8:1a:bf:e6:89:3c:7f:2c:5c:14:c5:c0:93:91:17:de:fc: 76:df:b5:59:e5:50:2f:6f:48:2f:e8:93:ee:ab:2e:36:5d:cb: af:90:d9:03:0c:43:af:0c:ea:a8:46:64:84:6c:22:a3:8c:c5: 4e:c9:78:8a:5a:8e:21:25:71:c7:db:45:8d:9b:4b:12:7b:e2: 70:72:77:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQ1ODkxMTAvBgNVBAUTKDQ1OENERENBM0U4RkI2NEM5RDFBMjM0OTI1MjhCQTc3 N0ZDREQyMzQwHhcNMjQxMDE3MDQzODI4WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwOTRjMy01ZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+UOpEA987Ka/pR1PdsS0F0P3M5JsYhLiefosUhlgtSQzJrGHbiiKIPZCIsu Rkn8H0fafZBialBbXH8ckNNeUwRohIt23BKwPkABl/q9KVPk/jqbMD+0/8e0nuUK QlzZy3VRVA/lUQ/FIgd7UkGuuAOwTciaolYi985XpYPHykDqaJ9ZsooWZjWMQj82 IWtYRlWsDYDz/BukZ97iVQZA2YsXXSJtWgWXr2b0aIQ1BdhR32/zQuqUcKMlp53T F1eYQwylK2y/9GnNR4yRwO1D7I018YlDf4c7NDr9CXwsjFJT6zYbssk651lQmc5w o1W5B/6g6Xr0URxkGqI+QEde8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFGLo2Z+H pdKgtu3eVWP2B6BLGM/3MB8GA1UdIwQYMBaAFEWM3co+j7ZMnRojSSUound/zdI0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDU4OS81RkM2MjdDNDYx QzQxMUVFQkIxNTFDNEJDNEY5QUUwMi9SWXpkeWo2UHRreWRHaU5KSlNpNmQzX04w alEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZemR5ajZQdGt5ZEdpTkpKU2k2ZDNfTjBqUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQ1ODkvNUZDNjI3QzQ2MUM0MTFFRUJCMTUxQzRCQzRGOUFFMDIvQUVEREYzQzQ1 REY4MTFFRkIzQjM2QjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn8AIwDQYJKoZIhvcNAQELBQADggEBALx48n4+a6FIG59c YBB/RMrLKsw0BU1XE+stwtR5cZbbKngVlEqDcXZvTArMbDrcsdHBpoB9MfmjKnw8 10PPexsdzNx+VBKJxA/fZz+QjbvhDbiwH5yWFatb2HkAx+vGYA62N3FrSQROWLYW g4U1C0L9YD7yzQ13RswUmZ7TtSVYdyzwB6Ed1EaZwzzYzvIYwvpIkwzYyJcspSIm VwasaRCruizg/T72tm1bZhis7t1uHCcsnp3YGr/miTx/LFwUxcCTkRfe/HbftVnl UC9vSC/ok+6rLjZdy6+Q2QMMQ68M6qhGZIRsIqOMxU7JeIpajiElccfbRY2bSxJ7 4nByd7E= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org