$ rpki-client -vvf rpki.apnic.net/member_repository/A9175290/BEF459023F6B11EAB7B9C56EC4F9AE02/B76E518A1ED011EFAB39482AC4F9AE02.roa File: B76E518A1ED011EFAB39482AC4F9AE02.roa (raw, json) Hash identifier: JZVX1mYWxvx3DuiFZY84uw6rWyCqk7v0HK2SQQP29l4= Subject key identifier: E1:91:2D:97:05:FD:01:9E:66:BE:EE:2C:CF:0D:59:DD:0A:1B:77:25 Certificate issuer: /CN=A9175290/serialNumber=2C1C971200AAC68EA845EC0FDD87EC8C5012F29C Certificate serial: 0AAC Authority key identifier: 2C:1C:97:12:00:AA:C6:8E:A8:45:EC:0F:DD:87:EC:8C:50:12:F2:9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LByXEgCqxo6oRewP3YfsjFAS8pw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175290/BEF459023F6B11EAB7B9C56EC4F9AE02/B76E518A1ED011EFAB39482AC4F9AE02.roa Signing time: Sat 17 Aug 2024 14:52:41 +0000 ROA not before: Sat 17 Aug 2024 14:52:41 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138623 IP address blocks: 103.134.240.0/24 maxlen: 24 103.134.241.0/24 maxlen: 24 103.134.242.0/24 maxlen: 24 103.134.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175290/BEF459023F6B11EAB7B9C56EC4F9AE02/LByXEgCqxo6oRewP3YfsjFAS8pw.crl rsync://rpki.apnic.net/member_repository/A9175290/BEF459023F6B11EAB7B9C56EC4F9AE02/LByXEgCqxo6oRewP3YfsjFAS8pw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LByXEgCqxo6oRewP3YfsjFAS8pw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:12:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2732 (0xaac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175290/serialNumber=2C1C971200AAC68EA845EC0FDD87EC8C5012F29C Validity Not Before: Aug 17 14:52:41 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66c0b938-1e5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b1:d4:f2:02:49:fb:a7:34:41:eb:13:32:60: b1:12:e4:5c:b0:20:66:79:8e:39:b2:1b:d5:16:7b: 82:bb:40:09:50:2b:e6:97:b1:3a:ff:13:19:28:c5: d1:59:88:d7:32:1a:9d:96:8c:d0:f9:ac:30:fd:49: 75:a3:0d:69:1a:13:81:3d:1b:f2:0a:11:6d:92:74: db:19:d0:c3:a9:1f:02:02:ac:f6:bc:d7:99:41:ed: 9d:ca:b3:71:7b:ca:04:15:fe:55:8a:23:3b:e7:5a: 8f:ec:73:1e:8b:b5:ae:ce:85:2c:02:b9:e8:47:45: 2f:b4:bf:a6:c7:19:c6:91:3a:7a:49:f2:33:27:da: 2b:59:6c:b4:34:2f:cf:1e:34:8c:c5:02:17:d1:58: 09:08:4d:95:60:90:45:df:75:3c:18:a6:90:59:93: ca:29:93:9b:19:df:a2:50:e5:27:c2:b4:17:e5:bd: b8:06:5c:e0:15:aa:6a:0e:ce:20:a5:d4:3a:0e:ba: cb:4f:32:d2:76:68:9b:02:14:6e:f3:f5:e2:4c:65: c8:17:3c:bd:36:9b:b1:eb:93:be:0d:cf:96:24:52: 32:ea:8b:56:37:64:fd:9f:62:34:15:38:8d:84:e7: d9:43:25:d5:a9:0c:db:3b:b2:27:ff:70:c1:2f:13: 02:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:91:2D:97:05:FD:01:9E:66:BE:EE:2C:CF:0D:59:DD:0A:1B:77:25 X509v3 Authority Key Identifier: keyid:2C:1C:97:12:00:AA:C6:8E:A8:45:EC:0F:DD:87:EC:8C:50:12:F2:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175290/BEF459023F6B11EAB7B9C56EC4F9AE02/LByXEgCqxo6oRewP3YfsjFAS8pw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LByXEgCqxo6oRewP3YfsjFAS8pw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175290/BEF459023F6B11EAB7B9C56EC4F9AE02/B76E518A1ED011EFAB39482AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.240.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:cd:9d:f8:2a:ce:48:af:b8:46:26:4a:ab:c2:0e:fe:70:e9: d2:20:e6:69:9f:65:5f:b7:d9:a2:53:b1:61:2f:f0:be:9a:0e: fc:2f:da:fd:ed:9e:07:b7:cf:c9:46:f9:d2:e2:2e:ae:b3:b2: 19:5b:68:57:e7:bf:c3:fe:67:38:7e:cd:b7:4c:27:2c:33:ba: 7c:5a:e6:7f:da:45:db:1d:d1:a3:04:b7:a1:2d:5b:f8:58:c4: 87:c9:0c:c5:d1:e3:76:25:5c:7e:5b:b7:26:fd:2c:25:3d:d1: c7:24:08:e7:f7:27:b8:00:4c:c4:91:cb:56:50:73:06:b6:5f: fc:ac:89:5d:c3:91:2b:11:6c:6c:2b:62:23:b9:4b:06:d5:b4: a8:11:0e:15:e8:ab:0e:7c:05:3c:b3:9e:34:19:dc:21:36:fa: e7:8b:7b:97:2b:81:23:d4:62:cb:b1:90:c7:a9:3b:94:5b:1b: d8:54:72:87:95:59:48:ff:a0:2f:ab:9f:4d:f0:6b:ad:98:48: d1:88:25:b2:25:88:17:22:e7:1d:5b:31:e1:ca:4a:6f:cc:97: 83:b1:63:17:c1:3d:21:25:6f:06:f8:92:a0:c7:9b:11:8d:43: 99:a0:61:21:9d:1e:f6:8b:c7:56:8e:fb:fa:11:ef:ae:5c:ad: c4:99:6b:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyOTAxMTAvBgNVBAUTKDJDMUM5NzEyMDBBQUM2OEVBODQ1RUMwRkREODdFQzhD NTAxMkYyOUMwHhcNMjQwODE3MTQ1MjQxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmMwYjkzOC0xZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA77HU8gJJ+6c0QesTMmCxEuRcsCBmeY45shvVFnuCu0AJUCvml7E6/xMZKMXR WYjXMhqdlozQ+aww/Ul1ow1pGhOBPRvyChFtknTbGdDDqR8CAqz2vNeZQe2dyrNx e8oEFf5ViiM751qP7HMei7WuzoUsArnoR0UvtL+mxxnGkTp6SfIzJ9orWWy0NC/P HjSMxQIX0VgJCE2VYJBF33U8GKaQWZPKKZObGd+iUOUnwrQX5b24BlzgFapqDs4g pdQ6DrrLTzLSdmibAhRu8/XiTGXIFzy9Npux65O+Dc+WJFIy6otWN2T9n2I0FTiN hOfZQyXVqQzbO7In/3DBLxMChwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOGRLZcF /QGeZr7uLM8NWd0KG3clMB8GA1UdIwQYMBaAFCwclxIAqsaOqEXsD92H7IxQEvKc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI5MC9CRUY0NTkwMjNG NkIxMUVBQjdCOUM1NkVDNEY5QUUwMi9MQnlYRWdDcXhvNm9SZXdQM1lmc2pGQVM4 cHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xCeVhFZ0NxeG82b1Jld1AzWWZzakZBUzhwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyOTAvQkVGNDU5MDIzRjZCMTFFQUI3QjlDNTZFQzRGOUFFMDIvQjc2RTUxOEEx RUQwMTFFRkFCMzk0ODJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnhvAwDQYJKoZIhvcNAQELBQADggEBAE7NnfgqzkivuEYm SqvCDv5w6dIg5mmfZV+32aJTsWEv8L6aDvwv2v3tnge3z8lG+dLiLq6zshlbaFfn v8P+Zzh+zbdMJywzunxa5n/aRdsd0aMEt6EtW/hYxIfJDMXR43YlXH5btyb9LCU9 0cckCOf3J7gATMSRy1ZQcwa2X/ysiV3DkSsRbGwrYiO5SwbVtKgRDhXoqw58BTyz njQZ3CE2+ueLe5crgSPUYsuxkMepO5RbG9hUcoeVWUj/oC+rn03wa62YSNGIJbIl iBci5x1bMeHKSm/Ml4OxYxfBPSElbwb4kqDHmxGNQ5mgYSGdHvaLx1aO+/oR765c rcSZa+o= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:30 2024 by rpki-client on console-ams.rpki-client.org