$ rpki-client -vvf rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/0EE57B38378F11EF88F9BF5AC4F9AE02.roa File: 0EE57B38378F11EF88F9BF5AC4F9AE02.roa (raw, json) Hash identifier: J7/kiN3L5QvG4wInB+6wlLOPrN0QJOnlQzSphywWm/s= Subject key identifier: F8:D1:9C:8C:CB:62:D3:E8:32:40:51:02:C1:F8:30:E6:83:EA:6E:02 Certificate issuer: /CN=A9176302/serialNumber=21BE8C8FE953F6EC97B7F121617ED91047DAA5A4 Certificate serial: 29 Authority key identifier: 21:BE:8C:8F:E9:53:F6:EC:97:B7:F1:21:61:7E:D9:10:47:DA:A5:A4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/0EE57B38378F11EF88F9BF5AC4F9AE02.roa Signing time: Mon 09 Sep 2024 10:11:34 +0000 ROA not before: Mon 09 Sep 2024 10:11:34 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 133098 IP address blocks: 103.248.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.crl rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41 (0x29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176302/serialNumber=21BE8C8FE953F6EC97B7F121617ED91047DAA5A4 Validity Not Before: Sep 9 10:11:34 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66dec9d6-1745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e8:ee:c8:a8:22:94:f6:65:94:da:fb:40:ff: bd:30:c9:35:9a:17:99:15:25:01:bb:82:ba:1d:4f: d2:13:db:0f:0d:4b:21:a9:df:50:1a:65:4a:64:70: cd:3f:b7:1f:64:a2:03:4d:f9:b4:ab:d7:2c:fe:65: f3:d1:78:b7:9a:8f:89:f7:e8:73:97:1d:26:e7:6f: 85:33:ba:d3:ee:d3:1c:a2:91:5f:c0:1e:69:1d:42: 9e:1c:64:dd:05:01:b7:1f:84:46:10:87:c4:f6:4b: 4b:86:51:b9:42:59:c7:3d:be:6d:9e:c6:22:bb:0f: 50:2f:68:3f:39:39:b4:bb:13:5a:bd:09:48:23:44: 36:1e:bf:64:ba:a2:d8:b9:0c:89:6c:13:17:82:7b: ac:22:22:41:18:f8:0c:6a:16:5d:97:be:f0:d4:7e: 54:7b:c7:73:d7:ae:2f:2e:b1:83:59:01:ba:55:e4: be:e9:78:cf:a6:77:11:c6:b9:71:e6:4c:a4:23:6c: f1:e2:a7:91:19:a9:bb:d7:95:bc:5d:8d:06:b4:ba: 4e:18:e2:8d:1e:23:ec:f6:a7:b1:83:a7:dc:4f:41: d4:e6:22:70:d7:db:6e:92:a5:03:e1:46:55:f4:a2: 32:e6:0a:4f:dd:49:f1:7a:36:6d:62:36:86:de:25: 74:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D1:9C:8C:CB:62:D3:E8:32:40:51:02:C1:F8:30:E6:83:EA:6E:02 X509v3 Authority Key Identifier: keyid:21:BE:8C:8F:E9:53:F6:EC:97:B7:F1:21:61:7E:D9:10:47:DA:A5:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ib6Mj-lT9uyXt_EhYX7ZEEfapaQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176302/A32FDFDE374611EF96653326C4F9AE02/0EE57B38378F11EF88F9BF5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.143.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:4d:5b:e9:81:ff:09:3f:3d:0a:86:31:af:11:3a:08:b4:2b: d8:f3:25:1d:98:1f:43:a5:07:23:1a:ce:c1:2c:38:2a:cd:9c: 56:8c:70:c3:fa:72:f2:13:14:b8:4f:df:59:e5:ca:86:07:ce: f9:17:06:0e:13:ad:83:e0:62:44:73:31:f0:79:2f:bb:b6:51: 65:49:bc:d5:ff:29:d8:e4:7b:cd:ec:23:88:95:bb:ad:a6:16: 86:f5:fd:22:3b:ee:10:d7:13:8d:87:a9:7d:6a:00:0b:e1:09: d1:8c:94:f5:5f:27:d4:24:00:e8:8e:63:66:ab:47:da:ce:82: 78:15:30:8d:0e:0b:aa:66:a2:b8:4a:8a:cf:46:95:cd:b1:5a: c7:92:61:07:6c:5a:33:3c:e7:3b:a5:f5:56:ab:d0:50:e6:71: 58:e3:8b:ff:17:45:a6:40:ad:97:ec:fd:1c:1b:a7:67:fe:6e: 58:05:54:00:b2:55:3f:1f:5c:a1:89:7e:cc:b1:09:0c:36:9b: 87:c5:b5:85:b6:9a:f8:fb:05:fe:c8:e7:fd:e0:28:ea:b9:f1: 53:4c:5d:a0:4d:29:b6:90:7f:c1:b1:b6:3f:97:41:0b:e3:c6: dd:f8:22:88:10:40:4e:34:e7:ca:9b:53:7c:74:2f:d5:b0:58: 9b:a1:93:9e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NjMwMjExMC8GA1UEBRMoMjFCRThDOEZFOTUzRjZFQzk3QjdGMTIxNjE3RUQ5MTA0 N0RBQTVBNDAeFw0yNDA5MDkxMDExMzRaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZGVjOWQ2LTE3NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDp6O7IqCKU9mWU2vtA/70wyTWaF5kVJQG7grodT9IT2w8NSyGp31AaZUpkcM0/ tx9kogNN+bSr1yz+ZfPReLeaj4n36HOXHSbnb4UzutPu0xyikV/AHmkdQp4cZN0F AbcfhEYQh8T2S0uGUblCWcc9vm2exiK7D1AvaD85ObS7E1q9CUgjRDYev2S6oti5 DIlsExeCe6wiIkEY+AxqFl2XvvDUflR7x3PXri8usYNZAbpV5L7peM+mdxHGuXHm TKQjbPHip5EZqbvXlbxdjQa0uk4Y4o0eI+z2p7GDp9xPQdTmInDX226SpQPhRlX0 ojLmCk/dSfF6Nm1iNobeJXShAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU+NGcjMti 0+gyQFECwfgw5oPqbgIwHwYDVR0jBBgwFoAUIb6Mj+lT9uyXt/EhYX7ZEEfapaQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2MzAyL0EzMkZERkRFMzc0 NjExRUY5NjY1MzMyNkM0RjlBRTAyL0liNk1qLWxUOXV5WHRfRWhZWDdaRUVmYXBh US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSWI2TWotbFQ5dXlYdF9FaFlYN1pFRWZhcGFRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NjMwMi9BMzJGREZERTM3NDYxMUVGOTY2NTMzMjZDNEY5QUUwMi8wRUU1N0IzODM3 OEYxMUVGODhGOUJGNUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGf4jzANBgkqhkiG9w0BAQsFAAOCAQEAmk1b6YH/CT89CoYx rxE6CLQr2PMlHZgfQ6UHIxrOwSw4Ks2cVoxww/py8hMUuE/fWeXKhgfO+RcGDhOt g+BiRHMx8Hkvu7ZRZUm81f8p2OR7zewjiJW7raYWhvX9IjvuENcTjYepfWoAC+EJ 0YyU9V8n1CQA6I5jZqtH2s6CeBUwjQ4LqmaiuEqKz0aVzbFax5JhB2xaMzznO6X1 VqvQUOZxWOOL/xdFpkCtl+z9HBunZ/5uWAVUALJVPx9coYl+zLEJDDabh8W1hbaa +PsF/sjn/eAo6rnxU0xdoE0ptpB/wbG2P5dBC+PG3fgiiBBATjTnyptTfHQv1bBY m6GTng== -----END CERTIFICATE-----Generated at Tue Sep 17 08:11:55 2024 by rpki-client on console-ams.rpki-client.org