$ rpki-client -vvf rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/899BFC6C533C11EF8B23DB12C4F9AE02.roa File: 899BFC6C533C11EF8B23DB12C4F9AE02.roa (raw, json) Hash identifier: tmuz3PtTyclXWsH3tOxgjNzOWrm2oq8qXZwVq4xv3Xg= Subject key identifier: 54:D1:E8:4B:26:ED:F8:61:E9:F6:94:C3:2F:83:F2:C1:95:D5:A9:7D Certificate issuer: /CN=A917BEA7/serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Certificate serial: 012B Authority key identifier: 0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/899BFC6C533C11EF8B23DB12C4F9AE02.roa Signing time: Tue 05 Nov 2024 09:57:38 +0000 ROA not before: Tue 05 Nov 2024 09:57:38 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 151419 IP address blocks: 103.158.117.0/24 maxlen: 24 2401:e60:1::/48 maxlen: 48 2401:e60:2::/48 maxlen: 48 2401:e60:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:11:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 299 (0x12b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917BEA7/serialNumber=0B8D638FFD38B1F77E48E1BB5DF29929CE7D78B5 Validity Not Before: Nov 5 09:57:38 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6729ec12-7f54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:57:1c:38:9d:56:09:11:72:dc:ff:60:d7:0c: ee:bf:06:e0:db:ab:5d:95:da:5f:03:4a:b3:12:04: b7:f4:90:3b:f2:69:75:a3:20:7e:fc:63:b8:43:32: 39:96:04:3c:52:3c:00:6b:c1:57:7e:38:91:bd:7d: 24:78:0d:17:c3:1e:f9:ce:02:e7:30:fa:9e:7c:ac: e4:1f:af:f0:8b:45:d2:81:1c:26:b5:f5:c2:41:9a: d7:f0:0b:76:f5:04:3d:40:f6:07:32:57:bb:46:6f: fe:9f:05:bc:1c:f6:de:fa:f2:ec:3c:93:14:86:88: 12:f6:94:77:34:fd:da:38:d1:86:e8:77:7d:e3:0b: 03:93:0c:37:82:34:37:a9:b1:cb:15:8f:a8:18:a2: 03:04:17:17:e6:4f:d0:f1:64:be:81:c8:59:6b:e9: 91:9c:de:47:15:28:da:72:e9:29:b4:0a:d0:80:28: ee:5e:be:b8:f8:c3:1a:fc:af:04:eb:97:e8:34:43: ca:c0:9a:ab:a2:a4:56:d6:e1:f2:9a:9e:a4:f8:49: 31:0d:c4:3f:27:20:f5:d6:70:b0:e8:50:17:9b:14: 96:60:9e:b7:dd:f4:eb:ca:06:f9:d7:b5:df:b5:a0: 75:43:6d:82:72:3b:a7:a9:ea:df:9f:9a:88:33:24: 33:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:D1:E8:4B:26:ED:F8:61:E9:F6:94:C3:2F:83:F2:C1:95:D5:A9:7D X509v3 Authority Key Identifier: keyid:0B:8D:63:8F:FD:38:B1:F7:7E:48:E1:BB:5D:F2:99:29:CE:7D:78:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/C41jj_04sfd-SOG7XfKZKc59eLU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C41jj_04sfd-SOG7XfKZKc59eLU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917BEA7/044F6448116811EEAC63C234C4F9AE02/899BFC6C533C11EF8B23DB12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.117.0/24 IPv6: 2401:e60:1::-2401:e60:3:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 88:f9:a5:e9:10:3a:da:71:8e:36:8a:08:62:62:61:58:cd:ad: c9:2a:04:45:e9:69:24:0f:de:12:52:13:3d:35:86:ae:72:59: e0:e3:e7:6c:cc:32:a9:53:94:de:38:71:df:87:42:10:78:16: 8e:7e:24:20:f5:6e:88:90:2f:d2:1b:18:aa:d2:23:0d:5c:55: e3:f5:7d:a8:50:00:9a:fe:3a:fa:ad:21:d9:9e:93:a3:89:a4: 41:44:55:63:b8:10:74:71:44:cd:62:00:c5:56:3a:43:3c:ac: 36:7d:2d:1f:4c:f9:88:75:19:ca:fb:35:d8:a5:0e:e6:b5:42: 89:3f:ff:35:1e:06:01:04:34:eb:47:7a:83:b6:50:d8:2e:1a: 07:00:69:56:39:e8:b0:c7:43:65:e9:77:35:80:8e:0b:4b:93: 7b:9f:c3:a0:27:17:b7:88:5d:f1:b7:6c:47:63:f7:0d:f3:85: 34:7d:2f:af:47:92:63:39:d3:7d:3d:20:cc:78:36:c9:07:60: 8b:54:22:ba:77:b3:1f:80:60:4f:49:e8:ff:0a:00:f4:fe:ad: 95:f0:2b:09:b3:ed:b2:ce:0f:f5:24:f6:26:9f:71:b9:ec:b5: c4:5f:a8:4e:28:b7:aa:e6:80:32:8b:41:03:a1:4c:43:0e:89: 0c:6b:91:39 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICASswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0JFQTcxMTAvBgNVBAUTKDBCOEQ2MzhGRkQzOEIxRjc3RTQ4RTFCQjVERjI5OTI5 Q0U3RDc4QjUwHhcNMjQxMTA1MDk1NzM4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5ZWMxMi03ZjU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxFccOJ1WCRFy3P9g1wzuvwbg26tdldpfA0qzEgS39JA78ml1oyB+/GO4QzI5 lgQ8UjwAa8FXfjiRvX0keA0Xwx75zgLnMPqefKzkH6/wi0XSgRwmtfXCQZrX8At2 9QQ9QPYHMle7Rm/+nwW8HPbe+vLsPJMUhogS9pR3NP3aONGG6Hd94wsDkww3gjQ3 qbHLFY+oGKIDBBcX5k/Q8WS+gchZa+mRnN5HFSjacukptArQgCjuXr64+MMa/K8E 65foNEPKwJqroqRW1uHymp6k+EkxDcQ/JyD11nCw6FAXmxSWYJ633fTrygb517Xf taB1Q22Ccjunqerfn5qIMyQz+QIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFFTR6Esm 7fhh6faUwy+D8sGV1al9MB8GA1UdIwQYMBaAFAuNY4/9OLH3fkjhu13ymSnOfXi1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QkVBNy8wNDRGNjQ0ODEx NjgxMUVFQUM2M0MyMzRDNEY5QUUwMi9DNDFqal8wNHNmZC1TT0c3WGZLWktjNTll TFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M0MWpqXzA0c2ZkLVNPRzdYZktaS2M1OWVMVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0JFQTcvMDQ0RjY0NDgxMTY4MTFFRUFDNjNDMjM0QzRGOUFFMDIvODk5QkZDNkM1 MzNDMTFFRjhCMjNEQjEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBABnnnUwGgQCAAIwFDASAwcAJAEOYAABAwcCJAEOYAAAMA0G CSqGSIb3DQEBCwUAA4IBAQCI+aXpEDracY42ighiYmFYza3JKgRF6WkkD94SUhM9 NYauclng4+dszDKpU5TeOHHfh0IQeBaOfiQg9W6IkC/SGxiq0iMNXFXj9X2oUACa /jr6rSHZnpOjiaRBRFVjuBB0cUTNYgDFVjpDPKw2fS0fTPmIdRnK+zXYpQ7mtUKJ P/81HgYBBDTrR3qDtlDYLhoHAGlWOeiwx0Nl6Xc1gI4LS5N7n8OgJxe3iF3xt2xH Y/cN84U0fS+vR5JjOdN9PSDMeDbJB2CLVCK6d7MfgGBPSej/CgD0/q2V8CsJs+2y zg/1JPYmn3G57LXEX6hOKLeq5oAyi0EDoUxDDokMa5E5 -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:07 2024 by rpki-client on console-ams.rpki-client.org