$ rpki-client -vvf rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/A0B44D9C60E211EFB1283930C4F9AE02.roa File: A0B44D9C60E211EFB1283930C4F9AE02.roa (raw, json) Hash identifier: We+bh/dPouK8NlGju2k+lFoIHBb/HkpPfF89DMkSLSg= Subject key identifier: 8A:B1:24:2F:4D:9E:16:E5:62:79:C1:92:83:BB:7C:7D:2A:47:BA:47 Certificate issuer: /CN=A917F241/serialNumber=29CD8DF8806E11674CBC5F9DF4DBF8D23E0C2283 Certificate serial: 59 Authority key identifier: 29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/A0B44D9C60E211EFB1283930C4F9AE02.roa Signing time: Tue 01 Oct 2024 06:19:55 +0000 ROA not before: Tue 01 Oct 2024 06:19:55 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 153306 IP address blocks: 103.111.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.crl rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 89 (0x59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F241/serialNumber=29CD8DF8806E11674CBC5F9DF4DBF8D23E0C2283 Validity Not Before: Oct 1 06:19:55 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66fb948b-c6b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9f:76:7c:77:68:ea:49:97:46:97:80:de:2b: 85:95:36:52:92:5a:e6:91:b2:34:5b:a7:53:d4:2b: 68:d0:f9:3a:aa:a4:ca:61:42:14:6c:d2:ae:0e:2e: 3c:87:84:97:54:e4:ea:f2:c7:ca:c4:85:4b:f1:9f: b8:50:b3:28:1e:06:59:4c:b1:34:8d:50:dc:2e:80: b7:42:0c:f2:78:9a:62:21:5c:c3:21:31:e0:e1:d5: bc:39:bc:e6:e0:e8:6a:e6:41:d5:c4:74:76:af:f8: d7:60:f0:67:50:ad:e5:b9:fb:b6:b0:c2:09:84:76: d3:8c:30:aa:d9:c9:27:ca:2d:e7:65:d8:c3:d8:ae: c1:7e:9c:b4:78:2f:78:73:57:8b:0b:c8:15:d0:ca: 27:16:6a:d5:df:70:fa:c2:fe:cb:c7:2d:0d:2e:8c: 6f:c4:41:d7:61:2e:f8:c2:e1:af:01:a5:7d:2e:16: 49:49:df:7e:08:9c:5e:6d:23:d9:a6:aa:cf:ff:3c: a2:ff:e9:dc:e8:08:dd:9f:98:0d:c2:20:a5:75:ec: af:01:57:33:61:9f:e7:c8:c0:b2:be:c0:f8:6a:0b: 01:bf:e1:ca:0b:06:d8:a0:1e:ef:35:13:39:d7:05: e2:3b:52:b6:67:97:28:68:b0:57:cc:4c:98:88:bc: d6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:B1:24:2F:4D:9E:16:E5:62:79:C1:92:83:BB:7C:7D:2A:47:BA:47 X509v3 Authority Key Identifier: keyid:29:CD:8D:F8:80:6E:11:67:4C:BC:5F:9D:F4:DB:F8:D2:3E:0C:22:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Kc2N-IBuEWdMvF-d9Nv40j4MIoM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F241/EB2136880BF611EF9CA9C151C4F9AE02/A0B44D9C60E211EFB1283930C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.111.216.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:71:35:e0:03:f7:6b:63:4d:dd:33:94:81:3a:53:9c:d0:f5: 3c:30:cf:63:e4:fe:94:56:4b:b2:44:c5:54:9f:43:74:59:e0: 05:4e:14:04:0a:e1:dd:13:60:51:82:e4:27:e2:51:30:f4:39: bb:69:06:d4:5d:fe:e0:b0:de:58:30:75:31:98:f3:2d:04:14: c7:b3:dc:32:20:6c:10:75:cb:d3:be:17:31:28:c9:b5:c0:46: ca:52:e3:ed:7b:25:67:aa:b8:43:ef:2f:52:6e:f1:15:27:0b: 17:84:9a:bc:fc:a1:de:1a:7f:88:c9:3b:43:21:d7:13:df:77: c3:f4:fd:13:5f:ee:47:dd:e8:5e:03:94:75:57:4e:00:0f:ff: 96:09:49:4c:e2:54:57:7d:5d:13:81:c8:9b:9f:74:68:64:34: 92:81:ff:22:4c:3a:ed:52:08:23:88:cf:af:71:b5:d2:c1:35: 80:bb:58:fe:96:02:01:60:81:fd:71:bd:b0:4d:ca:31:1c:b3: 52:11:ff:35:b3:95:9d:8b:45:3d:06:e2:0e:29:2f:76:f4:05: 4f:f9:e2:ab:9b:88:9a:9d:c2:b3:2f:e4:83:6f:7f:1f:ec:7d: ac:10:7c:82:c8:ad:37:f9:ad:8f:0e:24:1b:63:42:3a:b8:35: 07:9a:5b:23 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RjI0MTExMC8GA1UEBRMoMjlDRDhERjg4MDZFMTE2NzRDQkM1RjlERjREQkY4RDIz RTBDMjI4MzAeFw0yNDEwMDEwNjE5NTVaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZmI5NDhiLWM2YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbn3Z8d2jqSZdGl4DeK4WVNlKSWuaRsjRbp1PUK2jQ+TqqpMphQhRs0q4OLjyH hJdU5Oryx8rEhUvxn7hQsygeBllMsTSNUNwugLdCDPJ4mmIhXMMhMeDh1bw5vObg 6GrmQdXEdHav+Ndg8GdQreW5+7awwgmEdtOMMKrZySfKLedl2MPYrsF+nLR4L3hz V4sLyBXQyicWatXfcPrC/svHLQ0ujG/EQddhLvjC4a8BpX0uFklJ334InF5tI9mm qs//PKL/6dzoCN2fmA3CIKV17K8BVzNhn+fIwLK+wPhqCwG/4coLBtigHu81EznX BeI7UrZnlyhosFfMTJiIvNaXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUirEkL02e FuViecGSg7t8fSpHukcwHwYDVR0jBBgwFoAUKc2N+IBuEWdMvF+d9Nv40j4MIoMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdGMjQxL0VCMjEzNjg4MEJG NjExRUY5Q0E5QzE1MUM0RjlBRTAyL0tjMk4tSUJ1RVdkTXZGLWQ5TnY0MGo0TUlv TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2MyTi1JQnVFV2RNdkYtZDlOdjQwajRNSW9NLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RjI0MS9FQjIxMzY4ODBCRjYxMUVGOUNBOUMxNTFDNEY5QUUwMi9BMEI0NEQ5QzYw RTIxMUVGQjEyODM5MzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGdv2DANBgkqhkiG9w0BAQsFAAOCAQEADnE14AP3a2NN3TOU gTpTnND1PDDPY+T+lFZLskTFVJ9DdFngBU4UBArh3RNgUYLkJ+JRMPQ5u2kG1F3+ 4LDeWDB1MZjzLQQUx7PcMiBsEHXL074XMSjJtcBGylLj7XslZ6q4Q+8vUm7xFScL F4SavPyh3hp/iMk7QyHXE993w/T9E1/uR93oXgOUdVdOAA//lglJTOJUV31dE4HI m590aGQ0koH/Ikw67VIII4jPr3G10sE1gLtY/pYCAWCB/XG9sE3KMRyzUhH/NbOV nYtFPQbiDikvdvQFT/niq5uImp3Csy/kg29/H+x9rBB8gsitN/mtjw4kG2NCOrg1 B5pbIw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org