$ rpki-client -vvf rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/24CB4F36957811EEA7BF2753C4F9AE02.roa File: 24CB4F36957811EEA7BF2753C4F9AE02.roa (raw, json) Hash identifier: UV3XO65spY2KLBvMTAJ4CDMAZHABDW2pouUNViGYZzs= Subject key identifier: E4:81:2F:A1:5C:7F:CB:1A:F2:51:26:35:F9:34:2D:62:26:A5:22:11 Certificate issuer: /CN=A9182FD0/serialNumber=7A5C4DD0A3BB9CD814B2174AF693E3F7414B995B Certificate serial: 76 Authority key identifier: 7A:5C:4D:D0:A3:BB:9C:D8:14:B2:17:4A:F6:93:E3:F7:41:4B:99:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elxN0KO7nNgUshdK9pPj90FLmVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/24CB4F36957811EEA7BF2753C4F9AE02.roa Signing time: Mon 01 Jul 2024 07:28:36 +0000 ROA not before: Mon 01 Jul 2024 07:28:36 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135606 IP address blocks: 103.68.58.0/24 maxlen: 24 103.68.59.0/24 maxlen: 24 2407:d80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/elxN0KO7nNgUshdK9pPj90FLmVs.crl rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/elxN0KO7nNgUshdK9pPj90FLmVs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elxN0KO7nNgUshdK9pPj90FLmVs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 118 (0x76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9182FD0/serialNumber=7A5C4DD0A3BB9CD814B2174AF693E3F7414B995B Validity Not Before: Jul 1 07:28:36 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66825aa3-4fe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a0:71:72:73:1f:ff:22:3c:b8:dd:d5:38:7e: e7:da:f8:3d:ec:08:61:48:a4:1a:fa:2f:e7:af:37: a1:ca:b0:da:a1:2b:14:39:45:cc:eb:23:b9:34:e3: d1:6d:c5:dd:81:99:aa:c1:61:26:a2:b9:71:66:6f: ff:82:54:26:a8:f3:18:75:d4:9a:d4:5c:89:55:f9: 7c:6b:fa:b5:71:34:8a:2f:6c:ab:6d:a9:ec:d0:5f: 3a:c4:75:70:8d:49:14:1a:99:ff:3b:7a:e7:87:af: 44:5c:f4:83:90:28:a9:df:1b:92:6f:1f:6c:f7:69: 12:4a:56:0d:ac:79:0d:48:36:6d:c9:79:6f:6d:18: 82:66:16:6d:28:e6:4e:31:5d:42:b3:00:f6:fa:b9: e0:56:78:c7:ac:44:e6:9d:46:35:27:11:92:0b:2b: f3:c7:ee:f0:e8:f3:a6:c9:de:49:aa:12:ed:a4:f8: a8:d9:7f:ae:6c:5e:a6:5c:c0:f2:e8:79:0c:01:a1: fd:97:8d:88:1f:f5:57:dc:f0:15:a3:49:77:2a:89: ae:af:85:52:c5:a9:05:bd:e9:dd:39:25:58:e4:ad: 37:26:f5:19:b7:58:0f:4f:a5:ab:04:90:b0:44:74: ac:44:bd:0a:82:93:6a:c8:40:10:4f:78:53:79:51: eb:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:81:2F:A1:5C:7F:CB:1A:F2:51:26:35:F9:34:2D:62:26:A5:22:11 X509v3 Authority Key Identifier: keyid:7A:5C:4D:D0:A3:BB:9C:D8:14:B2:17:4A:F6:93:E3:F7:41:4B:99:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/elxN0KO7nNgUshdK9pPj90FLmVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/elxN0KO7nNgUshdK9pPj90FLmVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9182FD0/2C9AA31C957611EE82EFCB1CC4F9AE02/24CB4F36957811EEA7BF2753C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.58.0/23 IPv6: 2407:d80::/32 Signature Algorithm: sha256WithRSAEncryption 05:70:b9:02:e6:f0:0f:7c:3b:3a:64:a7:6e:ba:0e:4e:e8:57: 28:f2:dc:29:57:dc:25:a3:05:58:db:b4:bf:68:da:ac:fd:63: 40:a8:d2:5e:eb:d1:9e:38:78:91:bd:cd:49:6b:a7:35:65:56: 43:a6:76:7a:b0:4f:c4:cf:58:fa:ad:b9:b3:6e:0e:46:9a:69: 8b:37:9f:a0:e4:f0:84:bb:28:23:e2:45:f5:28:e7:d1:78:f0: e3:ef:e1:37:9e:76:6c:29:dc:4d:1d:c0:d1:c4:cd:69:a5:8e: 03:da:1c:cc:ea:86:8e:d1:d0:ee:5e:bf:84:42:ab:78:22:be: fe:96:e2:a2:82:b1:34:d0:d1:44:14:e5:52:b6:06:98:f3:42: 80:40:2a:4c:7a:7f:6a:be:b8:c8:66:09:0c:d9:2e:60:da:6b: 11:4f:ba:53:8a:97:8b:ac:00:65:52:13:c0:44:36:db:73:44: 7a:c3:7d:08:9e:45:d8:de:db:16:cb:b4:64:42:ed:56:c0:20: eb:b0:83:d4:3f:fc:f0:80:cd:d3:29:61:10:ce:13:01:f1:dc: 46:29:15:a0:33:07:43:6b:a6:3d:5b:be:3f:cb:e3:56:3f:6b: e1:17:5c:3b:39:c0:44:52:b5:0a:e1:ca:ca:fc:7e:9e:d3:08: 42:98:54:87 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBdjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MkZEMDExMC8GA1UEBRMoN0E1QzRERDBBM0JCOUNEODE0QjIxNzRBRjY5M0UzRjc0 MTRCOTk1QjAeFw0yNDA3MDEwNzI4MzZaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODI1YWEzLTRmZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLoHFycx//Ijy43dU4fufa+D3sCGFIpBr6L+evN6HKsNqhKxQ5RczrI7k049Ft xd2BmarBYSaiuXFmb/+CVCao8xh11JrUXIlV+Xxr+rVxNIovbKttqezQXzrEdXCN SRQamf87eueHr0Rc9IOQKKnfG5JvH2z3aRJKVg2seQ1INm3JeW9tGIJmFm0o5k4x XUKzAPb6ueBWeMesROadRjUnEZILK/PH7vDo86bJ3kmqEu2k+KjZf65sXqZcwPLo eQwBof2XjYgf9Vfc8BWjSXcqia6vhVLFqQW96d05JVjkrTcm9Rm3WA9PpasEkLBE dKxEvQqCk2rIQBBPeFN5UevzAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU5IEvoVx/ yxryUSY1+TQtYialIhEwHwYDVR0jBBgwFoAUelxN0KO7nNgUshdK9pPj90FLmVsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyRkQwLzJDOUFBMzFDOTU3 NjExRUU4MkVGQ0IxQ0M0RjlBRTAyL2VseE4wS083bk5nVXNoZEs5cFBqOTBGTG1W cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZWx4TjBLTzduTmdVc2hkSzlwUGo5MEZMbVZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MkZEMC8yQzlBQTMxQzk1NzYxMUVFODJFRkNCMUNDNEY5QUUwMi8yNENCNEYzNjk1 NzgxMUVFQTdCRjI3NTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAWdEOjANBAIAAjAHAwUAJAcNgDANBgkqhkiG9w0BAQsFAAOC AQEABXC5AubwD3w7OmSnbroOTuhXKPLcKVfcJaMFWNu0v2jarP1jQKjSXuvRnjh4 kb3NSWunNWVWQ6Z2erBPxM9Y+q25s24ORpppizefoOTwhLsoI+JF9Sjn0Xjw4+/h N552bCncTR3A0cTNaaWOA9oczOqGjtHQ7l6/hEKreCK+/pbiooKxNNDRRBTlUrYG mPNCgEAqTHp/ar64yGYJDNkuYNprEU+6U4qXi6wAZVITwEQ223NEesN9CJ5F2N7b Fsu0ZELtVsAg67CD1D/88IDN0ylhEM4TAfHcRikVoDMHQ2umPVu+P8vjVj9r4Rdc OznARFK1CuHKyvx+ntMIQphUhw== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org