$ rpki-client -vvf rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/0F8709542D6E11EC8327E321C4F9AE02.roa File: 0F8709542D6E11EC8327E321C4F9AE02.roa (raw, json) Hash identifier: piiG9QvMfLvduFL/aWOQ0VapC6DoQwecA1GtDw7CHzI= Subject key identifier: F6:AC:5E:B3:6A:E6:B7:22:B1:3C:54:55:DA:3D:5E:99:62:C5:9D:0E Certificate issuer: /CN=A9184017/serialNumber=1A9F2BBEA522F1EE2592359B4B52FA2B41A3CDC4 Certificate serial: 0428 Authority key identifier: 1A:9F:2B:BE:A5:22:F1:EE:25:92:35:9B:4B:52:FA:2B:41:A3:CD:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/0F8709542D6E11EC8327E321C4F9AE02.roa Signing time: Wed 07 Aug 2024 01:22:42 +0000 ROA not before: Wed 07 Aug 2024 01:22:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45753 IP address blocks: 103.70.76.0/23 maxlen: 24 103.71.252.0/23 maxlen: 24 103.194.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.crl rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:33:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1064 (0x428) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184017/serialNumber=1A9F2BBEA522F1EE2592359B4B52FA2B41A3CDC4 Validity Not Before: Aug 7 01:22:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b2cc62-11b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:7b:0b:b5:1c:fe:f1:5f:05:0d:4e:b2:b5:92: 5c:34:c9:1a:58:8a:c5:bd:2a:9a:32:b8:35:66:5b: aa:ee:f6:04:a9:d7:4b:e1:e7:6a:f4:99:9a:1e:3f: 09:b3:59:f0:53:8f:99:18:59:ce:87:d5:b6:ab:c3: 2e:62:58:91:43:9f:35:1d:08:ac:79:2b:f9:59:8b: 76:20:00:b8:33:3d:78:84:21:92:3b:27:34:99:e9: 55:3e:b0:65:c5:83:d8:51:8c:b3:48:7d:71:56:8f: 07:54:a9:b2:e0:5b:4a:46:0d:6b:f6:82:93:b7:58: 0c:fa:dc:ca:82:49:6f:11:34:87:84:0f:34:50:bd: f7:03:94:04:ac:38:83:ce:94:6f:2b:b6:13:91:0d: 6a:a8:04:bf:cf:73:b1:e7:d2:62:10:a1:a6:a9:c7: 5c:ec:9c:a4:af:83:ef:6c:5a:64:40:38:01:5b:bc: 69:dc:3f:e0:e9:f9:cb:b2:12:9f:2f:9a:2e:ac:14: 4d:6f:70:9c:a7:55:d1:7f:43:da:7a:88:d7:5b:0a: 17:58:60:b2:4f:0d:78:93:88:9c:28:0a:29:f2:48: 46:fa:26:f8:0e:72:16:c6:af:b0:50:65:ca:03:bc: 78:11:cf:4d:b8:5a:09:4c:64:83:a5:01:c2:71:32: bf:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AC:5E:B3:6A:E6:B7:22:B1:3C:54:55:DA:3D:5E:99:62:C5:9D:0E X509v3 Authority Key Identifier: keyid:1A:9F:2B:BE:A5:22:F1:EE:25:92:35:9B:4B:52:FA:2B:41:A3:CD:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Gp8rvqUi8e4lkjWbS1L6K0GjzcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184017/7F12281C2D6411EC85D68B80C4F9AE02/0F8709542D6E11EC8327E321C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.76.0/23 103.71.252.0/23 103.194.184.0/22 Signature Algorithm: sha256WithRSAEncryption 46:54:00:8a:1c:de:22:e5:bf:6b:85:d3:22:fc:d4:5f:2f:84: c7:4f:37:c1:b7:f3:ae:0b:8e:30:45:69:dd:85:85:c8:5d:58: 4f:0e:25:2c:1a:11:32:3d:3e:8b:d1:a4:55:93:a6:58:24:8d: 5b:8b:e2:ee:13:6d:2e:4e:03:e8:76:2b:ba:60:5d:f4:f5:48: 54:27:88:a9:8f:b2:fe:51:c5:f3:59:05:49:2f:67:f1:90:76: 03:74:e7:4a:73:70:83:0c:ee:87:ce:1f:1e:4c:dd:c0:2c:6a: b8:6c:61:94:10:3f:96:2b:5a:d7:d1:60:f1:24:14:a0:35:26: a2:ae:0a:2a:35:95:88:4d:0b:2b:63:52:6d:10:0f:da:a5:3f: 95:4a:5b:4c:1c:04:92:df:e4:9a:16:ce:51:be:d0:85:8f:eb: 1a:e3:c4:42:1c:11:13:37:e7:13:36:d0:da:2f:29:0b:7d:9f: 14:22:c0:df:f5:fb:21:f7:7c:f2:db:1a:52:ca:77:4c:c1:41: a1:5a:a9:1a:83:18:b5:80:60:21:c9:17:32:47:b7:e3:c5:60: 74:42:c9:6f:d5:f7:e4:fd:81:5a:88:08:81:39:c6:1e:2e:31: 15:85:c9:33:ed:ce:73:de:36:19:60:17:19:da:37:4b:bc:20: 09:d9:90:c8 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBCgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQwMTcxMTAvBgNVBAUTKDFBOUYyQkJFQTUyMkYxRUUyNTkyMzU5QjRCNTJGQTJC NDFBM0NEQzQwHhcNMjQwODA3MDEyMjQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyY2M2Mi0xMWIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxXsLtRz+8V8FDU6ytZJcNMkaWIrFvSqaMrg1Zluq7vYEqddL4edq9JmaHj8J s1nwU4+ZGFnOh9W2q8MuYliRQ581HQiseSv5WYt2IAC4Mz14hCGSOyc0melVPrBl xYPYUYyzSH1xVo8HVKmy4FtKRg1r9oKTt1gM+tzKgklvETSHhA80UL33A5QErDiD zpRvK7YTkQ1qqAS/z3Ox59JiEKGmqcdc7Jykr4PvbFpkQDgBW7xp3D/g6fnLshKf L5ourBRNb3Ccp1XRf0PaeojXWwoXWGCyTw14k4icKAop8khG+ib4DnIWxq+wUGXK A7x4Ec9NuFoJTGSDpQHCcTK/nwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPasXrNq 5rcisTxUVdo9XplixZ0OMB8GA1UdIwQYMBaAFBqfK76lIvHuJZI1m0tS+itBo83E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDAxNy83RjEyMjgxQzJE NjQxMUVDODVENjhCODBDNEY5QUUwMi9HcDhydnFVaThlNGxraldiUzFMNkswR2p6 Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dwOHJ2cVVpOGU0bGtqV2JTMUw2SzBHanpjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQwMTcvN0YxMjI4MUMyRDY0MTFFQzg1RDY4QjgwQzRGOUFFMDIvMEY4NzA5NTQy RDZFMTFFQzgzMjdFMzIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAFnRkwDBAFnR/wDBAJnwrgwDQYJKoZIhvcNAQELBQADggEB AEZUAIoc3iLlv2uF0yL81F8vhMdPN8G3864LjjBFad2FhchdWE8OJSwaETI9PovR pFWTplgkjVuL4u4TbS5OA+h2K7pgXfT1SFQniKmPsv5RxfNZBUkvZ/GQdgN050pz cIMM7ofOHx5M3cAsarhsYZQQP5YrWtfRYPEkFKA1JqKuCio1lYhNCytjUm0QD9ql P5VKW0wcBJLf5JoWzlG+0IWP6xrjxEIcERM35xM20NovKQt9nxQiwN/1+yH3fPLb GlLKd0zBQaFaqRqDGLWAYCHJFzJHt+PFYHRCyW/V9+T9gVqICIE5xh4uMRWFyTPt znPeNhlgFxnaN0u8IAnZkMg= -----END CERTIFICATE-----Generated at Mon Nov 25 01:15:30 2024 by rpki-client on console-fra.rpki-client.org