$ rpki-client -vvf rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/97F31854777011E7BF7EED10C4F9AE02.roa File: 97F31854777011E7BF7EED10C4F9AE02.roa (raw, json) Hash identifier: MvSNDQCHIjbtKn6qI3pyzYR56RR/J9dUO091dvxUIn4= Subject key identifier: 9A:E6:4B:E6:04:BD:E3:15:18:B7:95:37:B0:94:F1:1A:9E:4F:12:CB Certificate issuer: /CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Certificate serial: 18CD Authority key identifier: E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/97F31854777011E7BF7EED10C4F9AE02.roa Signing time: Wed 14 Aug 2024 16:53:54 +0000 ROA not before: Wed 14 Aug 2024 16:53:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 58419 IP address blocks: 103.10.252.0/24 maxlen: 24 103.23.214.0/24 maxlen: 24 103.95.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:24:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6349 (0x18cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187313/serialNumber=E5672BBF18C4CFEBD3F472D13B48771372D34EDF Validity Not Before: Aug 14 16:53:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bce121-324f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:86:47:c0:22:8d:34:2a:5c:3d:f9:24:76:9c: c6:5a:e8:fa:e0:4f:77:a1:b4:81:5d:dd:e2:8f:34: 4f:23:5e:5a:57:9e:3c:c4:e8:70:97:84:16:56:5d: 5a:03:27:9b:be:87:7f:52:70:79:89:04:12:71:96: 6f:7f:48:9b:d7:b9:bf:18:be:42:16:b5:87:b9:c8: 47:46:5d:40:58:a3:2f:9c:83:14:9e:b9:9b:41:19: 65:2a:13:fe:c0:37:dc:12:bb:f4:89:ba:d4:8a:f6: ec:74:88:69:0d:ca:f0:d4:55:90:c9:d6:da:3c:2b: 1b:f0:3d:57:f5:b4:a9:48:c2:c1:8c:bd:9e:01:a5: e5:f6:0e:b8:30:09:a1:25:b7:c3:14:4a:1c:fc:2d: 18:38:fd:68:47:f7:be:0d:ce:68:cf:55:a3:83:9a: 6a:5f:26:a6:9b:99:b3:c2:47:45:80:c0:a8:83:11: ae:d4:69:b4:db:98:5c:23:a3:fb:4f:d1:c7:5b:4e: 62:bb:b7:78:0d:d5:8b:48:be:95:c7:e6:17:9d:72: 12:66:a5:f6:5f:52:c5:3d:fd:84:61:9d:c0:c1:ae: 59:ad:35:54:21:20:52:7c:f2:0d:34:95:4a:91:d7: 0e:c0:c0:44:f7:ee:7d:88:d2:f6:44:e2:a5:f1:ee: 96:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:E6:4B:E6:04:BD:E3:15:18:B7:95:37:B0:94:F1:1A:9E:4F:12:CB X509v3 Authority Key Identifier: keyid:E5:67:2B:BF:18:C4:CF:EB:D3:F4:72:D1:3B:48:77:13:72:D3:4E:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/5WcrvxjEz-vT9HLRO0h3E3LTTt8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5WcrvxjEz-vT9HLRO0h3E3LTTt8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187313/3C34EC0A776F11E782AD6D0EC4F9AE02/97F31854777011E7BF7EED10C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.10.252.0/24 103.23.214.0/24 103.95.193.0/24 Signature Algorithm: sha256WithRSAEncryption 51:e2:0e:ff:5a:c4:03:03:af:6d:aa:07:e3:62:76:09:0b:ba: 35:b7:71:10:01:e9:a6:17:7a:66:c0:5e:39:b8:3d:fd:07:1b: 70:87:f4:33:b8:46:93:1e:bf:63:44:3c:5d:7e:40:f5:dc:56: bc:6a:cf:bc:97:91:5d:29:17:15:77:a4:c4:92:92:5d:d2:b5: e2:d6:68:93:bc:88:31:e6:1d:d3:b8:ad:0b:33:d1:86:b0:dc: c4:0b:0d:7e:4f:b6:f6:a7:6c:b2:76:7e:8a:52:73:6a:e1:02: 33:9e:ea:a8:d1:0f:4a:dc:19:11:91:1a:10:ff:24:44:8f:8e: 32:fd:7f:25:95:f2:54:22:fb:db:b1:b3:bd:ef:8f:09:42:bc: 1b:ff:45:86:df:bc:89:e5:ca:19:05:4c:ec:4f:0d:19:c3:f9: 9a:ac:a7:17:8d:78:6f:9c:44:50:63:3a:5d:7f:8e:a9:e8:66: 5a:6b:0c:89:6b:4b:df:a9:e1:e0:8f:35:c9:ad:2c:ee:d3:83: 60:54:b7:40:3e:2c:9c:70:ca:d2:f5:e2:ab:91:e1:4c:78:26: 49:f1:dd:b8:72:2b:ca:0b:48:11:a2:37:1a:b2:c1:6d:ef:86: 91:d1:c0:b4:25:65:c5:3a:ee:32:a1:8b:5e:4a:cf:21:90:81: d5:f9:2f:84 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczMTMxMTAvBgNVBAUTKEU1NjcyQkJGMThDNENGRUJEM0Y0NzJEMTNCNDg3NzEz NzJEMzRFREYwHhcNMjQwODE0MTY1MzU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJjZTEyMS0zMjRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3oZHwCKNNCpcPfkkdpzGWuj64E93obSBXd3ijzRPI15aV548xOhwl4QWVl1a Ayebvod/UnB5iQQScZZvf0ib17m/GL5CFrWHuchHRl1AWKMvnIMUnrmbQRllKhP+ wDfcErv0ibrUivbsdIhpDcrw1FWQydbaPCsb8D1X9bSpSMLBjL2eAaXl9g64MAmh JbfDFEoc/C0YOP1oR/e+Dc5oz1Wjg5pqXyamm5mzwkdFgMCogxGu1Gm025hcI6P7 T9HHW05iu7d4DdWLSL6Vx+YXnXISZqX2X1LFPf2EYZ3Awa5ZrTVUISBSfPINNJVK kdcOwMBE9+59iNL2ROKl8e6WNwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFJrmS+YE veMVGLeVN7CU8RqeTxLLMB8GA1UdIwQYMBaAFOVnK78YxM/r0/Ry0TtIdxNy007f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzMxMy8zQzM0RUMwQTc3 NkYxMUU3ODJBRDZEMEVDNEY5QUUwMi81V2NydnhqRXotdlQ5SExSTzBoM0UzTFRU dDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVXY3J2eGpFei12VDlITFJPMGgzRTNMVFR0OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczMTMvM0MzNEVDMEE3NzZGMTFFNzgyQUQ2RDBFQzRGOUFFMDIvOTdGMzE4NTQ3 NzcwMTFFN0JGN0VFRDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnCvwDBABnF9YDBABnX8EwDQYJKoZIhvcNAQELBQADggEB AFHiDv9axAMDr22qB+NidgkLujW3cRAB6aYXembAXjm4Pf0HG3CH9DO4RpMev2NE PF1+QPXcVrxqz7yXkV0pFxV3pMSSkl3SteLWaJO8iDHmHdO4rQsz0Yaw3MQLDX5P tvanbLJ2fopSc2rhAjOe6qjRD0rcGRGRGhD/JESPjjL9fyWV8lQi+9uxs73vjwlC vBv/RYbfvInlyhkFTOxPDRnD+ZqspxeNeG+cRFBjOl1/jqnoZlprDIlrS9+p4eCP NcmtLO7Tg2BUt0A+LJxwytL14quR4Ux4Jknx3bhyK8oLSBGiNxqywW3vhpHRwLQl ZcU67jKhi15KzyGQgdX5L4Q= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:23 2024 by rpki-client on console-ams.rpki-client.org