$ rpki-client -vvf rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/394B48F6889811EC9D1DF920C4F9AE02.roa File: 394B48F6889811EC9D1DF920C4F9AE02.roa (raw, json) Hash identifier: zNdiJ1pBffbcNnWg75GFO6PkHkmsjOTQiX3Av0Ret+w= Subject key identifier: 54:3B:46:CA:A5:12:30:03:E7:50:82:E0:99:C4:D3:F2:1D:83:7B:02 Certificate issuer: /CN=A9187729/serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Certificate serial: 0308 Authority key identifier: 2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/394B48F6889811EC9D1DF920C4F9AE02.roa Signing time: Fri 03 May 2024 03:45:38 +0000 ROA not before: Fri 03 May 2024 03:45:38 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132739 IP address blocks: 103.24.156.0/24 maxlen: 24 103.24.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 776 (0x308) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187729/serialNumber=2B440C7C459003055157627DE7214E9CAC128B4C Validity Not Before: May 3 03:45:38 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66345de1-d696 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:35:e6:56:23:5d:fe:67:c1:98:bd:69:bd:17: 48:a3:4e:c9:17:18:5f:69:b7:6a:b3:5f:db:1c:2e: 08:df:cd:b7:2b:3f:b2:4c:ed:72:1d:09:92:f2:1f: 61:b4:3a:8d:cd:89:ce:98:e8:d7:71:4d:54:a2:08: 50:07:de:c4:3e:11:b1:36:8d:19:13:5d:77:aa:68: 86:41:2e:01:ee:95:81:e3:d9:62:5c:bb:97:09:ec: 82:96:fc:f2:6a:08:7c:dc:8a:6b:65:97:c9:05:da: d9:bb:01:01:4f:a6:af:53:e8:0c:90:eb:6a:a1:e6: 7c:c0:80:a7:3d:74:43:35:6e:57:6c:f8:1d:93:f2: 7a:5b:f2:0e:c9:1c:c0:4b:99:e6:c4:92:45:ce:98: 29:29:e2:d3:e4:b9:f7:d6:92:6c:99:d8:77:d3:56: cb:32:08:d8:0a:f1:80:78:66:d6:72:ff:e6:77:cb: cb:04:b0:0b:26:9a:64:c5:80:d6:5a:43:07:5d:75: af:69:b4:0d:cd:a8:d1:15:ee:5d:b7:24:04:75:7d: 27:00:09:df:1c:17:32:9b:01:a7:ac:b5:b4:fa:ba: 87:92:03:40:94:c4:de:ab:a1:45:2b:7b:b2:bb:08: fe:7a:ec:5d:86:e0:92:4d:39:39:ff:af:f3:4d:4c: 01:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:3B:46:CA:A5:12:30:03:E7:50:82:E0:99:C4:D3:F2:1D:83:7B:02 X509v3 Authority Key Identifier: keyid:2B:44:0C:7C:45:90:03:05:51:57:62:7D:E7:21:4E:9C:AC:12:8B:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/K0QMfEWQAwVRV2J95yFOnKwSi0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K0QMfEWQAwVRV2J95yFOnKwSi0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187729/1312F908889411ECB20B8372C4F9AE02/394B48F6889811EC9D1DF920C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.156.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:93:8b:f9:e1:a0:c8:2f:a3:26:51:90:5e:68:bd:76:a2:b6: ca:27:cd:bb:04:94:40:0d:ad:95:3f:2a:5a:cd:39:b8:f0:c2: 1b:d6:68:74:cf:71:27:fe:70:b8:71:3f:cc:47:4d:66:3f:9b: 54:7d:32:81:d4:4c:50:0a:0d:8a:63:4d:12:4b:85:b6:d2:85: 8f:9e:ab:74:af:06:f4:8a:31:72:50:b9:bd:8a:4b:39:d2:98: 17:fc:e4:35:5b:8b:66:99:14:80:e3:d5:91:4d:1d:67:d9:00: ff:44:57:7f:93:35:d3:f3:a3:a1:9f:50:0c:c7:db:9a:aa:55: a4:c0:88:33:21:86:aa:5c:24:77:d7:a8:ab:b2:75:88:e4:19: 4d:92:2a:14:d3:62:87:d9:fc:6d:6e:1d:7b:9e:75:6e:64:e1: d8:6a:09:96:67:46:db:e2:87:43:79:dd:bc:0f:de:ee:66:88: 3f:ae:69:20:83:d6:57:df:ca:b5:a0:f8:f2:83:14:d2:11:46: 6a:8c:71:ae:63:06:cc:f3:ff:0e:bc:52:36:46:6a:61:25:af: 88:8c:83:d9:35:14:f2:f6:09:90:a3:a0:51:74:8b:03:3c:ea: ee:0b:93:b8:7a:a1:81:3a:e6:33:d4:c5:5b:cf:d5:28:02:1b: 35:8d:b9:10 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAwgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc3MjkxMTAvBgNVBAUTKDJCNDQwQzdDNDU5MDAzMDU1MTU3NjI3REU3MjE0RTlD QUMxMjhCNEMwHhcNMjQwNTAzMDM0NTM4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0NWRlMS1kNjk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqDXmViNd/mfBmL1pvRdIo07JFxhfabdqs1/bHC4I3823Kz+yTO1yHQmS8h9h tDqNzYnOmOjXcU1UoghQB97EPhGxNo0ZE113qmiGQS4B7pWB49liXLuXCeyClvzy agh83IprZZfJBdrZuwEBT6avU+gMkOtqoeZ8wICnPXRDNW5XbPgdk/J6W/IOyRzA S5nmxJJFzpgpKeLT5Ln31pJsmdh301bLMgjYCvGAeGbWcv/md8vLBLALJppkxYDW WkMHXXWvabQNzajRFe5dtyQEdX0nAAnfHBcymwGnrLW0+rqHkgNAlMTeq6FFK3uy uwj+euxdhuCSTTk5/6/zTUwB+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFQ7Rsql EjAD51CC4JnE0/Idg3sCMB8GA1UdIwQYMBaAFCtEDHxFkAMFUVdifechTpysEotM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzcyOS8xMzEyRjkwODg4 OTQxMUVDQjIwQjgzNzJDNEY5QUUwMi9LMFFNZkVXUUF3VlJWMko5NXlGT25Ld1Np MHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0swUU1mRVdRQXdWUlYySjk1eUZPbkt3U2kwdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc3MjkvMTMxMkY5MDg4ODk0MTFFQ0IyMEI4MzcyQzRGOUFFMDIvMzk0QjQ4RjY4 ODk4MTFFQzlEMURGOTIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnGJwwDQYJKoZIhvcNAQELBQADggEBAG+Ti/nhoMgvoyZR kF5ovXaitsonzbsElEANrZU/KlrNObjwwhvWaHTPcSf+cLhxP8xHTWY/m1R9MoHU TFAKDYpjTRJLhbbShY+eq3SvBvSKMXJQub2KSznSmBf85DVbi2aZFIDj1ZFNHWfZ AP9EV3+TNdPzo6GfUAzH25qqVaTAiDMhhqpcJHfXqKuydYjkGU2SKhTTYofZ/G1u HXuedW5k4dhqCZZnRtvih0N53bwP3u5miD+uaSCD1lffyrWg+PKDFNIRRmqMca5j Bszz/w68UjZGamElr4iMg9k1FPL2CZCjoFF0iwM86u4Lk7h6oYE65jPUxVvP1SgC GzWNuRA= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:24 2024 by rpki-client on console-ams.rpki-client.org