$ rpki-client -vvf rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/2475821008E611EDA969EC24C4F9AE02.roa File: 2475821008E611EDA969EC24C4F9AE02.roa (raw, json) Hash identifier: pHEalHPaBn8YLpxptX62/OxGR+yXDeFh5rO3/NYIRLM= Subject key identifier: 34:7A:A2:25:3D:E9:6F:E9:92:79:A6:4A:AB:E8:5B:31:5C:21:49:EA Certificate issuer: /CN=A9192B60/serialNumber=13E1899C23FEB07FE13162EB103CC3C038D70824 Certificate serial: 01F2 Authority key identifier: 13:E1:89:9C:23:FE:B0:7F:E1:31:62:EB:10:3C:C3:C0:38:D7:08:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/2475821008E611EDA969EC24C4F9AE02.roa Signing time: Sat 27 Jul 2024 03:55:11 +0000 ROA not before: Sat 27 Jul 2024 03:55:11 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140267 IP address blocks: 103.191.158.0/24 maxlen: 24 103.191.159.0/24 maxlen: 24 2001:df1:540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.crl rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 04 Dec 2024 01:30:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 498 (0x1f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192B60/serialNumber=13E1899C23FEB07FE13162EB103CC3C038D70824 Validity Not Before: Jul 27 03:55:11 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a46f9f-24df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:55:f6:f2:55:f3:f8:7b:0c:34:a1:d4:3f:82: 0e:a6:52:a3:51:c3:d6:3e:01:c6:88:43:9a:65:29: a7:4e:9d:bf:ed:68:c5:68:87:dd:9b:bd:01:7e:a8: 7f:2d:27:9b:1c:c4:e3:6e:36:6e:89:f1:6f:ec:25: 63:38:76:24:ce:77:7f:89:f4:9c:77:91:dc:f6:cf: 35:1e:7d:6a:a0:b1:e2:fb:d9:bc:84:1d:1d:68:10: 6f:6a:1e:88:bb:59:ab:7e:90:84:e7:5d:20:1b:dc: d9:3c:f2:4f:dc:94:a8:c1:fb:15:7e:23:71:54:56: 0f:08:6b:be:0a:c3:b8:68:a8:cd:51:c5:dc:16:0b: 51:98:8c:68:8f:24:f5:49:ec:9c:77:d5:41:e3:13: 6b:c8:62:bd:fe:06:e4:a3:98:07:9b:37:b6:bf:44: 80:81:1c:26:b7:c2:74:df:f3:fb:fd:f2:6d:06:f2: 47:64:34:28:2d:d3:de:b8:41:8a:a5:85:d4:52:59: 6d:bb:dc:f0:f9:ea:33:63:6d:06:5e:de:14:47:c7: 4b:72:7c:81:02:a9:7d:fa:00:66:4b:e6:72:78:2f: e1:96:dd:15:9e:fe:db:81:ba:61:a8:7b:2e:e2:e2: 0a:34:60:68:39:59:8e:3f:db:b4:fb:16:8c:99:ab: 08:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:7A:A2:25:3D:E9:6F:E9:92:79:A6:4A:AB:E8:5B:31:5C:21:49:EA X509v3 Authority Key Identifier: keyid:13:E1:89:9C:23:FE:B0:7F:E1:31:62:EB:10:3C:C3:C0:38:D7:08:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E-GJnCP-sH_hMWLrEDzDwDjXCCQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192B60/B32F3E7208E311ED83640C21C4F9AE02/2475821008E611EDA969EC24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.158.0/23 IPv6: 2001:df1:540::/48 Signature Algorithm: sha256WithRSAEncryption 3f:e7:6c:97:4b:9c:b3:3f:9d:62:b4:ce:cb:13:1c:02:99:bc: c7:db:57:de:05:ab:08:c7:d5:8a:8c:86:4f:66:3b:23:b3:d9: 67:89:6b:fe:ba:aa:8f:1d:88:aa:ad:b0:a1:30:1e:f8:59:ef: 2d:c7:d3:6e:c0:59:14:66:b5:c6:3f:19:67:cf:e1:7c:94:65: ca:da:02:38:4c:12:f9:50:e1:5f:c0:3f:fc:c3:57:36:35:fb: c2:11:d3:68:09:e9:5e:b7:28:cd:a2:cd:d5:08:4b:78:c7:1a: e1:f8:1d:b1:fb:66:57:36:92:2c:9c:f4:47:0b:76:78:04:04: 13:85:96:44:b3:fe:94:88:34:d7:46:76:3a:e9:a4:d3:e6:29: 53:e2:3a:90:f4:fe:e7:32:88:0b:bb:28:e1:64:ba:3f:ee:cb: 31:24:4c:ee:19:4c:c2:72:1d:93:16:1e:3a:79:76:7e:86:d7: 7e:c0:24:62:18:8d:9e:c1:43:b1:e8:90:69:ed:e9:4c:f7:42: d4:91:45:ca:2a:11:3c:a5:77:2b:00:c4:57:c4:9a:0b:87:1c: 17:27:2f:bd:7e:86:51:f9:30:98:2a:64:93:1e:f6:69:51:e9: 79:74:7d:c1:25:04:e1:23:c8:42:23:5a:47:fb:76:f6:5d:3c: 75:a8:05:82 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJCNjAxMTAvBgNVBAUTKDEzRTE4OTlDMjNGRUIwN0ZFMTMxNjJFQjEwM0NDM0Mw MzhENzA4MjQwHhcNMjQwNzI3MDM1NTExWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE0NmY5Zi0yNGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlFX28lXz+HsMNKHUP4IOplKjUcPWPgHGiEOaZSmnTp2/7WjFaIfdm70Bfqh/ LSebHMTjbjZuifFv7CVjOHYkznd/ifScd5Hc9s81Hn1qoLHi+9m8hB0daBBvah6I u1mrfpCE510gG9zZPPJP3JSowfsVfiNxVFYPCGu+CsO4aKjNUcXcFgtRmIxojyT1 Seycd9VB4xNryGK9/gbko5gHmze2v0SAgRwmt8J03/P7/fJtBvJHZDQoLdPeuEGK pYXUUlltu9zw+eozY20GXt4UR8dLcnyBAql9+gBmS+ZyeC/hlt0Vnv7bgbphqHsu 4uIKNGBoOVmOP9u0+xaMmasI9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDR6oiU9 6W/pknmmSqvoWzFcIUnqMB8GA1UdIwQYMBaAFBPhiZwj/rB/4TFi6xA8w8A41wgk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkI2MC9CMzJGM0U3MjA4 RTMxMUVEODM2NDBDMjFDNEY5QUUwMi9FLUdKbkNQLXNIX2hNV0xyRUR6RHdEalhD Q1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UtR0puQ1Atc0hfaE1XTHJFRHpEd0RqWENDUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJCNjAvQjMyRjNFNzIwOEUzMTFFRDgzNjQwQzIxQzRGOUFFMDIvMjQ3NTgyMTAw OEU2MTFFREE5NjlFQzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnv54wDwQCAAIwCQMHACABDfEFQDANBgkqhkiG9w0BAQsF AAOCAQEAP+dsl0ucsz+dYrTOyxMcApm8x9tX3gWrCMfVioyGT2Y7I7PZZ4lr/rqq jx2Iqq2woTAe+FnvLcfTbsBZFGa1xj8ZZ8/hfJRlytoCOEwS+VDhX8A//MNXNjX7 whHTaAnpXrcozaLN1QhLeMca4fgdsftmVzaSLJz0Rwt2eAQEE4WWRLP+lIg010Z2 Oumk0+YpU+I6kPT+5zKIC7so4WS6P+7LMSRM7hlMwnIdkxYeOnl2fobXfsAkYhiN nsFDseiQae3pTPdC1JFFyioRPKV3KwDEV8SaC4ccFycvvX6GUfkwmCpkkx72aVHp eXR9wSUE4SPIQiNaR/t29l08dagFgg== -----END CERTIFICATE-----Generated at Wed Nov 27 04:07:02 2024 by rpki-client on console-ams.rpki-client.org