$ rpki-client -vvf rpki.apnic.net/member_repository/A9199B85/C24C720CF93511EC931FDB82C4F9AE02/EF1B381EF93911ECBD1E663DC4F9AE02.roa File: EF1B381EF93911ECBD1E663DC4F9AE02.roa (raw, json) Hash identifier: QEMOAgpk78T4cfgnhZBQcgORRh937yPLAJRwPHTKv3w= Subject key identifier: 77:78:8F:8F:73:42:8E:AE:6C:F9:35:84:14:BB:D0:33:00:07:7F:D7 Certificate issuer: /CN=A9199B85/serialNumber=6A4FCB18CDD8EF41D2332139EE62E8FD273B6FDF Certificate serial: 0206 Authority key identifier: 6A:4F:CB:18:CD:D8:EF:41:D2:33:21:39:EE:62:E8:FD:27:3B:6F:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak_LGM3Y70HSMyE57mLo_Sc7b98.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199B85/C24C720CF93511EC931FDB82C4F9AE02/EF1B381EF93911ECBD1E663DC4F9AE02.roa Signing time: Fri 05 Jul 2024 03:24:55 +0000 ROA not before: Fri 05 Jul 2024 03:24:55 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142017 IP address blocks: 103.187.104.0/24 maxlen: 24 2001:df0:cdc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199B85/C24C720CF93511EC931FDB82C4F9AE02/ak_LGM3Y70HSMyE57mLo_Sc7b98.crl rsync://rpki.apnic.net/member_repository/A9199B85/C24C720CF93511EC931FDB82C4F9AE02/ak_LGM3Y70HSMyE57mLo_Sc7b98.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak_LGM3Y70HSMyE57mLo_Sc7b98.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 518 (0x206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199B85/serialNumber=6A4FCB18CDD8EF41D2332139EE62E8FD273B6FDF Validity Not Before: Jul 5 03:24:55 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66876787-903b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:cd:5b:57:e0:b5:e8:26:76:d8:d1:31:f5:ce: 3a:15:73:90:71:2c:1a:92:89:ad:e5:2d:29:b2:2d: 36:d1:9b:cf:35:bb:8d:e9:33:80:20:e9:d6:1d:f6: 1f:ea:a9:a7:1f:e2:03:7f:c6:60:87:95:b4:9f:e1: 3c:25:79:45:2b:40:dd:6a:da:f9:80:cd:e7:ed:45: 63:8d:f4:19:61:d6:0b:a7:83:78:69:b3:79:3d:e3: fb:82:6c:b3:20:83:83:ca:f4:e8:ed:78:87:13:0a: ae:fa:f8:7d:b9:ec:91:26:98:d5:fe:c6:7d:56:e8: 17:1e:7a:13:64:65:06:1d:f6:76:ea:e3:6a:75:b9: c3:d1:06:13:9a:49:be:11:66:5b:a5:d4:41:c9:f7: 86:1b:03:79:2f:26:a6:ec:71:88:60:0e:2f:a1:a6: 03:09:ad:8c:57:07:d5:ec:78:94:5f:26:bd:9b:c3: 8f:a8:5e:94:58:18:9b:a6:d0:34:33:ad:0b:c1:5f: 36:0b:2c:62:e4:10:ed:0a:ff:a8:6e:70:3b:90:68: cb:24:33:e5:ab:8a:71:f0:8f:0d:d0:2a:f6:44:29: 80:a6:38:44:83:3d:51:99:ee:b2:79:12:a5:66:4d: 3e:e0:c4:6d:be:f9:eb:a2:54:3c:75:7f:9e:02:fe: 0a:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:78:8F:8F:73:42:8E:AE:6C:F9:35:84:14:BB:D0:33:00:07:7F:D7 X509v3 Authority Key Identifier: keyid:6A:4F:CB:18:CD:D8:EF:41:D2:33:21:39:EE:62:E8:FD:27:3B:6F:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199B85/C24C720CF93511EC931FDB82C4F9AE02/ak_LGM3Y70HSMyE57mLo_Sc7b98.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ak_LGM3Y70HSMyE57mLo_Sc7b98.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199B85/C24C720CF93511EC931FDB82C4F9AE02/EF1B381EF93911ECBD1E663DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.104.0/24 IPv6: 2001:df0:cdc0::/48 Signature Algorithm: sha256WithRSAEncryption 61:e8:5e:fa:d3:4e:ed:2f:59:91:46:fa:12:41:50:bc:1e:ef: 24:c4:a0:8b:93:ad:8c:64:e7:5e:30:34:12:4e:74:48:0b:cb: 33:d1:4c:8f:73:94:ea:8b:78:d4:d2:0f:c9:15:c2:b4:b5:5d: 35:4a:be:d3:db:fe:4d:ae:2a:64:40:3e:1f:6e:87:6d:30:7c: 8e:90:fa:b0:f0:a9:eb:a9:16:40:29:18:99:9a:21:ca:c8:c9: da:43:0f:11:ba:27:7d:f3:05:93:37:13:4c:99:36:c8:b1:14: 95:6d:7e:6f:00:ec:aa:76:03:1d:4e:59:5e:a5:c7:9f:54:0c: d7:e7:b9:b5:9f:46:e2:4d:12:df:20:5d:6f:84:a9:f1:73:dc: 2c:a6:69:70:83:5a:f0:df:b0:6a:8a:1e:84:75:fd:a8:de:77: ce:ab:37:53:c5:67:b1:25:e9:05:c5:db:a8:15:a5:30:b3:3f: 7c:f8:28:20:e7:ff:d2:d9:d3:8f:30:a7:1c:3f:60:e2:15:26: bd:bc:d1:3d:ce:39:72:e7:7e:bd:57:12:1d:91:c7:55:a5:3b: e2:a1:5d:0e:e9:41:6a:62:53:0d:89:37:f6:f5:e0:23:25:25: 44:b2:5e:16:a7:88:73:ef:fe:ac:00:1a:7e:1a:1a:61:ef:66: 0f:7f:ac:e7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTlCODUxMTAvBgNVBAUTKDZBNEZDQjE4Q0REOEVGNDFEMjMzMjEzOUVFNjJFOEZE MjczQjZGREYwHhcNMjQwNzA1MDMyNDU1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3Njc4Ny05MDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzs1bV+C16CZ22NEx9c46FXOQcSwakomt5S0psi020ZvPNbuN6TOAIOnWHfYf 6qmnH+IDf8Zgh5W0n+E8JXlFK0Ddatr5gM3n7UVjjfQZYdYLp4N4abN5PeP7gmyz IIODyvTo7XiHEwqu+vh9ueyRJpjV/sZ9VugXHnoTZGUGHfZ26uNqdbnD0QYTmkm+ EWZbpdRByfeGGwN5Lyam7HGIYA4voaYDCa2MVwfV7HiUXya9m8OPqF6UWBibptA0 M60LwV82Cyxi5BDtCv+obnA7kGjLJDPlq4px8I8N0Cr2RCmApjhEgz1Rme6yeRKl Zk0+4MRtvvnrolQ8dX+eAv4KpQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHd4j49z Qo6ubPk1hBS70DMAB3/XMB8GA1UdIwQYMBaAFGpPyxjN2O9B0jMhOe5i6P0nO2/f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OUI4NS9DMjRDNzIwQ0Y5 MzUxMUVDOTMxRkRCODJDNEY5QUUwMi9ha19MR00zWTcwSFNNeUU1N21Mb19TYzdi OTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FrX0xHTTNZNzBIU015RTU3bUxvX1NjN2I5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTlCODUvQzI0QzcyMENGOTM1MTFFQzkzMUZEQjgyQzRGOUFFMDIvRUYxQjM4MUVG OTM5MTFFQ0JEMUU2NjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnu2gwDwQCAAIwCQMHACABDfDNwDANBgkqhkiG9w0BAQsF AAOCAQEAYehe+tNO7S9ZkUb6EkFQvB7vJMSgi5OtjGTnXjA0Ek50SAvLM9FMj3OU 6ot41NIPyRXCtLVdNUq+09v+Ta4qZEA+H26HbTB8jpD6sPCp66kWQCkYmZohysjJ 2kMPEbonffMFkzcTTJk2yLEUlW1+bwDsqnYDHU5ZXqXHn1QM1+e5tZ9G4k0S3yBd b4Sp8XPcLKZpcINa8N+waooehHX9qN53zqs3U8VnsSXpBcXbqBWlMLM/fPgoIOf/ 0tnTjzCnHD9g4hUmvbzRPc45cud+vVcSHZHHVaU74qFdDulBamJTDYk39vXgIyUl RLJeFqeIc+/+rAAafhoaYe9mD3+s5w== -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:01 2024 by rpki-client on console-fra.rpki-client.org