$ rpki-client -vvf rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/C2ED1EEE617111EBBC678459C4F9AE02.roa File: C2ED1EEE617111EBBC678459C4F9AE02.roa (raw, json) Hash identifier: fGrUYT1O2dItK4fIwYgIfLvCsJmlCIF/jYJCGwsc26A= Subject key identifier: 05:E7:84:BA:E3:95:48:67:BF:BB:0B:D8:6F:BD:7D:12:29:94:F6:D6 Certificate issuer: /CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Certificate serial: 0D36 Authority key identifier: A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/C2ED1EEE617111EBBC678459C4F9AE02.roa Signing time: Tue 30 Jul 2024 18:36:00 +0000 ROA not before: Tue 30 Jul 2024 18:36:00 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 138172 IP address blocks: 103.116.248.0/24 maxlen: 24 103.116.249.0/24 maxlen: 24 103.116.250.0/24 maxlen: 24 103.116.251.0/24 maxlen: 24 2403:dc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:57:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3382 (0xd36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D1D9/serialNumber=A80C367F9222946F98B836BCE8F6D00364881C7C Validity Not Before: Jul 30 18:36:00 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9328f-728d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:ee:54:81:4e:6c:e7:3e:96:f5:45:73:54:8d: 64:07:f1:0a:50:48:43:d7:6f:9b:5f:69:ef:85:f0: 4d:e1:9e:f2:9a:a9:fb:8c:f5:12:bc:55:8c:0d:76: 87:11:0d:b4:41:80:82:6e:fd:d8:75:46:97:84:65: 58:32:f6:a2:3d:17:04:f9:f0:15:c4:1d:69:53:5a: 26:04:3f:b7:5e:d7:10:54:ee:a5:51:a3:1b:4e:fd: a9:67:f4:47:f5:57:af:68:dc:94:79:c7:56:9d:c2: 10:be:d7:e6:c9:a9:1b:f3:39:54:a3:25:d7:21:40: 80:e9:ca:2a:5d:2a:4c:01:f7:24:90:8f:8c:27:fc: 4e:20:9e:7b:5f:fb:ff:ef:21:98:b9:72:94:af:ba: 1e:d6:2f:df:bb:a5:4b:75:82:e6:05:dc:31:db:ea: b0:da:8c:7c:68:b0:37:34:da:d3:ae:0f:d6:fc:37: 04:e4:e7:85:b1:25:5f:67:7a:40:bb:ef:56:40:c8: 87:0e:1c:20:fc:d4:92:64:cf:a6:b0:52:16:c5:88: ba:0f:07:48:cb:56:39:d7:00:4c:bc:e7:79:73:bb: 49:d0:e0:ce:34:ed:d8:24:0b:e1:d8:09:e0:bd:e9: 0c:7e:27:3f:c5:e3:bf:4c:a5:4d:8d:7d:ca:a7:80: 04:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:E7:84:BA:E3:95:48:67:BF:BB:0B:D8:6F:BD:7D:12:29:94:F6:D6 X509v3 Authority Key Identifier: keyid:A8:0C:36:7F:92:22:94:6F:98:B8:36:BC:E8:F6:D0:03:64:88:1C:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/qAw2f5IilG-YuDa86PbQA2SIHHw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qAw2f5IilG-YuDa86PbQA2SIHHw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D1D9/6A39A0DEC33811E98048FB7DC4F9AE02/C2ED1EEE617111EBBC678459C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.248.0/22 IPv6: 2403:dc0::/32 Signature Algorithm: sha256WithRSAEncryption 43:42:2e:09:47:84:1b:20:2a:ed:ca:02:28:55:6e:e4:bf:fc: 22:df:6a:64:06:e7:0e:aa:c5:52:c9:71:c6:99:e1:f6:87:28: ae:74:75:83:56:e8:c3:4c:27:54:1a:84:e2:e2:85:45:ad:18: 18:3c:9d:6d:71:3f:f2:0e:9e:48:15:8c:e1:62:df:9c:9f:a2: 50:26:83:00:fb:20:71:9e:50:34:11:f4:2f:95:7c:c0:40:96: 4f:64:de:94:63:ec:8b:49:2d:06:92:84:70:ce:98:4a:23:70: a9:f7:93:63:76:33:97:75:50:f0:d2:bd:ef:8b:33:e3:9f:d1: f5:51:0a:9a:4d:e9:16:b5:e1:e2:59:be:a1:a8:21:5e:c9:5e: be:87:1c:fb:3b:72:56:30:f2:83:14:66:80:f6:c4:cb:14:a6: 0a:4e:f8:02:0b:7f:c9:5b:0b:b1:8a:c9:60:65:c0:2c:a1:36: d2:3f:0d:9c:aa:e1:a3:e3:0a:e0:c1:f4:27:30:37:16:a0:a1: 82:ba:cb:a1:81:78:a3:19:76:53:2c:79:3e:af:98:d9:cc:5e: db:ae:e4:de:a9:60:5d:9b:9c:9f:fd:d2:85:e0:9e:c8:af:2e: ed:90:a6:90:98:ee:a8:0a:1b:e2:7c:0e:eb:83:9a:cf:91:4a: 93:5f:36:01 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDTYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQxRDkxMTAvBgNVBAUTKEE4MEMzNjdGOTIyMjk0NkY5OEI4MzZCQ0U4RjZEMDAz NjQ4ODFDN0MwHhcNMjQwNzMwMTgzNjAwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MzI4Zi03MjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp+5UgU5s5z6W9UVzVI1kB/EKUEhD12+bX2nvhfBN4Z7ymqn7jPUSvFWMDXaH EQ20QYCCbv3YdUaXhGVYMvaiPRcE+fAVxB1pU1omBD+3XtcQVO6lUaMbTv2pZ/RH 9VevaNyUecdWncIQvtfmyakb8zlUoyXXIUCA6coqXSpMAfckkI+MJ/xOIJ57X/v/ 7yGYuXKUr7oe1i/fu6VLdYLmBdwx2+qw2ox8aLA3NNrTrg/W/DcE5OeFsSVfZ3pA u+9WQMiHDhwg/NSSZM+msFIWxYi6DwdIy1Y51wBMvOd5c7tJ0ODONO3YJAvh2Ang vekMfic/xeO/TKVNjX3Kp4AEWwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAXnhLrj lUhnv7sL2G+9fRIplPbWMB8GA1UdIwQYMBaAFKgMNn+SIpRvmLg2vOj20ANkiBx8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDFEOS82QTM5QTBERUMz MzgxMUU5ODA0OEZCN0RDNEY5QUUwMi9xQXcyZjVJaWxHLVl1RGE4NlBiUUEyU0lI SHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FBdzJmNUlpbEctWXVEYTg2UGJRQTJTSUhIdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQxRDkvNkEzOUEwREVDMzM4MTFFOTgwNDhGQjdEQzRGOUFFMDIvQzJFRDFFRUU2 MTcxMTFFQkJDNjc4NDU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndPgwDQQCAAIwBwMFACQDDcAwDQYJKoZIhvcNAQELBQAD ggEBAENCLglHhBsgKu3KAihVbuS//CLfamQG5w6qxVLJccaZ4faHKK50dYNW6MNM J1QahOLihUWtGBg8nW1xP/IOnkgVjOFi35yfolAmgwD7IHGeUDQR9C+VfMBAlk9k 3pRj7ItJLQaShHDOmEojcKn3k2N2M5d1UPDSve+LM+Of0fVRCppN6Ra14eJZvqGo IV7JXr6HHPs7clYw8oMUZoD2xMsUpgpO+AILf8lbC7GKyWBlwCyhNtI/DZyq4aPj CuDB9CcwNxagoYK6y6GBeKMZdlMseT6vmNnMXtuu5N6pYF2bnJ/90oXgnsivLu2Q ppCY7qgKG+J8DuuDms+RSpNfNgE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:14 2024 by rpki-client on console-ams.rpki-client.org