$ rpki-client -vvf rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/38E02CDC04EE11EE89900876C4F9AE02.roa File: 38E02CDC04EE11EE89900876C4F9AE02.roa (raw, json) Hash identifier: A+Aqziv+l/eva8pdjPnNDIFSBuh+7kSFLQzVhKrXMMo= Subject key identifier: 5C:30:9D:86:06:96:93:71:6F:E1:45:99:91:8A:1B:8C:FD:AD:C0:87 Certificate issuer: /CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Certificate serial: 018D Authority key identifier: AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/38E02CDC04EE11EE89900876C4F9AE02.roa Signing time: Tue 29 Oct 2024 02:58:30 +0000 ROA not before: Tue 29 Oct 2024 02:58:30 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55850 IP address blocks: 103.172.232.0/24 maxlen: 24 103.172.233.0/24 maxlen: 24 223.165.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:02:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 397 (0x18d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911285C/serialNumber=AC912CEFA758A1199C1BEDE06B14A9EA398975F7 Validity Not Before: Oct 29 02:58:30 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67204f55-a37e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:fa:d8:cd:a3:8a:59:86:a3:69:09:fe:b9:23: ca:3a:55:4b:67:60:41:b6:07:f3:5e:62:41:aa:3a: ae:8c:21:f0:13:15:49:e4:29:b8:ee:b1:7c:95:82: cf:2f:5d:01:18:9c:bf:a5:ea:2f:df:e0:dd:91:32: 81:99:05:c8:9c:85:b0:51:35:6e:d5:18:57:6e:88: 8f:0a:2c:4a:89:17:f8:9a:ab:c0:43:c6:51:f7:8a: b4:08:45:0a:03:85:d2:c3:f3:7a:6e:bc:23:08:90: 2e:d3:06:4b:cb:ca:13:57:8d:52:01:b0:bb:91:75: 51:8f:50:35:33:f7:54:34:c8:35:ef:bf:bc:a5:84: df:e5:1c:cc:3b:f8:5b:f8:27:a0:eb:65:59:41:40: fc:cc:c9:b1:36:b2:2e:f5:50:28:1c:f9:5b:02:8a: 08:4e:8b:89:a2:d0:f8:3e:31:1c:6e:9a:9d:38:e9: f1:3c:03:41:8d:76:3f:84:9f:39:3f:83:9d:a7:4e: 4e:4f:f0:ef:be:10:01:e5:71:24:73:e8:97:7a:cf: fc:dc:3a:00:da:0c:82:96:ff:4e:40:a6:17:a8:f3: 98:a7:1c:9c:cf:af:00:f4:9f:3e:69:4f:07:bd:b8: cf:63:ae:a6:c1:21:25:70:a4:ca:9b:49:d6:08:fc: a8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:30:9D:86:06:96:93:71:6F:E1:45:99:91:8A:1B:8C:FD:AD:C0:87 X509v3 Authority Key Identifier: keyid:AC:91:2C:EF:A7:58:A1:19:9C:1B:ED:E0:6B:14:A9:EA:39:89:75:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/rJEs76dYoRmcG-3gaxSp6jmJdfc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJEs76dYoRmcG-3gaxSp6jmJdfc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911285C/0A68B118608D11EDAF2C6567C4F9AE02/38E02CDC04EE11EE89900876C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.172.232.0/23 223.165.16.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:84:bd:25:37:6d:91:a1:77:0f:ed:c1:f7:f5:50:15:16:da: 92:e8:87:0e:a3:16:63:f6:0d:09:6d:b1:3f:d5:c9:a1:4a:f8: d0:3a:01:c9:f4:ab:57:54:cf:1d:37:a6:30:92:a2:46:c8:a0: de:8f:7e:5f:cb:ef:72:05:87:eb:09:8a:f0:26:2b:9c:8e:89: 8e:52:2d:63:28:f5:02:7a:23:0d:37:37:0a:29:34:53:20:00: e3:bd:dd:a4:1b:7a:46:14:fd:86:83:4a:9b:ca:9a:34:92:b7: 3d:ae:ea:6d:b1:d7:1d:79:8d:21:4c:5e:1b:22:df:39:16:58: 19:3f:e0:11:db:58:a6:5e:36:87:6e:d5:80:d5:63:5e:45:48: e1:f9:8a:60:e3:b6:58:b5:87:51:22:f1:b5:59:74:42:9b:44: 8d:18:d8:67:86:88:b5:0f:87:3e:f4:ce:f3:16:26:72:29:fe: 1a:8a:4b:94:2d:e2:69:29:e3:63:b5:10:95:6d:1d:97:08:b9: 41:43:73:be:80:76:f6:9e:c2:23:b2:b2:0c:a9:eb:08:89:5f: d2:30:15:b0:49:ef:92:98:8c:ab:0e:0f:8f:99:9d:25:0a:6e: 15:f5:eb:e4:b5:68:5d:ca:ba:03:47:c1:61:10:a9:c1:70:af: f4:73:f4:09 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4NUMxMTAvBgNVBAUTKEFDOTEyQ0VGQTc1OEExMTk5QzFCRURFMDZCMTRBOUVB Mzk4OTc1RjcwHhcNMjQxMDI5MDI1ODMwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwNGY1NS1hMzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApfrYzaOKWYajaQn+uSPKOlVLZ2BBtgfzXmJBqjqujCHwExVJ5Cm47rF8lYLP L10BGJy/peov3+DdkTKBmQXInIWwUTVu1RhXboiPCixKiRf4mqvAQ8ZR94q0CEUK A4XSw/N6brwjCJAu0wZLy8oTV41SAbC7kXVRj1A1M/dUNMg177+8pYTf5RzMO/hb +Ceg62VZQUD8zMmxNrIu9VAoHPlbAooITouJotD4PjEcbpqdOOnxPANBjXY/hJ85 P4Odp05OT/DvvhAB5XEkc+iXes/83DoA2gyClv9OQKYXqPOYpxycz68A9J8+aU8H vbjPY66mwSElcKTKm0nWCPyo0QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFwwnYYG lpNxb+FFmZGKG4z9rcCHMB8GA1UdIwQYMBaAFKyRLO+nWKEZnBvt4GsUqeo5iXX3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjg1Qy8wQTY4QjExODYw OEQxMUVEQUYyQzY1NjdDNEY5QUUwMi9ySkVzNzZkWW9SbWNHLTNnYXhTcDZqbUpk ZmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JKRXM3NmRZb1JtY0ctM2dheFNwNmptSmRmYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4NUMvMEE2OEIxMTg2MDhEMTFFREFGMkM2NTY3QzRGOUFFMDIvMzhFMDJDREMw NEVFMTFFRTg5OTAwODc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnrOgDBADfpRAwDQYJKoZIhvcNAQELBQADggEBAI6EvSU3 bZGhdw/twff1UBUW2pLohw6jFmP2DQltsT/VyaFK+NA6Acn0q1dUzx03pjCSokbI oN6Pfl/L73IFh+sJivAmK5yOiY5SLWMo9QJ6Iw03NwopNFMgAOO93aQbekYU/YaD SpvKmjSStz2u6m2x1x15jSFMXhsi3zkWWBk/4BHbWKZeNodu1YDVY15FSOH5imDj tli1h1Ei8bVZdEKbRI0Y2GeGiLUPhz70zvMWJnIp/hqKS5Qt4mkp42O1EJVtHZcI uUFDc76AdvaewiOysgyp6wiJX9IwFbBJ75KYjKsOD4+ZnSUKbhX16+S1aF3KugNH wWEQqcFwr/Rz9Ak= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:43 2024 by rpki-client on console-fra.rpki-client.org