$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/D05E16F209DE11ED92DD5D37C4F9AE02.roa File: D05E16F209DE11ED92DD5D37C4F9AE02.roa (raw, json) Hash identifier: TtUM+cHg8ummSUy4JrHz3SdQ3r3PcIhkXFRKW99DIp8= Subject key identifier: 83:11:A4:9E:F3:71:43:18:50:B4:5C:5E:2F:F8:FB:55:42:BF:36:65 Certificate issuer: /CN=A914E1F1/serialNumber=F3F273F3EFCE551EE33C844D440AA30EDA087E2C Certificate serial: 0181 Authority key identifier: F3:F2:73:F3:EF:CE:55:1E:E3:3C:84:4D:44:0A:A3:0E:DA:08:7E:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_Jz8-_OVR7jPIRNRAqjDtoIfiw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/D05E16F209DE11ED92DD5D37C4F9AE02.roa Signing time: Sun 31 Dec 2023 03:44:52 +0000 ROA not before: Sun 31 Dec 2023 03:44:52 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 149006 IP address blocks: 103.176.18.0/23 maxlen: 23 103.176.18.0/24 maxlen: 24 103.176.19.0/24 maxlen: 24 2400:1fe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/8_Jz8-_OVR7jPIRNRAqjDtoIfiw.crl rsync://rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/8_Jz8-_OVR7jPIRNRAqjDtoIfiw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_Jz8-_OVR7jPIRNRAqjDtoIfiw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 385 (0x181) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1F1/serialNumber=F3F273F3EFCE551EE33C844D440AA30EDA087E2C Validity Not Before: Dec 31 03:44:52 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6590e3b4-05f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:21:49:81:24:35:55:78:6f:e6:d9:8a:2d:b0: 0c:ea:ab:cb:3f:9c:c8:71:59:b2:87:fd:ba:6f:28: 40:68:aa:c5:f6:e8:a9:63:06:5b:19:a1:10:de:2b: f4:4d:f7:d3:05:df:b1:6f:e0:f6:39:3d:e9:ee:ff: 72:58:6f:47:41:60:20:d2:68:6c:94:a2:e7:5d:7c: 5a:82:b6:74:96:84:97:38:49:6a:16:5f:3d:b9:b1: c1:e3:9c:d3:a4:5d:b5:11:95:56:70:56:fc:6e:92: a1:3e:5e:d0:30:32:ed:95:1b:00:b1:8f:74:c8:fa: 0b:62:1b:d7:86:39:72:81:0b:24:af:9d:37:e6:b2: f2:b7:6b:af:0e:98:64:a8:2b:6c:db:f7:bf:5c:9c: 3a:86:b8:86:d4:df:82:37:2c:49:8e:ef:70:87:01: 5c:23:98:70:53:ef:d7:40:9d:64:4b:69:e7:65:63: 48:d6:ec:ec:e9:35:12:26:45:06:1b:ce:bb:a7:8d: b4:f8:c5:04:1e:5d:ed:72:01:f4:ed:fa:7a:66:e5: 54:7b:31:00:3d:0c:77:ba:62:95:17:d7:3e:c7:28: 9e:7c:a0:9d:8a:bf:58:38:67:ee:cc:03:6a:42:78: a3:28:17:1e:16:bf:a4:00:b3:9c:c7:e4:27:e3:cb: cb:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:11:A4:9E:F3:71:43:18:50:B4:5C:5E:2F:F8:FB:55:42:BF:36:65 X509v3 Authority Key Identifier: keyid:F3:F2:73:F3:EF:CE:55:1E:E3:3C:84:4D:44:0A:A3:0E:DA:08:7E:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/8_Jz8-_OVR7jPIRNRAqjDtoIfiw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8_Jz8-_OVR7jPIRNRAqjDtoIfiw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1F1/4FEBF24A09DA11EDA03C9817C4F9AE02/D05E16F209DE11ED92DD5D37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.18.0/23 IPv6: 2400:1fe0::/32 Signature Algorithm: sha256WithRSAEncryption 40:02:cf:26:8b:ad:e0:30:aa:13:89:3d:e4:bd:3c:17:57:a0: 89:10:2e:ab:eb:f1:5a:86:31:e2:7d:32:60:1d:7a:b9:40:fb: f6:d6:f2:18:cd:05:45:65:89:b4:84:89:01:82:75:c6:0e:0d: 0f:b4:f9:64:1c:48:1c:3c:17:67:da:ca:27:4c:a0:99:92:2e: 68:b6:83:5a:2a:7e:8a:b4:ef:1e:9d:4b:2e:7b:23:6b:89:2a: be:61:5d:61:63:7a:b8:c9:b8:69:98:09:aa:c4:ed:57:66:e0: 6c:14:f3:2d:94:b2:98:99:fe:32:d6:ff:2a:e3:64:f1:6b:92: 10:61:93:f1:32:ee:bb:b0:0d:09:08:e0:30:76:7a:78:f3:ce: 20:2f:ed:be:ec:90:fa:dc:75:af:a1:17:3f:86:e9:7e:d4:fb: 85:93:9b:6a:9e:b6:09:27:de:cb:11:64:6e:ad:cd:74:f0:df: 92:31:bc:74:b4:51:55:7f:a3:52:65:fe:00:d2:9c:19:5c:93: 05:75:fd:ca:a6:6b:32:b6:64:80:04:ad:85:ed:e7:f5:91:0e: 1b:7e:41:15:a8:dd:9b:7b:13:1a:db:48:23:fe:42:d5:a5:d5: 51:9e:52:0a:75:1c:af:95:07:48:0a:d5:d7:9d:f0:8a:90:c7: c5:8d:85:43 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAYEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxRjExMTAvBgNVBAUTKEYzRjI3M0YzRUZDRTU1MUVFMzNDODQ0RDQ0MEFBMzBF REEwODdFMkMwHhcNMjMxMjMxMDM0NDUyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkwZTNiNC0wNWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyFJgSQ1VXhv5tmKLbAM6qvLP5zIcVmyh/26byhAaKrF9uipYwZbGaEQ3iv0 TffTBd+xb+D2OT3p7v9yWG9HQWAg0mhslKLnXXxagrZ0loSXOElqFl89ubHB45zT pF21EZVWcFb8bpKhPl7QMDLtlRsAsY90yPoLYhvXhjlygQskr5035rLyt2uvDphk qCts2/e/XJw6hriG1N+CNyxJju9whwFcI5hwU+/XQJ1kS2nnZWNI1uzs6TUSJkUG G867p420+MUEHl3tcgH07fp6ZuVUezEAPQx3umKVF9c+xyiefKCdir9YOGfuzANq QnijKBceFr+kALOcx+Qn48vLrwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFIMRpJ7z cUMYULRcXi/4+1VCvzZlMB8GA1UdIwQYMBaAFPPyc/PvzlUe4zyETUQKow7aCH4s MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFGMS80RkVCRjI0QTA5 REExMUVEQTAzQzk4MTdDNEY5QUUwMi84X0p6OC1fT1ZSN2pQSVJOUkFxakR0b0lm aXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhfSno4LV9PVlI3alBJUk5SQXFqRHRvSWZpdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUxRjEvNEZFQkYyNEEwOURBMTFFREEwM0M5ODE3QzRGOUFFMDIvRDA1RTE2RjIw OURFMTFFRDkyREQ1RDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnsBIwDQQCAAIwBwMFACQAH+AwDQYJKoZIhvcNAQELBQAD ggEBAEACzyaLreAwqhOJPeS9PBdXoIkQLqvr8VqGMeJ9MmAderlA+/bW8hjNBUVl ibSEiQGCdcYODQ+0+WQcSBw8F2fayidMoJmSLmi2g1oqfoq07x6dSy57I2uJKr5h XWFjerjJuGmYCarE7Vdm4GwU8y2UspiZ/jLW/yrjZPFrkhBhk/Ey7ruwDQkI4DB2 enjzziAv7b7skPrcda+hFz+G6X7U+4WTm2qetgkn3ssRZG6tzXTw35IxvHS0UVV/ o1Jl/gDSnBlckwV1/cqmazK2ZIAErYXt5/WRDht+QRWo3Zt7ExrbSCP+QtWl1VGe Ugp1HK+VB0gK1ded8IqQx8WNhUM= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:36 2024 by rpki-client on console-fra.rpki-client.org