$ rpki-client -vvf rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/E905CD5808F111EA8E4F1D51C4F9AE02.roa File: E905CD5808F111EA8E4F1D51C4F9AE02.roa (raw, json) Hash identifier: Ykh/ajdiEQ6UqJC1nIow2mRMlvxbjVdtujI4Th0ysiU= Subject key identifier: D9:03:9F:04:76:49:36:22:1C:44:34:11:BE:7C:56:97:6C:2D:BD:B3 Certificate issuer: /CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Certificate serial: 0B7F Authority key identifier: 9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/E905CD5808F111EA8E4F1D51C4F9AE02.roa Signing time: Thu 16 May 2024 19:58:26 +0000 ROA not before: Thu 16 May 2024 19:58:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 137467 IP address blocks: 103.244.184.0/22 maxlen: 22 103.244.184.0/24 maxlen: 24 103.244.185.0/24 maxlen: 24 103.244.186.0/24 maxlen: 24 103.244.187.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:29:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2943 (0xb7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152696/serialNumber=9CBFB1374BE93297ADC1B21DBD3798D15BD274DF Validity Not Before: May 16 19:58:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66466562-8af1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:da:33:48:80:a6:d2:67:65:5a:7d:bd:3d:2d: 06:9f:da:4a:95:04:2d:bb:9c:31:2e:da:12:9a:a7: f3:0b:6d:e1:e0:ca:92:34:65:af:c9:6b:54:15:2f: de:43:14:2e:4b:68:5e:1a:73:24:2b:bc:a9:2a:9c: 76:10:98:c4:35:81:8f:ac:7f:0c:88:92:59:6e:21: 5e:67:b5:f6:dc:78:9d:21:13:b6:40:53:80:8b:4e: bf:62:38:c3:11:ab:d6:7c:7a:98:fc:2b:53:4a:76: 7b:4a:b6:95:ee:c3:d2:b7:29:50:2e:cb:4e:8e:a0: 8f:bc:f4:5e:02:fb:15:05:6f:ed:53:82:d7:e0:af: 7e:ea:f0:85:2c:3b:e1:3b:38:54:f3:e8:c6:0b:d0: 4b:17:3b:82:78:9a:ed:f1:b9:9a:51:74:5e:7d:7b: 23:c6:71:97:82:18:7d:1a:38:de:22:b0:e4:5f:d6: e2:3a:4d:e0:95:1d:63:dc:56:b9:a4:f6:70:ae:93: c0:22:c9:9f:db:44:ac:7e:77:5f:4d:03:58:2e:1b: a2:68:59:d2:85:4c:e5:20:9d:4c:22:4f:30:cc:2e: 78:dc:1c:9f:14:07:6a:eb:d1:3b:b5:07:f2:15:9d: 12:b0:29:40:b6:de:b2:c8:9f:ce:08:1f:e3:15:9a: 5f:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:03:9F:04:76:49:36:22:1C:44:34:11:BE:7C:56:97:6C:2D:BD:B3 X509v3 Authority Key Identifier: keyid:9C:BF:B1:37:4B:E9:32:97:AD:C1:B2:1D:BD:37:98:D1:5B:D2:74:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/nL-xN0vpMpetwbIdvTeY0VvSdN8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nL-xN0vpMpetwbIdvTeY0VvSdN8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152696/725CA1D406CD11EAAE5E7934C4F9AE02/E905CD5808F111EA8E4F1D51C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.184.0/22 Signature Algorithm: sha256WithRSAEncryption 6e:19:96:82:1c:17:b1:a2:a0:13:fd:b8:2a:fc:84:31:5e:9e: ca:c0:83:65:6d:cb:56:2d:72:c7:25:b2:98:67:39:76:c7:8a: 2d:4a:e5:84:da:ff:77:90:e9:15:4f:23:c3:55:b9:b1:08:f8: 66:63:75:a3:63:c2:ac:0e:00:48:30:fc:73:26:bf:15:a0:48: 19:4f:2f:59:46:a4:16:dd:4e:fb:7d:81:7c:db:ad:af:aa:07: 7f:ca:86:52:0a:e6:9d:85:27:9b:e9:4b:93:bd:97:60:d4:33: 86:a0:eb:79:2c:27:6c:02:93:30:14:6c:6c:e9:a5:dd:53:ae: 71:bf:0e:a8:4a:6c:6e:48:f5:47:18:72:0f:f1:3a:75:a4:dd: df:8f:6b:e4:8b:7c:be:28:a8:6f:0e:7f:6a:fc:19:2f:99:fe: ff:10:8f:af:65:77:81:9c:45:6e:2e:6b:04:64:e9:c5:63:d2: 69:65:73:51:ef:65:bc:2e:78:bb:d8:ee:9a:18:46:ed:eb:78: 9a:2c:47:ab:62:40:63:b3:a4:ae:ce:a5:3d:f7:4c:fe:5b:ba: 5c:7f:3c:89:0a:82:78:23:41:3d:a9:13:2c:fa:73:00:a4:4a: ee:47:a3:65:83:41:a7:c7:af:21:71:75:12:1f:9d:2b:97:0b: 9b:2e:37:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC38wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTI2OTYxMTAvBgNVBAUTKDlDQkZCMTM3NEJFOTMyOTdBREMxQjIxREJEMzc5OEQx NUJEMjc0REYwHhcNMjQwNTE2MTk1ODI2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2NjU2Mi04YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqtozSICm0mdlWn29PS0Gn9pKlQQtu5wxLtoSmqfzC23h4MqSNGWvyWtUFS/e QxQuS2heGnMkK7ypKpx2EJjENYGPrH8MiJJZbiFeZ7X23HidIRO2QFOAi06/YjjD EavWfHqY/CtTSnZ7SraV7sPStylQLstOjqCPvPReAvsVBW/tU4LX4K9+6vCFLDvh OzhU8+jGC9BLFzuCeJrt8bmaUXRefXsjxnGXghh9GjjeIrDkX9biOk3glR1j3Fa5 pPZwrpPAIsmf20SsfndfTQNYLhuiaFnShUzlIJ1MIk8wzC543ByfFAdq69E7tQfy FZ0SsClAtt6yyJ/OCB/jFZpfKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNkDnwR2 STYiHEQ0Eb58VpdsLb2zMB8GA1UdIwQYMBaAFJy/sTdL6TKXrcGyHb03mNFb0nTf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MjY5Ni83MjVDQTFENDA2 Q0QxMUVBQUU1RTc5MzRDNEY5QUUwMi9uTC14TjB2cE1wZXR3YklkdlRlWTBWdlNk TjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MLXhOMHZwTXBldHdiSWR2VGVZMFZ2U2ROOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTI2OTYvNzI1Q0ExRDQwNkNEMTFFQUFFNUU3OTM0QzRGOUFFMDIvRTkwNUNENTgw OEYxMTFFQThFNEYxRDUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn9LgwDQYJKoZIhvcNAQELBQADggEBAG4ZloIcF7GioBP9 uCr8hDFensrAg2Vty1YtcsclsphnOXbHii1K5YTa/3eQ6RVPI8NVubEI+GZjdaNj wqwOAEgw/HMmvxWgSBlPL1lGpBbdTvt9gXzbra+qB3/KhlIK5p2FJ5vpS5O9l2DU M4ag63ksJ2wCkzAUbGzppd1TrnG/DqhKbG5I9UcYcg/xOnWk3d+Pa+SLfL4oqG8O f2r8GS+Z/v8Qj69ld4GcRW4uawRk6cVj0mllc1HvZbwueLvY7poYRu3reJosR6ti QGOzpK7OpT33TP5bulx/PIkKgngjQT2pEyz6cwCkSu5Ho2WDQafHryFxdRIfnSuX C5suNxk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:58 2024 by rpki-client on console-fra.rpki-client.org