$ rpki-client -vvf rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/22355CF4DE8411EDBC551D19C4F9AE02.roa File: 22355CF4DE8411EDBC551D19C4F9AE02.roa (raw, json) Hash identifier: QaQ5tb2HeArxrs87I/5ZhVBteyAtirQGpvcsd5zF3kU= Subject key identifier: 81:E7:7F:D7:E9:6C:FB:4C:D9:52:9A:95:3D:BE:A5:08:8D:EC:7D:97 Certificate issuer: /CN=A916AE6A/serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Certificate serial: 33CC Authority key identifier: 2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/22355CF4DE8411EDBC551D19C4F9AE02.roa Signing time: Thu 30 May 2024 15:51:18 +0000 ROA not before: Thu 30 May 2024 15:51:18 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 58589 IP address blocks: 103.8.229.0/24 maxlen: 24 103.12.3.0/24 maxlen: 24 103.232.168.0/24 maxlen: 24 103.232.169.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:15:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13260 (0x33cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916AE6A/serialNumber=2C88F38F6D4F84F2C191A3FA2B1915AE08988734 Validity Not Before: May 30 15:51:18 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658a076-fdfc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f5:60:25:64:85:0e:06:16:62:81:fc:cf:51: a4:9e:10:ac:bc:6a:06:74:c5:26:eb:36:b5:c5:60: 2b:eb:b9:62:06:cb:b8:ed:9d:bf:f4:10:15:8b:50: 19:cc:a3:b7:06:51:1b:7d:96:00:b7:dc:ee:5b:ec: 50:cd:bd:f7:53:b3:b6:4f:b9:26:7f:9b:e6:72:50: d1:e5:72:5f:5e:8f:cd:f1:2d:7a:bd:9f:f1:9e:03: a4:96:ad:61:67:d8:69:9b:e5:50:9e:d6:2e:5b:e4: ad:45:17:ac:f4:db:2c:1d:ba:32:c3:8f:fb:cb:a8: c4:8c:a7:d1:c9:a1:33:97:97:75:e7:71:6b:dd:15: a0:09:d7:69:f1:84:69:d6:6d:7b:30:3d:3f:70:a5: 5e:b7:64:48:42:30:a2:93:54:7d:f6:d9:a3:29:19: 84:a3:5a:25:3c:7f:91:bc:18:33:e9:81:fd:90:3b: 24:25:c5:ad:b6:be:a0:d6:f7:6f:d2:07:7a:fe:08: 12:d4:6e:73:60:b8:34:fa:e0:24:e1:13:91:a1:91: b2:bc:65:53:99:23:09:68:18:0a:6b:89:bf:3d:0f: fd:2d:0b:9e:3a:29:76:ca:27:e4:29:a7:21:18:8a: df:7b:20:93:4d:dc:4c:48:cd:1f:0f:07:d2:e0:4c: 2b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:E7:7F:D7:E9:6C:FB:4C:D9:52:9A:95:3D:BE:A5:08:8D:EC:7D:97 X509v3 Authority Key Identifier: keyid:2C:88:F3:8F:6D:4F:84:F2:C1:91:A3:FA:2B:19:15:AE:08:98:87:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LIjzj21PhPLBkaP6KxkVrgiYhzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916AE6A/583245B61DAA11E2872AF3A508B02CD2/22355CF4DE8411EDBC551D19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.229.0/24 103.12.3.0/24 103.232.168.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:ed:3b:24:95:dc:81:3e:43:03:3d:87:e8:1f:0f:84:2b:8b: 20:c6:15:c2:59:68:4a:5b:de:8a:45:28:c9:7c:40:e4:2a:ab: 83:21:eb:2a:48:76:30:1e:0c:54:27:36:22:08:59:e0:7d:61: fa:cf:71:3e:ee:ba:bb:34:f1:8a:fe:19:35:2f:db:c4:6f:2f: 92:01:34:3b:cb:5e:0d:30:16:e0:10:4c:e5:e2:da:d1:d1:5e: 47:2e:a6:d2:51:78:ff:c9:49:3c:47:e4:2b:e6:57:d9:99:41: db:d4:22:4b:81:fa:0e:1a:d1:43:8f:18:0f:f1:67:ae:7e:cd: 1b:2b:eb:56:8c:f2:24:e0:9a:f4:38:e8:30:00:b3:9b:57:b0: a4:60:b4:8d:5b:f6:da:3f:54:bb:af:84:89:95:c9:dc:a0:da: e0:02:2e:b6:56:7d:dd:49:a0:0c:59:2a:30:cb:80:7d:3b:b6: 87:6a:42:e4:94:57:ad:d7:20:3f:79:4a:34:71:19:57:d7:c9: 6a:99:3a:57:44:38:e0:0d:35:8b:f0:8d:cb:ad:91:9f:88:0b: 2e:3e:48:d2:6c:79:dc:a8:72:6b:2e:79:2a:02:c4:8e:a7:95: f1:6a:c7:80:82:4c:8e:4d:17:70:b6:3e:58:2a:9e:10:0c:97: 65:9c:cd:69 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICM8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkFFNkExMTAvBgNVBAUTKDJDODhGMzhGNkQ0Rjg0RjJDMTkxQTNGQTJCMTkxNUFF MDg5ODg3MzQwHhcNMjQwNTMwMTU1MTE4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YTA3Ni1mZGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPVgJWSFDgYWYoH8z1GknhCsvGoGdMUm6za1xWAr67liBsu47Z2/9BAVi1AZ zKO3BlEbfZYAt9zuW+xQzb33U7O2T7kmf5vmclDR5XJfXo/N8S16vZ/xngOklq1h Z9hpm+VQntYuW+StRRes9NssHboyw4/7y6jEjKfRyaEzl5d153Fr3RWgCddp8YRp 1m17MD0/cKVet2RIQjCik1R99tmjKRmEo1olPH+RvBgz6YH9kDskJcWttr6g1vdv 0gd6/ggS1G5zYLg0+uAk4RORoZGyvGVTmSMJaBgKa4m/PQ/9LQueOil2yifkKach GIrfeyCTTdxMSM0fDwfS4EwrkQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIHnf9fp bPtM2VKalT2+pQiN7H2XMB8GA1UdIwQYMBaAFCyI849tT4TywZGj+isZFa4ImIc0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QUU2QS81ODMyNDVCNjFE QUExMUUyODcyQUYzQTUwOEIwMkNEMi9MSWp6ajIxUGhQTEJrYVA2S3hrVnJnaVlo elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xJanpqMjFQaFBMQmthUDZLeGtWcmdpWWh6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkFFNkEvNTgzMjQ1QjYxREFBMTFFMjg3MkFGM0E1MDhCMDJDRDIvMjIzNTVDRjRE RTg0MTFFREJDNTUxRDE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnCOUDBABnDAMDBAFn6KgwDQYJKoZIhvcNAQELBQADggEB ADrtOySV3IE+QwM9h+gfD4QriyDGFcJZaEpb3opFKMl8QOQqq4Mh6ypIdjAeDFQn NiIIWeB9YfrPcT7uurs08Yr+GTUv28RvL5IBNDvLXg0wFuAQTOXi2tHRXkcuptJR eP/JSTxH5CvmV9mZQdvUIkuB+g4a0UOPGA/xZ65+zRsr61aM8iTgmvQ46DAAs5tX sKRgtI1b9to/VLuvhImVydyg2uACLrZWfd1JoAxZKjDLgH07todqQuSUV63XID95 SjRxGVfXyWqZOldEOOANNYvwjcutkZ+ICy4+SNJsedyocmsueSoCxI6nlfFqx4CC TI5NF3C2PlgqnhAMl2WczWk= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:07 2024 by rpki-client on console-fra.rpki-client.org