$ rpki-client -vvf rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/38003F04CA8211EAA3838931C4F9AE02.roa File: 38003F04CA8211EAA3838931C4F9AE02.roa (raw, json) Hash identifier: uuU+2b4TABJg99J2eIGANwe1poRJarA5qOxzJJ2GkQE= Subject key identifier: 72:4E:99:D6:32:84:64:3E:1E:96:CB:0A:6D:E0:D5:83:2E:7F:BD:8A Certificate issuer: /CN=A9180562/serialNumber=9C0E1BFCB81F192D2FCCACE799E15DF1ADBC412D Certificate serial: 1D9C Authority key identifier: 9C:0E:1B:FC:B8:1F:19:2D:2F:CC:AC:E7:99:E1:5D:F1:AD:BC:41:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nA4b_LgfGS0vzKznmeFd8a28QS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/38003F04CA8211EAA3838931C4F9AE02.roa Signing time: Thu 12 Sep 2024 16:53:44 +0000 ROA not before: Thu 12 Sep 2024 16:53:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 5087 IP address blocks: 103.1.176.0/22 maxlen: 24 116.12.64.0/18 maxlen: 24 116.206.20.0/22 maxlen: 24 203.143.0.0/18 maxlen: 24 2405:5400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/nA4b_LgfGS0vzKznmeFd8a28QS0.crl rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/nA4b_LgfGS0vzKznmeFd8a28QS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nA4b_LgfGS0vzKznmeFd8a28QS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7580 (0x1d9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180562/serialNumber=9C0E1BFCB81F192D2FCCACE799E15DF1ADBC412D Validity Not Before: Sep 12 16:53:44 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66e31c97-2bfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:71:20:57:10:42:c7:cd:e1:d1:b2:1d:c4:bf: da:32:0d:21:5a:38:db:41:9c:75:ea:2b:ef:f5:0e: 91:8b:ca:2c:bc:58:a4:89:cd:e4:0a:2f:98:29:66: ac:35:6b:4e:af:f1:22:b1:e4:7b:33:4e:78:02:e5: cf:6a:7c:3d:12:b2:68:57:02:4f:ba:11:60:3d:dd: 6a:65:df:68:f7:21:56:21:6c:e0:37:7b:63:17:e2: c3:ba:b2:50:9d:f2:90:4b:14:92:a1:4a:bc:10:00: a6:21:b5:0d:4d:b7:5e:40:dd:28:02:5b:4e:65:fb: 9c:2b:16:a8:47:a1:f5:61:02:21:d0:10:01:80:4b: de:5a:b0:b2:ef:51:65:56:68:e3:5f:0f:45:23:bc: 40:5c:b8:98:16:d1:59:e2:f3:b4:6e:c8:78:c1:e1: cf:5a:f3:96:02:fd:0c:44:7d:ac:53:9a:0e:17:6e: cd:c1:19:07:8c:2a:fc:bc:44:38:38:84:66:29:32: 4f:8f:e6:54:45:83:ac:3c:aa:b8:c0:75:70:73:2e: 29:fe:1a:4a:04:04:77:39:4f:25:5e:1f:aa:88:97: 89:45:c9:2d:45:e1:0a:74:74:94:b6:d1:fc:82:7f: 52:44:6c:e7:20:dd:43:87:89:b6:6e:bd:94:89:96: f2:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:4E:99:D6:32:84:64:3E:1E:96:CB:0A:6D:E0:D5:83:2E:7F:BD:8A X509v3 Authority Key Identifier: keyid:9C:0E:1B:FC:B8:1F:19:2D:2F:CC:AC:E7:99:E1:5D:F1:AD:BC:41:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/nA4b_LgfGS0vzKznmeFd8a28QS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nA4b_LgfGS0vzKznmeFd8a28QS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180562/C614F9588B8C11E68E185A3EC4F9AE02/38003F04CA8211EAA3838931C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.176.0/22 116.12.64.0/18 116.206.20.0/22 203.143.0.0/18 IPv6: 2405:5400::/32 Signature Algorithm: sha256WithRSAEncryption 55:2c:17:90:da:dc:52:48:2f:fd:ef:25:3b:f5:c2:af:e3:8f: d5:56:7f:d0:6b:4b:f1:d6:54:10:3c:15:f7:ab:08:8d:5c:59: d6:cf:9a:fe:9a:c1:74:bd:8f:22:75:7d:34:76:d6:bc:fa:4d: 36:87:69:47:e6:81:62:30:89:a3:b9:c4:6f:13:29:60:2b:19: 35:58:53:f5:72:b2:ed:d9:e5:1a:2d:c1:f9:ab:4f:7d:a1:fa: 01:6a:3c:18:c3:2a:92:53:0a:33:82:b0:f4:29:46:63:20:f8: 3b:53:00:e1:64:1a:85:4d:f4:f6:ef:6f:8e:ce:0e:f7:94:fa: a2:a8:56:3f:06:79:cc:46:11:ca:09:19:8b:3d:87:55:e7:c1: af:5c:02:cf:8b:40:8d:2e:db:a0:ed:29:c4:7e:06:5a:0f:1f: 4f:7b:e9:69:48:30:0f:12:91:ac:a0:ff:d0:4f:90:0e:97:17: 55:d5:60:02:a8:cf:be:29:5e:e6:eb:53:d6:95:f9:43:e9:3e: 66:c5:17:f7:89:83:6e:04:94:f3:50:46:35:5f:15:3f:a5:58: ac:e2:92:bb:c5:0c:20:79:1d:87:6f:25:78:13:e1:79:16:85: 07:be:16:22:92:6d:9b:c7:89:9f:a8:81:77:dd:3d:ed:83:51: 32:9e:9d:13 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICHZwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1NjIxMTAvBgNVBAUTKDlDMEUxQkZDQjgxRjE5MkQyRkNDQUNFNzk5RTE1REYx QURCQzQxMkQwHhcNMjQwOTEyMTY1MzQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUzMWM5Ny0yYmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXEgVxBCx83h0bIdxL/aMg0hWjjbQZx16ivv9Q6Ri8osvFikic3kCi+YKWas NWtOr/EiseR7M054AuXPanw9ErJoVwJPuhFgPd1qZd9o9yFWIWzgN3tjF+LDurJQ nfKQSxSSoUq8EACmIbUNTbdeQN0oAltOZfucKxaoR6H1YQIh0BABgEveWrCy71Fl VmjjXw9FI7xAXLiYFtFZ4vO0bsh4weHPWvOWAv0MRH2sU5oOF27NwRkHjCr8vEQ4 OIRmKTJPj+ZURYOsPKq4wHVwcy4p/hpKBAR3OU8lXh+qiJeJRcktReEKdHSUttH8 gn9SRGznIN1Dh4m2br2UiZbyeQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHJOmdYy hGQ+HpbLCm3g1YMuf72KMB8GA1UdIwQYMBaAFJwOG/y4HxktL8ys55nhXfGtvEEt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDU2Mi9DNjE0Rjk1ODhC OEMxMUU2OEUxODVBM0VDNEY5QUUwMi9uQTRiX0xnZkdTMHZ6S3pubWVGZDhhMjhR UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25BNGJfTGdmR1MwdnpLem5tZUZkOGEyOFFTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA1NjIvQzYxNEY5NTg4QjhDMTFFNjhFMTg1QTNFQzRGOUFFMDIvMzgwMDNGMDRD QTgyMTFFQUEzODM4OTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnAbADBAZ0DEADBAJ0zhQDBAbLjwAwDQQCAAIwBwMFACQF VAAwDQYJKoZIhvcNAQELBQADggEBAFUsF5Da3FJIL/3vJTv1wq/jj9VWf9BrS/HW VBA8FferCI1cWdbPmv6awXS9jyJ1fTR21rz6TTaHaUfmgWIwiaO5xG8TKWArGTVY U/Vysu3Z5RotwfmrT32h+gFqPBjDKpJTCjOCsPQpRmMg+DtTAOFkGoVN9Pbvb47O DveU+qKoVj8GecxGEcoJGYs9h1Xnwa9cAs+LQI0u26DtKcR+BloPH0976WlIMA8S kayg/9BPkA6XF1XVYAKoz74pXubrU9aV+UPpPmbFF/eJg24ElPNQRjVfFT+lWKzi krvFDCB5HYdvJXgT4XkWhQe+FiKSbZvHiZ+ogXfdPe2DUTKenRM= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:09 2024 by rpki-client on console-fra.rpki-client.org