$ rpki-client -vvf rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/F27BE0E2E4CC11EDBAFF045BC4F9AE02.roa File: F27BE0E2E4CC11EDBAFF045BC4F9AE02.roa (raw, json) Hash identifier: xsK374JtB2Fn6v7KyIaFk4fFls1uJkzIqMoTEXrm80Y= Subject key identifier: 7B:4F:68:9D:C9:31:60:E3:A0:E2:C8:A2:E2:41:70:D5:B5:0B:96:D1 Certificate issuer: /CN=A9184359/serialNumber=999BA37411028A62FB515DCF028CDA2DC9ABC9D1 Certificate serial: 6B Authority key identifier: 99:9B:A3:74:11:02:8A:62:FB:51:5D:CF:02:8C:DA:2D:C9:AB:C9:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZujdBECimL7UV3PAozaLcmrydE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/F27BE0E2E4CC11EDBAFF045BC4F9AE02.roa Signing time: Wed 15 Nov 2023 05:57:32 +0000 ROA not before: Wed 15 Nov 2023 05:57:32 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38813 IP address blocks: 103.104.82.0/24 maxlen: 24 103.104.83.0/24 maxlen: 24 111.118.208.0/24 maxlen: 24 111.118.209.0/24 maxlen: 24 111.118.210.0/24 maxlen: 24 111.118.211.0/24 maxlen: 24 202.150.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/mZujdBECimL7UV3PAozaLcmrydE.crl rsync://rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/mZujdBECimL7UV3PAozaLcmrydE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZujdBECimL7UV3PAozaLcmrydE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184359/serialNumber=999BA37411028A62FB515DCF028CDA2DC9ABC9D1 Validity Not Before: Nov 15 05:57:32 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65545dcc-8e16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:37:66:8e:af:38:98:78:8c:a3:89:9e:1f:6b: f7:bd:e3:81:9a:84:00:be:27:ce:a1:83:48:98:09: 59:2b:39:df:d2:c9:cb:59:66:b2:a2:c1:44:e9:21: d7:db:9c:65:e9:9a:0d:a2:d3:ba:8b:6a:58:67:99: 52:03:99:63:48:9f:84:76:02:18:87:81:a1:7c:63: be:7f:ba:87:ce:ca:00:e7:8a:cc:16:63:cd:3f:a8: 4c:a9:a7:99:33:f8:19:b8:a3:1f:56:f3:c5:da:3d: 95:e0:8a:43:c6:d2:ec:e2:2c:94:dc:d4:ad:ef:79: bf:78:ad:69:35:a3:07:e5:fe:89:be:1d:52:cc:0b: 85:1a:4a:ec:a9:c4:d9:37:61:90:d3:71:6a:66:f5: 64:98:d1:48:fc:48:eb:30:d5:2c:b1:8c:6d:ec:ce: c1:19:4c:9b:b2:55:e0:b7:43:1f:d9:e7:ce:9d:e5: 0e:d3:9f:02:ab:db:a8:1e:50:17:17:ae:4d:d2:c9: a0:1f:37:44:a1:01:44:4e:46:66:dc:ae:9d:d4:de: a7:16:ce:2e:52:1b:ca:8c:f0:d6:87:1f:3e:a9:4f: cb:3c:51:54:1c:59:34:33:7a:ad:29:9b:2f:f3:0c: 32:60:9d:68:35:75:df:52:9b:94:e2:cb:09:7c:de: 67:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:4F:68:9D:C9:31:60:E3:A0:E2:C8:A2:E2:41:70:D5:B5:0B:96:D1 X509v3 Authority Key Identifier: keyid:99:9B:A3:74:11:02:8A:62:FB:51:5D:CF:02:8C:DA:2D:C9:AB:C9:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/mZujdBECimL7UV3PAozaLcmrydE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mZujdBECimL7UV3PAozaLcmrydE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184359/335E6562E4C811EDBAABC55CC4F9AE02/F27BE0E2E4CC11EDBAFF045BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.82.0/23 111.118.208.0/22 202.150.60.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:63:86:78:e5:48:80:d4:53:11:da:8f:0f:36:07:e3:b5:23: f1:4a:b8:9d:35:37:7e:45:52:33:72:20:57:77:e3:81:e3:10: c7:05:92:00:7b:df:e0:37:94:6f:69:77:55:cb:61:40:e9:91: 1d:9a:04:30:0d:3d:b6:b7:20:46:e0:0d:87:b1:42:c3:92:f9: fe:63:0d:94:65:ff:35:5e:9e:0e:eb:8e:46:b5:fd:e5:f7:7a: 16:7e:08:22:62:e9:2f:14:50:f9:44:aa:9d:c3:71:0b:55:5c: ef:fd:2f:3c:47:1b:b5:73:50:1a:a4:13:09:1e:8f:f9:1e:95: 81:d0:9e:37:03:df:c9:d9:5b:a4:2a:3c:bc:b5:1f:d1:11:f1: e9:74:21:a7:01:9f:c6:42:cc:89:5c:0b:ba:7b:d6:48:1d:fb: 80:7b:ac:3e:7e:5c:a2:99:27:ee:5d:5e:4d:d7:54:ab:13:1b: 92:c3:d1:87:31:51:63:3d:06:f3:f8:30:d5:68:40:fd:a3:7f: 89:c8:36:3e:2f:05:6e:80:2e:a8:54:07:12:d4:a8:cd:8c:37: 2e:b6:ae:72:54:75:77:ef:55:ca:3b:2e:43:de:e8:83:76:30: 06:a0:13:ef:6a:53:c2:82:2e:fa:92:1a:d9:e0:16:64:1a:ef: 74:bc:d9:6f -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NDM1OTExMC8GA1UEBRMoOTk5QkEzNzQxMTAyOEE2MkZCNTE1RENGMDI4Q0RBMkRD OUFCQzlEMTAeFw0yMzExMTUwNTU3MzJaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NTQ1ZGNjLThlMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhN2aOrziYeIyjiZ4fa/e944GahAC+J86hg0iYCVkrOd/SyctZZrKiwUTpIdfb nGXpmg2i07qLalhnmVIDmWNIn4R2AhiHgaF8Y75/uofOygDniswWY80/qEypp5kz +Bm4ox9W88XaPZXgikPG0uziLJTc1K3veb94rWk1owfl/om+HVLMC4UaSuypxNk3 YZDTcWpm9WSY0Uj8SOsw1SyxjG3szsEZTJuyVeC3Qx/Z586d5Q7TnwKr26geUBcX rk3SyaAfN0ShAURORmbcrp3U3qcWzi5SG8qM8NaHHz6pT8s8UVQcWTQzeq0pmy/z DDJgnWg1dd9Sm5Tiywl83mepAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUe09onckx YOOg4sii4kFw1bULltEwHwYDVR0jBBgwFoAUmZujdBECimL7UV3PAozaLcmrydEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0MzU5LzMzNUU2NTYyRTRD ODExRURCQUFCQzU1Q0M0RjlBRTAyL21adWpkQkVDaW1MN1VWM1BBb3phTGNtcnlk RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbVp1amRCRUNpbUw3VVYzUEFvemFMY21yeWRFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NDM1OS8zMzVFNjU2MkU0QzgxMUVEQkFBQkM1NUNDNEY5QUUwMi9GMjdCRTBFMkU0 Q0MxMUVEQkFGRjA0NUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAWdoUgMEAm920AMEAMqWPDANBgkqhkiG9w0BAQsFAAOCAQEA C2OGeOVIgNRTEdqPDzYH47Uj8Uq4nTU3fkVSM3IgV3fjgeMQxwWSAHvf4DeUb2l3 VcthQOmRHZoEMA09trcgRuANh7FCw5L5/mMNlGX/NV6eDuuORrX95fd6Fn4IImLp LxRQ+USqncNxC1Vc7/0vPEcbtXNQGqQTCR6P+R6VgdCeNwPfydlbpCo8vLUf0RHx 6XQhpwGfxkLMiVwLunvWSB37gHusPn5copkn7l1eTddUqxMbksPRhzFRYz0G8/gw 1WhA/aN/icg2Pi8FboAuqFQHEtSozYw3LrauclR1d+9VyjsuQ97og3YwBqAT72pT woIu+pIa2eAWZBrvdLzZbw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org