$ rpki-client -vvf rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/0D22F748261A11EA83CE8D17C4F9AE02.roa File: 0D22F748261A11EA83CE8D17C4F9AE02.roa (raw, json) Hash identifier: QngpTkCC8JSyoEjRCbNY7hFfX4Je7JGO3cicNA6+xBU= Subject key identifier: 66:5A:54:16:A1:DA:0F:58:E0:2A:CB:6D:40:ED:81:86:D7:08:D4:47 Certificate issuer: /CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Certificate serial: 0AE4 Authority key identifier: 87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/0D22F748261A11EA83CE8D17C4F9AE02.roa Signing time: Sun 02 Jun 2024 20:25:18 +0000 ROA not before: Sun 02 Jun 2024 20:25:18 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 135307 IP address blocks: 103.76.179.0/24 maxlen: 24 103.76.184.0/24 maxlen: 24 103.76.185.0/24 maxlen: 24 103.213.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2788 (0xae4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A35C/serialNumber=878B868695FC45C9C63B6FBC54CCB3509C4B9F4B Validity Not Before: Jun 2 20:25:18 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665cd52e-90fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f0:0f:98:a5:83:d8:79:2c:ed:68:d3:2b:77: 1e:93:38:a5:3a:df:ba:6b:a0:13:6b:ed:6f:48:54: 75:55:11:dc:b5:0b:29:39:88:e7:29:dd:20:a4:8e: ee:e2:17:88:5c:1a:00:ba:a6:a8:5a:b1:d4:73:22: c8:f5:e8:12:bb:99:26:0f:c2:32:28:58:0a:fc:8d: 90:bb:75:6c:22:fe:ce:5a:12:23:48:61:b3:4a:13: 8b:a2:cb:0d:99:01:80:7c:df:83:d3:6d:29:2f:0b: 43:6a:50:c6:63:a6:c0:1d:9b:a3:88:95:01:0a:67: a8:cc:ba:09:15:c5:34:87:4a:a7:92:1b:e7:98:99: 99:28:d3:03:b7:ce:96:69:1e:00:4b:88:ff:89:c6: 5c:18:67:7f:2f:cd:29:01:51:c7:5d:7a:8e:63:1b: 7c:ff:ba:35:69:66:81:9e:48:5f:d5:1a:24:e5:ab: 0b:9f:d5:76:51:42:96:37:8a:87:8b:b9:86:54:b8: c2:a6:48:e9:46:2c:97:87:29:b0:8b:84:99:a0:ba: e2:aa:9e:55:c8:85:48:de:99:7f:67:d1:e3:cc:12: 75:96:bc:5e:48:6d:1d:b9:6a:5f:71:be:34:94:3d: 43:5e:21:aa:8f:eb:9f:74:69:88:b7:0d:be:58:56: 0c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:5A:54:16:A1:DA:0F:58:E0:2A:CB:6D:40:ED:81:86:D7:08:D4:47 X509v3 Authority Key Identifier: keyid:87:8B:86:86:95:FC:45:C9:C6:3B:6F:BC:54:CC:B3:50:9C:4B:9F:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/h4uGhpX8RcnGO2-8VMyzUJxLn0s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h4uGhpX8RcnGO2-8VMyzUJxLn0s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A35C/52FC6B98261811EABFEDE113C4F9AE02/0D22F748261A11EA83CE8D17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.179.0/24 103.76.184.0/23 103.213.228.0/24 Signature Algorithm: sha256WithRSAEncryption 75:a4:70:97:9c:de:fb:06:95:a9:62:0d:f7:f3:6f:bf:2d:6a: e1:20:fc:51:d5:56:08:6c:4a:f5:d7:3a:c3:60:7a:c6:5b:fd: 89:9f:92:9c:13:f0:d6:8c:27:1f:8b:67:40:9e:bc:85:c6:26: 56:31:cb:02:50:41:1e:5e:f1:1a:aa:c5:84:69:f4:8f:9a:04: 33:72:0c:ad:79:d3:6b:ce:e9:52:04:ee:a1:28:cc:45:91:a8: de:b1:8c:6e:0d:94:df:af:a1:85:25:d1:ed:0b:55:47:47:47: 5d:84:11:79:3f:67:16:77:92:10:25:e3:6f:86:c6:4c:2d:8a: f2:59:a3:73:1a:2e:25:f1:32:3f:15:01:31:06:7c:2f:72:f1: d6:42:92:eb:9a:b4:b7:9e:59:b9:68:0c:f6:52:40:6e:02:7d: 72:ba:cf:f9:d8:e3:96:5f:60:72:90:8e:b9:e2:07:89:06:2b: cb:65:ed:fa:24:e3:ba:81:8b:40:79:88:9f:a0:c2:30:03:97: 53:69:90:f8:b5:2a:cc:b9:5c:eb:1d:51:46:71:5b:ad:73:e1: f0:19:64:8e:f3:f7:da:e5:ee:c5:e1:19:87:5b:9f:51:7a:4b: c6:2f:9e:07:98:11:b2:4a:ea:78:9b:8a:3f:44:2c:ee:ac:fb: d7:8b:56:76 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCuQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEEzNUMxMTAvBgNVBAUTKDg3OEI4Njg2OTVGQzQ1QzlDNjNCNkZCQzU0Q0NCMzUw OUM0QjlGNEIwHhcNMjQwNjAyMjAyNTE4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjZDUyZS05MGZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs/APmKWD2Hks7WjTK3cekzilOt+6a6ATa+1vSFR1VRHctQspOYjnKd0gpI7u 4heIXBoAuqaoWrHUcyLI9egSu5kmD8IyKFgK/I2Qu3VsIv7OWhIjSGGzShOLossN mQGAfN+D020pLwtDalDGY6bAHZujiJUBCmeozLoJFcU0h0qnkhvnmJmZKNMDt86W aR4AS4j/icZcGGd/L80pAVHHXXqOYxt8/7o1aWaBnkhf1Rok5asLn9V2UUKWN4qH i7mGVLjCpkjpRiyXhymwi4SZoLriqp5VyIVI3pl/Z9HjzBJ1lrxeSG0duWpfcb40 lD1DXiGqj+ufdGmItw2+WFYM0QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFGZaVBah 2g9Y4CrLbUDtgYbXCNRHMB8GA1UdIwQYMBaAFIeLhoaV/EXJxjtvvFTMs1CcS59L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTM1Qy81MkZDNkI5ODI2 MTgxMUVBQkZFREUxMTNDNEY5QUUwMi9oNHVHaHBYOFJjbkdPMi04Vk15elVKeExu MHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g0dUdocFg4UmNuR08yLThWTXl6VUp4TG4wcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEEzNUMvNTJGQzZCOTgyNjE4MTFFQUJGRURFMTEzQzRGOUFFMDIvMEQyMkY3NDgy NjFBMTFFQTgzQ0U4RDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABnTLMDBAFnTLgDBABn1eQwDQYJKoZIhvcNAQELBQADggEB AHWkcJec3vsGlaliDffzb78tauEg/FHVVghsSvXXOsNgesZb/YmfkpwT8NaMJx+L Z0CevIXGJlYxywJQQR5e8RqqxYRp9I+aBDNyDK1502vO6VIE7qEozEWRqN6xjG4N lN+voYUl0e0LVUdHR12EEXk/ZxZ3khAl42+GxkwtivJZo3MaLiXxMj8VATEGfC9y 8dZCkuuatLeeWbloDPZSQG4CfXK6z/nY45ZfYHKQjrniB4kGK8tl7fok47qBi0B5 iJ+gwjADl1NpkPi1Ksy5XOsdUUZxW61z4fAZZI7z99rl7sXhGYdbn1F6S8YvngeY EbJK6nibij9ELO6s+9eLVnY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org