$ rpki-client -vvf rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/397504CA4DD211ED8314A659C4F9AE02.roa File: 397504CA4DD211ED8314A659C4F9AE02.roa (raw, json) Hash identifier: IA7ndlMtzlimkIY6svrVtb7hYj1DKuX/Dcj54QQRijI= Subject key identifier: 11:04:42:55:2B:54:DC:52:CF:A3:56:CC:28:68:E3:6C:27:DA:D3:F0 Certificate issuer: /CN=A918ACDD/serialNumber=3691533300ACC1E0105EE0317063507F87B4012D Certificate serial: 014B Authority key identifier: 36:91:53:33:00:AC:C1:E0:10:5E:E0:31:70:63:50:7F:87:B4:01:2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpFTMwCsweAQXuAxcGNQf4e0AS0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/397504CA4DD211ED8314A659C4F9AE02.roa Signing time: Fri 05 Jul 2024 04:05:47 +0000 ROA not before: Fri 05 Jul 2024 04:05:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 149834 IP address blocks: 103.187.192.0/23 maxlen: 23 103.187.192.0/24 maxlen: 24 103.187.193.0/24 maxlen: 24 2400:7ee0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/NpFTMwCsweAQXuAxcGNQf4e0AS0.crl rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/NpFTMwCsweAQXuAxcGNQf4e0AS0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpFTMwCsweAQXuAxcGNQf4e0AS0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:56:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 331 (0x14b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ACDD/serialNumber=3691533300ACC1E0105EE0317063507F87B4012D Validity Not Before: Jul 5 04:05:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6687711b-a2ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ce:0e:d9:be:27:18:4f:9f:a6:c9:ad:a4:60: 39:ef:ef:dd:18:58:05:33:00:c9:3d:ac:56:7d:bc: 0d:3f:12:6a:ff:7c:6b:9e:7b:83:2b:7c:d7:62:01: d4:e0:08:a8:bf:fb:5a:e4:64:7e:22:5b:90:70:48: 07:10:f9:04:6b:9c:74:e1:29:d1:5e:47:23:b5:c1: b6:16:e3:26:37:18:db:11:7d:cd:fe:f8:d4:aa:e0: 39:ab:1c:c0:4a:f1:c7:82:f3:5a:9c:9b:d8:0d:e0: 0b:67:65:8a:3c:67:22:4a:ba:f3:b1:25:ab:9d:2b: 0e:f5:5d:94:8f:ee:29:8a:d6:04:51:86:27:21:13: 53:d0:2a:66:e3:b9:f8:a4:36:29:91:b1:20:55:f1: f7:ad:e2:96:9a:28:8b:9a:1c:ad:4f:4e:b0:35:54: 01:66:cc:f9:8e:d2:78:0b:84:03:4d:e0:66:8e:9c: 7c:cf:d0:cc:4d:d7:4c:f0:94:ed:c1:23:9e:d2:1a: 96:01:b2:6a:92:50:4b:0f:5b:21:07:dc:e2:db:04: 71:37:92:15:ca:ad:82:c4:38:95:c0:c5:33:2e:73: 08:8d:f9:93:c2:ab:16:e1:f5:31:76:b9:16:e4:bf: e0:93:ca:9b:90:97:4f:57:fa:9a:23:f2:de:cd:24: 22:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:04:42:55:2B:54:DC:52:CF:A3:56:CC:28:68:E3:6C:27:DA:D3:F0 X509v3 Authority Key Identifier: keyid:36:91:53:33:00:AC:C1:E0:10:5E:E0:31:70:63:50:7F:87:B4:01:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/NpFTMwCsweAQXuAxcGNQf4e0AS0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NpFTMwCsweAQXuAxcGNQf4e0AS0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ACDD/2A2CFC464DCF11EDBF05FA53C4F9AE02/397504CA4DD211ED8314A659C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.192.0/23 IPv6: 2400:7ee0::/32 Signature Algorithm: sha256WithRSAEncryption 38:a7:6d:e0:19:c1:a4:b2:84:91:e9:0d:fa:04:aa:8e:ca:5c: b7:86:7d:28:1b:b6:9e:10:6f:d0:08:1c:44:ec:23:5b:4e:91: 88:ff:16:e1:c8:01:e6:ba:dc:7d:a1:e7:b2:4b:f4:27:08:83: 02:c8:e7:35:d3:5a:de:41:78:8f:2a:8a:7d:2b:5a:33:4e:97: 37:bd:0f:90:a6:bf:31:9d:0a:08:92:64:bc:7f:b5:ee:6e:87: 15:d0:46:69:39:61:d2:4e:71:60:4b:a9:10:c7:8f:23:27:00: 33:70:a1:3f:76:8a:46:be:06:19:f3:be:eb:76:61:7f:d4:e5: 50:e3:c8:d5:ef:ae:c0:d8:28:be:4c:b0:2e:72:d4:65:f7:13: 5c:e9:91:91:2d:fe:4b:4a:5b:a2:af:09:97:ca:aa:a5:d8:10: 77:20:48:0f:13:e0:f7:2d:29:cf:1c:31:58:c2:ad:03:60:86: 31:c1:0a:32:cd:69:89:e7:f6:f7:26:4c:d2:e3:df:fd:1b:05: e0:27:19:55:14:2f:09:32:6a:62:c7:40:48:aa:9a:04:dc:f5: b4:2c:2e:5c:b2:3a:c9:0e:4a:cc:cd:34:b5:33:61:e5:cc:7d: 26:e5:91:cd:4f:c6:e4:3a:28:18:61:f5:83:5f:68:69:ba:ab: 03:ea:2b:e1 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAUswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFDREQxMTAvBgNVBAUTKDM2OTE1MzMzMDBBQ0MxRTAxMDVFRTAzMTcwNjM1MDdG ODdCNDAxMkQwHhcNMjQwNzA1MDQwNTQ3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg3NzExYi1hMmVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyc4O2b4nGE+fpsmtpGA57+/dGFgFMwDJPaxWfbwNPxJq/3xrnnuDK3zXYgHU 4Aiov/ta5GR+IluQcEgHEPkEa5x04SnRXkcjtcG2FuMmNxjbEX3N/vjUquA5qxzA SvHHgvNanJvYDeALZ2WKPGciSrrzsSWrnSsO9V2Uj+4pitYEUYYnIRNT0Cpm47n4 pDYpkbEgVfH3reKWmiiLmhytT06wNVQBZsz5jtJ4C4QDTeBmjpx8z9DMTddM8JTt wSOe0hqWAbJqklBLD1shB9zi2wRxN5IVyq2CxDiVwMUzLnMIjfmTwqsW4fUxdrkW 5L/gk8qbkJdPV/qaI/LezSQifwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBEEQlUr VNxSz6NWzCho42wn2tPwMB8GA1UdIwQYMBaAFDaRUzMArMHgEF7gMXBjUH+HtAEt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUNERC8yQTJDRkM0NjRE Q0YxMUVEQkYwNUZBNTNDNEY5QUUwMi9OcEZUTXdDc3dlQVFYdUF4Y0dOUWY0ZTBB UzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05wRlRNd0Nzd2VBUVh1QXhjR05RZjRlMEFTMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFDREQvMkEyQ0ZDNDY0RENGMTFFREJGMDVGQTUzQzRGOUFFMDIvMzk3NTA0Q0E0 REQyMTFFRDgzMTRBNjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnu8AwDQQCAAIwBwMFACQAfuAwDQYJKoZIhvcNAQELBQAD ggEBADinbeAZwaSyhJHpDfoEqo7KXLeGfSgbtp4Qb9AIHETsI1tOkYj/FuHIAea6 3H2h57JL9CcIgwLI5zXTWt5BeI8qin0rWjNOlze9D5CmvzGdCgiSZLx/te5uhxXQ Rmk5YdJOcWBLqRDHjyMnADNwoT92ika+Bhnzvut2YX/U5VDjyNXvrsDYKL5MsC5y 1GX3E1zpkZEt/ktKW6KvCZfKqqXYEHcgSA8T4PctKc8cMVjCrQNghjHBCjLNaYnn 9vcmTNLj3/0bBeAnGVUULwkyamLHQEiqmgTc9bQsLlyyOskOSszNNLUzYeXMfSbl kc1PxuQ6KBhh9YNfaGm6qwPqK+E= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org