$ rpki-client -vvf rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa File: 1D88BC36F8C711E6B6C42C6CC4F9AE02.roa (raw, json) Hash identifier: adZvd/ecrn/69jFBmaF8532OMU/h1NSuA6iJnPKo2nw= Subject key identifier: 8D:2F:94:60:A9:6B:29:15:82:87:B5:42:76:F6:E9:41:C4:34:AF:4D Certificate issuer: /CN=A918FDBF/serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Certificate serial: 1B46 Authority key identifier: 8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa Signing time: Fri 30 Aug 2024 16:54:15 +0000 ROA not before: Fri 30 Aug 2024 16:54:15 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131999 IP address blocks: 103.29.168.0/23 maxlen: 23 103.229.187.0/24 maxlen: 24 2401:b300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:15:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6982 (0x1b46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FDBF/serialNumber=8D9A228CC52F800EE5A432307B3432C63D8A9D87 Validity Not Before: Aug 30 16:54:15 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d1f937-ee92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:16:1c:4a:5c:56:5e:1d:ae:bc:8a:1b:d8:a7: 8f:bd:dc:94:19:49:aa:3d:ff:83:d2:c2:12:e6:9e: d6:d5:9d:6f:2f:3e:ed:d2:11:74:c8:33:2e:33:1e: 8a:d8:ed:5b:fe:71:dd:fe:bc:31:15:06:1d:41:b8: 8f:e0:e4:3b:4c:9c:de:d7:e4:86:2a:45:ea:43:ce: 93:0f:da:a2:92:5e:2a:8b:01:02:58:2e:f4:65:3c: a3:9a:fd:f7:e2:7e:42:a1:ee:3f:95:62:fb:61:21: 6f:a4:5d:5b:ca:66:1c:8f:db:8a:2f:51:db:89:26: 8d:dc:40:1b:58:1e:c1:07:eb:a1:65:12:8b:9b:39: 20:6e:db:bc:b2:90:dc:df:9b:bb:1f:21:90:f3:eb: 61:30:cf:fe:78:4e:4f:ec:6e:65:17:fd:93:14:b2: cc:62:23:67:41:d1:d4:a0:0c:4f:04:37:59:da:cd: 23:c2:7e:d1:c3:66:71:03:02:e1:b8:77:0d:d2:e1: 25:59:a7:7e:60:b1:0a:df:24:33:bc:2a:4d:31:b0: 5e:0e:07:55:91:4a:90:7d:d5:78:a4:24:04:f0:72: 6d:c3:ff:40:fe:1e:41:09:d4:0a:6a:ac:01:45:71: 83:31:fb:a1:54:dc:c6:ad:9b:0c:5e:20:ca:aa:0e: 36:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:2F:94:60:A9:6B:29:15:82:87:B5:42:76:F6:E9:41:C4:34:AF:4D X509v3 Authority Key Identifier: keyid:8D:9A:22:8C:C5:2F:80:0E:E5:A4:32:30:7B:34:32:C6:3D:8A:9D:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/jZoijMUvgA7lpDIwezQyxj2KnYc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jZoijMUvgA7lpDIwezQyxj2KnYc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FDBF/99A30AF8F8C511E69EBC556AC4F9AE02/1D88BC36F8C711E6B6C42C6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.168.0/23 103.229.187.0/24 IPv6: 2401:b300::/32 Signature Algorithm: sha256WithRSAEncryption 0b:1c:13:2c:01:ed:2a:13:0c:58:88:49:6d:f3:88:94:26:25: e5:8d:6f:43:76:c3:21:b6:32:95:ec:e6:86:bf:4b:38:da:fc: b2:23:8f:6f:8a:77:24:0a:9d:28:9b:5b:80:4c:26:3b:23:7b: 72:af:70:8d:8a:16:2c:70:be:21:14:67:b9:d3:0d:5a:58:2f: 6f:73:bc:bd:4a:e6:ca:2c:ba:a2:cc:87:26:2f:96:c5:98:72: 33:e8:d2:28:63:61:24:f5:cf:98:06:f8:9b:92:6c:33:23:0b: 41:ff:bd:29:70:f7:af:64:41:8a:c7:3e:81:80:ff:bf:b6:10: af:4c:a9:4d:11:1f:9d:17:19:05:02:11:8e:62:c1:cc:d7:6d: f8:00:66:57:6d:88:37:47:a1:c9:d3:15:bb:7c:13:b6:00:20: 61:ed:8f:5a:94:c7:64:35:a8:1d:2c:0f:3c:a3:07:a6:92:11: 83:fb:be:23:8c:4a:06:ad:16:3b:ab:96:43:38:93:14:dc:4d: f2:ec:13:24:14:a2:8b:32:75:c8:cc:bd:5e:be:f8:f4:52:b3: 57:1b:08:d1:3c:b0:4c:56:17:5b:07:3c:4f:e9:cb:08:58:bb: 66:96:3a:5e:aa:a0:fd:68:bb:f1:b3:bc:83:c5:1d:9b:81:cc: 34:f6:80:aa -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICG0YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZEQkYxMTAvBgNVBAUTKDhEOUEyMjhDQzUyRjgwMEVFNUE0MzIzMDdCMzQzMkM2 M0Q4QTlEODcwHhcNMjQwODMwMTY1NDE1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxZjkzNy1lZTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4BYcSlxWXh2uvIob2KePvdyUGUmqPf+D0sIS5p7W1Z1vLz7t0hF0yDMuMx6K 2O1b/nHd/rwxFQYdQbiP4OQ7TJze1+SGKkXqQ86TD9qikl4qiwECWC70ZTyjmv33 4n5Coe4/lWL7YSFvpF1bymYcj9uKL1HbiSaN3EAbWB7BB+uhZRKLmzkgbtu8spDc 35u7HyGQ8+thMM/+eE5P7G5lF/2TFLLMYiNnQdHUoAxPBDdZ2s0jwn7Rw2ZxAwLh uHcN0uElWad+YLEK3yQzvCpNMbBeDgdVkUqQfdV4pCQE8HJtw/9A/h5BCdQKaqwB RXGDMfuhVNzGrZsMXiDKqg42TwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFI0vlGCp aykVgoe1Qnb26UHENK9NMB8GA1UdIwQYMBaAFI2aIozFL4AO5aQyMHs0MsY9ip2H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkRCRi85OUEzMEFGOEY4 QzUxMUU2OUVCQzU1NkFDNEY5QUUwMi9qWm9pak1VdmdBN2xwREl3ZXpReXhqMktu WWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pab2lqTVV2Z0E3bHBESXdlelF5eGoyS25ZYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZEQkYvOTlBMzBBRjhGOEM1MTFFNjlFQkM1NTZBQzRGOUFFMDIvMUQ4OEJDMzZG OEM3MTFFNkI2QzQyQzZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnHagDBABn5bswDQQCAAIwBwMFACQBswAwDQYJKoZIhvcN AQELBQADggEBAAscEywB7SoTDFiISW3ziJQmJeWNb0N2wyG2MpXs5oa/Szja/LIj j2+KdyQKnSibW4BMJjsje3KvcI2KFixwviEUZ7nTDVpYL29zvL1K5sosuqLMhyYv lsWYcjPo0ihjYST1z5gG+JuSbDMjC0H/vSlw969kQYrHPoGA/7+2EK9MqU0RH50X GQUCEY5iwczXbfgAZldtiDdHocnTFbt8E7YAIGHtj1qUx2Q1qB0sDzyjB6aSEYP7 viOMSgatFjurlkM4kxTcTfLsEyQUoosydcjMvV6++PRSs1cbCNE8sExWF1sHPE/p ywhYu2aWOl6qoP1ou/GzvIPFHZuBzDT2gKo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:07 2024 by rpki-client on console-ams.rpki-client.org