$ rpki-client -vvf rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/8855436C8D8211EDA256994DC4F9AE02.roa File: 8855436C8D8211EDA256994DC4F9AE02.roa (raw, json) Hash identifier: R7btwjQ+ge5pYGfiKmdMlHSLa7foEA5gh69gdkpyUYM= Subject key identifier: 9C:05:A9:2C:F0:8A:AA:8D:A7:F8:1F:30:66:33:1A:1C:0D:A7:11:FD Certificate issuer: /CN=A918FE4B/serialNumber=876240C17425E0F3E2E1576CDF4B79DBBFAB55EE Certificate serial: F2 Authority key identifier: 87:62:40:C1:74:25:E0:F3:E2:E1:57:6C:DF:4B:79:DB:BF:AB:55:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2JAwXQl4PPi4Vds30t527-rVe4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/8855436C8D8211EDA256994DC4F9AE02.roa Signing time: Thu 11 Apr 2024 05:38:39 +0000 ROA not before: Thu 11 Apr 2024 05:38:39 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150811 IP address blocks: 103.65.240.0/23 maxlen: 23 103.65.240.0/24 maxlen: 24 103.65.241.0/24 maxlen: 24 2001:df1:c9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/h2JAwXQl4PPi4Vds30t527-rVe4.crl rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/h2JAwXQl4PPi4Vds30t527-rVe4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2JAwXQl4PPi4Vds30t527-rVe4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:21:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 242 (0xf2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918FE4B/serialNumber=876240C17425E0F3E2E1576CDF4B79DBBFAB55EE Validity Not Before: Apr 11 05:38:39 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6617775f-5596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:1c:d4:f4:c8:fa:8c:ca:ff:22:3c:ba:d3:27: fe:19:e6:a4:6b:a9:f6:52:4f:54:3b:36:f3:1a:ac: 3f:ac:3b:f4:11:0b:23:87:c5:ea:ad:8c:fc:83:07: 24:59:6e:91:ec:91:90:9a:7e:3d:5d:c9:fc:dd:fd: 45:ab:a2:a9:ee:df:d4:2d:2b:0c:5f:16:a1:18:02: 5d:0c:50:3d:61:65:35:59:45:52:e5:9e:ce:7e:07: 78:53:7a:e9:3e:f5:71:8f:f4:a7:e8:47:19:ff:04: 2a:b9:4b:8f:d3:b3:e5:6d:59:61:8f:8b:2b:cd:85: 97:28:e9:5a:51:1a:40:90:a8:f4:1c:a9:0a:dd:2f: 16:69:4a:16:53:8a:68:00:81:6a:e7:d3:4e:d4:18: 28:5c:d2:70:28:25:f2:ad:c8:ec:09:d8:52:de:b5: 4e:ea:be:e4:4d:b6:46:02:72:74:c9:1a:b5:70:29: fb:1b:f7:34:bc:bd:06:d8:e3:fd:b5:d0:10:52:91: 86:5a:44:0f:e1:3d:0e:85:f9:67:a7:c3:2c:6f:13: 38:bc:18:6c:78:8d:aa:b8:f1:93:82:6a:57:a6:5d: cd:6f:7e:1d:e4:f0:52:d5:b3:d3:8c:a3:df:d4:b4: cd:c7:79:2f:9a:5e:9e:74:6c:5b:1a:b6:e3:02:e0: 87:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:05:A9:2C:F0:8A:AA:8D:A7:F8:1F:30:66:33:1A:1C:0D:A7:11:FD X509v3 Authority Key Identifier: keyid:87:62:40:C1:74:25:E0:F3:E2:E1:57:6C:DF:4B:79:DB:BF:AB:55:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/h2JAwXQl4PPi4Vds30t527-rVe4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h2JAwXQl4PPi4Vds30t527-rVe4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918FE4B/C14016B48D7F11EDB7DB854CC4F9AE02/8855436C8D8211EDA256994DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.240.0/23 IPv6: 2001:df1:c9c0::/48 Signature Algorithm: sha256WithRSAEncryption 34:35:4f:fb:1a:1d:0a:ec:ea:b5:f1:3d:3c:f0:72:fc:74:be: c1:55:9b:63:39:7c:74:11:ed:6e:bb:ae:a9:71:50:e2:6f:79: 94:d4:84:4a:43:8c:bf:0e:25:ee:ee:79:fc:ea:3d:a4:16:bf: 9c:05:cd:f1:1e:43:99:36:c9:4d:00:59:f2:2c:32:ed:94:4f: 77:2a:5d:b0:32:21:88:45:f1:f3:5a:99:f0:10:39:1f:4c:ba: 8d:6b:b4:98:25:6d:6b:6c:e4:ac:f0:01:61:82:e2:45:f0:f4: 08:4f:b6:98:12:17:af:ee:c8:fe:11:fc:37:bd:3b:7f:36:0e: cc:d3:53:18:2a:a2:a2:a0:b3:7f:79:54:ee:9c:ce:ec:1b:0a: 64:ec:14:dd:e0:49:9a:6e:84:0a:1a:c0:b1:82:3d:0f:4d:85: 6e:df:07:51:7c:75:fb:ec:b6:8c:aa:95:c2:22:5f:55:f9:3a: 3c:b9:4b:ce:24:d0:5d:92:77:73:65:d4:05:4d:5d:ec:3c:1d: bf:a5:39:1d:37:9e:63:d8:f9:c0:e5:85:f6:41:39:24:2c:40: c2:ce:ed:dc:ab:61:d3:f6:9f:6d:eb:c9:f7:0e:d3:aa:f5:51: 5a:8d:e6:86:92:2d:34:fb:8d:f8:38:8e:3f:b3:50:01:b7:76: f5:cd:f9:66 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAPIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEZFNEIxMTAvBgNVBAUTKDg3NjI0MEMxNzQyNUUwRjNFMkUxNTc2Q0RGNEI3OURC QkZBQjU1RUUwHhcNMjQwNDExMDUzODM5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3Nzc1Zi01NTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxxzU9Mj6jMr/Ijy60yf+Geaka6n2Uk9UOzbzGqw/rDv0EQsjh8XqrYz8gwck WW6R7JGQmn49Xcn83f1Fq6Kp7t/ULSsMXxahGAJdDFA9YWU1WUVS5Z7Ofgd4U3rp PvVxj/Sn6EcZ/wQquUuP07PlbVlhj4srzYWXKOlaURpAkKj0HKkK3S8WaUoWU4po AIFq59NO1BgoXNJwKCXyrcjsCdhS3rVO6r7kTbZGAnJ0yRq1cCn7G/c0vL0G2OP9 tdAQUpGGWkQP4T0Ohflnp8MsbxM4vBhseI2quPGTgmpXpl3Nb34d5PBS1bPTjKPf 1LTNx3kvml6edGxbGrbjAuCHkwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJwFqSzw iqqNp/gfMGYzGhwNpxH9MB8GA1UdIwQYMBaAFIdiQMF0JeDz4uFXbN9Ledu/q1Xu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RkU0Qi9DMTQwMTZCNDhE N0YxMUVEQjdEQjg1NENDNEY5QUUwMi9oMkpBd1hRbDRQUGk0VmRzMzB0NTI3LXJW ZTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2gySkF3WFFsNFBQaTRWZHMzMHQ1MjctclZlNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEZFNEIvQzE0MDE2QjQ4RDdGMTFFREI3REI4NTRDQzRGOUFFMDIvODg1NTQzNkM4 RDgyMTFFREEyNTY5OTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnQfAwDwQCAAIwCQMHACABDfHJwDANBgkqhkiG9w0BAQsF AAOCAQEANDVP+xodCuzqtfE9PPBy/HS+wVWbYzl8dBHtbruuqXFQ4m95lNSESkOM vw4l7u55/Oo9pBa/nAXN8R5DmTbJTQBZ8iwy7ZRPdypdsDIhiEXx81qZ8BA5H0y6 jWu0mCVta2zkrPABYYLiRfD0CE+2mBIXr+7I/hH8N707fzYOzNNTGCqioqCzf3lU 7pzO7BsKZOwU3eBJmm6EChrAsYI9D02Fbt8HUXx1++y2jKqVwiJfVfk6PLlLziTQ XZJ3c2XUBU1d7Dwdv6U5HTeeY9j5wOWF9kE5JCxAws7t3Kth0/afbevJ9w7TqvVR Wo3mhpItNPuN+DiOP7NQAbd29c35Zg== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org