$ rpki-client -vvf rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/F48207E6DB8711EAA446B360C4F9AE02.roa File: F48207E6DB8711EAA446B360C4F9AE02.roa (raw, json) Hash identifier: wGBFb60F2aF0B9pOX18btxm9jl1WJHVfOK5kaTJxavY= Subject key identifier: 0B:D1:80:67:52:82:1B:0D:A8:8D:09:E8:07:76:0E:82:CF:99:D8:BD Certificate issuer: /CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Certificate serial: 0772 Authority key identifier: A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/F48207E6DB8711EAA446B360C4F9AE02.roa Signing time: Tue 30 Jul 2024 21:59:11 +0000 ROA not before: Tue 30 Jul 2024 21:59:11 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 134152 IP address blocks: 103.118.20.0/22 maxlen: 22 103.118.20.0/24 maxlen: 24 103.118.21.0/24 maxlen: 24 103.118.22.0/24 maxlen: 24 103.118.23.0/24 maxlen: 24 2403:2540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1906 (0x772) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ACF6/serialNumber=A3511718B429A2B043E645BFB1650EE6777E4172 Validity Not Before: Jul 30 21:59:11 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9622f-eb4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:0a:ca:35:e6:1e:bc:b3:a6:5d:2b:c4:52:98: 1e:f0:20:a4:f3:78:13:bc:de:6e:15:18:03:e2:51: 27:49:be:56:27:8a:cf:15:52:c1:0c:af:99:85:48: f9:f9:3e:84:94:53:5f:d6:71:d5:95:bf:4f:db:b7: 53:29:11:62:f2:fd:4e:17:29:8c:ef:1e:b7:77:71: 26:d5:75:78:29:9a:6a:e7:b0:95:dd:7d:6c:86:5e: 8f:49:7d:df:47:eb:64:5d:85:f3:90:2a:41:66:70: e4:ac:b4:91:dc:87:7a:1b:b0:b1:6a:63:e9:75:94: 8f:2a:c4:fa:d8:06:fc:b8:81:26:d7:29:9b:c3:b6: 45:5f:18:76:e7:88:44:0a:04:b2:01:f3:e0:72:56: ab:7c:1c:96:6f:91:ec:c0:49:1c:21:5b:2c:d4:23: 24:76:ad:73:9f:30:76:bf:4b:22:81:94:8a:f1:fa: 51:f8:13:f6:32:e5:6c:00:2d:86:15:ec:2b:fa:a7: 1f:97:85:9b:9a:9a:45:a9:01:38:b4:3a:ff:7f:62: 7d:98:cd:9a:c8:fa:ec:af:8f:79:6d:d5:90:a7:fd: 4d:f6:ff:cd:a1:21:3b:14:0a:88:84:88:90:e1:87: 57:28:95:4f:8d:12:97:8c:d2:2d:b9:3d:74:76:c5: 58:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:D1:80:67:52:82:1B:0D:A8:8D:09:E8:07:76:0E:82:CF:99:D8:BD X509v3 Authority Key Identifier: keyid:A3:51:17:18:B4:29:A2:B0:43:E6:45:BF:B1:65:0E:E6:77:7E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/o1EXGLQporBD5kW_sWUO5nd-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o1EXGLQporBD5kW_sWUO5nd-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ACF6/349783EEDB8611EA8559425EC4F9AE02/F48207E6DB8711EAA446B360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.20.0/22 IPv6: 2403:2540::/32 Signature Algorithm: sha256WithRSAEncryption 8d:3b:d5:9d:22:96:3e:d0:b7:a6:f0:d8:11:c0:9a:bc:3d:21: c2:a4:c5:b6:a7:a2:2e:14:31:ea:f4:cd:a6:42:08:3f:5c:57: 50:07:0c:f8:2b:0d:38:8f:56:7e:c6:ce:4a:6d:38:a9:e6:15: 98:90:ed:56:03:3f:bd:58:a0:97:72:b4:3e:ed:1e:2e:43:ce: 1f:df:c0:69:27:61:0e:b4:9d:76:1f:5f:11:56:36:5d:d8:de: cb:fa:7f:89:a1:f3:b1:fb:cc:80:27:ce:3e:87:7e:28:48:16: bb:57:6b:23:eb:38:c7:b8:b2:87:ea:4e:7d:6a:3a:59:17:16: cf:4d:40:51:fb:a5:4a:7f:5f:63:57:7b:83:92:54:cf:e6:80: d5:49:31:32:e8:d6:70:7b:7d:5b:6d:53:5f:2f:ae:18:20:64: 37:29:17:07:84:27:a8:f0:9d:ba:53:29:d7:d5:79:59:0c:a2: 6a:7b:2e:50:9e:5b:c8:ce:bf:ba:12:0f:a6:ad:84:19:e2:1c: f1:e8:03:58:e3:82:3d:ae:07:9e:0d:f6:16:a6:cd:84:5e:e9: 3a:14:fd:93:96:c7:c8:9a:74:69:95:1c:1e:cf:1e:1c:0f:36: 45:ed:a8:66:5a:fe:de:fb:e2:25:03:e6:49:20:f6:06:dc:ac: 98:96:7d:d6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUFDRjYxMTAvBgNVBAUTKEEzNTExNzE4QjQyOUEyQjA0M0U2NDVCRkIxNjUwRUU2 Nzc3RTQxNzIwHhcNMjQwNzMwMjE1OTExWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5NjIyZi1lYjRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAogrKNeYevLOmXSvEUpge8CCk83gTvN5uFRgD4lEnSb5WJ4rPFVLBDK+ZhUj5 +T6ElFNf1nHVlb9P27dTKRFi8v1OFymM7x63d3Em1XV4KZpq57CV3X1shl6PSX3f R+tkXYXzkCpBZnDkrLSR3Id6G7CxamPpdZSPKsT62Ab8uIEm1ymbw7ZFXxh254hE CgSyAfPgclarfByWb5HswEkcIVss1CMkdq1znzB2v0sigZSK8fpR+BP2MuVsAC2G Fewr+qcfl4WbmppFqQE4tDr/f2J9mM2ayPrsr495bdWQp/1N9v/NoSE7FAqIhIiQ 4YdXKJVPjRKXjNItuT10dsVYvQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAvRgGdS ghsNqI0J6Ad2DoLPmdi9MB8GA1UdIwQYMBaAFKNRFxi0KaKwQ+ZFv7FlDuZ3fkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QUNGNi8zNDk3ODNFRURC ODYxMUVBODU1OTQyNUVDNEY5QUUwMi9vMUVYR0xRcG9yQkQ1a1dfc1dVTzVuZC1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28xRVhHTFFwb3JCRDVrV19zV1VPNW5kLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUFDRjYvMzQ5NzgzRUVEQjg2MTFFQTg1NTk0MjVFQzRGOUFFMDIvRjQ4MjA3RTZE Qjg3MTFFQUE0NDZCMzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJndhQwDQQCAAIwBwMFACQDJUAwDQYJKoZIhvcNAQELBQAD ggEBAI071Z0ilj7Qt6bw2BHAmrw9IcKkxbanoi4UMer0zaZCCD9cV1AHDPgrDTiP Vn7GzkptOKnmFZiQ7VYDP71YoJdytD7tHi5Dzh/fwGknYQ60nXYfXxFWNl3Y3sv6 f4mh87H7zIAnzj6HfihIFrtXayPrOMe4sofqTn1qOlkXFs9NQFH7pUp/X2NXe4OS VM/mgNVJMTLo1nB7fVttU18vrhggZDcpFweEJ6jwnbpTKdfVeVkMomp7LlCeW8jO v7oSD6athBniHPHoA1jjgj2uB54N9hamzYRe6ToU/ZOWx8iadGmVHB7PHhwPNkXt qGZa/t774iUD5kkg9gbcrJiWfdY= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org