$ rpki-client -vvf rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/F8E58782A10C11EFA3C0F375C4F9AE02.roa File: F8E58782A10C11EFA3C0F375C4F9AE02.roa (raw, json) Hash identifier: joxi3OaPnE1De2CkoKX8c3yAH5f2DPtnnESV+trPxbM= Subject key identifier: C1:9A:D1:80:C2:A6:C5:F4:F6:FE:37:2C:60:E5:DB:A9:48:06:2D:05 Certificate issuer: /CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Certificate serial: 344B Authority key identifier: C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/F8E58782A10C11EFA3C0F375C4F9AE02.roa Signing time: Tue 12 Nov 2024 15:44:16 +0000 ROA not before: Tue 12 Nov 2024 15:44:16 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 136030 IP address blocks: 103.255.150.0/24 maxlen: 24 180.149.214.0/24 maxlen: 24 180.149.215.0/24 maxlen: 24 180.149.216.0/24 maxlen: 24 180.149.217.0/24 maxlen: 24 180.149.218.0/24 maxlen: 24 180.149.219.0/24 maxlen: 24 180.149.220.0/24 maxlen: 24 180.149.221.0/24 maxlen: 24 180.149.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:18:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13387 (0x344b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D64D/serialNumber=C4220F50355647B7C80B2CE8BC7126AAC2E22D37 Validity Not Before: Nov 12 15:44:16 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=673377d0-317e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:15:2e:0e:d2:5b:fa:b7:16:d7:eb:65:4b:52: 6c:d9:bd:c9:3a:84:51:a7:a7:62:bc:1c:69:2e:af: 5c:c2:92:aa:12:d6:b3:36:25:91:7f:ac:11:8c:99: 0c:fa:bb:e9:ae:fc:94:c1:c2:fd:0a:11:60:85:b2: 90:4c:27:e4:1e:61:b9:f2:05:e8:2d:46:d8:7f:c1: 1d:af:4d:4f:17:52:84:4d:c1:81:4a:f4:ad:a1:d1: db:de:f0:21:35:7f:5f:06:7e:64:64:bc:0b:a3:67: 34:07:a4:a3:33:91:02:07:ba:47:ac:24:43:4e:78: 9a:f8:77:8d:a1:cb:90:93:b4:b3:de:9d:2f:7f:79: cc:2c:6e:48:f7:5f:f9:6a:fa:f2:f0:8c:4f:54:6c: 39:a0:38:7f:79:d7:7c:a7:03:21:3a:6f:b8:b2:2c: 50:42:ac:8f:9e:68:ee:44:cd:c2:9a:2d:d3:14:2c: 2d:ff:ba:f4:4d:45:9b:9c:2c:2d:6e:16:17:bb:be: d7:c2:0c:bb:d9:36:ad:6a:8c:63:aa:cf:3f:ca:35: 48:93:bf:f9:0d:cb:00:59:3e:1b:8d:43:4b:c8:ff: 64:ec:f4:a8:4d:e2:76:8c:6a:a1:c1:fc:c4:0b:d7: 05:ee:cc:c7:95:72:29:71:b3:6c:bd:03:69:29:8f: 7a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:9A:D1:80:C2:A6:C5:F4:F6:FE:37:2C:60:E5:DB:A9:48:06:2D:05 X509v3 Authority Key Identifier: keyid:C4:22:0F:50:35:56:47:B7:C8:0B:2C:E8:BC:71:26:AA:C2:E2:2D:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/xCIPUDVWR7fICyzovHEmqsLiLTc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xCIPUDVWR7fICyzovHEmqsLiLTc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D64D/D9333FE41D6E11E2A85080B008B02CD2/F8E58782A10C11EFA3C0F375C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.255.150.0/24 180.149.214.0-180.149.222.255 Signature Algorithm: sha256WithRSAEncryption 78:2d:24:a6:05:f2:a6:fb:d3:0d:3e:17:d5:ad:6f:34:fe:9a: aa:8e:0e:a3:dc:21:64:7a:29:86:f7:4c:97:f8:64:ea:f9:b7: c6:6e:2b:3e:51:94:ce:42:c3:14:e0:25:55:bb:cc:5a:16:7f: 49:38:78:04:6a:f7:4d:2b:bd:73:d2:13:b1:80:5d:66:b5:45: f0:28:5c:08:dd:a5:77:18:c1:82:f5:b6:76:be:a7:74:32:c3: 48:c2:c2:9c:5c:40:0e:91:ba:38:30:fb:40:5b:4f:25:30:e6: 8f:62:8a:92:2d:a7:62:75:2b:7f:05:2e:2d:f5:0d:86:b2:99: 75:9c:88:b0:5b:ab:40:db:8b:d5:0a:e8:74:62:13:42:a2:94: fc:b6:a3:e4:0f:c8:d7:88:34:d5:45:47:b1:5c:97:95:93:3e: 82:85:7a:6c:b7:be:0e:ef:0a:3b:18:50:96:99:7f:10:14:de: 1b:26:f5:07:eb:dd:7e:20:3c:41:85:04:ce:db:31:43:e9:3b: cc:1e:29:3d:cc:0a:92:18:6c:b6:fe:a9:e3:99:6c:42:11:b6: eb:ae:e2:58:28:da:ba:c2:dc:96:21:75:44:85:f0:8c:5e:a7: a1:7c:d6:1d:54:69:bb:38:fc:42:dc:fe:1c:4d:5b:96:75:f0: b1:fa:2b:57 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQ2NEQxMTAvBgNVBAUTKEM0MjIwRjUwMzU1NjQ3QjdDODBCMkNFOEJDNzEyNkFB QzJFMjJEMzcwHhcNMjQxMTEyMTU0NDE2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMzNzdkMC0zMTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyRUuDtJb+rcW1+tlS1Js2b3JOoRRp6divBxpLq9cwpKqEtazNiWRf6wRjJkM +rvprvyUwcL9ChFghbKQTCfkHmG58gXoLUbYf8Edr01PF1KETcGBSvStodHb3vAh NX9fBn5kZLwLo2c0B6SjM5ECB7pHrCRDTnia+HeNocuQk7Sz3p0vf3nMLG5I91/5 avry8IxPVGw5oDh/edd8pwMhOm+4sixQQqyPnmjuRM3Cmi3TFCwt/7r0TUWbnCwt bhYXu77Xwgy72Tataoxjqs8/yjVIk7/5DcsAWT4bjUNLyP9k7PSoTeJ2jGqhwfzE C9cF7szHlXIpcbNsvQNpKY961QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFMGa0YDC psX09v43LGDl26lIBi0FMB8GA1UdIwQYMBaAFMQiD1A1Vke3yAss6LxxJqrC4i03 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDY0RC9EOTMzM0ZFNDFE NkUxMUUyQTg1MDgwQjAwOEIwMkNEMi94Q0lQVURWV1I3ZklDeXpvdkhFbXFzTGlM VGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hDSVBVRFZXUjdmSUN5em92SEVtcXNMaUxUYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQ2NEQvRDkzMzNGRTQxRDZFMTFFMkE4NTA4MEIwMDhCMDJDRDIvRjhFNTg3ODJB MTBDMTFFRkEzQzBGMzc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABn/5YwDAMEAbSV1gMEALSV3jANBgkqhkiG9w0BAQsFAAOC AQEAeC0kpgXypvvTDT4X1a1vNP6aqo4Oo9whZHophvdMl/hk6vm3xm4rPlGUzkLD FOAlVbvMWhZ/STh4BGr3TSu9c9ITsYBdZrVF8ChcCN2ldxjBgvW2dr6ndDLDSMLC nFxADpG6ODD7QFtPJTDmj2KKki2nYnUrfwUuLfUNhrKZdZyIsFurQNuL1QrodGIT QqKU/Laj5A/I14g01UVHsVyXlZM+goV6bLe+Du8KOxhQlpl/EBTeGyb1B+vdfiA8 QYUEztsxQ+k7zB4pPcwKkhhstv6p45lsQhG2667iWCjausLcliF1RIXwjF6noXzW HVRpuzj8Qtz+HE1blnXwsforVw== -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:58 2024 by rpki-client on console-ams.rpki-client.org