$ rpki-client -vvf rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/1CD34B6CEDFC11EE880F6F58C4F9AE02.roa File: 1CD34B6CEDFC11EE880F6F58C4F9AE02.roa (raw, json) Hash identifier: Xkd+Op7ObANSl7hSEgXBDp6fu8FLqlrIdcxaq4iFP2k= Subject key identifier: C8:BD:8B:50:B8:CB:79:C7:3A:7B:08:BC:B4:C5:5E:E5:6D:20:73:E0 Certificate issuer: /CN=A911112F/serialNumber=1E57B43F044D4ABA8222A409786614280AA739A1 Certificate serial: 6B Authority key identifier: 1E:57:B4:3F:04:4D:4A:BA:82:22:A4:09:78:66:14:28:0A:A7:39:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hle0PwRNSrqCIqQJeGYUKAqnOaE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/1CD34B6CEDFC11EE880F6F58C4F9AE02.roa Signing time: Mon 01 Jul 2024 07:49:03 +0000 ROA not before: Mon 01 Jul 2024 07:49:03 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 142297 IP address blocks: 103.167.186.0/24 maxlen: 24 2001:df6:bb80::/48 maxlen: 48 2001:df6:bb80::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/Hle0PwRNSrqCIqQJeGYUKAqnOaE.crl rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/Hle0PwRNSrqCIqQJeGYUKAqnOaE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hle0PwRNSrqCIqQJeGYUKAqnOaE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 107 (0x6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911112F/serialNumber=1E57B43F044D4ABA8222A409786614280AA739A1 Validity Not Before: Jul 1 07:49:03 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66825f6f-fa59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ee:e1:22:69:8a:f9:95:fd:a1:6f:d2:df:d5: 5f:58:22:65:54:c2:a2:57:c4:03:59:f5:9b:c5:f8: 18:67:55:31:a1:44:3a:a4:cd:d2:89:47:96:40:8a: 78:04:3a:a9:39:71:7c:86:e6:26:9b:f5:d7:2f:cb: 83:3e:ea:f9:6c:d2:3b:45:a5:ce:6d:8f:2e:e9:2d: bb:21:d4:37:16:98:87:77:cf:7d:2c:6e:5a:74:72: de:cc:cb:d3:e4:1e:bb:4f:2a:fb:71:d2:55:58:28: ef:64:71:6c:17:a8:81:f1:f4:b3:38:12:f5:89:0b: 3e:c7:86:69:e1:6c:a6:c8:10:fd:53:a8:c6:9b:44: 7b:09:1b:5d:46:2c:74:77:8c:43:0c:21:37:e3:6d: 31:8c:5a:26:72:ba:97:5e:79:61:b6:87:0c:54:59: 50:48:c2:f4:c4:69:8c:8e:19:1b:b5:d2:32:ca:89: 37:e4:7d:a2:c8:40:fe:30:07:c1:b9:7f:bf:a3:27: 00:ab:ba:17:ea:70:22:88:bd:86:ce:49:ff:a3:72: 4d:d9:9a:37:6c:ff:59:d3:9f:32:83:ed:36:64:07: e2:40:c7:c2:1a:24:e3:d7:3e:2b:56:d5:d3:f7:94: 21:47:e4:36:8c:ef:de:95:ad:80:3f:68:ff:00:b6: a5:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:BD:8B:50:B8:CB:79:C7:3A:7B:08:BC:B4:C5:5E:E5:6D:20:73:E0 X509v3 Authority Key Identifier: keyid:1E:57:B4:3F:04:4D:4A:BA:82:22:A4:09:78:66:14:28:0A:A7:39:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/Hle0PwRNSrqCIqQJeGYUKAqnOaE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hle0PwRNSrqCIqQJeGYUKAqnOaE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911112F/964DC69ABA8D11EE828A8946C4F9AE02/1CD34B6CEDFC11EE880F6F58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.186.0/24 IPv6: 2001:df6:bb80::/48 Signature Algorithm: sha256WithRSAEncryption 86:08:8a:fa:15:0d:28:45:bf:62:17:df:7c:b6:18:7d:8f:34: 99:79:4e:93:30:c1:27:bb:c2:7d:ed:b2:3c:78:25:0d:c5:be: dd:61:50:c0:91:b4:45:20:3d:5d:c0:68:05:ed:e3:a3:9d:27: a7:24:c0:8a:7a:08:ae:bb:1f:5f:e9:c9:66:81:98:b3:87:ad: 2d:61:72:d8:22:e7:bc:22:ae:78:02:45:4e:df:5c:19:d5:22: 72:40:01:17:85:1c:fc:d0:7c:c3:c9:6c:ef:f4:ef:a2:15:8e: e7:17:07:9a:d2:03:ac:fc:f8:ba:7d:02:16:8a:58:7a:ce:4a: 42:d2:7b:ff:8e:b3:1d:b6:0b:88:68:b1:66:3a:f6:d0:e2:57: 90:da:e9:36:bc:2e:7f:c1:82:94:88:da:48:3e:b1:06:66:77: a6:7d:48:68:6b:ce:08:6f:74:0e:03:9a:78:8f:cc:ec:85:3e: ea:43:40:65:82:3d:df:26:b8:93:09:43:0e:03:8c:bf:a0:02: 0d:96:85:c9:42:51:6d:f5:e8:d0:30:0f:48:23:38:27:b6:76: 56:28:cf:02:78:98:d0:a0:2c:44:86:76:13:a2:0d:38:5f:df: 1d:c2:4a:d7:38:7e:ce:a5:fe:17:62:4a:53:f6:fe:f0:ab:cb: 4b:11:bd:33 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBazANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MTEyRjExMC8GA1UEBRMoMUU1N0I0M0YwNDRENEFCQTgyMjJBNDA5Nzg2NjE0Mjgw QUE3MzlBMTAeFw0yNDA3MDEwNzQ5MDNaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODI1ZjZmLWZhNTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDR7uEiaYr5lf2hb9Lf1V9YImVUwqJXxANZ9ZvF+BhnVTGhRDqkzdKJR5ZAingE Oqk5cXyG5iab9dcvy4M+6vls0jtFpc5tjy7pLbsh1DcWmId3z30sblp0ct7My9Pk HrtPKvtx0lVYKO9kcWwXqIHx9LM4EvWJCz7HhmnhbKbIEP1TqMabRHsJG11GLHR3 jEMMITfjbTGMWiZyupdeeWG2hwxUWVBIwvTEaYyOGRu10jLKiTfkfaLIQP4wB8G5 f7+jJwCruhfqcCKIvYbOSf+jck3Zmjds/1nTnzKD7TZkB+JAx8IaJOPXPitW1dP3 lCFH5DaM796VrYA/aP8AtqXBAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUyL2LULjL ecc6ewi8tMVe5W0gc+AwHwYDVR0jBBgwFoAUHle0PwRNSrqCIqQJeGYUKAqnOaEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTExMTJGLzk2NERDNjlBQkE4 RDExRUU4MjhBODk0NkM0RjlBRTAyL0hsZTBQd1JOU3JxQ0lxUUplR1lVS0Fxbk9h RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSGxlMFB3Uk5TcnFDSXFRSmVHWVVLQXFuT2FFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MTEyRi85NjREQzY5QUJBOEQxMUVFODI4QTg5NDZDNEY5QUUwMi8xQ0QzNEI2Q0VE RkMxMUVFODgwRjZGNThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGenujAPBAIAAjAJAwcAIAEN9ruAMA0GCSqGSIb3DQEBCwUA A4IBAQCGCIr6FQ0oRb9iF998thh9jzSZeU6TMMEnu8J97bI8eCUNxb7dYVDAkbRF ID1dwGgF7eOjnSenJMCKegiuux9f6clmgZizh60tYXLYIue8Iq54AkVO31wZ1SJy QAEXhRz80HzDyWzv9O+iFY7nFwea0gOs/Pi6fQIWilh6zkpC0nv/jrMdtguIaLFm OvbQ4leQ2uk2vC5/wYKUiNpIPrEGZnemfUhoa84Ib3QOA5p4j8zshT7qQ0Blgj3f JriTCUMOA4y/oAINloXJQlFt9ejQMA9IIzgntnZWKM8CeJjQoCxEhnYTog04X98d wkrXOH7Opf4XYkpT9v7wq8tLEb0z -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:43 2024 by rpki-client on console-fra.rpki-client.org