$ rpki-client -vvf rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1D93B82C21D911EB85DAFE71C4F9AE02.roa File: 1D93B82C21D911EB85DAFE71C4F9AE02.roa (raw, json) Hash identifier: E9L/TTXk+Px8nGO4KJnm/ouPNchL+BTaTG1X0znr2Rg= Subject key identifier: 04:66:5C:0B:CD:B9:E5:E9:7E:B7:2F:5D:87:97:68:26:9C:44:FC:FC Certificate issuer: /CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Certificate serial: 0D96 Authority key identifier: C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1D93B82C21D911EB85DAFE71C4F9AE02.roa Signing time: Sat 24 Aug 2024 18:36:47 +0000 ROA not before: Sat 24 Aug 2024 18:36:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 138538 IP address blocks: 103.140.228.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:51:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3478 (0xd96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118022/serialNumber=C768761BC81AB4FE7FD4401548261CBA87207BEA Validity Not Before: Aug 24 18:36:47 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ca283f-15e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:75:c3:76:82:ac:28:8c:83:ce:a8:22:d4:87: 69:97:e4:33:8e:fa:13:35:04:33:b3:14:63:db:b4: 0d:8b:68:de:4f:31:86:88:a3:ee:07:91:57:d1:93: 91:ed:8f:5f:fe:b0:5e:48:41:3f:86:36:bc:a5:0b: ed:28:4b:a6:77:a7:4c:24:57:64:54:f2:7a:e0:f3: f5:6c:35:45:33:52:ec:18:99:22:e1:61:83:cc:0f: ee:5b:94:fb:44:52:1b:16:94:e1:c6:bd:dd:ac:ab: 5e:5b:51:f4:d1:99:70:8d:d9:18:f6:5a:d6:dd:ab: f2:ce:1d:81:6a:d4:2c:10:f8:66:7b:1c:c4:76:1a: 27:51:46:4a:c8:be:18:c1:7a:d1:f3:42:c8:b4:be: 02:79:9a:be:1c:86:61:fd:77:d3:fa:7b:d8:e4:3b: b6:4f:d6:27:8c:b6:ac:21:00:be:8b:41:92:f5:2c: 1e:a9:64:1b:c5:d8:be:74:5a:59:c2:a3:6e:12:f1: 7f:79:46:a6:aa:51:91:ad:1a:90:ee:5a:ad:5c:90: 25:f1:af:f3:d9:59:1d:cc:98:a0:c0:c4:ad:91:2d: 1e:9a:78:b5:02:b5:d4:4f:9b:1f:24:46:72:2d:a7: 59:af:7a:a7:d8:cb:7f:0f:60:b2:a1:4c:78:98:bf: 42:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:66:5C:0B:CD:B9:E5:E9:7E:B7:2F:5D:87:97:68:26:9C:44:FC:FC X509v3 Authority Key Identifier: keyid:C7:68:76:1B:C8:1A:B4:FE:7F:D4:40:15:48:26:1C:BA:87:20:7B:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/x2h2G8gatP5_1EAVSCYcuocge-o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x2h2G8gatP5_1EAVSCYcuocge-o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118022/C61C256AADCC11E9AC672F4BC4F9AE02/1D93B82C21D911EB85DAFE71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.228.0/23 Signature Algorithm: sha256WithRSAEncryption 86:3a:89:20:08:a8:98:76:1c:72:48:92:eb:9b:14:76:74:21: 67:b4:4a:60:6a:36:7f:83:83:7b:c9:dd:86:63:62:76:de:28: 33:d7:c2:e0:81:14:2b:b7:4e:26:da:8f:42:07:fb:03:1f:a4: 56:b8:7a:64:68:ab:af:b6:15:94:47:29:a6:6d:94:68:cb:91: 15:1c:6e:44:33:98:c6:98:e7:08:c8:4f:b6:e9:06:1a:e7:50: 75:67:0a:16:e6:cb:db:14:7f:76:17:2f:44:2c:a4:6c:f7:22: fe:a1:f0:c5:4e:da:cc:8e:d5:7e:5a:7d:3a:9a:89:ee:d0:4b: 29:46:72:a8:7f:1a:69:da:24:92:12:73:82:9f:81:5d:6a:84: 76:4b:f6:9f:e8:b8:69:6f:81:13:f6:e1:41:fb:ce:50:ee:fd: 71:4e:ca:18:eb:f3:12:e5:12:73:bb:af:49:44:bf:54:9b:6f: 4b:f1:7c:f7:f1:ab:22:0b:a4:5d:99:d4:1a:ee:8c:8a:18:dc: 87:6e:33:9a:8e:a4:3e:e1:a4:2a:81:02:25:cf:ee:8c:f7:e5: 27:97:ca:fe:45:5f:6f:70:59:0f:dc:3b:3f:fe:f9:0a:a3:a5: a5:db:25:92:72:cb:b6:2d:86:bd:17:14:9e:16:12:29:83:f7: b5:47:39:f1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDZYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTgwMjIxMTAvBgNVBAUTKEM3Njg3NjFCQzgxQUI0RkU3RkQ0NDAxNTQ4MjYxQ0JB ODcyMDdCRUEwHhcNMjQwODI0MTgzNjQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNhMjgzZi0xNWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHXDdoKsKIyDzqgi1Idpl+QzjvoTNQQzsxRj27QNi2jeTzGGiKPuB5FX0ZOR 7Y9f/rBeSEE/hja8pQvtKEumd6dMJFdkVPJ64PP1bDVFM1LsGJki4WGDzA/uW5T7 RFIbFpThxr3drKteW1H00ZlwjdkY9lrW3avyzh2BatQsEPhmexzEdhonUUZKyL4Y wXrR80LItL4CeZq+HIZh/XfT+nvY5Du2T9YnjLasIQC+i0GS9SweqWQbxdi+dFpZ wqNuEvF/eUamqlGRrRqQ7lqtXJAl8a/z2VkdzJigwMStkS0emni1ArXUT5sfJEZy LadZr3qn2Mt/D2CyoUx4mL9C9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFARmXAvN ueXpfrcvXYeXaCacRPz8MB8GA1UdIwQYMBaAFMdodhvIGrT+f9RAFUgmHLqHIHvq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODAyMi9DNjFDMjU2QUFE Q0MxMUU5QUM2NzJGNEJDNEY5QUUwMi94MmgyRzhnYXRQNV8xRUFWU0NZY3VvY2dl LW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3gyaDJHOGdhdFA1XzFFQVZTQ1ljdW9jZ2Utby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTgwMjIvQzYxQzI1NkFBRENDMTFFOUFDNjcyRjRCQzRGOUFFMDIvMUQ5M0I4MkMy MUQ5MTFFQjg1REFGRTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjOQwDQYJKoZIhvcNAQELBQADggEBAIY6iSAIqJh2HHJI kuubFHZ0IWe0SmBqNn+Dg3vJ3YZjYnbeKDPXwuCBFCu3Tibaj0IH+wMfpFa4emRo q6+2FZRHKaZtlGjLkRUcbkQzmMaY5wjIT7bpBhrnUHVnChbmy9sUf3YXL0QspGz3 Iv6h8MVO2syO1X5afTqaie7QSylGcqh/GmnaJJISc4KfgV1qhHZL9p/ouGlvgRP2 4UH7zlDu/XFOyhjr8xLlEnO7r0lEv1Sbb0vxfPfxqyILpF2Z1BrujIoY3IduM5qO pD7hpCqBAiXP7oz35SeXyv5FX29wWQ/cOz/++QqjpaXbJZJyy7Ythr0XFJ4WEimD 97VHOfE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:56 2024 by rpki-client on console-ams.rpki-client.org