$ rpki-client -vvf rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/208C7D2E066C11EDB31C2239C4F9AE02.roa File: 208C7D2E066C11EDB31C2239C4F9AE02.roa (raw, json) Hash identifier: x+5szPOzul8sjdFcl5f4/q0qaORdcNT+KKQ8X8Y99Ts= Subject key identifier: 16:21:12:87:A6:55:9C:9E:5D:95:13:64:91:D3:55:A8:51:85:6A:93 Certificate issuer: /CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Certificate serial: 0213 Authority key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/208C7D2E066C11EDB31C2239C4F9AE02.roa Signing time: Mon 12 Aug 2024 09:38:42 +0000 ROA not before: Mon 12 Aug 2024 09:38:42 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 139285 IP address blocks: 103.140.236.0/23 maxlen: 23 103.140.236.0/24 maxlen: 24 103.140.237.0/24 maxlen: 24 103.227.172.0/22 maxlen: 22 103.227.172.0/23 maxlen: 23 103.227.172.0/24 maxlen: 24 103.227.173.0/24 maxlen: 24 103.227.174.0/23 maxlen: 23 103.227.174.0/24 maxlen: 24 103.227.175.0/24 maxlen: 24 114.134.190.0/23 maxlen: 23 114.134.190.0/24 maxlen: 24 114.134.191.0/24 maxlen: 24 2400:96a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 531 (0x213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355 Validity Not Before: Aug 12 09:38:42 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b9d822-cc94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d0:3b:3f:36:1a:69:50:94:35:e2:2a:52:82: 55:2f:92:1a:bb:c2:7e:10:22:68:6f:90:66:f4:90: 41:c7:91:77:72:db:68:1a:a9:10:31:14:aa:38:c8: 34:e4:83:65:72:56:7d:ae:ba:6b:c9:64:2d:96:6a: cd:23:fd:6b:48:a3:d6:bc:a0:68:1b:25:b4:1c:40: ed:fd:9b:82:7e:31:38:1b:e5:0e:13:f8:d8:d6:74: 9d:7e:61:bc:59:85:1c:b5:d4:eb:1c:27:9b:2b:70: bb:10:76:f4:d2:52:d7:f5:9b:e5:63:e6:97:68:5c: 5b:65:40:0a:23:6b:92:28:6c:9b:ac:d7:ee:66:a3: b5:82:4f:39:e9:73:cf:08:f8:81:75:0c:a3:18:30: 2a:c2:c7:47:fa:a9:dc:e8:69:97:1e:1d:84:1a:f8: 1b:5b:09:fa:17:11:5f:10:02:e7:c5:fc:ee:f4:da: 37:ff:ea:05:ab:a1:7c:37:91:f2:24:b6:10:b7:77: 29:c7:3e:5d:35:e2:43:22:bc:34:89:2f:6c:c1:5a: 21:44:f9:b5:25:24:fc:92:5c:93:6a:82:2c:a2:2d: 2b:6f:e5:6a:97:fe:7b:8f:26:fc:b3:6f:f7:52:d5: a2:81:2f:33:d2:58:b1:63:29:d9:1b:3f:2c:01:d1: 63:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:21:12:87:A6:55:9C:9E:5D:95:13:64:91:D3:55:A8:51:85:6A:93 X509v3 Authority Key Identifier: keyid:86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/208C7D2E066C11EDB31C2239C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.236.0/23 103.227.172.0/22 114.134.190.0/23 IPv6: 2400:96a0::/32 Signature Algorithm: sha256WithRSAEncryption 7d:96:13:99:44:40:da:91:38:31:44:ab:9f:f6:71:cc:36:cf: 86:b3:91:fa:fb:f4:8d:06:c7:2f:5b:73:79:13:d0:57:b8:61: dd:a2:f3:2c:31:39:cf:e5:4e:33:6b:23:50:1a:14:22:f2:ad: a6:72:a3:8d:da:91:f9:ff:ae:ca:e0:af:9f:57:0a:00:8e:a4: 3e:10:4a:ac:8b:1a:64:04:26:fd:26:b5:39:db:45:25:34:29: bf:c4:21:19:42:62:b7:2d:b7:e7:6f:69:31:02:b3:7f:cb:74: 63:37:11:4c:d7:04:66:76:5f:71:2e:64:8b:16:f2:8b:1b:21: dc:8a:5c:79:b2:0d:86:a5:66:1c:4e:20:e4:02:ff:03:6f:a3: 70:ab:6f:04:1f:2f:75:a5:bb:9d:5d:99:50:61:85:fc:5c:1c: 3c:25:2f:b2:be:be:1e:0d:7e:b7:98:4e:e6:e0:32:d6:22:e9: 8c:87:9a:a4:e0:23:8c:6b:fb:c4:af:0f:c0:b6:1a:9e:e7:18: 44:55:a5:45:e9:03:f6:19:50:db:a2:98:29:e9:e6:c2:b8:88: 6d:d1:3b:29:6f:c4:ef:9d:c3:47:66:be:d5:a9:54:ed:43:0b: 70:7f:42:f3:1e:55:c5:e1:63:97:08:3c:1b:c5:6b:d1:14:50: 43:8c:68:c8 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICAhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThFQjIxMTAvBgNVBAUTKDg2MDNBMEFDQTcyMDRCMEVGRUQ2NERCNzBERTUxQzc1 QkEwMzkzNTUwHhcNMjQwODEyMDkzODQyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmI5ZDgyMi1jYzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9A7PzYaaVCUNeIqUoJVL5Iau8J+ECJob5Bm9JBBx5F3cttoGqkQMRSqOMg0 5INlclZ9rrpryWQtlmrNI/1rSKPWvKBoGyW0HEDt/ZuCfjE4G+UOE/jY1nSdfmG8 WYUctdTrHCebK3C7EHb00lLX9ZvlY+aXaFxbZUAKI2uSKGybrNfuZqO1gk856XPP CPiBdQyjGDAqwsdH+qnc6GmXHh2EGvgbWwn6FxFfEALnxfzu9No3/+oFq6F8N5Hy JLYQt3cpxz5dNeJDIrw0iS9swVohRPm1JST8klyTaoIsoi0rb+Vql/57jyb8s2/3 UtWigS8z0lixYynZGz8sAdFjgQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFBYhEoem VZyeXZUTZJHTVahRhWqTMB8GA1UdIwQYMBaAFIYDoKynIEsO/tZNtw3lHHW6A5NV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEVCMi83QUM3NjdERTA2 NjkxMUVEQjBBRThFMzdDNEY5QUUwMi9oZ09ncktjZ1N3Ny0xazIzRGVVY2Rib0Rr MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hnT2dyS2NnU3c3LTFrMjNEZVVjZGJvRGsxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThFQjIvN0FDNzY3REUwNjY5MTFFREIwQUU4RTM3QzRGOUFFMDIvMjA4QzdEMkUw NjZDMTFFREIzMUMyMjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnjOwDBAJn46wDBAFyhr4wDQQCAAIwBwMFACQAlqAwDQYJ KoZIhvcNAQELBQADggEBAH2WE5lEQNqRODFEq5/2ccw2z4azkfr79I0Gxy9bc3kT 0Fe4Yd2i8ywxOc/lTjNrI1AaFCLyraZyo43akfn/rsrgr59XCgCOpD4QSqyLGmQE Jv0mtTnbRSU0Kb/EIRlCYrctt+dvaTECs3/LdGM3EUzXBGZ2X3EuZIsW8osbIdyK XHmyDYalZhxOIOQC/wNvo3CrbwQfL3Wlu51dmVBhhfxcHDwlL7K+vh4NfreYTubg MtYi6YyHmqTgI4xr+8SvD8C2Gp7nGERVpUXpA/YZUNuimCnp5sK4iG3ROylvxO+d w0dmvtWpVO1DC3B/QvMeVcXhY5cIPBvFa9EUUEOMaMg= -----END CERTIFICATE-----Generated at Thu Nov 21 03:21:31 2024 by rpki-client on console-ams.rpki-client.org