$ rpki-client -vvf rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/2E18EB105D0C11EE873B1C2AC4F9AE02.roa File: 2E18EB105D0C11EE873B1C2AC4F9AE02.roa (raw, json) Hash identifier: bZEiNJRw250RCgndZb8WrEuPT6rJMFvmM1Vj0bQNhho= Subject key identifier: 98:86:54:BA:76:37:66:EC:87:0A:F7:43:35:40:98:32:FB:1E:34:FB Certificate issuer: /CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Certificate serial: 07F4 Authority key identifier: AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/2E18EB105D0C11EE873B1C2AC4F9AE02.roa Signing time: Fri 29 Sep 2023 05:13:56 +0000 ROA not before: Fri 29 Sep 2023 05:13:56 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 138077 IP address blocks: 61.29.241.0/24 maxlen: 24 61.29.249.0/24 maxlen: 24 103.216.100.0/24 maxlen: 24 103.216.101.0/24 maxlen: 24 157.119.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 21:51:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2036 (0x7f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E509/serialNumber=AA8E1BE3624240DC3302047FB41A7D4E47808EF8 Validity Not Before: Sep 29 05:13:56 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65165d14-f576 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7e:e9:89:08:2f:09:0e:47:60:14:99:d6:96: 38:30:f8:27:04:17:31:eb:e0:76:0f:b2:4b:86:e6: 3b:1d:c7:0b:b2:b2:c1:80:98:22:d5:f0:86:78:3e: 9b:53:cc:94:b0:68:8f:10:f2:40:80:b0:68:0d:ef: 11:ef:89:8c:a7:22:54:e6:28:84:96:2d:d7:f9:31: 64:0e:cc:db:b0:2a:7c:a5:ff:90:2f:e3:5b:ab:79: 8a:25:9c:bb:1a:e0:23:18:80:11:54:e7:52:0c:a8: 53:b2:2f:4d:68:3f:35:03:1a:e3:ee:06:ef:77:94: bd:9d:4c:b5:ef:40:03:ef:3e:91:8a:9b:ba:16:d0: 6a:4b:57:e3:86:9b:fa:24:7b:d3:30:7b:34:87:c2: 11:98:1a:8f:db:12:f5:76:e9:1d:7c:16:e8:17:98: 33:fd:26:c3:3a:e5:a1:32:c2:a0:fc:7b:d7:df:bf: 87:d7:ca:c6:fb:02:e4:fa:9b:bd:d1:9a:d0:5c:a7: 3a:21:43:b4:ec:32:a3:99:ea:7a:f3:d2:40:8c:69: f9:5e:17:18:3e:03:f2:26:95:6d:64:91:40:94:9a: a0:cb:30:dc:65:4d:be:ee:19:02:0c:cf:d0:e8:22: c0:2b:fa:16:75:83:9d:25:7f:18:3a:24:2b:b6:98: c0:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:86:54:BA:76:37:66:EC:87:0A:F7:43:35:40:98:32:FB:1E:34:FB X509v3 Authority Key Identifier: keyid:AA:8E:1B:E3:62:42:40:DC:33:02:04:7F:B4:1A:7D:4E:47:80:8E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/qo4b42JCQNwzAgR_tBp9TkeAjvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qo4b42JCQNwzAgR_tBp9TkeAjvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E509/79EA591EA7BD11EAAAA62948C4F9AE02/2E18EB105D0C11EE873B1C2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.29.241.0/24 61.29.249.0/24 103.216.100.0/23 157.119.235.0/24 Signature Algorithm: sha256WithRSAEncryption a6:e3:36:e1:ce:cd:04:ee:8e:2f:3c:1f:ca:a8:96:27:ce:92: 34:77:d4:d7:45:f9:2c:50:dd:55:7b:bd:69:f8:01:89:dd:dd: 8e:79:d8:cb:3a:75:7e:f0:f6:02:96:d7:ba:96:84:36:ff:da: 9f:46:e4:7c:d2:81:cf:71:07:6e:66:58:1d:fa:97:0b:51:50: 62:c6:de:04:a5:63:d2:5f:4d:de:98:25:07:fe:58:65:20:0e: 76:35:dd:d9:21:d0:c6:76:65:59:f4:19:e3:93:61:26:88:f2: 17:7e:2b:82:cc:9c:29:96:aa:92:02:e4:04:07:eb:aa:c0:ba: b0:f6:ab:a5:94:d8:e9:25:3a:59:74:37:88:c0:cf:ab:00:40: 8a:e9:10:99:c7:56:ed:b7:6d:1d:79:77:65:ae:a9:f9:ce:e1: a9:e1:59:0f:d6:8a:0c:10:fe:fb:3c:4c:67:e3:68:14:90:59: cb:6c:20:43:40:60:d7:93:61:89:2b:6f:db:45:2b:64:47:aa: a9:96:50:e7:cb:08:88:3a:8e:a7:fe:8e:5f:b5:5a:76:e3:17: e6:ba:5c:83:81:5b:46:f8:7c:7e:0a:17:6a:02:91:ed:72:ac: 6f:0c:87:9d:d5:47:a5:0a:1e:1b:4c:c6:b1:68:cd:e3:e9:17: 0e:c9:99:36 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICB/QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU1MDkxMTAvBgNVBAUTKEFBOEUxQkUzNjI0MjQwREMzMzAyMDQ3RkI0MUE3RDRF NDc4MDhFRjgwHhcNMjMwOTI5MDUxMzU2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE2NWQxNC1mNTc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs37piQgvCQ5HYBSZ1pY4MPgnBBcx6+B2D7JLhuY7HccLsrLBgJgi1fCGeD6b U8yUsGiPEPJAgLBoDe8R74mMpyJU5iiEli3X+TFkDszbsCp8pf+QL+Nbq3mKJZy7 GuAjGIARVOdSDKhTsi9NaD81Axrj7gbvd5S9nUy170AD7z6Ripu6FtBqS1fjhpv6 JHvTMHs0h8IRmBqP2xL1dukdfBboF5gz/SbDOuWhMsKg/HvX37+H18rG+wLk+pu9 0ZrQXKc6IUO07DKjmep689JAjGn5XhcYPgPyJpVtZJFAlJqgyzDcZU2+7hkCDM/Q 6CLAK/oWdYOdJX8YOiQrtpjAtwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFJiGVLp2 N2bshwr3QzVAmDL7HjT7MB8GA1UdIwQYMBaAFKqOG+NiQkDcMwIEf7QafU5HgI74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTUwOS83OUVBNTkxRUE3 QkQxMUVBQUFBNjI5NDhDNEY5QUUwMi9xbzRiNDJKQ1FOd3pBZ1JfdEJwOVRrZUFq dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FvNGI0MkpDUU53ekFnUl90QnA5VGtlQWp2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU1MDkvNzlFQTU5MUVBN0JEMTFFQUFBQTYyOTQ4QzRGOUFFMDIvMkUxOEVCMTA1 RDBDMTFFRTg3M0IxQzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAA9HfEDBAA9HfkDBAFn2GQDBACdd+swDQYJKoZIhvcNAQEL BQADggEBAKbjNuHOzQTuji88H8qolifOkjR31NdF+SxQ3VV7vWn4AYnd3Y552Ms6 dX7w9gKW17qWhDb/2p9G5HzSgc9xB25mWB36lwtRUGLG3gSlY9JfTd6YJQf+WGUg DnY13dkh0MZ2ZVn0GeOTYSaI8hd+K4LMnCmWqpIC5AQH66rAurD2q6WU2OklOll0 N4jAz6sAQIrpEJnHVu23bR15d2WuqfnO4anhWQ/WigwQ/vs8TGfjaBSQWctsIENA YNeTYYkrb9tFK2RHqqmWUOfLCIg6jqf+jl+1WnbjF+a6XIOBW0b4fH4KF2oCke1y rG8Mh53VR6UKHhtMxrFozePpFw7JmTY= -----END CERTIFICATE-----Generated at Thu May 2 23:03:09 2024 by rpki-client on console-fra.rpki-client.org