$ rpki-client -vvf rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa File: D985E93886B111EFA11BDF53C4F9AE02.roa (raw, json) Hash identifier: rP5j4C0CGZJsw2gJYjo66ntxudPoLAvM82b5Jln8ZuY= Subject key identifier: C0:6A:C9:E1:BE:D6:7E:DC:3C:5B:A2:C9:32:87:8B:45:D5:50:BB:86 Certificate issuer: /CN=A913819A/serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Certificate serial: 18 Authority key identifier: 0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa Signing time: Thu 10 Oct 2024 03:12:45 +0000 ROA not before: Thu 10 Oct 2024 03:12:45 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 38456 IP address blocks: 103.249.49.0/24 maxlen: 24 103.249.50.0/24 maxlen: 24 103.249.51.0/24 maxlen: 24 110.232.148.0/24 maxlen: 24 110.232.150.0/24 maxlen: 24 110.232.151.0/24 maxlen: 24 111.92.177.0/24 maxlen: 24 111.92.179.0/24 maxlen: 24 122.200.58.0/24 maxlen: 24 122.200.59.0/24 maxlen: 24 122.200.60.0/24 maxlen: 24 2406:5e00::/48 maxlen: 48 2406:5e00:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913819A/serialNumber=0B366E070CFE700E477EE474D6C9549DD3B38BF2 Validity Not Before: Oct 10 03:12:45 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6707462d-25ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:94:28:a0:3b:c5:e8:de:fa:12:bd:70:40:74: d6:bd:9c:7c:b1:32:c1:67:15:92:95:f0:5a:c8:a0: da:07:4b:60:39:1e:06:27:8c:04:d9:b5:e5:89:28: e3:45:3d:af:7d:b4:31:f4:ee:89:89:38:ce:73:47: cf:07:a8:8f:f1:9a:2d:b1:1e:fa:76:2a:3c:b3:cc: 2f:5a:f9:0a:fc:52:47:ad:ef:f1:c9:bc:b2:d3:bd: 24:da:b9:82:98:cd:35:2c:71:b3:62:2f:6f:c3:6c: e4:fc:6a:87:d3:84:a8:8d:e8:76:3e:70:ad:b0:a6: c0:48:99:cd:00:cc:23:84:f3:77:8a:4c:4c:3a:fa: ac:0d:e6:58:ce:40:b5:0c:46:a6:1d:47:2f:3f:c3: 95:5d:b3:90:fd:20:bd:55:ed:d4:35:fb:e3:4e:00: 29:d0:ed:45:f2:d2:f4:e2:f3:8a:13:c2:03:96:4d: 36:e5:9c:bd:da:d2:04:61:16:98:13:6a:22:57:ae: fd:2c:11:2a:df:ac:40:df:01:fe:ee:70:9e:ac:50: 5b:b1:2b:af:c7:3f:70:e7:7b:14:76:fa:df:a9:4b: cd:6c:49:7d:85:49:47:1f:59:35:a0:c5:d8:56:3a: df:d1:1b:33:ef:29:bf:27:d7:cc:a5:b9:40:ed:11: 53:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:6A:C9:E1:BE:D6:7E:DC:3C:5B:A2:C9:32:87:8B:45:D5:50:BB:86 X509v3 Authority Key Identifier: keyid:0B:36:6E:07:0C:FE:70:0E:47:7E:E4:74:D6:C9:54:9D:D3:B3:8B:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/CzZuBwz-cA5HfuR01slUndOzi_I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CzZuBwz-cA5HfuR01slUndOzi_I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913819A/5F89F43086B111EFAF6ECB52C4F9AE02/D985E93886B111EFA11BDF53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.49.0-103.249.51.255 110.232.148.0/24 110.232.150.0/23 111.92.177.0/24 111.92.179.0/24 122.200.58.0-122.200.60.255 IPv6: 2406:5e00::/47 Signature Algorithm: sha256WithRSAEncryption 44:59:7b:b5:9f:2a:9d:2e:18:ca:e0:1a:87:56:4d:8a:47:67: f6:68:e0:ad:2f:c6:31:3e:a1:27:c5:b2:c7:a3:ad:47:40:56: 2c:c8:f8:9a:e1:53:36:43:65:20:1e:60:b1:22:9e:44:db:b5: 69:1c:41:94:18:fd:71:4a:91:0c:87:e6:61:aa:8b:43:7f:e8: c1:6e:01:39:b7:51:e2:5e:2a:52:19:7d:df:7a:47:c2:cf:aa: 2d:76:17:af:9e:b3:c9:72:7e:ee:9d:87:ad:13:e6:93:ba:d2: 03:b4:43:c4:c2:ff:8b:3e:21:5a:b4:fb:22:12:14:fd:7f:ce: 51:31:41:bb:80:41:7d:e5:0f:2b:d6:5c:53:16:23:d2:af:9b: f1:95:ee:f8:29:bf:70:2b:45:e8:54:3d:a1:4e:21:0e:13:07: 6d:f9:31:0e:b7:2e:3c:f7:50:78:96:41:90:2f:69:76:27:a8: 83:ec:a2:8e:78:f6:a8:f2:48:d8:0b:05:a7:c5:e9:2f:f8:29: 0a:6c:cd:89:e4:dd:79:fa:73:fc:44:7f:3c:ef:2c:17:6e:66: 95:d5:c5:48:4b:f2:cc:d4:85:2b:a3:db:2b:8d:9d:05:3f:bd: a6:86:9d:82:85:4e:60:c5:6a:4b:95:23:e9:b7:5b:85:e3:a9: e9:7a:c3:d1 -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz ODE5QTExMC8GA1UEBRMoMEIzNjZFMDcwQ0ZFNzAwRTQ3N0VFNDc0RDZDOTU0OURE M0IzOEJGMjAeFw0yNDEwMTAwMzEyNDVaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDc0NjJkLTI1YWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMlCigO8Xo3voSvXBAdNa9nHyxMsFnFZKV8FrIoNoHS2A5HgYnjATZteWJKONF Pa99tDH07omJOM5zR88HqI/xmi2xHvp2KjyzzC9a+Qr8Uket7/HJvLLTvSTauYKY zTUscbNiL2/DbOT8aofThKiN6HY+cK2wpsBImc0AzCOE83eKTEw6+qwN5ljOQLUM RqYdRy8/w5Vds5D9IL1V7dQ1++NOACnQ7UXy0vTi84oTwgOWTTblnL3a0gRhFpgT aiJXrv0sESrfrEDfAf7ucJ6sUFuxK6/HP3DnexR2+t+pS81sSX2FSUcfWTWgxdhW Ot/RGzPvKb8n18yluUDtEVO1AgMBAAGjggLUMIIC0DAdBgNVHQ4EFgQUwGrJ4b7W ftw8W6LJMoeLRdVQu4YwHwYDVR0jBBgwFoAUCzZuBwz+cA5HfuR01slUndOzi/Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4MTlBLzVGODlGNDMwODZC MTExRUZBRjZFQ0I1MkM0RjlBRTAyL0N6WnVCd3otY0E1SGZ1UjAxc2xVbmRPemlf SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ3padUJ3ei1jQTVIZnVSMDFzbFVuZE96aV9JLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz ODE5QS81Rjg5RjQzMDg2QjExMUVGQUY2RUNCNTJDNEY5QUUwMi9EOTg1RTkzODg2 QjExMUVGQTExQkRGNTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBeBggrBgEFBQcBBwEB/wRP ME0wOgQCAAEwNDAMAwQAZ/kxAwQCZ/kwAwQAbuiUAwQBbuiWAwQAb1yxAwQAb1yz MAwDBAF6yDoDBAB6yDwwDwQCAAIwCQMHASQGXgAAADANBgkqhkiG9w0BAQsFAAOC AQEARFl7tZ8qnS4YyuAah1ZNikdn9mjgrS/GMT6hJ8Wyx6OtR0BWLMj4muFTNkNl IB5gsSKeRNu1aRxBlBj9cUqRDIfmYaqLQ3/owW4BObdR4l4qUhl933pHws+qLXYX r56zyXJ+7p2HrRPmk7rSA7RDxML/iz4hWrT7IhIU/X/OUTFBu4BBfeUPK9ZcUxYj 0q+b8ZXu+Cm/cCtF6FQ9oU4hDhMHbfkxDrcuPPdQeJZBkC9pdieog+yijnj2qPJI 2AsFp8XpL/gpCmzNieTdefpz/ER/PO8sF25mldXFSEvyzNSFK6PbK42dBT+9poad goVOYMVqS5Uj6bdbheOp6XrD0Q== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:01 2024 by rpki-client on console-ams.rpki-client.org