$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa File: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (raw, json) Hash identifier: SJfatYjVkNsGa5A40/Z5VuaU5eA8HwIwMiF3CgmDhpI= Subject key identifier: 18:AD:7E:07:0A:E6:37:D5:DE:F5:B0:A5:DA:5F:DB:3E:5B:4F:B3:4C Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 0693 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa Signing time: Mon 03 Jun 2024 00:12:49 +0000 ROA not before: Mon 03 Jun 2024 00:12:49 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 132245 IP address blocks: 43.231.200.0/24 maxlen: 24 43.231.201.0/24 maxlen: 24 43.231.202.0/24 maxlen: 24 43.231.203.0/24 maxlen: 24 103.8.132.0/24 maxlen: 24 103.8.133.0/24 maxlen: 24 103.8.134.0/24 maxlen: 24 103.8.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: Jun 3 00:12:49 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665d0a81-6958 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e8:2d:7b:99:ee:52:55:7f:e0:2d:de:83:69: 48:6f:4e:09:e3:d0:44:9c:93:ee:c4:e3:92:e0:92: ea:18:cc:9c:e3:69:12:5d:24:e5:b2:9b:55:35:48: 73:2f:85:e2:bd:88:41:c2:63:c7:c4:8a:74:60:3d: 26:4d:48:58:b4:a1:95:51:68:f5:20:6e:bb:1d:4f: 60:68:b2:9c:e9:e1:8c:80:df:0b:0c:b9:cb:90:4c: 5d:7a:48:5d:65:a4:6d:bd:ee:7e:f0:5d:57:05:d5: ab:77:a9:31:c3:d1:98:fa:69:b5:12:2a:9a:5a:91: 60:1b:9e:66:2f:7c:e3:75:42:a2:9c:bd:f8:f2:26: 98:8a:6c:0b:db:61:85:57:e0:7b:21:c1:32:de:65: 1a:a8:6a:d8:19:76:40:8e:c1:4d:fd:db:2d:ef:8d: ad:1a:79:78:3f:98:59:b9:c7:fe:0c:ea:a2:d6:4b: c6:7d:ee:4c:f8:4f:00:e4:6a:d0:64:1e:7a:ba:28: 44:59:59:cb:ee:b3:2a:02:23:f4:df:56:f3:e0:6a: 82:74:39:37:c8:ca:c6:5d:ec:8b:b5:ae:e2:03:d5: 7f:8f:e1:94:28:f9:ff:e6:f5:a2:31:21:d6:c8:11: 90:a7:23:e0:80:7a:68:7a:2a:f3:ce:2a:01:fc:40: ff:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:AD:7E:07:0A:E6:37:D5:DE:F5:B0:A5:DA:5F:DB:3E:5B:4F:B3:4C X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.200.0/22 103.8.132.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:57:64:e2:aa:79:51:b9:47:29:70:0f:cd:02:9f:a8:d4:03: e9:c2:4e:6a:d9:28:b4:9d:35:ba:94:31:34:74:81:77:9f:3f: d1:3a:55:d2:95:84:4c:0a:8e:d8:ab:ac:3f:69:52:05:6b:9a: c4:4a:6a:48:41:55:54:4e:da:81:2f:03:8d:cf:f4:b6:78:d5: db:50:7e:37:5e:b9:81:18:63:26:31:f8:f4:ce:fb:1d:19:18: f8:36:63:24:c1:42:f6:b6:19:a9:7b:e6:af:df:eb:33:73:3c: 82:73:c0:bb:b5:00:d8:ca:c5:a2:85:9a:1a:ba:0d:c2:5a:6c: 2e:73:c3:4d:01:31:1e:8f:4e:c0:45:9b:a1:f4:c3:be:99:3b: 6e:4f:ac:35:d9:be:12:ac:05:86:f7:34:b0:98:d2:2f:89:48: 94:d3:f0:66:b9:0d:3c:02:fb:c7:02:54:e1:a3:b5:bf:30:66: 0d:5d:65:e0:4d:e6:f1:32:9a:17:5c:f8:a4:28:88:48:01:9c: 22:c0:cd:fa:ed:be:5d:d8:90:12:9f:2b:a2:a2:3f:88:37:38: 3b:c3:a3:c7:35:4c:68:be:39:6d:1e:92:f1:58:3d:14:bd:47: b9:61:32:b2:a8:f1:95:d1:e2:4e:d9:c3:c5:b8:ed:86:c4:82: 56:77:90:01 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjQwNjAzMDAxMjQ5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVkMGE4MS02OTU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtugte5nuUlV/4C3eg2lIb04J49BEnJPuxOOS4JLqGMyc42kSXSTlsptVNUhz L4XivYhBwmPHxIp0YD0mTUhYtKGVUWj1IG67HU9gaLKc6eGMgN8LDLnLkExdekhd ZaRtve5+8F1XBdWrd6kxw9GY+mm1EiqaWpFgG55mL3zjdUKinL348iaYimwL22GF V+B7IcEy3mUaqGrYGXZAjsFN/dst742tGnl4P5hZucf+DOqi1kvGfe5M+E8A5GrQ ZB56uihEWVnL7rMqAiP031bz4GqCdDk3yMrGXeyLta7iA9V/j+GUKPn/5vWiMSHW yBGQpyPggHpoeirzzioB/ED/ewIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBitfgcK 5jfV3vWwpdpf2z5bT7NMMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDE2MjAvMjE5ODE2QUEyOTNEMTFFQkJGQzE0NzcxQzRGOUFFMDIvNURERTZCQzIy OTNFMTFFQjlERkEzQzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr58gDBAJnCIQwDQYJKoZIhvcNAQELBQADggEBAG1XZOKq eVG5RylwD80Cn6jUA+nCTmrZKLSdNbqUMTR0gXefP9E6VdKVhEwKjtirrD9pUgVr msRKakhBVVRO2oEvA43P9LZ41dtQfjdeuYEYYyYx+PTO+x0ZGPg2YyTBQva2Gal7 5q/f6zNzPIJzwLu1ANjKxaKFmhq6DcJabC5zw00BMR6PTsBFm6H0w76ZO25PrDXZ vhKsBYb3NLCY0i+JSJTT8Ga5DTwC+8cCVOGjtb8wZg1dZeBN5vEymhdc+KQoiEgB nCLAzfrtvl3YkBKfK6KiP4g3ODvDo8c1TGi+OW0ekvFYPRS9R7lhMrKo8ZXR4k7Z w8W47YbEglZ3kAE= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:38 2024 by rpki-client on console-ams.rpki-client.org