$ rpki-client -vvf rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/85CE44A4BC1111EE9E42EB2DC4F9AE02.roa File: 85CE44A4BC1111EE9E42EB2DC4F9AE02.roa (raw, json) Hash identifier: tPpYtoObLW6IaU9Qrnag/tKS5hGwADSPolXixr4yblo= Subject key identifier: 1B:22:2B:A8:CD:71:A2:F7:93:E1:00:A1:20:89:99:DF:E3:1F:C0:61 Certificate issuer: /CN=A9154376/serialNumber=8A581655C922A7A5121E00FB7A427E019AC7307B Certificate serial: C4 Authority key identifier: 8A:58:16:55:C9:22:A7:A5:12:1E:00:FB:7A:42:7E:01:9A:C7:30:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ilgWVckip6USHgD7ekJ-AZrHMHs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/85CE44A4BC1111EE9E42EB2DC4F9AE02.roa Signing time: Tue 09 Jul 2024 05:46:47 +0000 ROA not before: Tue 09 Jul 2024 05:46:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 151608 IP address blocks: 103.36.88.0/23 maxlen: 23 103.36.88.0/24 maxlen: 24 103.36.89.0/24 maxlen: 24 2001:df2:ae40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.crl rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ilgWVckip6USHgD7ekJ-AZrHMHs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 196 (0xc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9154376/serialNumber=8A581655C922A7A5121E00FB7A427E019AC7307B Validity Not Before: Jul 9 05:46:47 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=668ccec6-ead9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b6:ef:75:ff:7e:47:83:29:ba:a0:16:be:68: 59:0e:5f:a3:ca:6c:65:66:21:47:db:cc:01:12:46: 09:56:f4:dc:76:4b:54:96:f1:6a:b0:37:d1:bf:af: 6e:4f:4a:bb:4e:2f:6e:eb:6d:36:9b:ce:ab:5d:a4: a1:29:0a:08:9c:22:96:16:1b:74:fe:1c:2c:90:4a: a4:33:a7:f7:a7:62:88:e5:80:56:3f:72:28:55:35: 11:d1:de:ca:e2:4e:bb:0d:92:f6:be:1d:78:77:97: 07:16:cf:74:ae:83:7a:95:c2:3d:ae:73:7b:d5:06: 3c:64:71:a5:75:1f:8f:21:68:66:4d:a2:82:91:e3: f1:37:ed:8f:12:ba:53:03:ef:57:8b:b1:3f:14:8f: e4:80:d4:5b:a4:9d:e9:7d:84:76:d0:96:02:4f:47: d4:50:fb:74:fd:97:a9:e3:79:55:c8:c6:35:e0:aa: 5f:ea:fd:aa:77:89:07:f9:d9:d7:ab:d6:d4:d9:af: b8:ab:13:4d:1d:84:b0:70:95:28:3c:04:60:b0:49: 6a:c8:c6:d8:83:0f:dc:fe:b7:34:5f:17:17:c4:62: 55:e4:dd:cc:59:41:b7:a2:95:ba:83:ed:52:3c:4f: c1:a4:99:ca:f4:04:d9:40:5f:9e:83:a0:6a:ac:ce: d3:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:22:2B:A8:CD:71:A2:F7:93:E1:00:A1:20:89:99:DF:E3:1F:C0:61 X509v3 Authority Key Identifier: keyid:8A:58:16:55:C9:22:A7:A5:12:1E:00:FB:7A:42:7E:01:9A:C7:30:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ilgWVckip6USHgD7ekJ-AZrHMHs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/85CE44A4BC1111EE9E42EB2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.36.88.0/23 IPv6: 2001:df2:ae40::/48 Signature Algorithm: sha256WithRSAEncryption 67:93:51:e3:31:48:69:ba:b1:0c:8a:89:b1:9b:b5:eb:71:45: 5d:6d:89:a4:3c:c3:17:65:ef:25:7b:36:e5:a1:1e:93:58:95: 5f:3f:2a:a5:51:b8:80:a3:9e:66:73:e5:fc:bc:e2:58:c7:84: 03:78:14:95:fb:83:75:8e:64:c7:34:66:c8:89:b0:2e:cf:3f: ab:b3:8d:bc:f3:74:1e:af:89:85:71:ef:14:93:80:66:92:22: 5b:95:1c:7b:ec:24:0e:2f:6d:50:d8:0f:62:df:cb:0e:87:91: bc:69:9f:5d:4e:46:72:f6:be:15:ad:af:98:0d:00:22:90:1d: 6a:cf:f3:72:56:b9:67:1a:be:12:56:c8:0d:19:92:13:09:ff: ef:5e:4c:ad:e8:e3:ba:77:7a:98:92:1e:b6:6b:c5:32:6f:ff: 93:a4:c9:60:53:86:f1:8a:5d:40:9d:bd:f8:0f:8e:ba:65:a8: 55:ba:ae:d4:e4:92:41:47:88:9d:bb:25:f8:7b:d5:c4:90:a7: a2:7b:c1:e4:4e:28:7b:84:8d:28:e6:97:8a:84:62:7d:9a:bd: 0a:61:90:f3:dd:b2:ac:88:a1:91:93:45:25:5d:8c:86:ca:15: b5:50:d4:fa:62:23:65:ec:3d:5e:a8:58:f6:1b:6f:02:52:bc: 8d:39:a7:81 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTQzNzYxMTAvBgNVBAUTKDhBNTgxNjU1QzkyMkE3QTUxMjFFMDBGQjdBNDI3RTAx OUFDNzMwN0IwHhcNMjQwNzA5MDU0NjQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhjY2VjNi1lYWQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsrbvdf9+R4MpuqAWvmhZDl+jymxlZiFH28wBEkYJVvTcdktUlvFqsDfRv69u T0q7Ti9u6202m86rXaShKQoInCKWFht0/hwskEqkM6f3p2KI5YBWP3IoVTUR0d7K 4k67DZL2vh14d5cHFs90roN6lcI9rnN71QY8ZHGldR+PIWhmTaKCkePxN+2PErpT A+9Xi7E/FI/kgNRbpJ3pfYR20JYCT0fUUPt0/Zep43lVyMY14Kpf6v2qd4kH+dnX q9bU2a+4qxNNHYSwcJUoPARgsElqyMbYgw/c/rc0XxcXxGJV5N3MWUG3opW6g+1S PE/BpJnK9ATZQF+eg6BqrM7TXwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBsiK6jN caL3k+EAoSCJmd/jH8BhMB8GA1UdIwQYMBaAFIpYFlXJIqelEh4A+3pCfgGaxzB7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NDM3Ni9BMzU3RDc5NjIw OEIxMUVFQThCNTg5MzRDNEY5QUUwMi9pbGdXVmNraXA2VVNIZ0Q3ZWtKLUFackhN SHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lsZ1dWY2tpcDZVU0hnRDdla0otQVpySE1Icy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTQzNzYvQTM1N0Q3OTYyMDhCMTFFRUE4QjU4OTM0QzRGOUFFMDIvODVDRTQ0QTRC QzExMTFFRTlFNDJFQjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnJFgwDwQCAAIwCQMHACABDfKuQDANBgkqhkiG9w0BAQsF AAOCAQEAZ5NR4zFIabqxDIqJsZu163FFXW2JpDzDF2XvJXs25aEek1iVXz8qpVG4 gKOeZnPl/LziWMeEA3gUlfuDdY5kxzRmyImwLs8/q7ONvPN0Hq+JhXHvFJOAZpIi W5Uce+wkDi9tUNgPYt/LDoeRvGmfXU5Gcva+Fa2vmA0AIpAdas/zcla5Zxq+ElbI DRmSEwn/715Mrejjund6mJIetmvFMm//k6TJYFOG8YpdQJ29+A+OumWoVbqu1OSS QUeInbsl+HvVxJCnonvB5E4oe4SNKOaXioRifZq9CmGQ892yrIihkZNFJV2MhsoV tVDU+mIjZew9XqhY9htvAlK8jTmngQ== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:48 2024 by rpki-client on console-fra.rpki-client.org