$ rpki-client -vvf rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/18E15164604011EF82C9CE5FC4F9AE02.roa File: 18E15164604011EF82C9CE5FC4F9AE02.roa (raw, json) Hash identifier: kerAf5g9k1HzAUucdXB7gorLYyfAcdKUtOEyl+siFgI= Subject key identifier: C4:61:18:3A:5C:C7:9C:25:12:61:39:4F:1F:73:4B:ED:CC:3C:49:4C Certificate issuer: /CN=A9155001/serialNumber=565C8EC4E83447ECFFA69E1DEE1637C15F45A3FE Certificate serial: 02 Authority key identifier: 56:5C:8E:C4:E8:34:47:EC:FF:A6:9E:1D:EE:16:37:C1:5F:45:A3:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VlyOxOg0R-z_pp4d7hY3wV9Fo_4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/18E15164604011EF82C9CE5FC4F9AE02.roa Signing time: Thu 22 Aug 2024 04:36:28 +0000 ROA not before: Thu 22 Aug 2024 04:36:28 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135512 IP address blocks: 103.65.233.0/24 maxlen: 24 103.220.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/VlyOxOg0R-z_pp4d7hY3wV9Fo_4.crl rsync://rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/VlyOxOg0R-z_pp4d7hY3wV9Fo_4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VlyOxOg0R-z_pp4d7hY3wV9Fo_4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155001/serialNumber=565C8EC4E83447ECFFA69E1DEE1637C15F45A3FE Validity Not Before: Aug 22 04:36:28 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66c6c04c-3494 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7c:8d:b7:97:f6:8e:f2:76:d8:2c:dd:8c:47: 4c:ac:db:d2:fc:42:b5:66:96:b0:7a:50:cd:96:ef: 12:38:e3:1b:95:6b:31:33:44:01:2c:70:03:f4:68: 1c:31:d1:02:c0:37:35:52:95:c4:28:a6:84:f0:55: 3a:16:da:db:d1:78:af:f9:b7:58:d7:6a:98:be:58: 8a:d1:28:38:f8:95:9b:24:c6:95:a8:98:c0:1d:12: 32:46:e7:32:68:b6:8e:10:3c:39:54:d9:12:90:d0: da:79:e4:dd:b4:e5:13:2a:93:ef:f5:72:cb:ab:c2: 9d:63:39:42:92:12:8a:cf:fe:c8:2d:d2:90:00:5e: 7b:a2:bd:bd:1e:41:e8:00:43:56:7d:35:27:07:53: 5b:36:bb:8c:6f:ff:77:a8:95:13:27:3a:9a:aa:ff: 13:4d:65:ae:96:db:ab:db:22:e6:88:4f:49:f4:35: 21:18:f3:ae:bf:37:e5:07:67:8a:99:6c:7b:c2:df: 96:13:ec:10:06:c2:bc:47:58:aa:ca:5f:21:4a:df: 74:b1:ef:fa:63:94:a1:97:08:4c:1d:37:d1:bc:f9: 60:8c:10:dd:46:27:59:d4:7a:7b:07:db:80:e6:e0: 94:15:c8:76:e6:7b:89:b2:bb:e0:b5:cc:d9:23:2d: 12:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:61:18:3A:5C:C7:9C:25:12:61:39:4F:1F:73:4B:ED:CC:3C:49:4C X509v3 Authority Key Identifier: keyid:56:5C:8E:C4:E8:34:47:EC:FF:A6:9E:1D:EE:16:37:C1:5F:45:A3:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/VlyOxOg0R-z_pp4d7hY3wV9Fo_4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VlyOxOg0R-z_pp4d7hY3wV9Fo_4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155001/DD1CBD72603E11EF866FE83EC4F9AE02/18E15164604011EF82C9CE5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.65.233.0/24 103.220.46.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:c0:08:76:39:8e:69:db:c9:d4:85:5e:b6:d2:e7:e4:94:43: 29:ba:b7:f0:59:69:75:35:c6:36:6d:ec:cc:60:ca:79:55:0d: 8e:4f:0f:02:90:88:d1:b2:d3:5d:97:40:47:1f:79:b6:7e:b8: 2a:3e:c6:c4:ed:66:36:65:82:e6:64:76:b0:6a:3f:e6:92:43: 74:33:58:5e:c0:51:16:3d:fd:a6:da:4b:ae:57:c7:7d:0a:58: 1d:15:7f:8b:c7:8a:59:b5:37:d1:0b:ee:aa:6f:43:60:48:00: 8d:4b:b3:54:81:c3:71:9f:4b:5d:60:ba:9d:a3:e1:93:5a:79: e5:0f:c1:a6:88:87:e3:09:7c:54:23:b7:b6:84:9b:5b:fa:d8: 57:88:0b:b9:45:3e:af:04:2a:d3:c8:c1:b0:70:80:fd:f3:19: 07:6b:f2:a1:b4:73:36:ae:cd:06:de:00:4c:d6:65:98:cb:f2: 9e:78:f1:6c:37:a7:f9:52:82:81:fc:ea:80:62:9f:0a:2b:a2: c2:1f:62:a8:25:19:a0:e5:51:a5:9d:82:39:90:b4:f7:0f:b7: f4:9f:38:d2:1a:1c:d5:4a:5b:16:88:89:d8:ec:5d:53:bf:8f: fa:4a:08:98:83:63:c2:90:6f:a8:c7:87:99:6c:6b:5d:25:3e: e8:df:58:8b -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTAwMTExMC8GA1UEBRMoNTY1QzhFQzRFODM0NDdFQ0ZGQTY5RTFERUUxNjM3QzE1 RjQ1QTNGRTAeFw0yNDA4MjIwNDM2MjhaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YzZjMDRjLTM0OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLfI23l/aO8nbYLN2MR0ys29L8QrVmlrB6UM2W7xI44xuVazEzRAEscAP0aBwx 0QLANzVSlcQopoTwVToW2tvReK/5t1jXapi+WIrRKDj4lZskxpWomMAdEjJG5zJo to4QPDlU2RKQ0Np55N205RMqk+/1csurwp1jOUKSEorP/sgt0pAAXnuivb0eQegA Q1Z9NScHU1s2u4xv/3eolRMnOpqq/xNNZa6W26vbIuaIT0n0NSEY866/N+UHZ4qZ bHvC35YT7BAGwrxHWKrKXyFK33Sx7/pjlKGXCEwdN9G8+WCMEN1GJ1nUensH24Dm 4JQVyHbme4myu+C1zNkjLRLfAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUxGEYOlzH nCUSYTlPH3NL7cw8SUwwHwYDVR0jBBgwFoAUVlyOxOg0R+z/pp4d7hY3wV9Fo/4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1MDAxL0REMUNCRDcyNjAz RTExRUY4NjZGRTgzRUM0RjlBRTAyL1ZseU94T2cwUi16X3BwNGQ3aFkzd1Y5Rm9f NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVmx5T3hPZzBSLXpfcHA0ZDdoWTN3VjlGb180LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTAwMS9ERDFDQkQ3MjYwM0UxMUVGODY2RkU4M0VDNEY5QUUwMi8xOEUxNTE2NDYw NDAxMUVGODJDOUNFNUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAGdB6QMEAGfcLjANBgkqhkiG9w0BAQsFAAOCAQEATsAIdjmO advJ1IVettLn5JRDKbq38FlpdTXGNm3szGDKeVUNjk8PApCI0bLTXZdARx95tn64 Kj7GxO1mNmWC5mR2sGo/5pJDdDNYXsBRFj39ptpLrlfHfQpYHRV/i8eKWbU30Qvu qm9DYEgAjUuzVIHDcZ9LXWC6naPhk1p55Q/BpoiH4wl8VCO3toSbW/rYV4gLuUU+ rwQq08jBsHCA/fMZB2vyobRzNq7NBt4ATNZlmMvynnjxbDen+VKCgfzqgGKfCiui wh9iqCUZoOVRpZ2COZC09w+39J840hoc1UpbFoiJ2OxdU7+P+koImINjwpBvqMeH mWxrXSU+6N9Yiw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:04 2024 by rpki-client on console-ams.rpki-client.org