$ rpki-client -vvf rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/7C183BCEE2AC11EEAC44471BC4F9AE02.roa File: 7C183BCEE2AC11EEAC44471BC4F9AE02.roa (raw, json) Hash identifier: ysPBmdY+4cwJ9U/iUNVz+IjI8azWOR9J/2aciWSA+Uc= Subject key identifier: C8:EF:3D:48:42:89:1F:DF:43:95:E6:D8:FB:21:FA:56:F9:40:3B:47 Certificate issuer: /CN=A9161DF8/serialNumber=3FBC3AF43102CEDA4FA0F7FA9BD91B2D65346D6E Certificate serial: 0144 Authority key identifier: 3F:BC:3A:F4:31:02:CE:DA:4F:A0:F7:FA:9B:D9:1B:2D:65:34:6D:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7w69DECztpPoPf6m9kbLWU0bW4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/7C183BCEE2AC11EEAC44471BC4F9AE02.roa Signing time: Fri 15 Mar 2024 09:14:54 +0000 ROA not before: Fri 15 Mar 2024 09:14:54 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 38193 IP address blocks: 103.250.28.0/24 maxlen: 24 103.250.29.0/24 maxlen: 24 2001:df1:4540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/P7w69DECztpPoPf6m9kbLWU0bW4.crl rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/P7w69DECztpPoPf6m9kbLWU0bW4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7w69DECztpPoPf6m9kbLWU0bW4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 324 (0x144) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161DF8/serialNumber=3FBC3AF43102CEDA4FA0F7FA9BD91B2D65346D6E Validity Not Before: Mar 15 09:14:54 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65f4118e-580f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:85:61:0e:e7:7e:c2:ba:d8:4a:9e:4c:52:35: ea:be:81:9d:02:d6:60:bc:56:bb:cd:55:52:51:f6: 98:d5:26:ec:4b:4b:5a:81:24:5a:34:72:5b:82:ac: d4:7e:12:74:c1:b4:28:55:b7:2b:c0:bb:ef:7d:d5: 03:7a:30:48:1c:a5:8b:9d:87:5e:0c:f0:a9:61:19: a8:91:dc:bb:66:e6:ee:5c:b9:d9:46:7b:c3:e0:c6: f3:af:88:dc:87:78:e3:05:b8:4f:e4:d5:7a:3a:7f: df:ce:25:65:66:ad:19:39:b1:26:9d:c8:fc:b4:32: 9e:99:12:01:3c:b6:62:1a:eb:00:77:f5:1c:c4:b3: 6c:0d:a9:1e:87:1e:be:11:7e:66:c0:45:91:13:d6: ea:2e:31:1d:ff:49:77:80:26:0d:84:e4:3d:f3:98: ab:b2:1d:90:15:67:3c:21:a7:7b:fb:2b:58:36:14: 8a:dc:7e:e1:53:ab:2e:e1:ba:19:a3:55:59:bb:5d: a6:4f:d3:c9:db:24:ec:a0:83:62:02:f0:1a:a4:ec: 72:8c:33:0a:84:86:33:10:08:61:16:99:bf:49:08: 74:b6:01:e0:76:76:29:9c:e7:53:91:0f:d7:38:48: dd:b6:02:a7:cc:8b:de:a8:19:df:4a:5c:c7:11:e5: 60:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:EF:3D:48:42:89:1F:DF:43:95:E6:D8:FB:21:FA:56:F9:40:3B:47 X509v3 Authority Key Identifier: keyid:3F:BC:3A:F4:31:02:CE:DA:4F:A0:F7:FA:9B:D9:1B:2D:65:34:6D:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/P7w69DECztpPoPf6m9kbLWU0bW4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P7w69DECztpPoPf6m9kbLWU0bW4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161DF8/26E53114550611ED9506C045C4F9AE02/7C183BCEE2AC11EEAC44471BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.250.28.0/23 IPv6: 2001:df1:4540::/48 Signature Algorithm: sha256WithRSAEncryption 0d:83:15:4a:05:a4:28:b3:7c:d7:52:db:77:1d:ae:98:cb:dc: c6:e1:63:7a:83:ec:33:00:c1:c1:06:f5:88:cf:fe:c1:9a:00: c4:d6:15:59:64:ef:7d:12:83:95:e0:e7:ed:21:13:05:33:6f: b5:e5:70:b4:4d:b9:47:e0:1c:1e:89:4d:21:8e:29:c3:31:20: ec:80:b6:19:74:ad:d5:df:31:e0:b4:54:c9:22:8a:a5:d6:ed: fa:8a:de:76:db:8f:c0:49:67:c7:41:c6:00:08:2c:9e:56:16: 72:1d:24:5c:e3:0a:7e:5d:ca:2f:ad:ae:2b:ca:a0:bd:58:5b: 2b:4b:77:04:a1:e6:83:4c:ca:e6:26:a9:b8:86:b3:69:e6:89: 42:d9:bd:e6:a4:eb:40:67:4b:d6:04:be:a6:7d:3c:17:21:d1: 21:97:08:f7:af:be:ac:61:53:ee:e4:d4:9f:55:70:20:28:90: 72:e9:14:dc:39:22:ee:b6:e9:9e:c4:71:88:56:fe:0f:17:2b: 6b:9e:1e:47:4d:37:bb:31:4d:f7:fe:8e:ca:bf:14:2d:1c:ae: 2a:53:45:d7:f7:fa:87:59:49:6f:8e:fa:a7:a3:4e:e6:ab:c2: 2d:44:d9:0e:ad:0e:9c:81:28:a5:78:58:ef:2e:39:be:fb:ca: cd:84:28:97 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAUQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjFERjgxMTAvBgNVBAUTKDNGQkMzQUY0MzEwMkNFREE0RkEwRjdGQTlCRDkxQjJE NjUzNDZENkUwHhcNMjQwMzE1MDkxNDU0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY0MTE4ZS01ODBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IVhDud+wrrYSp5MUjXqvoGdAtZgvFa7zVVSUfaY1SbsS0tagSRaNHJbgqzU fhJ0wbQoVbcrwLvvfdUDejBIHKWLnYdeDPCpYRmokdy7ZubuXLnZRnvD4Mbzr4jc h3jjBbhP5NV6On/fziVlZq0ZObEmncj8tDKemRIBPLZiGusAd/UcxLNsDakehx6+ EX5mwEWRE9bqLjEd/0l3gCYNhOQ985irsh2QFWc8Iad7+ytYNhSK3H7hU6su4boZ o1VZu12mT9PJ2yTsoINiAvAapOxyjDMKhIYzEAhhFpm/SQh0tgHgdnYpnOdTkQ/X OEjdtgKnzIveqBnfSlzHEeVg9QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFMjvPUhC iR/fQ5Xm2Psh+lb5QDtHMB8GA1UdIwQYMBaAFD+8OvQxAs7aT6D3+pvZGy1lNG1u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MURGOC8yNkU1MzExNDU1 MDYxMUVEOTUwNkMwNDVDNEY5QUUwMi9QN3c2OURFQ3p0cFBvUGY2bTlrYkxXVTBi VzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1A3dzY5REVDenRwUG9QZjZtOWtiTFdVMGJXNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjFERjgvMjZFNTMxMTQ1NTA2MTFFRDk1MDZDMDQ1QzRGOUFFMDIvN0MxODNCQ0VF MkFDMTFFRUFDNDQ0NzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFn+hwwDwQCAAIwCQMHACABDfFFQDANBgkqhkiG9w0BAQsF AAOCAQEADYMVSgWkKLN811Lbdx2umMvcxuFjeoPsMwDBwQb1iM/+wZoAxNYVWWTv fRKDleDn7SETBTNvteVwtE25R+AcHolNIY4pwzEg7IC2GXSt1d8x4LRUySKKpdbt +oredtuPwElnx0HGAAgsnlYWch0kXOMKfl3KL62uK8qgvVhbK0t3BKHmg0zK5iap uIazaeaJQtm95qTrQGdL1gS+pn08FyHRIZcI96++rGFT7uTUn1VwICiQcukU3Dki 7rbpnsRxiFb+Dxcra54eR003uzFN9/6Oyr8ULRyuKlNF1/f6h1lJb476p6NO5qvC LUTZDq0OnIEopXhY7y45vvvKzYQolw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:50 2024 by rpki-client on console-fra.rpki-client.org