$ rpki-client -vvf rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/74EAEAC41ED211EFA618AB5EC4F9AE02.roa File: 74EAEAC41ED211EFA618AB5EC4F9AE02.roa (raw, json) Hash identifier: TR/9w+oCqGCqjfN5wK6VX8rAdbT3DnBKMOm4/b1iJZA= Subject key identifier: 8B:DE:C9:68:F1:28:94:A0:09:CA:C1:C2:C4:47:C0:6E:98:C6:EB:B2 Certificate issuer: /CN=A916879A/serialNumber=399A5E17D9CA43B6C33AC330206DCBDD935E7871 Certificate serial: 2B Authority key identifier: 39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/74EAEAC41ED211EFA618AB5EC4F9AE02.roa Signing time: Sat 03 Aug 2024 07:57:53 +0000 ROA not before: Sat 03 Aug 2024 07:57:53 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 148968 IP address blocks: 103.118.161.0/24 maxlen: 24 2001:df5:d500::/48 maxlen: 48 2001:df5:d501::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.crl rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916879A/serialNumber=399A5E17D9CA43B6C33AC330206DCBDD935E7871 Validity Not Before: Aug 3 07:57:53 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ade300-c8f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:56:a3:a4:a2:f1:1d:42:0a:49:0e:ec:99:e0: e2:1d:22:2e:ad:19:5d:bf:ae:be:0f:be:3b:07:0f: c6:fc:bd:78:db:95:d0:ca:99:25:cf:52:c3:e2:b6: 5f:17:d3:06:6a:66:b1:bb:fd:73:bd:9a:84:89:17: 5e:25:d9:08:97:c0:ad:d3:13:20:67:12:88:44:22: 93:17:fd:ec:ee:c4:25:f4:51:17:51:e9:3d:90:7b: 3e:19:42:7a:b6:d6:fd:31:fb:93:b4:04:2f:48:32: 20:9e:e3:d0:ba:36:0c:43:0b:e7:6d:d2:01:ce:aa: f6:0f:22:1d:d7:12:51:13:f2:4a:43:61:6b:bb:69: 79:70:87:d1:94:2e:44:69:e8:5f:eb:04:cf:3b:8d: 18:33:7a:85:32:25:6a:c4:d3:9a:55:72:bf:8c:1a: 4d:83:e7:15:ca:42:1d:0b:ba:6c:b7:6e:2c:0a:2b: be:5b:a7:d8:ab:fb:99:92:93:9b:38:8e:fa:d6:94: 17:af:a7:7a:33:39:8b:cc:b0:f3:d6:90:77:cf:c1: bb:18:10:34:28:a4:05:f8:57:f5:c0:f5:b2:24:f8: 4d:2d:26:8a:3d:a3:9d:21:56:1d:20:06:29:3a:ac: 9e:3e:ba:07:b5:59:9c:93:74:b2:87:b7:04:59:f6: 7d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:DE:C9:68:F1:28:94:A0:09:CA:C1:C2:C4:47:C0:6E:98:C6:EB:B2 X509v3 Authority Key Identifier: keyid:39:9A:5E:17:D9:CA:43:B6:C3:3A:C3:30:20:6D:CB:DD:93:5E:78:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OZpeF9nKQ7bDOsMwIG3L3ZNeeHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916879A/B670173C1C9B11EF8F45CC7DC4F9AE02/74EAEAC41ED211EFA618AB5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.118.161.0/24 IPv6: 2001:df5:d500::/47 Signature Algorithm: sha256WithRSAEncryption ab:42:b5:3c:11:de:ab:68:de:42:78:94:18:0e:0e:cb:a0:23: e7:da:97:d0:13:50:52:72:6c:05:ac:03:0b:a6:5c:7d:8f:ec: e5:b3:49:c5:c8:de:27:2d:86:21:43:13:92:78:8d:55:d8:b5: a4:8c:b0:42:8f:14:d8:64:b1:16:6a:e9:9a:b7:1f:7c:48:89: 4e:f2:ce:06:86:90:aa:de:15:56:32:bb:e7:d4:6d:9a:ef:14: da:b5:7b:63:db:05:30:fb:5a:2c:ad:84:41:18:ba:43:3c:3b: 7e:a7:18:e7:be:ec:ed:c4:00:24:ec:f8:6b:eb:ae:e3:a7:e6: 2d:46:02:2b:51:de:2c:3a:0d:97:b1:fe:83:40:ae:7d:8d:ee: 0f:35:e6:0d:aa:e0:ac:0d:6f:df:d3:55:8a:df:f6:fd:37:8a: e4:c0:8e:ad:85:24:01:91:de:22:d8:32:5f:10:ba:9e:17:89: 2b:94:ba:54:f8:1b:1a:a2:a1:f8:27:0c:70:a8:1f:24:0f:45: b8:fa:5b:a4:64:eb:b0:c6:9a:74:ba:97:39:4b:7e:7f:fb:84: 26:71:8d:aa:9e:d8:49:15:2b:80:95:2d:e4:3d:fa:a9:24:14: e1:c1:84:d1:d1:c2:15:84:68:a4:24:5c:e1:6d:79:22:53:16: 52:9e:15:9c -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODc5QTExMC8GA1UEBRMoMzk5QTVFMTdEOUNBNDNCNkMzM0FDMzMwMjA2RENCREQ5 MzVFNzg3MTAeFw0yNDA4MDMwNzU3NTNaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YWRlMzAwLWM4ZjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLVqOkovEdQgpJDuyZ4OIdIi6tGV2/rr4PvjsHD8b8vXjbldDKmSXPUsPitl8X 0wZqZrG7/XO9moSJF14l2QiXwK3TEyBnEohEIpMX/ezuxCX0URdR6T2Qez4ZQnq2 1v0x+5O0BC9IMiCe49C6NgxDC+dt0gHOqvYPIh3XElET8kpDYWu7aXlwh9GULkRp 6F/rBM87jRgzeoUyJWrE05pVcr+MGk2D5xXKQh0Lumy3biwKK75bp9ir+5mSk5s4 jvrWlBevp3ozOYvMsPPWkHfPwbsYEDQopAX4V/XA9bIk+E0tJoo9o50hVh0gBik6 rJ4+uge1WZyTdLKHtwRZ9n2rAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUi97JaPEo lKAJysHCxEfAbpjG67IwHwYDVR0jBBgwFoAUOZpeF9nKQ7bDOsMwIG3L3ZNeeHEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4NzlBL0I2NzAxNzNDMUM5 QjExRUY4RjQ1Q0M3REM0RjlBRTAyL09acGVGOW5LUTdiRE9zTXdJRzNMM1pOZWVI RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT1pwZUY5bktRN2JET3NNd0lHM0wzWk5lZUhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODc5QS9CNjcwMTczQzFDOUIxMUVGOEY0NUNDN0RDNEY5QUUwMi83NEVBRUFDNDFF RDIxMUVGQTYxOEFCNUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGd2oTAPBAIAAjAJAwcBIAEN9dUAMA0GCSqGSIb3DQEBCwUA A4IBAQCrQrU8Ed6raN5CeJQYDg7LoCPn2pfQE1BScmwFrAMLplx9j+zls0nFyN4n LYYhQxOSeI1V2LWkjLBCjxTYZLEWaumatx98SIlO8s4GhpCq3hVWMrvn1G2a7xTa tXtj2wUw+1osrYRBGLpDPDt+pxjnvuztxAAk7Phr667jp+YtRgIrUd4sOg2Xsf6D QK59je4PNeYNquCsDW/f01WK3/b9N4rkwI6thSQBkd4i2DJfELqeF4krlLpU+Bsa oqH4JwxwqB8kD0W4+lukZOuwxpp0upc5S35/+4QmcY2qnthJFSuAlS3kPfqpJBTh wYTR0cIVhGikJFzhbXkiUxZSnhWc -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:16 2024 by rpki-client on console-fra.rpki-client.org