$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/C68D1AE69B9611EFB95B8038C4F9AE02.roa File: C68D1AE69B9611EFB95B8038C4F9AE02.roa (raw, json) Hash identifier: m4mGRpOEYOVe+6oiKGj+nK4AgwsmVEPed7LrVSPSa4M= Subject key identifier: F9:82:85:47:11:97:DF:29:6C:E1:37:22:65:2B:7E:97:7C:02:61:50 Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 0333 Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/C68D1AE69B9611EFB95B8038C4F9AE02.roa Signing time: Tue 05 Nov 2024 16:55:35 +0000 ROA not before: Tue 05 Nov 2024 16:55:35 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 395793 IP address blocks: 103.229.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 18:57:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 819 (0x333) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: Nov 5 16:55:35 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=672a4e07-4121 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:80:78:58:b1:2e:9a:2b:68:f3:73:b6:74:33: 4b:85:dc:e7:dc:85:5b:4c:f0:11:0a:19:41:b1:35: 2c:32:6b:81:35:73:7e:50:06:68:38:a8:3b:e5:83: 23:1c:ee:5f:86:d5:98:69:c1:71:f2:4c:83:2a:1c: 0c:86:84:7f:11:87:bd:6b:27:c8:6e:c2:5c:83:1b: 1d:d2:fa:33:0e:ea:5e:70:96:6a:9a:65:1d:82:46: 3a:e0:57:0b:04:18:e4:29:24:fd:69:b1:e0:30:51: b0:96:11:ef:2b:0f:b8:ad:52:ec:37:39:6e:96:a1: 75:47:3f:47:9f:19:15:8c:36:b1:31:1f:bc:a7:d0: 81:96:44:b4:58:4b:62:9e:ea:70:ab:16:34:3b:91: d2:a4:72:d2:de:8e:7f:b2:35:f2:cf:c8:24:32:ea: 2f:de:7f:52:7b:75:c2:47:ba:d6:ed:13:b2:5a:b3: 0b:c4:be:b9:4e:69:8c:6b:7c:88:1c:71:b7:3b:1f: 1b:98:3b:c0:59:51:01:19:7f:20:44:c7:90:4a:90: e6:b4:6e:f1:a8:19:43:45:e1:1f:66:35:bb:d8:07: 8f:11:82:6c:cb:23:62:a3:43:72:bd:f1:d8:48:1c: 87:4d:72:2a:59:e6:12:26:7d:4d:00:8e:ee:12:12: fa:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:82:85:47:11:97:DF:29:6C:E1:37:22:65:2B:7E:97:7C:02:61:50 X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/C68D1AE69B9611EFB95B8038C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.118.0/24 Signature Algorithm: sha256WithRSAEncryption 84:1d:66:19:fe:54:5a:d4:cf:46:74:34:b9:10:68:48:fd:9d: 3a:85:20:3b:b4:37:f8:b9:41:94:30:d8:d1:af:67:71:92:9a: ae:dc:c1:75:a0:e5:67:f8:b1:80:bd:f0:57:05:0b:a0:6a:df: cc:4c:01:0e:e1:16:89:87:1d:7b:0b:b3:1c:70:8b:11:4f:04: 13:e5:bc:2d:52:60:ff:26:e6:3f:ff:d6:3c:e6:b0:c9:db:2b: 17:35:c0:f8:50:69:ff:6c:ae:01:19:97:ba:9c:4e:09:96:2b: 20:c9:15:d9:bb:40:b6:c6:36:31:d5:9b:0e:db:d6:b2:9c:70: 99:7b:5e:37:7b:4a:6c:c8:91:5e:97:9e:20:81:05:17:33:39: 99:f8:cf:7b:b8:01:78:b8:2c:ed:f5:8a:91:a8:36:5d:b6:25: f5:c6:82:7e:49:84:80:bc:b2:ac:cc:70:5e:37:83:2c:2b:45: ce:e0:24:b8:1c:16:f3:df:50:15:bf:24:e9:e3:41:3e:53:05: e6:22:63:1a:82:98:14:00:58:79:88:0f:c8:86:2b:29:f3:17: 1f:d3:01:28:62:f4:63:ac:99:d8:ce:3d:7a:c8:54:6b:4f:8d: 77:86:21:da:dc:e2:29:ea:f8:47:1d:69:d5:29:34:e8:5e:bb: 29:4a:50:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjQxMTA1MTY1NTM1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJhNGUwNy00MTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0oB4WLEumito83O2dDNLhdzn3IVbTPARChlBsTUsMmuBNXN+UAZoOKg75YMj HO5fhtWYacFx8kyDKhwMhoR/EYe9ayfIbsJcgxsd0vozDupecJZqmmUdgkY64FcL BBjkKST9abHgMFGwlhHvKw+4rVLsNzlulqF1Rz9HnxkVjDaxMR+8p9CBlkS0WEti nupwqxY0O5HSpHLS3o5/sjXyz8gkMuov3n9Se3XCR7rW7ROyWrMLxL65TmmMa3yI HHG3Ox8bmDvAWVEBGX8gRMeQSpDmtG7xqBlDReEfZjW72AePEYJsyyNio0NyvfHY SByHTXIqWeYSJn1NAI7uEhL6dQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPmChUcR l98pbOE3ImUrfpd8AmFQMB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvQzY4RDFBRTY5 Qjk2MTFFRkI5NUI4MDM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn5XYwDQYJKoZIhvcNAQELBQADggEBAIQdZhn+VFrUz0Z0 NLkQaEj9nTqFIDu0N/i5QZQw2NGvZ3GSmq7cwXWg5Wf4sYC98FcFC6Bq38xMAQ7h FomHHXsLsxxwixFPBBPlvC1SYP8m5j//1jzmsMnbKxc1wPhQaf9srgEZl7qcTgmW KyDJFdm7QLbGNjHVmw7b1rKccJl7Xjd7SmzIkV6XniCBBRczOZn4z3u4AXi4LO31 ipGoNl22JfXGgn5JhIC8sqzMcF43gywrRc7gJLgcFvPfUBW/JOnjQT5TBeYiYxqC mBQAWHmID8iGKynzFx/TAShi9GOsmdjOPXrIVGtPjXeGIdrc4inq+EcdadUpNOhe uylKUMY= -----END CERTIFICATE-----Generated at Thu Nov 21 21:04:29 2024 by rpki-client on console-fra.rpki-client.org