$ rpki-client -vvf rpki.apnic.net/member_repository/A9180161/78309E24FF2011EBA06F520DC4F9AE02/7EE8D4EAFF2311EB9FF89E53C4F9AE02.roa File: 7EE8D4EAFF2311EB9FF89E53C4F9AE02.roa (raw, json) Hash identifier: vc1gtB9xAcIGraqnYKfjHKZi9FvOmzyeoP+IzPibr9k= Subject key identifier: 03:E5:82:86:D2:ED:A7:0E:82:91:1A:91:4F:96:C2:45:96:C8:C1:58 Certificate issuer: /CN=A9180161/serialNumber=C9522C38B95E1981D83DAF3A7635B3190940FC5B Certificate serial: 0444 Authority key identifier: C9:52:2C:38:B9:5E:19:81:D8:3D:AF:3A:76:35:B3:19:09:40:FC:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVIsOLleGYHYPa86djWzGQlA_Fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180161/78309E24FF2011EBA06F520DC4F9AE02/7EE8D4EAFF2311EB9FF89E53C4F9AE02.roa Signing time: Thu 29 Feb 2024 01:43:47 +0000 ROA not before: Thu 29 Feb 2024 01:43:47 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136248 IP address blocks: 103.84.252.0/22 maxlen: 22 103.84.252.0/23 maxlen: 23 103.84.252.0/24 maxlen: 24 103.84.253.0/24 maxlen: 24 103.84.254.0/23 maxlen: 23 103.84.254.0/24 maxlen: 24 103.84.255.0/24 maxlen: 24 2400:a540::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180161/78309E24FF2011EBA06F520DC4F9AE02/yVIsOLleGYHYPa86djWzGQlA_Fs.crl rsync://rpki.apnic.net/member_repository/A9180161/78309E24FF2011EBA06F520DC4F9AE02/yVIsOLleGYHYPa86djWzGQlA_Fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVIsOLleGYHYPa86djWzGQlA_Fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1092 (0x444) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180161/serialNumber=C9522C38B95E1981D83DAF3A7635B3190940FC5B Validity Not Before: Feb 29 01:43:47 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65dfe153-90e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:35:35:f0:43:7d:22:07:19:a6:63:a9:19:66: 24:6f:d6:31:52:a8:a6:4d:e0:80:63:a9:1d:9a:c6: 08:c2:63:c7:3e:84:d1:c0:73:f9:95:d7:aa:bf:58: c6:2c:43:2b:2a:ab:c8:9a:dd:5d:6d:2c:8d:fc:66: 73:5d:41:cf:2b:28:41:7f:be:b6:79:13:e9:52:a2: 68:8a:77:fd:a0:4d:84:84:73:5d:b3:1a:2b:bd:88: b6:5b:0d:42:ac:a6:25:a8:6c:eb:5f:fc:fa:14:15: c3:a5:cc:28:c5:f3:dd:38:94:22:6c:9d:57:25:42: 51:a2:4b:f6:60:b7:36:60:34:ed:c3:6a:e4:9d:83: d6:d6:4a:51:76:cd:f2:f6:70:e5:47:d7:30:b9:97: cb:0a:99:e6:5b:10:73:3d:f6:b7:6e:f3:58:6f:f0: a9:ac:49:51:b6:3a:34:a6:97:ef:b3:28:93:46:43: 74:df:41:f2:71:13:c3:18:22:64:4c:12:33:be:a0: b1:ec:e8:9c:cf:b4:2c:99:a7:74:69:dc:91:49:f4: aa:2d:b9:d6:4c:82:d3:73:7b:79:fd:6f:e3:da:cd: af:82:9e:4f:0a:ba:8a:fa:52:39:85:14:96:a6:2d: 5b:25:26:8a:dc:58:63:dd:a7:d0:54:32:08:2b:d8: 56:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:E5:82:86:D2:ED:A7:0E:82:91:1A:91:4F:96:C2:45:96:C8:C1:58 X509v3 Authority Key Identifier: keyid:C9:52:2C:38:B9:5E:19:81:D8:3D:AF:3A:76:35:B3:19:09:40:FC:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180161/78309E24FF2011EBA06F520DC4F9AE02/yVIsOLleGYHYPa86djWzGQlA_Fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yVIsOLleGYHYPa86djWzGQlA_Fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180161/78309E24FF2011EBA06F520DC4F9AE02/7EE8D4EAFF2311EB9FF89E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.252.0/22 IPv6: 2400:a540::/32 Signature Algorithm: sha256WithRSAEncryption 57:c6:44:ce:61:75:8b:6b:b2:a2:0e:ba:37:5c:37:e7:99:0d: f5:4b:ba:6c:4b:7c:fc:bd:4a:07:ac:46:fd:0d:41:d6:90:6c: c3:06:9b:b2:2a:aa:7e:a0:ed:68:2a:07:b3:8f:cd:97:06:15: 39:9b:df:79:6e:4f:03:9c:3d:55:d4:ec:e3:08:de:ed:42:c7: cd:52:19:65:85:84:1d:17:c1:ed:f6:85:f9:da:55:3d:3a:f2: a6:e3:ff:f1:07:40:cd:a9:0a:2c:a2:41:27:ac:dc:c2:f5:c6: 96:2d:45:41:5a:25:fa:e1:3c:3d:23:b6:a8:ce:a5:47:f7:29: 66:0e:b4:69:26:38:44:25:19:26:20:a2:8d:2c:9d:de:0c:12: 66:95:71:74:15:6a:38:35:ac:a8:c7:ab:e4:ce:ea:ce:00:9e: f9:19:3f:5b:8d:07:cf:32:8c:95:0f:fd:a0:be:76:4f:64:7d: d3:39:ba:bc:88:6b:e6:bc:66:73:d6:82:87:32:7f:f9:4f:f3: 9d:28:84:6a:03:88:e4:c1:b4:3d:10:47:03:42:85:e7:7c:70: cd:25:01:11:42:96:59:98:6a:1e:c6:3a:28:b1:c6:f7:19:e7: 43:72:d2:dc:af:d5:61:82:55:90:6e:84:d1:83:ad:bb:71:1b: c9:9f:d6:d9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBEQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAxNjExMTAvBgNVBAUTKEM5NTIyQzM4Qjk1RTE5ODFEODNEQUYzQTc2MzVCMzE5 MDk0MEZDNUIwHhcNMjQwMjI5MDE0MzQ3WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRmZTE1My05MGUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArDU18EN9IgcZpmOpGWYkb9YxUqimTeCAY6kdmsYIwmPHPoTRwHP5ldeqv1jG LEMrKqvImt1dbSyN/GZzXUHPKyhBf762eRPpUqJoinf9oE2EhHNdsxorvYi2Ww1C rKYlqGzrX/z6FBXDpcwoxfPdOJQibJ1XJUJRokv2YLc2YDTtw2rknYPW1kpRds3y 9nDlR9cwuZfLCpnmWxBzPfa3bvNYb/CprElRtjo0ppfvsyiTRkN030HycRPDGCJk TBIzvqCx7Oicz7Qsmad0adyRSfSqLbnWTILTc3t5/W/j2s2vgp5PCrqK+lI5hRSW pi1bJSaK3Fhj3afQVDIIK9hWMwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAPlgobS 7acOgpEakU+WwkWWyMFYMB8GA1UdIwQYMBaAFMlSLDi5XhmB2D2vOnY1sxkJQPxb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDE2MS83ODMwOUUyNEZG MjAxMUVCQTA2RjUyMERDNEY5QUUwMi95VklzT0xsZUdZSFlQYTg2ZGpXekdRbEFf RnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lWSXNPTGxlR1lIWVBhODZkald6R1FsQV9Gcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAxNjEvNzgzMDlFMjRGRjIwMTFFQkEwNkY1MjBEQzRGOUFFMDIvN0VFOEQ0RUFG RjIzMTFFQjlGRjg5RTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnVPwwDQQCAAIwBwMFACQApUAwDQYJKoZIhvcNAQELBQAD ggEBAFfGRM5hdYtrsqIOujdcN+eZDfVLumxLfPy9SgesRv0NQdaQbMMGm7Iqqn6g 7WgqB7OPzZcGFTmb33luTwOcPVXU7OMI3u1Cx81SGWWFhB0Xwe32hfnaVT068qbj //EHQM2pCiyiQSes3ML1xpYtRUFaJfrhPD0jtqjOpUf3KWYOtGkmOEQlGSYgoo0s nd4MEmaVcXQVajg1rKjHq+TO6s4AnvkZP1uNB88yjJUP/aC+dk9kfdM5uryIa+a8 ZnPWgocyf/lP850ohGoDiOTBtD0QRwNChed8cM0lARFCllmYah7GOiixxvcZ50Ny 0tyv1WGCVZBuhNGDrbtxG8mf1tk= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:23 2024 by rpki-client on console-ams.rpki-client.org