$ rpki-client -vvf rpki.apnic.net/member_repository/A918216E/AFFEC4100B6E11ED97358810C4F9AE02/D26D6D160BF111EDBBF4F61BC4F9AE02.roa File: D26D6D160BF111EDBBF4F61BC4F9AE02.roa (raw, json) Hash identifier: WqjZAsQr/HLYxK8PcAumByn22k0e0D3wGPxVIBEBQ6w= Subject key identifier: B0:84:B5:D1:F4:0B:ED:8B:02:80:A8:79:1B:A2:0C:20:93:52:DC:87 Certificate issuer: /CN=A918216E/serialNumber=647E9CCC4B698815938C3B367BCE3082030E2347 Certificate serial: 01EA Authority key identifier: 64:7E:9C:CC:4B:69:88:15:93:8C:3B:36:7B:CE:30:82:03:0E:23:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH6czEtpiBWTjDs2e84wggMOI0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918216E/AFFEC4100B6E11ED97358810C4F9AE02/D26D6D160BF111EDBBF4F61BC4F9AE02.roa Signing time: Sat 03 Aug 2024 03:54:32 +0000 ROA not before: Sat 03 Aug 2024 03:54:32 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150135 IP address blocks: 103.191.174.0/23 maxlen: 23 103.191.174.0/24 maxlen: 24 103.191.175.0/24 maxlen: 24 2001:df1:7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918216E/AFFEC4100B6E11ED97358810C4F9AE02/ZH6czEtpiBWTjDs2e84wggMOI0c.crl rsync://rpki.apnic.net/member_repository/A918216E/AFFEC4100B6E11ED97358810C4F9AE02/ZH6czEtpiBWTjDs2e84wggMOI0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH6czEtpiBWTjDs2e84wggMOI0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 490 (0x1ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918216E/serialNumber=647E9CCC4B698815938C3B367BCE3082030E2347 Validity Not Before: Aug 3 03:54:32 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ada9f8-55ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:67:71:36:a8:37:24:86:ed:0a:10:ad:e1:e2: 08:6a:b3:ff:5d:5f:97:99:18:aa:e4:38:c6:37:8f: 5f:78:70:05:b2:f8:88:f9:67:62:76:e6:9f:1c:09: 4f:bf:07:17:c2:93:08:5f:5a:ff:f4:74:96:42:72: 42:38:44:cd:f5:55:51:f8:6c:fd:ab:f7:0f:84:23: 45:7b:72:03:0e:66:e3:a7:e5:08:cd:07:5a:a0:38: a8:ba:33:57:d2:46:37:b7:2c:ab:52:aa:a2:62:2d: e0:9b:52:a0:db:49:35:18:59:a2:c2:2c:c0:f4:7b: 24:9a:dd:ca:ba:fe:24:d7:15:e9:31:57:39:db:e2: 10:2d:df:b8:74:ac:fb:75:27:e4:cf:83:0d:c2:c2: 81:76:77:9f:44:93:1f:12:97:e7:d8:1e:31:63:c2: a6:9a:89:bd:1f:e1:f3:5f:09:7d:90:f0:8c:dc:c0: 2a:8f:74:22:b2:61:eb:2a:42:85:db:22:d2:a2:7a: 27:3a:b9:db:87:cb:5a:9a:5f:c6:aa:45:d4:df:f8: 61:ec:ed:1c:e9:49:8b:e8:c3:a1:c7:1d:45:00:78: 6f:07:53:a5:3c:d0:f6:2e:47:a6:76:66:ed:8a:54: fe:45:fb:17:dd:f8:07:f1:49:14:be:f1:74:e6:96: 9e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:84:B5:D1:F4:0B:ED:8B:02:80:A8:79:1B:A2:0C:20:93:52:DC:87 X509v3 Authority Key Identifier: keyid:64:7E:9C:CC:4B:69:88:15:93:8C:3B:36:7B:CE:30:82:03:0E:23:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918216E/AFFEC4100B6E11ED97358810C4F9AE02/ZH6czEtpiBWTjDs2e84wggMOI0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZH6czEtpiBWTjDs2e84wggMOI0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918216E/AFFEC4100B6E11ED97358810C4F9AE02/D26D6D160BF111EDBBF4F61BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.174.0/23 IPv6: 2001:df1:7c0::/48 Signature Algorithm: sha256WithRSAEncryption 87:4d:16:73:05:18:4b:98:72:b5:62:77:f7:d4:5f:90:2f:df: a9:07:55:76:62:3e:c7:4b:b2:cf:4a:0f:34:ef:7c:de:f8:f6: 04:85:8e:ba:a3:23:9b:15:09:c0:a7:19:ff:46:79:e9:4d:79: 6d:1e:52:e7:ba:dd:ee:a3:92:27:7d:c2:bc:02:0e:1b:9a:0d: b7:22:ed:7d:67:7d:25:7f:ad:11:d9:2b:02:2f:a3:51:0a:94: 39:51:76:29:eb:43:7b:d3:da:94:b8:9f:3d:62:aa:25:43:33: ac:5a:54:84:f7:9d:1f:70:17:6e:95:c2:a6:3d:53:33:c0:7a: 8e:4a:69:82:23:62:24:16:e4:b9:32:91:40:7c:39:67:c5:ba: 55:52:37:56:8b:4e:7c:b9:64:4e:90:71:51:ed:c8:6c:92:e0: 2c:58:06:d0:1a:ce:b1:59:23:d7:bd:de:ca:20:33:c2:dc:82: db:98:12:8c:22:70:ec:f2:38:13:8d:62:64:6a:a1:59:d4:30: 7d:02:79:d4:e6:a0:14:10:99:2f:ea:89:8e:0b:cf:58:ea:17: de:d3:c8:1a:dd:4e:da:f3:c5:92:ad:d3:fa:d7:8f:a3:73:3e: 1e:f5:1f:cf:8e:3b:9e:dd:94:5a:47:41:7c:34:9a:0c:03:60: 87:dd:e9:4f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODIxNkUxMTAvBgNVBAUTKDY0N0U5Q0NDNEI2OTg4MTU5MzhDM0IzNjdCQ0UzMDgy MDMwRTIzNDcwHhcNMjQwODAzMDM1NDMyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFkYTlmOC01NWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo2dxNqg3JIbtChCt4eIIarP/XV+XmRiq5DjGN49feHAFsviI+WdiduafHAlP vwcXwpMIX1r/9HSWQnJCOETN9VVR+Gz9q/cPhCNFe3IDDmbjp+UIzQdaoDioujNX 0kY3tyyrUqqiYi3gm1Kg20k1GFmiwizA9Hskmt3Kuv4k1xXpMVc52+IQLd+4dKz7 dSfkz4MNwsKBdnefRJMfEpfn2B4xY8Kmmom9H+HzXwl9kPCM3MAqj3QismHrKkKF 2yLSononOrnbh8taml/GqkXU3/hh7O0c6UmL6MOhxx1FAHhvB1OlPND2Lkemdmbt ilT+RfsX3fgH8UkUvvF05paepwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLCEtdH0 C+2LAoCoeRuiDCCTUtyHMB8GA1UdIwQYMBaAFGR+nMxLaYgVk4w7NnvOMIIDDiNH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MjE2RS9BRkZFQzQxMDBC NkUxMUVEOTczNTg4MTBDNEY5QUUwMi9aSDZjekV0cGlCV1RqRHMyZTg0d2dnTU9J MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pINmN6RXRwaUJXVGpEczJlODR3Z2dNT0kwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODIxNkUvQUZGRUM0MTAwQjZFMTFFRDk3MzU4ODEwQzRGOUFFMDIvRDI2RDZEMTYw QkYxMTFFREJCRjRGNjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnv64wDwQCAAIwCQMHACABDfEHwDANBgkqhkiG9w0BAQsF AAOCAQEAh00WcwUYS5hytWJ399RfkC/fqQdVdmI+x0uyz0oPNO983vj2BIWOuqMj mxUJwKcZ/0Z56U15bR5S57rd7qOSJ33CvAIOG5oNtyLtfWd9JX+tEdkrAi+jUQqU OVF2KetDe9PalLifPWKqJUMzrFpUhPedH3AXbpXCpj1TM8B6jkppgiNiJBbkuTKR QHw5Z8W6VVI3VotOfLlkTpBxUe3IbJLgLFgG0BrOsVkj173eyiAzwtyC25gSjCJw 7PI4E41iZGqhWdQwfQJ51OagFBCZL+qJjgvPWOoX3tPIGt1O2vPFkq3T+tePo3M+ HvUfz447nt2UWkdBfDSaDANgh93pTw== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org