$ rpki-client -vvf rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/D8D89576CF2F11EC8378951DC4F9AE02.roa File: D8D89576CF2F11EC8378951DC4F9AE02.roa (raw, json) Hash identifier: 86l1R+M09/2NPXx9I8sqm1xbxQxFvP0FLDSgRGwtfyc= Subject key identifier: E7:3C:55:11:28:B2:06:E7:D5:40:CD:43:81:97:75:D2:18:5A:02:A1 Certificate issuer: /CN=A918769B/serialNumber=24CCE80DF0D48A6D0C391A3AF0DD644DDBFB75AB Certificate serial: 026D Authority key identifier: 24:CC:E8:0D:F0:D4:8A:6D:0C:39:1A:3A:F0:DD:64:4D:DB:FB:75:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JMzoDfDUim0MORo68N1kTdv7das.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/D8D89576CF2F11EC8378951DC4F9AE02.roa Signing time: Wed 29 May 2024 04:39:26 +0000 ROA not before: Wed 29 May 2024 04:39:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149811 IP address blocks: 103.186.242.0/24 maxlen: 24 103.186.243.0/24 maxlen: 24 2400:7660:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/JMzoDfDUim0MORo68N1kTdv7das.crl rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/JMzoDfDUim0MORo68N1kTdv7das.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JMzoDfDUim0MORo68N1kTdv7das.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 621 (0x26d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918769B/serialNumber=24CCE80DF0D48A6D0C391A3AF0DD644DDBFB75AB Validity Not Before: May 29 04:39:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6656b17e-2ad1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:d9:3c:b0:d2:a3:98:16:df:0e:90:52:8b:4c: f8:0e:24:40:0a:c4:4b:a3:73:92:3d:54:9d:10:a2: cf:3b:93:64:d6:d2:0d:4d:10:bc:61:83:2d:ff:2a: eb:a2:7e:48:7e:9a:8d:1f:a3:8c:4d:c7:f3:2d:a4: 2f:92:53:02:fd:48:46:5a:19:1f:55:e0:cb:85:78: 14:fe:c4:27:05:2e:02:1e:f3:0b:62:e3:67:66:c1: 2f:d4:ea:34:88:aa:19:6c:4c:3d:d0:59:0d:7f:b2: 99:41:fb:ae:6f:50:7f:4e:89:0b:20:12:52:ee:2c: 42:0a:9d:71:80:30:03:17:87:06:f7:15:47:66:0e: ba:bf:9c:40:62:89:92:bc:2b:6d:5b:34:2a:f5:04: dc:fe:62:47:10:e5:25:27:7d:1f:66:97:15:8b:16: 44:6e:ff:72:e4:15:b5:6f:8f:be:60:ed:dd:51:8c: ca:9f:da:1b:36:83:b5:29:58:95:a3:6f:c5:8b:98: 2e:2a:d3:6f:ec:d7:0f:6f:a9:c2:d2:a0:79:d8:51: 08:94:c9:99:88:a2:b4:0c:af:66:d9:80:40:5c:1f: 32:95:90:56:9b:3a:f8:0a:d6:b0:82:7d:21:68:3e: ba:f8:6c:8a:ac:b1:44:31:b3:e1:ad:b5:26:2f:c2: 90:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3C:55:11:28:B2:06:E7:D5:40:CD:43:81:97:75:D2:18:5A:02:A1 X509v3 Authority Key Identifier: keyid:24:CC:E8:0D:F0:D4:8A:6D:0C:39:1A:3A:F0:DD:64:4D:DB:FB:75:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/JMzoDfDUim0MORo68N1kTdv7das.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JMzoDfDUim0MORo68N1kTdv7das.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918769B/B0935D54CC6311EC9B8E962BC4F9AE02/D8D89576CF2F11EC8378951DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.242.0/23 IPv6: 2400:7660:ffff::/48 Signature Algorithm: sha256WithRSAEncryption 63:1d:1b:d2:e7:38:58:5c:01:89:16:87:56:67:f8:2e:1c:67: 34:03:80:59:c0:7f:6e:8d:2e:88:8e:22:a1:14:83:5a:26:9b: de:91:8c:54:de:e4:03:fa:93:8d:d4:0b:31:93:3a:64:da:5a: a6:a1:f8:71:ff:b1:dd:1e:32:5e:4b:51:6e:98:9a:54:fb:54: 0b:67:b4:53:f7:62:4d:93:fa:42:f8:6e:a7:30:59:a6:48:5b: fb:04:24:ab:48:9c:ff:10:1b:e8:96:2f:aa:e6:d5:cf:f3:9d: 08:08:33:00:71:c8:2d:a5:0f:e1:44:51:79:01:7b:14:cd:5d: 49:cb:12:a1:c1:8b:65:a6:55:46:3e:68:82:21:f9:ae:cf:9d: 2b:88:83:1a:98:6d:ab:07:8b:f5:02:26:a2:43:e8:8d:30:28: 9b:bb:13:92:7c:34:3b:ff:53:3b:0b:0e:8e:d3:ea:48:71:11: bf:b3:e4:b9:91:9e:0e:40:f6:d7:3e:47:6f:67:8e:46:db:fc: b7:b4:07:e1:c0:45:65:78:7f:31:9b:0e:89:4c:bb:e3:b6:43: 30:0c:41:47:25:0d:67:b6:f6:be:24:7f:ae:62:66:e3:dd:f7: 1b:35:6d:d1:0f:f4:57:8d:ac:1f:a6:8c:1f:55:6c:cf:ef:c2: 54:c3:7b:d7 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODc2OUIxMTAvBgNVBAUTKDI0Q0NFODBERjBENDhBNkQwQzM5MUEzQUYwREQ2NDRE REJGQjc1QUIwHhcNMjQwNTI5MDQzOTI2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU2YjE3ZS0yYWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt9k8sNKjmBbfDpBSi0z4DiRACsRLo3OSPVSdEKLPO5Nk1tINTRC8YYMt/yrr on5IfpqNH6OMTcfzLaQvklMC/UhGWhkfVeDLhXgU/sQnBS4CHvMLYuNnZsEv1Oo0 iKoZbEw90FkNf7KZQfuub1B/TokLIBJS7ixCCp1xgDADF4cG9xVHZg66v5xAYomS vCttWzQq9QTc/mJHEOUlJ30fZpcVixZEbv9y5BW1b4++YO3dUYzKn9obNoO1KViV o2/Fi5guKtNv7NcPb6nC0qB52FEIlMmZiKK0DK9m2YBAXB8ylZBWmzr4Ctawgn0h aD66+GyKrLFEMbPhrbUmL8KQOQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOc8VREo sgbn1UDNQ4GXddIYWgKhMB8GA1UdIwQYMBaAFCTM6A3w1IptDDkaOvDdZE3b+3Wr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzY5Qi9CMDkzNUQ1NEND NjMxMUVDOUI4RTk2MkJDNEY5QUUwMi9KTXpvRGZEVWltME1PUm82OE4xa1Rkdjdk YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pNem9EZkRVaW0wTU9SbzY4TjFrVGR2N2Rhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODc2OUIvQjA5MzVENTRDQzYzMTFFQzlCOEU5NjJCQzRGOUFFMDIvRDhEODk1NzZD RjJGMTFFQzgzNzg5NTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnuvIwDwQCAAIwCQMHACQAdmD//zANBgkqhkiG9w0BAQsF AAOCAQEAYx0b0uc4WFwBiRaHVmf4LhxnNAOAWcB/bo0uiI4ioRSDWiab3pGMVN7k A/qTjdQLMZM6ZNpapqH4cf+x3R4yXktRbpiaVPtUC2e0U/diTZP6QvhupzBZpkhb +wQkq0ic/xAb6JYvqubVz/OdCAgzAHHILaUP4URReQF7FM1dScsSocGLZaZVRj5o giH5rs+dK4iDGphtqweL9QImokPojTAom7sTknw0O/9TOwsOjtPqSHERv7PkuZGe DkD21z5Hb2eORtv8t7QH4cBFZXh/MZsOiUy747ZDMAxBRyUNZ7b2viR/rmJm4933 GzVt0Q/0V42sH6aMH1Vsz+/CVMN71w== -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:40 2024 by rpki-client on console-fra.rpki-client.org