$ rpki-client -vvf rpki.apnic.net/member_repository/A918ACB2/9FE760A6B83C11EE8741902EC4F9AE02/B66B434EBCE011EE98AEB646C4F9AE02.roa File: B66B434EBCE011EE98AEB646C4F9AE02.roa (raw, json) Hash identifier: 4+NB3j+Ku9z9DW7nQRzRq87llzJ2sOudlesGDx2vWI8= Subject key identifier: 1F:E0:AF:6E:CD:B0:9A:83:96:20:13:E2:38:03:A3:FD:BF:D6:AF:05 Certificate issuer: /CN=A918ACB2/serialNumber=E88861FF4A45380267A81B58FA99E489AD001BBD Certificate serial: A2 Authority key identifier: E8:88:61:FF:4A:45:38:02:67:A8:1B:58:FA:99:E4:89:AD:00:1B:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ihh_0pFOAJnqBtY-pnkia0AG70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ACB2/9FE760A6B83C11EE8741902EC4F9AE02/B66B434EBCE011EE98AEB646C4F9AE02.roa Signing time: Tue 05 Nov 2024 04:38:09 +0000 ROA not before: Tue 05 Nov 2024 04:38:09 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 138329 IP address blocks: 103.71.222.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ACB2/9FE760A6B83C11EE8741902EC4F9AE02/6Ihh_0pFOAJnqBtY-pnkia0AG70.crl rsync://rpki.apnic.net/member_repository/A918ACB2/9FE760A6B83C11EE8741902EC4F9AE02/6Ihh_0pFOAJnqBtY-pnkia0AG70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ihh_0pFOAJnqBtY-pnkia0AG70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ACB2/serialNumber=E88861FF4A45380267A81B58FA99E489AD001BBD Validity Not Before: Nov 5 04:38:09 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6729a131-ad13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:4b:f6:ff:b4:c6:86:c7:0b:f6:90:fd:fa:7a: 36:75:d5:04:52:42:1c:9a:f6:17:86:52:83:ae:ea: a6:c5:f4:54:9f:3b:96:97:ab:5a:d4:65:28:29:9f: 61:8f:a4:fc:08:0a:5b:88:08:54:22:c1:a0:72:9b: ad:95:e3:4c:5a:2e:79:a8:04:59:75:d1:67:8e:04: 34:60:6b:01:b4:31:a0:43:fd:e8:00:d4:64:0a:f5: 53:21:94:b1:c9:a4:7c:35:d4:b0:01:c6:a9:80:01: 10:07:62:a4:97:ed:e9:2c:cf:cd:08:40:92:3d:ea: 12:50:6f:4e:97:5f:f1:b8:89:f0:e2:90:8c:51:e2: b8:3f:55:74:e7:75:7e:c7:14:ba:b5:53:6c:c7:9e: 6a:88:ad:90:57:a0:e7:99:83:aa:24:ae:6f:0b:9a: aa:79:f1:e0:6a:20:8d:8f:33:5d:63:75:0e:a5:35: 2b:2e:6e:59:cf:fe:e8:05:9b:bb:b3:3a:7d:d6:69: 5a:0c:5d:f8:1a:f3:fe:da:b1:d3:f4:c0:00:51:9d: 52:22:1c:a0:b8:65:52:37:60:2a:a9:3c:91:65:aa: e6:d3:6b:c1:c5:b6:cc:65:68:a6:a1:fd:77:08:72: 27:50:65:99:a4:a0:10:fc:3d:c9:7d:cb:9c:cf:dc: a9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:E0:AF:6E:CD:B0:9A:83:96:20:13:E2:38:03:A3:FD:BF:D6:AF:05 X509v3 Authority Key Identifier: keyid:E8:88:61:FF:4A:45:38:02:67:A8:1B:58:FA:99:E4:89:AD:00:1B:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ACB2/9FE760A6B83C11EE8741902EC4F9AE02/6Ihh_0pFOAJnqBtY-pnkia0AG70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ihh_0pFOAJnqBtY-pnkia0AG70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ACB2/9FE760A6B83C11EE8741902EC4F9AE02/B66B434EBCE011EE98AEB646C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.71.222.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:89:fc:a8:a8:25:5b:76:bb:e3:7b:83:e9:ab:58:98:cf:e2: b9:86:c2:2a:e3:4f:b8:f1:9c:f2:5d:b1:e5:7b:98:63:4d:98: 5b:b2:8f:8c:c8:71:2d:f2:68:cc:07:47:10:c7:df:9c:85:5f: 24:fd:50:ca:ac:6f:32:d4:ee:55:0d:9a:93:1d:0c:84:0f:32: ef:71:36:9b:b5:eb:bd:68:70:12:87:42:43:1c:5c:f5:fe:aa: f8:46:d5:dd:de:ad:72:01:45:70:89:90:56:68:15:fa:2b:39: 38:77:6d:96:bc:22:b2:89:20:eb:96:ea:97:23:a7:7f:48:cb: f2:f0:07:c9:ab:61:2f:a6:53:60:cc:be:a8:08:72:f8:38:c5: 27:de:59:02:cc:21:6d:31:87:60:ac:e6:b5:7a:d3:c3:55:83: 7f:f7:17:4a:b4:5a:2d:ab:00:1c:dc:ab:c8:6e:a3:8f:c3:05: fe:db:27:41:99:a6:ac:2b:3f:92:59:98:41:da:70:d0:f1:c8: 9f:06:93:59:6c:90:e5:3e:e9:89:2f:cb:11:47:51:86:49:98: cf:fe:d9:91:60:6a:c2:c4:3a:b2:d5:16:d7:1e:1f:66:5d:ef: 24:db:0e:9b:44:57:f2:2f:f8:24:19:67:f3:c1:2b:b5:8d:0b: b3:33:f3:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFDQjIxMTAvBgNVBAUTKEU4ODg2MUZGNEE0NTM4MDI2N0E4MUI1OEZBOTlFNDg5 QUQwMDFCQkQwHhcNMjQxMTA1MDQzODA5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5YTEzMS1hZDEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4kv2/7TGhscL9pD9+no2ddUEUkIcmvYXhlKDruqmxfRUnzuWl6ta1GUoKZ9h j6T8CApbiAhUIsGgcputleNMWi55qARZddFnjgQ0YGsBtDGgQ/3oANRkCvVTIZSx yaR8NdSwAcapgAEQB2Kkl+3pLM/NCECSPeoSUG9Ol1/xuInw4pCMUeK4P1V053V+ xxS6tVNsx55qiK2QV6DnmYOqJK5vC5qqefHgaiCNjzNdY3UOpTUrLm5Zz/7oBZu7 szp91mlaDF34GvP+2rHT9MAAUZ1SIhyguGVSN2AqqTyRZarm02vBxbbMZWimof13 CHInUGWZpKAQ/D3Jfcucz9ypPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB/gr27N sJqDliAT4jgDo/2/1q8FMB8GA1UdIwQYMBaAFOiIYf9KRTgCZ6gbWPqZ5ImtABu9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUNCMi85RkU3NjBBNkI4 M0MxMUVFODc0MTkwMkVDNEY5QUUwMi82SWhoXzBwRk9BSm5xQnRZLXBua2lhMEFH NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZJaGhfMHBGT0FKbnFCdFktcG5raWEwQUc3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFDQjIvOUZFNzYwQTZCODNDMTFFRTg3NDE5MDJFQzRGOUFFMDIvQjY2QjQzNEVC Q0UwMTFFRTk4QUVCNjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnR94wDQYJKoZIhvcNAQELBQADggEBAFyJ/KioJVt2u+N7 g+mrWJjP4rmGwirjT7jxnPJdseV7mGNNmFuyj4zIcS3yaMwHRxDH35yFXyT9UMqs bzLU7lUNmpMdDIQPMu9xNpu1671ocBKHQkMcXPX+qvhG1d3erXIBRXCJkFZoFfor OTh3bZa8IrKJIOuW6pcjp39Iy/LwB8mrYS+mU2DMvqgIcvg4xSfeWQLMIW0xh2Cs 5rV608NVg3/3F0q0Wi2rABzcq8huo4/DBf7bJ0GZpqwrP5JZmEHacNDxyJ8Gk1ls kOU+6YkvyxFHUYZJmM/+2ZFgasLEOrLVFtceH2Zd7yTbDptEV/Iv+CQZZ/PBK7WN C7Mz8+4= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org