$ rpki-client -vvf rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/85521A14F2B911ECB45D2B31C4F9AE02.roa File: 85521A14F2B911ECB45D2B31C4F9AE02.roa (raw, json) Hash identifier: X1xqnsDeKiYFNZzPlE2ipd+1nyq5hczEhn+2xy3Ueek= Subject key identifier: 40:BA:D2:F2:2C:BA:85:68:D3:E8:7B:78:A9:A3:16:00:06:E1:9F:1D Certificate issuer: /CN=A918AF08/serialNumber=7EE0C6A28B759F72D5DC9A5895038BBAB94A8614 Certificate serial: 0BF7 Authority key identifier: 7E:E0:C6:A2:8B:75:9F:72:D5:DC:9A:58:95:03:8B:BA:B9:4A:86:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/85521A14F2B911ECB45D2B31C4F9AE02.roa Signing time: Tue 30 Jul 2024 18:56:44 +0000 ROA not before: Tue 30 Jul 2024 18:56:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 137422 IP address blocks: 103.233.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.crl rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3063 (0xbf7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AF08/serialNumber=7EE0C6A28B759F72D5DC9A5895038BBAB94A8614 Validity Not Before: Jul 30 18:56:44 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9376c-83e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:85:cc:d2:09:6b:22:ca:5f:a1:27:a8:bd:b5: 1d:71:b3:9a:a6:ea:98:e8:0b:4e:73:3c:2d:3f:31: 27:6c:77:59:39:ff:00:8b:b0:10:87:b0:ea:16:ae: 01:a8:82:d2:68:51:7a:0a:4d:9f:c5:72:69:47:5c: 5b:b9:57:a8:f8:43:e3:b6:b2:f7:32:97:53:8b:0e: 96:36:41:81:b2:f9:81:34:0a:e0:ad:d9:f0:f2:c6: b5:da:cc:96:6a:88:2d:8d:a0:ba:b1:69:8f:87:ed: 93:e8:27:5f:c4:ab:9f:bb:5b:22:ef:ed:95:72:25: 0c:38:e9:24:63:09:ef:1a:fc:36:ff:9d:fd:e6:d2: 94:b9:21:1d:1c:ed:b3:79:93:ca:1f:d0:62:c3:eb: 2d:7e:21:1c:a4:02:01:1a:5a:a8:70:07:36:a9:57: b0:f8:99:71:78:89:38:18:5e:62:3d:67:fa:5f:65: b0:d3:c3:c2:ec:9c:74:7a:91:45:6b:8f:18:61:2f: 1d:3f:b4:56:4d:2e:c0:bf:df:bd:6a:2d:6e:f6:8e: 33:f4:4c:6f:e2:c6:96:91:c0:36:8a:3c:e6:c2:02: 9f:9f:e7:fd:fb:0a:84:c8:49:2c:55:c1:91:47:0b: 06:81:f8:93:e0:e4:0b:a1:0b:81:7c:2a:82:9a:67: 1b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:BA:D2:F2:2C:BA:85:68:D3:E8:7B:78:A9:A3:16:00:06:E1:9F:1D X509v3 Authority Key Identifier: keyid:7E:E0:C6:A2:8B:75:9F:72:D5:DC:9A:58:95:03:8B:BA:B9:4A:86:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/85521A14F2B911ECB45D2B31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.233.202.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:e9:7c:4a:8e:63:93:c6:6e:0b:7e:e8:b5:db:4a:63:29:96: 8c:f8:26:d3:45:3a:a7:d5:13:dd:ec:3a:36:c5:cd:6e:77:8a: 1d:10:4a:e0:9d:3c:e6:a2:20:a4:50:2b:7e:94:1c:6b:36:b7: 9a:71:a8:a8:cc:e4:85:47:d1:fa:92:1e:7d:50:ed:b5:8c:8f: d1:96:75:0e:60:da:74:7c:d4:54:f0:c8:3b:81:8e:3c:8c:e7: de:26:94:3e:e7:37:3e:99:b9:eb:d4:46:6b:d5:71:35:46:55: 4a:82:b6:48:38:0f:3f:87:d4:d2:82:5f:02:4b:82:88:ec:23: ec:4d:6e:5d:39:57:e9:96:48:5d:5c:6b:6e:37:f7:7b:be:0a: fc:22:86:a0:7e:fe:fe:d3:dc:cb:8c:c1:95:db:b4:77:7e:f4: 63:df:2d:dc:32:0f:c7:c1:57:c7:8b:c4:e9:81:2b:05:3b:52: 94:73:9f:eb:0d:9f:80:a4:9d:7b:2a:2f:3b:58:8b:f0:ad:64: 62:e6:cb:42:f6:23:36:1c:01:7b:b3:9a:da:fd:aa:df:d2:1d: 9c:ab:95:23:8f:85:3d:94:58:e3:32:6c:cd:71:99:02:6f:d5: da:5d:d1:38:46:68:4d:b8:2e:2e:54:79:2b:d6:db:e7:a7:e6: c4:82:ad:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC/cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFGMDgxMTAvBgNVBAUTKDdFRTBDNkEyOEI3NTlGNzJENURDOUE1ODk1MDM4QkJB Qjk0QTg2MTQwHhcNMjQwNzMwMTg1NjQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5Mzc2Yy04M2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA44XM0glrIspfoSeovbUdcbOapuqY6AtOczwtPzEnbHdZOf8Ai7AQh7DqFq4B qILSaFF6Ck2fxXJpR1xbuVeo+EPjtrL3MpdTiw6WNkGBsvmBNArgrdnw8sa12syW aogtjaC6sWmPh+2T6CdfxKufu1si7+2VciUMOOkkYwnvGvw2/5395tKUuSEdHO2z eZPKH9Biw+stfiEcpAIBGlqocAc2qVew+JlxeIk4GF5iPWf6X2Ww08PC7Jx0epFF a48YYS8dP7RWTS7Av9+9ai1u9o4z9Exv4saWkcA2ijzmwgKfn+f9+wqEyEksVcGR RwsGgfiT4OQLoQuBfCqCmmcbKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEC60vIs uoVo0+h7eKmjFgAG4Z8dMB8GA1UdIwQYMBaAFH7gxqKLdZ9y1dyaWJUDi7q5SoYU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUYwOC9CMEY1Mzc2Q0ZB QzAxMUU5OTREOTIwNjVDNEY5QUUwMi9mdURHb290MW4zTFYzSnBZbFFPTHVybEto aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1REdvb3QxbjNMVjNKcFlsUU9MdXJsS2hoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFGMDgvQjBGNTM3NkNGQUMwMTFFOTk0RDkyMDY1QzRGOUFFMDIvODU1MjFBMTRG MkI5MTFFQ0I0NUQyQjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn6cowDQYJKoZIhvcNAQELBQADggEBAA3pfEqOY5PGbgt+ 6LXbSmMploz4JtNFOqfVE93sOjbFzW53ih0QSuCdPOaiIKRQK36UHGs2t5pxqKjM 5IVH0fqSHn1Q7bWMj9GWdQ5g2nR81FTwyDuBjjyM594mlD7nNz6ZuevURmvVcTVG VUqCtkg4Dz+H1NKCXwJLgojsI+xNbl05V+mWSF1ca24393u+CvwihqB+/v7T3MuM wZXbtHd+9GPfLdwyD8fBV8eLxOmBKwU7UpRzn+sNn4CknXsqLztYi/CtZGLmy0L2 IzYcAXuzmtr9qt/SHZyrlSOPhT2UWOMybM1xmQJv1dpd0ThGaE24Li5UeSvW2+en 5sSCreU= -----END CERTIFICATE-----Generated at Sun Nov 24 19:46:57 2024 by rpki-client on console-fra.rpki-client.org