$ rpki-client -vvf rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/C434BE5682EC11EAB62A4C48C4F9AE02.roa File: C434BE5682EC11EAB62A4C48C4F9AE02.roa (raw, json) Hash identifier: 0z+i+4vthBs6NB0pezbuWjdQZaTf8bIramKuukDFfac= Subject key identifier: C5:87:2B:A7:51:98:14:BB:D8:DD:41:92:E1:27:53:26:6A:5E:71:22 Certificate issuer: /CN=A918AF08/serialNumber=7EE0C6A28B759F72D5DC9A5895038BBAB94A8614 Certificate serial: 0BF9 Authority key identifier: 7E:E0:C6:A2:8B:75:9F:72:D5:DC:9A:58:95:03:8B:BA:B9:4A:86:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/C434BE5682EC11EAB62A4C48C4F9AE02.roa Signing time: Tue 30 Jul 2024 18:56:46 +0000 ROA not before: Tue 30 Jul 2024 18:56:46 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 27435 IP address blocks: 103.66.130.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.crl rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:12:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3065 (0xbf9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918AF08/serialNumber=7EE0C6A28B759F72D5DC9A5895038BBAB94A8614 Validity Not Before: Jul 30 18:56:46 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9376e-f147 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c1:46:df:82:18:59:de:8e:08:e5:c3:27:30: af:55:6a:54:3a:4f:20:32:74:1b:3c:9e:4f:e4:91: 40:de:95:9d:45:b4:93:96:88:b2:39:0d:ab:79:d0: 79:08:92:72:67:e0:57:89:af:47:36:1f:ed:04:36: 49:e5:cc:87:83:07:cc:3d:b8:23:de:d7:8e:48:c3: 24:f7:28:54:d7:61:f3:69:28:83:1c:97:4b:a7:5c: 83:1e:13:2e:9f:91:c7:f9:92:97:eb:89:92:d6:a0: e3:59:f5:1b:cd:b1:06:95:94:d6:ca:26:6f:01:f5: bf:4c:26:8a:5d:dc:76:57:57:c8:c0:1b:d8:72:9f: f1:47:4c:c7:10:34:36:ff:6c:25:ea:63:df:98:15: 6a:3b:a3:56:53:6e:a6:2f:84:52:c3:20:75:cc:7c: f0:7f:c9:3f:2c:f6:cd:59:9a:4e:f1:2f:73:33:a0: b2:65:ec:f2:fc:1a:6c:1f:4a:78:b4:37:2a:fa:35: fd:6c:f9:38:2f:4a:9c:88:4c:87:57:29:f6:47:f3: 68:34:64:46:61:46:e0:e1:50:3c:85:58:34:b8:d9: 32:dd:80:7e:a0:0c:7f:54:f0:4a:ad:2c:fb:3c:f6: 2f:82:df:74:6c:bd:35:af:1a:1d:5e:e6:97:84:bc: c8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:87:2B:A7:51:98:14:BB:D8:DD:41:92:E1:27:53:26:6A:5E:71:22 X509v3 Authority Key Identifier: keyid:7E:E0:C6:A2:8B:75:9F:72:D5:DC:9A:58:95:03:8B:BA:B9:4A:86:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/fuDGoot1n3LV3JpYlQOLurlKhhQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fuDGoot1n3LV3JpYlQOLurlKhhQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918AF08/B0F5376CFAC011E994D92065C4F9AE02/C434BE5682EC11EAB62A4C48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.130.0/24 Signature Algorithm: sha256WithRSAEncryption 73:e8:43:10:1b:07:57:e4:16:8b:63:22:ae:67:61:35:a2:2a: 65:f1:32:c6:10:59:bb:dc:24:0a:38:24:5e:e6:ab:88:35:a5: 20:e3:5e:57:d1:88:23:81:72:fe:7c:35:72:89:58:46:23:41: 13:a8:cf:45:75:52:99:6b:1a:18:06:fa:6f:7b:83:a2:48:5a: fd:e8:15:22:4e:54:27:c7:18:05:62:8a:da:6d:f6:c1:12:56: 33:d2:21:c9:82:04:20:0d:ab:39:ad:66:8e:5e:ef:88:9f:c5: 1b:be:c3:81:af:08:66:7b:85:14:46:d0:ae:d8:47:c2:49:59: 38:73:a8:d9:98:09:42:cc:73:8c:95:99:c8:5f:9f:10:91:94: 40:9c:51:b8:8c:0f:a2:c3:fc:fc:24:6d:15:41:4e:f2:c7:b3: 0d:15:a8:bb:96:7f:d1:ed:72:64:26:01:34:95:e6:82:02:a2: 9b:10:14:dd:81:5c:e6:0e:b0:97:3b:17:90:3b:8d:d0:e1:40: 18:6a:67:f7:06:de:6e:d9:67:40:fe:a4:f0:2d:a7:10:f4:2f: 52:64:f1:0d:6a:a4:e0:b1:f2:9a:bd:fe:eb:f6:a9:d6:01:c7: 86:7c:f8:6a:c1:4a:dc:6a:27:ea:42:ab:64:be:11:2a:77:9e: 15:eb:82:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEFGMDgxMTAvBgNVBAUTKDdFRTBDNkEyOEI3NTlGNzJENURDOUE1ODk1MDM4QkJB Qjk0QTg2MTQwHhcNMjQwNzMwMTg1NjQ2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5Mzc2ZS1mMTQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1sFG34IYWd6OCOXDJzCvVWpUOk8gMnQbPJ5P5JFA3pWdRbSTloiyOQ2redB5 CJJyZ+BXia9HNh/tBDZJ5cyHgwfMPbgj3teOSMMk9yhU12HzaSiDHJdLp1yDHhMu n5HH+ZKX64mS1qDjWfUbzbEGlZTWyiZvAfW/TCaKXdx2V1fIwBvYcp/xR0zHEDQ2 /2wl6mPfmBVqO6NWU26mL4RSwyB1zHzwf8k/LPbNWZpO8S9zM6CyZezy/BpsH0p4 tDcq+jX9bPk4L0qciEyHVyn2R/NoNGRGYUbg4VA8hVg0uNky3YB+oAx/VPBKrSz7 PPYvgt90bL01rxodXuaXhLzIrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMWHK6dR mBS72N1BkuEnUyZqXnEiMB8GA1UdIwQYMBaAFH7gxqKLdZ9y1dyaWJUDi7q5SoYU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QUYwOC9CMEY1Mzc2Q0ZB QzAxMUU5OTREOTIwNjVDNEY5QUUwMi9mdURHb290MW4zTFYzSnBZbFFPTHVybEto aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Z1REdvb3QxbjNMVjNKcFlsUU9MdXJsS2hoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEFGMDgvQjBGNTM3NkNGQUMwMTFFOTk0RDkyMDY1QzRGOUFFMDIvQzQzNEJFNTY4 MkVDMTFFQUI2MkE0QzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnQoIwDQYJKoZIhvcNAQELBQADggEBAHPoQxAbB1fkFotj Iq5nYTWiKmXxMsYQWbvcJAo4JF7mq4g1pSDjXlfRiCOBcv58NXKJWEYjQROoz0V1 UplrGhgG+m97g6JIWv3oFSJOVCfHGAViitpt9sESVjPSIcmCBCANqzmtZo5e74if xRu+w4GvCGZ7hRRG0K7YR8JJWThzqNmYCULMc4yVmchfnxCRlECcUbiMD6LD/Pwk bRVBTvLHsw0VqLuWf9HtcmQmATSV5oICopsQFN2BXOYOsJc7F5A7jdDhQBhqZ/cG 3m7ZZ0D+pPAtpxD0L1Jk8Q1qpOCx8pq9/uv2qdYBx4Z8+GrBStxqJ+pCq2S+ESp3 nhXrgls= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:25 2024 by rpki-client on console-fra.rpki-client.org