$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/05F05106586011EE9399A92EC4F9AE02.roa File: 05F05106586011EE9399A92EC4F9AE02.roa (raw, json) Hash identifier: ZoyzDGshP3Xcoohd0LXUFxcHdBCls9Mtr+7VfTCfHng= Subject key identifier: 27:67:09:40:5B:6B:52:50:89:80:DA:65:F0:D3:F1:98:CC:D3:4E:EC Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 061C Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/05F05106586011EE9399A92EC4F9AE02.roa Signing time: Tue 06 Aug 2024 23:11:50 +0000 ROA not before: Tue 06 Aug 2024 23:11:50 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 55933 IP address blocks: 43.254.216.0/22 maxlen: 24 103.238.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1564 (0x61c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Aug 6 23:11:50 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b2adb5-e848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:f4:79:bc:91:26:10:42:eb:b1:ee:e1:72:32: 5e:6f:4c:14:62:b5:9a:8f:d6:9d:0c:b3:cd:fc:92: 19:67:ac:f3:15:0f:ed:97:25:95:f0:a9:a6:42:81: 79:b4:d3:18:eb:67:4c:dd:01:79:f1:cd:1f:6f:d8: 72:72:f0:cd:92:86:ca:e3:36:b7:94:8f:13:da:9e: 95:c7:64:a5:b2:a7:b4:44:66:67:b9:7a:c5:19:ac: e1:0e:0b:25:b2:fb:b2:1b:99:1a:07:9c:34:aa:4a: ec:e0:96:45:cf:1d:4b:34:d9:1b:e3:be:f0:2f:53: 2f:13:da:5f:90:08:32:d2:3f:46:1b:84:46:0e:2d: 2a:e3:5b:04:01:90:ca:f8:4f:9b:31:74:e2:a4:83: 91:04:99:28:eb:73:37:c1:fc:e2:e5:fe:4e:0e:d0: 6d:9b:04:59:56:0f:5c:c8:6c:54:a1:a9:9d:bc:48: 74:02:eb:2c:1c:d9:8a:07:16:91:87:16:57:ca:35: 6f:6e:c7:9e:5b:48:d4:9e:a7:2c:63:bb:6e:ef:bf: 97:ea:35:e6:87:cf:51:26:2a:52:55:71:5e:2e:4a: 5a:99:e2:c6:78:4c:cc:65:67:90:d1:20:16:44:2b: 57:84:0c:03:aa:82:e9:0a:ba:32:dd:fb:36:a0:1c: 1c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:67:09:40:5B:6B:52:50:89:80:DA:65:F0:D3:F1:98:CC:D3:4E:EC X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/05F05106586011EE9399A92EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.216.0/22 103.238.224.0/22 Signature Algorithm: sha256WithRSAEncryption bf:b0:5d:2d:5b:ba:e3:a2:b6:08:94:7b:6b:b7:6c:32:9e:7a: 90:8f:86:b1:02:77:ba:1b:46:ec:73:9a:22:11:61:7d:d2:af: 13:84:ae:a6:a6:c1:a5:f7:0f:05:34:5e:ad:95:fc:ed:08:da: 56:e5:9c:eb:95:ff:63:c4:31:e3:41:d2:5e:69:64:b1:75:f7: b7:9b:42:c1:38:ee:8e:be:4a:0f:75:72:55:a7:a2:7b:89:fa: 80:95:cb:d8:e0:55:13:e5:dd:a2:aa:e7:7a:3c:be:a4:32:aa: 3a:2a:21:d8:cf:ea:ce:f3:fa:82:f9:75:85:85:f8:e6:ce:24: aa:48:32:33:66:dc:84:5c:55:16:e4:7d:47:1e:44:17:91:bc: 3a:b2:03:d4:94:0c:e3:a3:70:09:ac:73:70:56:85:ba:c9:1c: e8:dc:07:fe:75:7f:cc:e6:ff:5e:da:67:ab:e1:e4:5d:ac:e1: 61:70:4f:b7:5b:76:1b:1c:b3:6f:19:ff:ba:59:77:75:30:b6: 8c:c0:e0:ac:18:9a:2a:fb:ea:99:ad:1e:b3:a9:42:8d:86:5d: 5e:5a:7e:0d:ff:aa:ee:ac:95:85:7d:be:e5:7b:ed:46:2b:bc: 3c:60:2a:1d:1e:5c:61:16:91:15:73:10:3f:f3:5f:4e:79:75: 68:81:19:5d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjQwODA2MjMxMTUwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyYWRiNS1lODQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy/R5vJEmEELrse7hcjJeb0wUYrWaj9adDLPN/JIZZ6zzFQ/tlyWV8KmmQoF5 tNMY62dM3QF58c0fb9hycvDNkobK4za3lI8T2p6Vx2Slsqe0RGZnuXrFGazhDgsl svuyG5kaB5w0qkrs4JZFzx1LNNkb477wL1MvE9pfkAgy0j9GG4RGDi0q41sEAZDK +E+bMXTipIORBJko63M3wfzi5f5ODtBtmwRZVg9cyGxUoamdvEh0AussHNmKBxaR hxZXyjVvbseeW0jUnqcsY7tu77+X6jXmh89RJipSVXFeLkpameLGeEzMZWeQ0SAW RCtXhAwDqoLpCroy3fs2oBwcTwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCdnCUBb a1JQiYDaZfDT8ZjM007sMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvMDVGMDUxMDY1 ODYwMTFFRTkzOTlBOTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/tgDBAJn7uAwDQYJKoZIhvcNAQELBQADggEBAL+wXS1b uuOitgiUe2u3bDKeepCPhrECd7obRuxzmiIRYX3SrxOErqamwaX3DwU0Xq2V/O0I 2lblnOuV/2PEMeNB0l5pZLF197ebQsE47o6+Sg91clWnonuJ+oCVy9jgVRPl3aKq 53o8vqQyqjoqIdjP6s7z+oL5dYWF+ObOJKpIMjNm3IRcVRbkfUceRBeRvDqyA9SU DOOjcAmsc3BWhbrJHOjcB/51f8zm/17aZ6vh5F2s4WFwT7dbdhscs28Z/7pZd3Uw tozA4KwYmir76pmtHrOpQo2GXV5afg3/qu6slYV9vuV77UYrvDxgKh0eXGEWkRVz ED/zX055dWiBGV0= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:30 2024 by rpki-client on console-fra.rpki-client.org