$ rpki-client -vvf rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/DBB5A81E77D611E98792C466C4F9AE02.roa File: DBB5A81E77D611E98792C466C4F9AE02.roa (raw, json) Hash identifier: rYh7DLX0QOpcJaWgIoBnQP4DTxgE7Xhb6DwQPEWKynA= Subject key identifier: 30:65:6E:2E:E4:FE:2A:41:F3:4F:36:63:71:67:7C:31:27:FE:85:63 Certificate issuer: /CN=A918BFB8/serialNumber=4A44E0121BE8948BF7BC49CB03A63817A5BAD186 Certificate serial: 0E4C Authority key identifier: 4A:44:E0:12:1B:E8:94:8B:F7:BC:49:CB:03:A6:38:17:A5:BA:D1:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkTgEhvolIv3vEnLA6Y4F6W60YY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/DBB5A81E77D611E98792C466C4F9AE02.roa Signing time: Tue 30 Apr 2024 18:57:11 +0000 ROA not before: Tue 30 Apr 2024 18:57:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 59340 IP address blocks: 103.229.44.0/22 maxlen: 24 203.190.32.0/22 maxlen: 24 2400:d980::/32 maxlen: 36 2400:d980::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.crl rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkTgEhvolIv3vEnLA6Y4F6W60YY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3660 (0xe4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BFB8/serialNumber=4A44E0121BE8948BF7BC49CB03A63817A5BAD186 Validity Not Before: Apr 30 18:57:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66313f07-1fda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:5f:e8:ac:1f:10:15:e6:89:8a:5a:ec:9f:e0: c1:38:27:3c:21:96:14:82:04:31:4f:de:66:fa:77: 82:56:97:ee:f0:6c:0f:67:4a:d1:2e:7b:94:f1:37: 9e:dd:a3:99:ba:ca:fa:68:5a:6a:91:92:d6:45:ac: 88:d6:27:a5:88:4f:0a:7d:01:72:d4:6b:a1:58:bd: 45:c4:3f:9c:0a:13:d8:c4:dc:6b:70:90:91:78:0b: 42:c2:57:42:80:1e:bb:95:79:e6:c1:af:77:a2:79: e5:da:7e:c7:e4:50:7b:ed:41:0d:3e:e2:15:7d:8e: ab:98:92:da:de:bc:73:26:79:77:d2:35:c8:98:28: b2:f1:46:23:35:13:25:97:a9:ed:76:80:7a:2e:7b: 36:40:6f:52:de:7b:2e:90:b1:e6:ab:d8:ca:96:3a: 66:85:e6:b9:47:72:4c:d4:a9:36:a9:9d:a7:24:84: 2c:f0:2f:35:7c:fb:e9:92:91:5b:f6:4e:fa:65:f9: 65:d4:15:97:53:6b:1f:5b:49:5d:ad:00:28:6f:a2: a2:68:6d:7f:3f:46:01:86:4e:68:d1:1c:30:eb:a7: f7:59:4b:84:73:12:96:96:b4:1d:42:94:a6:bb:0c: 41:d2:0e:4e:bd:3c:16:b5:f3:5e:13:17:5b:b5:f3: c3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:65:6E:2E:E4:FE:2A:41:F3:4F:36:63:71:67:7C:31:27:FE:85:63 X509v3 Authority Key Identifier: keyid:4A:44:E0:12:1B:E8:94:8B:F7:BC:49:CB:03:A6:38:17:A5:BA:D1:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/SkTgEhvolIv3vEnLA6Y4F6W60YY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SkTgEhvolIv3vEnLA6Y4F6W60YY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BFB8/AB95B5A877D511E9ABC63A65C4F9AE02/DBB5A81E77D611E98792C466C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.44.0/22 203.190.32.0/22 IPv6: 2400:d980::/32 Signature Algorithm: sha256WithRSAEncryption 44:2e:d6:6b:94:1f:e0:ef:c6:da:c0:2a:ab:a9:78:c3:2d:c1: ef:8d:22:8e:16:1f:24:3c:20:28:ce:6a:87:94:c7:70:14:71: 4d:f0:c7:e9:93:93:a9:75:30:86:61:6e:ca:37:e6:30:41:59: 04:8b:40:00:dd:63:ed:a2:af:f6:d1:39:eb:79:b9:3d:50:87: 9e:42:58:44:8a:7d:94:8e:7f:ac:52:8d:da:22:d5:ca:9d:0f: 89:21:14:df:85:24:fb:c5:ea:22:70:bb:e0:51:38:13:3b:22: db:76:1d:17:dc:fc:14:0a:ef:40:9f:16:41:e2:35:c8:4b:da: 4a:58:12:64:c7:b7:02:f9:67:ba:71:9f:57:f5:6d:65:e2:b4: 32:75:7c:a8:f3:96:79:47:2e:c5:9f:ce:ac:81:5c:ad:d8:b1: ab:c6:b3:94:38:42:bb:2f:33:f3:1a:7a:f0:f9:43:75:ad:36: 45:25:d5:ed:d4:3c:6c:fb:03:00:b7:cc:b4:bb:16:f7:60:a2: 2f:88:92:bc:c9:aa:dc:8e:f3:f4:a5:17:2d:35:2a:b4:80:a5: f1:d0:58:93:1b:5c:31:72:89:81:e6:18:6d:ac:ca:19:63:bf: 3d:a4:7c:7e:0b:0c:fc:5a:56:c4:65:28:7c:98:99:d5:07:c9: 7b:5c:74:76 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJGQjgxMTAvBgNVBAUTKDRBNDRFMDEyMUJFODk0OEJGN0JDNDlDQjAzQTYzODE3 QTVCQUQxODYwHhcNMjQwNDMwMTg1NzExWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxM2YwNy0xZmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs1/orB8QFeaJilrsn+DBOCc8IZYUggQxT95m+neCVpfu8GwPZ0rRLnuU8Tee 3aOZusr6aFpqkZLWRayI1ieliE8KfQFy1GuhWL1FxD+cChPYxNxrcJCReAtCwldC gB67lXnmwa93onnl2n7H5FB77UENPuIVfY6rmJLa3rxzJnl30jXImCiy8UYjNRMl l6ntdoB6Lns2QG9S3nsukLHmq9jKljpmhea5R3JM1Kk2qZ2nJIQs8C81fPvpkpFb 9k76Zfll1BWXU2sfW0ldrQAob6KiaG1/P0YBhk5o0Rww66f3WUuEcxKWlrQdQpSm uwxB0g5OvTwWtfNeExdbtfPDZwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDBlbi7k /ipB8082Y3FnfDEn/oVjMB8GA1UdIwQYMBaAFEpE4BIb6JSL97xJywOmOBelutGG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkZCOC9BQjk1QjVBODc3 RDUxMUU5QUJDNjNBNjVDNEY5QUUwMi9Ta1RnRWh2b2xJdjN2RW5MQTZZNEY2VzYw WVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NrVGdFaHZvbEl2M3ZFbkxBNlk0RjZXNjBZWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJGQjgvQUI5NUI1QTg3N0Q1MTFFOUFCQzYzQTY1QzRGOUFFMDIvREJCNUE4MUU3 N0Q2MTFFOTg3OTJDNDY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn5SwDBALLviAwDQQCAAIwBwMFACQA2YAwDQYJKoZIhvcN AQELBQADggEBAEQu1muUH+DvxtrAKqupeMMtwe+NIo4WHyQ8ICjOaoeUx3AUcU3w x+mTk6l1MIZhbso35jBBWQSLQADdY+2ir/bROet5uT1Qh55CWESKfZSOf6xSjdoi 1cqdD4khFN+FJPvF6iJwu+BROBM7Itt2HRfc/BQK70CfFkHiNchL2kpYEmTHtwL5 Z7pxn1f1bWXitDJ1fKjzlnlHLsWfzqyBXK3YsavGs5Q4QrsvM/MaevD5Q3WtNkUl 1e3UPGz7AwC3zLS7Fvdgoi+IkrzJqtyO8/SlFy01KrSApfHQWJMbXDFyiYHmGG2s yhljvz2kfH4LDPxaVsRlKHyYmdUHyXtcdHY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org