$ rpki-client -vvf rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/F19DA35AC6C211EC87251528C4F9AE02.roa File: F19DA35AC6C211EC87251528C4F9AE02.roa (raw, json) Hash identifier: AmgmjBfamPYZPViCl3kuvn8G5sH5j/syqOSUyub68c8= Subject key identifier: C2:AA:B6:3B:E7:3F:BC:98:0F:C7:04:BD:CE:FC:53:37:15:10:96:91 Certificate issuer: /CN=A918D1A4/serialNumber=B2DBAD05B69F4797EEF71F03D65ABEADD2892C80 Certificate serial: 02AC Authority key identifier: B2:DB:AD:05:B6:9F:47:97:EE:F7:1F:03:D6:5A:BE:AD:D2:89:2C:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stutBbafR5fu9x8D1lq-rdKJLIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/F19DA35AC6C211EC87251528C4F9AE02.roa Signing time: Sun 15 Sep 2024 04:44:46 +0000 ROA not before: Sun 15 Sep 2024 04:44:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 132742 IP address blocks: 43.239.164.0/22 maxlen: 24 103.35.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/stutBbafR5fu9x8D1lq-rdKJLIA.crl rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/stutBbafR5fu9x8D1lq-rdKJLIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stutBbafR5fu9x8D1lq-rdKJLIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 684 (0x2ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D1A4/serialNumber=B2DBAD05B69F4797EEF71F03D65ABEADD2892C80 Validity Not Before: Sep 15 04:44:46 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e6663d-e008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d3:7e:9a:77:95:7e:30:cc:ab:90:1d:5a:a8: f2:af:a1:98:12:ff:5a:eb:d5:a2:68:c8:b0:39:20: 59:9b:73:f3:d0:a9:a6:c1:8b:41:a1:ad:cb:05:26: 9b:39:72:7e:4a:49:ab:28:2e:47:b9:86:25:02:4b: 89:a7:29:02:6f:d0:7e:ba:81:97:e2:9a:c9:da:39: fa:db:70:b5:da:bd:63:1d:98:92:d9:26:d5:a8:09: ce:eb:f6:0d:d6:f9:55:2e:60:bb:f9:0d:b1:6c:3f: 2b:7d:67:62:ea:5b:8d:9a:3a:0a:a0:2c:f2:0d:bf: 22:c7:60:cf:31:ce:41:7d:38:e9:bd:bb:dd:ac:b4: 2f:15:7d:96:3c:5a:4f:97:dc:22:66:f7:c6:cd:5c: e8:04:1b:f8:05:5e:d4:7c:5f:19:80:5d:62:44:b1: 2d:a0:4a:21:b4:e5:01:11:43:e0:a2:6b:b8:c3:62: ef:a7:c9:6b:c6:91:4e:bd:d5:41:5b:c7:cb:0e:80: 43:ba:7f:4d:37:00:bd:81:94:92:21:1f:8a:9a:4c: 13:30:3a:fc:a8:a2:a6:9c:ee:2f:27:24:13:4d:f7: bb:3f:80:79:73:b9:76:ae:0d:d2:ce:cd:28:3f:1d: e4:f0:6a:80:6b:63:dc:e7:4a:bb:31:a3:6f:c7:7b: bf:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:AA:B6:3B:E7:3F:BC:98:0F:C7:04:BD:CE:FC:53:37:15:10:96:91 X509v3 Authority Key Identifier: keyid:B2:DB:AD:05:B6:9F:47:97:EE:F7:1F:03:D6:5A:BE:AD:D2:89:2C:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/stutBbafR5fu9x8D1lq-rdKJLIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/stutBbafR5fu9x8D1lq-rdKJLIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D1A4/1EB9E3A6C6C011EC96C0DD23C4F9AE02/F19DA35AC6C211EC87251528C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.164.0/22 103.35.84.0/22 Signature Algorithm: sha256WithRSAEncryption 9b:db:dd:e6:d3:91:22:ad:06:c7:27:fe:b1:58:9c:77:ad:e5: 12:17:4b:2b:94:3e:5f:18:f5:8f:c2:5b:40:83:ff:cf:63:6e: 57:c9:e5:a3:63:a6:fd:65:c8:a0:2a:00:c6:bf:24:7e:2a:69: dd:73:37:81:a8:59:31:ce:46:d5:7a:9b:2b:1e:09:b7:0e:52: e2:24:89:d5:b8:5a:9f:ff:69:72:1c:cc:45:3f:c9:7e:36:08: cb:56:af:97:5c:82:90:bd:87:29:1d:29:c7:b4:4e:8e:e0:e8: 91:35:13:f3:76:4f:68:f6:8f:9e:37:9c:b6:63:b3:bb:fa:b0: e5:23:a3:9f:9d:7d:08:da:2e:e2:62:f4:66:23:31:f7:eb:18: 12:40:65:60:f8:40:63:ed:d4:15:08:ee:e1:1a:ff:4c:53:77: 12:0c:d8:90:6d:71:6a:39:64:3b:ad:7f:a1:0c:d5:00:fd:7e: 88:25:12:ca:09:b7:c2:0b:79:89:1f:e8:21:02:19:8d:5d:2a: 81:0a:8b:a5:41:02:a9:52:90:44:12:7c:da:2e:52:fb:4d:79: 6b:8f:6a:f1:05:75:cc:27:3c:5e:28:03:11:dd:97:b2:55:38: 18:7b:35:9b:e2:b3:68:ac:0f:53:3a:82:8c:3e:7a:88:5f:6a: 51:03:ee:ae -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAqwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQxQTQxMTAvBgNVBAUTKEIyREJBRDA1QjY5RjQ3OTdFRUY3MUYwM0Q2NUFCRUFE RDI4OTJDODAwHhcNMjQwOTE1MDQ0NDQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU2NjYzZC1lMDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzNN+mneVfjDMq5AdWqjyr6GYEv9a69WiaMiwOSBZm3Pz0KmmwYtBoa3LBSab OXJ+SkmrKC5HuYYlAkuJpykCb9B+uoGX4prJ2jn623C12r1jHZiS2SbVqAnO6/YN 1vlVLmC7+Q2xbD8rfWdi6luNmjoKoCzyDb8ix2DPMc5BfTjpvbvdrLQvFX2WPFpP l9wiZvfGzVzoBBv4BV7UfF8ZgF1iRLEtoEohtOUBEUPgomu4w2Lvp8lrxpFOvdVB W8fLDoBDun9NNwC9gZSSIR+KmkwTMDr8qKKmnO4vJyQTTfe7P4B5c7l2rg3Szs0o Px3k8GqAa2Pc50q7MaNvx3u/AwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMKqtjvn P7yYD8cEvc78UzcVEJaRMB8GA1UdIwQYMBaAFLLbrQW2n0eX7vcfA9Zavq3SiSyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDFBNC8xRUI5RTNBNkM2 QzAxMUVDOTZDMEREMjNDNEY5QUUwMi9zdHV0QmJhZlI1ZnU5eDhEMWxxLXJkS0pM SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3N0dXRCYmFmUjVmdTl4OEQxbHEtcmRLSkxJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQxQTQvMUVCOUUzQTZDNkMwMTFFQzk2QzBERDIzQzRGOUFFMDIvRjE5REEzNUFD NkMyMTFFQzg3MjUxNTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr76QDBAJnI1QwDQYJKoZIhvcNAQELBQADggEBAJvb3ebT kSKtBscn/rFYnHet5RIXSyuUPl8Y9Y/CW0CD/89jblfJ5aNjpv1lyKAqAMa/JH4q ad1zN4GoWTHORtV6myseCbcOUuIkidW4Wp//aXIczEU/yX42CMtWr5dcgpC9hykd Kce0To7g6JE1E/N2T2j2j543nLZjs7v6sOUjo5+dfQjaLuJi9GYjMffrGBJAZWD4 QGPt1BUI7uEa/0xTdxIM2JBtcWo5ZDutf6EM1QD9foglEsoJt8ILeYkf6CECGY1d KoEKi6VBAqlSkEQSfNouUvtNeWuPavEFdcwnPF4oAxHdl7JVOBh7NZvis2isD1M6 gow+eohfalED7q4= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:00 2024 by rpki-client on console-fra.rpki-client.org