$ rpki-client -vvf rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/22639692E6FC11EEB3BCD10EC4F9AE02.roa File: 22639692E6FC11EEB3BCD10EC4F9AE02.roa (raw, json) Hash identifier: F8HJkG6A+sNV4URumaZ8TJ8otFChvqAFM+yLclIRWz8= Subject key identifier: 01:64:C8:FB:38:F3:E9:1E:32:43:1E:F1:20:29:24:E8:3E:C2:78:8A Certificate issuer: /CN=A918E2AC/serialNumber=F47D0FBB6E8B64ECD991168D8F730F7891E4F44E Certificate serial: 0CA9 Authority key identifier: F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/22639692E6FC11EEB3BCD10EC4F9AE02.roa Signing time: Wed 20 Mar 2024 20:55:08 +0000 ROA not before: Wed 20 Mar 2024 20:55:08 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138581 IP address blocks: 103.133.204.0/22 maxlen: 23 103.133.205.0/24 maxlen: 24 2404:5340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:58:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3241 (0xca9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E2AC/serialNumber=F47D0FBB6E8B64ECD991168D8F730F7891E4F44E Validity Not Before: Mar 20 20:55:08 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65fb4d2c-be8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1a:d9:85:be:9c:1f:63:78:ef:62:7f:c4:29: 9c:0f:ba:96:74:bb:e9:a9:6e:e4:f5:2f:87:9f:9b: 01:71:43:c6:84:59:e7:a9:a1:b9:43:2f:b4:63:f0: 79:e9:30:b2:d7:32:90:a1:8d:38:58:8e:0d:96:c2: 0e:f6:8b:33:cd:8b:8c:17:7d:49:2c:04:f9:64:db: 7d:c0:c6:87:fb:8b:bb:e3:ba:7d:34:83:a2:e7:93: 76:db:ba:35:27:da:42:61:c0:2b:3d:20:d3:8e:ca: 5b:c2:24:45:d9:a0:f4:96:a6:0a:75:c0:53:a0:28: e8:dd:8d:5e:a5:1f:30:e7:9d:58:f0:c9:fb:f6:ae: b3:09:92:17:00:a3:53:4c:4c:30:4f:e0:70:c1:59: 93:0b:25:31:c1:8c:55:cf:2d:d6:f0:90:03:08:3a: 7d:07:e8:63:f2:9b:a9:dc:78:ab:b1:7e:0d:35:46: 9b:35:7d:f3:c5:1c:fb:d0:5a:76:f3:e4:d2:8f:12: ed:28:a4:b8:65:42:df:b6:3b:46:27:6f:c4:26:50: a3:c3:1a:48:de:a2:d0:b4:d0:8c:f8:9d:50:47:86: 38:89:a3:fd:a8:d3:b3:95:62:73:d2:e6:d2:74:e6: 01:cf:a9:6a:db:13:9c:60:9e:df:df:1f:af:9f:ee: 0f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:64:C8:FB:38:F3:E9:1E:32:43:1E:F1:20:29:24:E8:3E:C2:78:8A X509v3 Authority Key Identifier: keyid:F4:7D:0F:BB:6E:8B:64:EC:D9:91:16:8D:8F:73:0F:78:91:E4:F4:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/9H0Pu26LZOzZkRaNj3MPeJHk9E4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9H0Pu26LZOzZkRaNj3MPeJHk9E4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E2AC/64171316CA3211E98BFCD352C4F9AE02/22639692E6FC11EEB3BCD10EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.204.0/22 IPv6: 2404:5340::/32 Signature Algorithm: sha256WithRSAEncryption d4:5c:62:fc:04:f7:23:ee:4c:eb:3c:e6:c7:74:56:d8:ea:2b: b9:f1:be:30:88:d9:9c:34:aa:0e:f4:15:bc:13:ad:bd:65:28: 56:d3:5f:14:3b:57:d6:1d:80:95:f0:cc:15:8f:8e:48:57:94: 84:f8:f4:d1:ba:66:bd:b6:61:e5:dd:53:ac:03:c0:83:02:4d: 52:ec:58:10:d3:96:db:58:ca:38:55:3a:a6:09:f4:7d:bd:2b: fe:75:8f:22:fc:55:c9:be:c3:77:fb:7c:8c:b3:f1:1c:51:ed: fd:06:fd:7b:64:c5:09:46:31:a1:1d:60:c1:e7:77:16:a9:25: 07:96:07:2e:07:f2:0d:b4:b0:f6:3b:d6:64:51:e0:40:7a:a1: d2:56:9d:8d:56:be:e3:69:d3:2a:dc:0f:ec:df:73:a5:4c:fb: 2e:52:a0:51:ec:d8:4c:41:18:eb:23:8d:bb:ab:c4:f8:23:0a: 6f:cc:80:17:d5:e5:10:e7:0d:2d:ca:9c:34:af:1e:60:7c:6d: a7:6d:fe:90:ba:9a:8c:8b:23:5e:0b:2b:54:be:3f:be:f8:7c: 67:d1:a4:14:30:9e:20:25:e4:f1:e1:e9:d0:32:ce:72:02:cd: da:bc:b4:31:a2:34:72:5a:2f:de:9b:43:37:a0:cf:12:3e:48: b4:64:10:8b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDKkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEUyQUMxMTAvBgNVBAUTKEY0N0QwRkJCNkU4QjY0RUNEOTkxMTY4RDhGNzMwRjc4 OTFFNEY0NEUwHhcNMjQwMzIwMjA1NTA4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiNGQyYy1iZThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhrZhb6cH2N472J/xCmcD7qWdLvpqW7k9S+Hn5sBcUPGhFnnqaG5Qy+0Y/B5 6TCy1zKQoY04WI4NlsIO9oszzYuMF31JLAT5ZNt9wMaH+4u747p9NIOi55N227o1 J9pCYcArPSDTjspbwiRF2aD0lqYKdcBToCjo3Y1epR8w551Y8Mn79q6zCZIXAKNT TEwwT+BwwVmTCyUxwYxVzy3W8JADCDp9B+hj8pup3HirsX4NNUabNX3zxRz70Fp2 8+TSjxLtKKS4ZULftjtGJ2/EJlCjwxpI3qLQtNCM+J1QR4Y4iaP9qNOzlWJz0ubS dOYBz6lq2xOcYJ7f3x+vn+4PawIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAFkyPs4 8+keMkMe8SApJOg+wniKMB8GA1UdIwQYMBaAFPR9D7tui2Ts2ZEWjY9zD3iR5PRO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTJBQy82NDE3MTMxNkNB MzIxMUU5OEJGQ0QzNTJDNEY5QUUwMi85SDBQdTI2TFpPelprUmFOajNNUGVKSGs5 RTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlIMFB1MjZMWk96WmtSYU5qM01QZUpIazlFNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEUyQUMvNjQxNzEzMTZDQTMyMTFFOThCRkNEMzUyQzRGOUFFMDIvMjI2Mzk2OTJF NkZDMTFFRUIzQkNEMTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnhcwwDQQCAAIwBwMFACQEU0AwDQYJKoZIhvcNAQELBQAD ggEBANRcYvwE9yPuTOs85sd0VtjqK7nxvjCI2Zw0qg70FbwTrb1lKFbTXxQ7V9Yd gJXwzBWPjkhXlIT49NG6Zr22YeXdU6wDwIMCTVLsWBDTlttYyjhVOqYJ9H29K/51 jyL8Vcm+w3f7fIyz8RxR7f0G/XtkxQlGMaEdYMHndxapJQeWBy4H8g20sPY71mRR 4EB6odJWnY1WvuNp0yrcD+zfc6VM+y5SoFHs2ExBGOsjjburxPgjCm/MgBfV5RDn DS3KnDSvHmB8badt/pC6moyLI14LK1S+P774fGfRpBQwniAl5PHh6dAyznICzdq8 tDGiNHJaL96bQzegzxI+SLRkEIs= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:00 2024 by rpki-client on console-fra.rpki-client.org