$ rpki-client -vvf rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/8DB89FC2572311EA9D4ED562C4F9AE02.roa File: 8DB89FC2572311EA9D4ED562C4F9AE02.roa (raw, json) Hash identifier: uIlmxyBkIRVTtfqtlVJMMghD2D4RDYW/jdv8jycrnJo= Subject key identifier: AD:88:85:6C:DF:5F:7A:30:FC:1C:09:82:2C:AD:56:E4:6A:AE:4C:8F Certificate issuer: /CN=A918EAFB/serialNumber=F61FBAA61929D100FA99DBD480CE8C2C4EE73FF1 Certificate serial: 0A23 Authority key identifier: F6:1F:BA:A6:19:29:D1:00:FA:99:DB:D4:80:CE:8C:2C:4E:E7:3F:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h-6phkp0QD6mdvUgM6MLE7nP_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/8DB89FC2572311EA9D4ED562C4F9AE02.roa Signing time: Wed 14 Aug 2024 20:18:15 +0000 ROA not before: Wed 14 Aug 2024 20:18:15 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 27471 IP address blocks: 103.246.36.0/24 maxlen: 24 103.246.37.0/24 maxlen: 24 103.246.38.0/24 maxlen: 24 103.246.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/9h-6phkp0QD6mdvUgM6MLE7nP_E.crl rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/9h-6phkp0QD6mdvUgM6MLE7nP_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h-6phkp0QD6mdvUgM6MLE7nP_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2595 (0xa23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EAFB/serialNumber=F61FBAA61929D100FA99DBD480CE8C2C4EE73FF1 Validity Not Before: Aug 14 20:18:15 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66bd1107-11c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d4:f1:66:cd:b6:97:90:d7:81:bc:be:f9:87: 4c:a4:b9:f4:9b:63:89:17:5f:c5:79:39:6d:1e:6a: b8:f0:5b:b9:86:7d:54:51:71:6b:91:24:5a:f6:75: 7c:65:0e:15:e6:57:2c:4a:98:9f:a8:48:ba:a5:14: d7:71:39:91:fa:21:07:c5:0f:1a:2a:b4:4f:fe:fe: 1e:4c:da:74:31:16:3b:2a:96:c4:06:2b:82:df:40: 19:63:76:2d:88:fd:3f:23:a0:7c:2f:be:6f:11:02: 57:af:49:fe:c7:52:86:9b:f5:58:39:dc:ff:bf:dc: 28:56:28:ae:78:a2:b3:05:17:bf:fb:b9:26:44:e2: 06:59:ea:e5:6e:a5:1c:44:8a:fa:15:b7:0e:a7:7e: 19:dc:9c:1f:45:40:32:a1:ed:ed:34:3c:62:f6:7e: d9:3d:e3:57:81:4d:94:00:df:f7:aa:d0:d0:dd:de: a7:b5:ad:6f:04:cb:37:41:7e:a6:5a:fb:70:59:5e: 21:1f:47:82:cc:9a:b1:57:92:d4:88:bd:85:78:b9: cd:ab:17:56:dc:5b:f6:62:2a:26:48:ba:a0:f7:ad: 0a:3a:6d:99:48:41:d2:9a:12:c1:35:a2:1b:d5:d3: 98:79:4a:76:e6:61:48:94:8f:4d:1f:8f:16:75:a5: ba:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:88:85:6C:DF:5F:7A:30:FC:1C:09:82:2C:AD:56:E4:6A:AE:4C:8F X509v3 Authority Key Identifier: keyid:F6:1F:BA:A6:19:29:D1:00:FA:99:DB:D4:80:CE:8C:2C:4E:E7:3F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/9h-6phkp0QD6mdvUgM6MLE7nP_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9h-6phkp0QD6mdvUgM6MLE7nP_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EAFB/094F746E54F711EA838FA84FC4F9AE02/8DB89FC2572311EA9D4ED562C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.246.36.0/22 Signature Algorithm: sha256WithRSAEncryption 2d:78:d8:b2:5c:06:e4:b8:a3:24:c7:ab:8c:45:78:76:ac:e7: 06:f8:96:bd:f7:d6:15:08:bc:87:df:d4:40:42:13:72:5a:97: 3a:90:91:89:db:9d:6f:c8:a7:78:02:7d:d4:22:18:98:fc:b3: a6:34:7b:c7:55:ed:8f:e2:e0:3f:5d:ff:1f:3e:3b:23:08:65: 29:bc:8a:f5:b5:87:57:6c:7b:ea:73:57:e2:51:9f:de:fe:fe: 21:ab:71:9e:24:b1:f4:b6:1d:69:80:6b:4b:c7:4c:51:23:cd: 55:fa:58:6c:a9:bd:6d:91:83:bc:8e:a2:1c:b9:ef:9b:77:a6: 75:a4:3a:50:6e:a1:29:89:2d:71:bc:98:a3:85:b6:32:5a:a3: e9:eb:2c:44:c9:7c:c6:88:35:a8:7e:79:f9:13:9b:9f:ec:9f: a8:bf:1e:68:a2:fb:a9:57:3b:46:9e:eb:3b:96:01:46:4d:2c: c5:21:b5:f6:0d:1f:cd:eb:b5:11:0a:c8:b6:07:f2:b1:26:24: 3c:0f:fe:b6:84:7a:ea:8e:7a:68:f3:f3:30:ed:3c:c6:5d:72: 28:79:c3:68:e9:dc:b6:2c:fc:7b:57:fa:ce:44:5f:c5:28:1d: ba:73:37:c4:c6:05:ab:5e:16:8f:4a:ab:89:46:a3:c2:ac:01: 32:e2:fe:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVBRkIxMTAvBgNVBAUTKEY2MUZCQUE2MTkyOUQxMDBGQTk5REJENDgwQ0U4QzJD NEVFNzNGRjEwHhcNMjQwODE0MjAxODE1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJkMTEwNy0xMWMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNTxZs22l5DXgby++YdMpLn0m2OJF1/FeTltHmq48Fu5hn1UUXFrkSRa9nV8 ZQ4V5lcsSpifqEi6pRTXcTmR+iEHxQ8aKrRP/v4eTNp0MRY7KpbEBiuC30AZY3Yt iP0/I6B8L75vEQJXr0n+x1KGm/VYOdz/v9woViiueKKzBRe/+7kmROIGWerlbqUc RIr6FbcOp34Z3JwfRUAyoe3tNDxi9n7ZPeNXgU2UAN/3qtDQ3d6nta1vBMs3QX6m WvtwWV4hH0eCzJqxV5LUiL2FeLnNqxdW3Fv2YiomSLqg960KOm2ZSEHSmhLBNaIb 1dOYeUp25mFIlI9NH48WdaW6xwIDAQABo4IClTCCApEwHQYDVR0OBBYEFK2IhWzf X3ow/BwJgiytVuRqrkyPMB8GA1UdIwQYMBaAFPYfuqYZKdEA+pnb1IDOjCxO5z/x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUFGQi8wOTRGNzQ2RTU0 RjcxMUVBODM4RkE4NEZDNEY5QUUwMi85aC02cGhrcDBRRDZtZHZVZ002TUxFN25Q X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzloLTZwaGtwMFFENm1kdlVnTTZNTEU3blBfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVBRkIvMDk0Rjc0NkU1NEY3MTFFQTgzOEZBODRGQzRGOUFFMDIvOERCODlGQzI1 NzIzMTFFQTlENEVENTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn9iQwDQYJKoZIhvcNAQELBQADggEBAC142LJcBuS4oyTH q4xFeHas5wb4lr331hUIvIff1EBCE3JalzqQkYnbnW/Ip3gCfdQiGJj8s6Y0e8dV 7Y/i4D9d/x8+OyMIZSm8ivW1h1dse+pzV+JRn97+/iGrcZ4ksfS2HWmAa0vHTFEj zVX6WGypvW2Rg7yOohy575t3pnWkOlBuoSmJLXG8mKOFtjJao+nrLETJfMaINah+ efkTm5/sn6i/Hmii+6lXO0ae6zuWAUZNLMUhtfYNH83rtREKyLYH8rEmJDwP/raE euqOemjz8zDtPMZdcih5w2jp3LYs/HtX+s5EX8UoHbpzN8TGBateFo9Kq4lGo8Ks ATLi/j8= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:55 2024 by rpki-client on console-ams.rpki-client.org