$ rpki-client -vvf rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa File: B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa (raw, json) Hash identifier: TqzDGovwhtTAPmIXBsAGxjfJ3nw0cxE3m4Rbi1VLpSs= Subject key identifier: 9C:A0:FC:4F:79:0F:9C:A4:E4:8E:81:9E:4E:8F:DC:87:1D:2B:04:22 Certificate issuer: /CN=A918ED57/serialNumber=668872E87997B73B975FE3DAD4DACA8EBEC8EBA3 Certificate serial: 06F8 Authority key identifier: 66:88:72:E8:79:97:B7:3B:97:5F:E3:DA:D4:DA:CA:8E:BE:C8:EB:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa Signing time: Tue 10 Sep 2024 23:31:11 +0000 ROA not before: Tue 10 Sep 2024 23:31:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16552 IP address blocks: 43.247.168.0/22 maxlen: 24 103.14.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.crl rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1784 (0x6f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918ED57/serialNumber=668872E87997B73B975FE3DAD4DACA8EBEC8EBA3 Validity Not Before: Sep 10 23:31:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e0d6be-e9e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4a:4d:63:dc:eb:54:38:6c:ce:4d:3e:7b:c4: 2a:09:94:35:01:a7:69:45:eb:aa:3e:1d:50:e8:c3: 56:a6:1c:18:55:1d:94:72:11:d5:f5:9e:01:8e:26: bf:87:28:53:22:78:80:82:fb:15:07:0b:2c:54:a5: 10:00:a4:ba:1b:6d:e5:0a:48:09:ec:9d:be:e8:68: a1:15:f0:26:e0:be:f2:c8:0f:9b:38:60:d0:89:09: 7f:d3:75:b6:96:47:47:38:88:f7:f7:a4:96:0b:6b: 72:c1:79:33:ef:56:74:05:38:e7:09:68:5c:92:3d: d2:5e:6e:57:ba:20:2b:ba:2e:36:31:d7:23:db:13: 1d:6a:e9:61:df:90:d1:83:c9:1b:7d:90:93:77:7d: a1:4e:3e:85:69:cb:03:e8:7c:ee:17:3d:2a:fa:aa: b9:c8:84:8a:6c:41:17:6a:1c:b9:1c:57:6e:e2:47: c6:da:3a:96:64:16:99:ed:0c:a2:5a:45:23:df:d1: 27:a3:a2:f2:e0:3a:83:c4:05:b8:a1:51:95:f0:d7: 4f:12:00:4c:a6:2d:aa:65:4b:47:e8:27:cc:32:aa: 1e:44:97:22:c8:18:f4:d0:45:8a:71:49:49:3f:64: fb:48:21:9e:e5:4a:cd:8d:a0:19:04:97:48:61:a8: 9e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:A0:FC:4F:79:0F:9C:A4:E4:8E:81:9E:4E:8F:DC:87:1D:2B:04:22 X509v3 Authority Key Identifier: keyid:66:88:72:E8:79:97:B7:3B:97:5F:E3:DA:D4:DA:CA:8E:BE:C8:EB:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/Zohy6HmXtzuXX-Pa1NrKjr7I66M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zohy6HmXtzuXX-Pa1NrKjr7I66M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918ED57/5CD8244217B011EBB94DA714C4F9AE02/B4B34DA4D2C611ECBF3B3E53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.168.0/22 103.14.220.0/22 Signature Algorithm: sha256WithRSAEncryption 84:ba:fd:10:6b:19:3b:4e:76:f6:2b:a6:5c:e8:45:ca:e1:a3: 3a:c7:c7:5c:96:fe:e0:3d:85:8e:a1:4c:3d:05:55:90:30:1c: d2:7d:94:55:ca:23:ed:62:cd:01:9e:bb:2a:a7:39:68:b2:5d: 03:64:0e:64:cf:43:f0:d4:3e:a3:c3:79:0e:d2:c2:34:10:2a: 6d:f3:90:ba:9f:ec:a8:30:18:1a:a1:c4:ce:71:0d:24:ba:ff: c0:2f:63:ec:40:ec:62:c3:29:94:da:6d:2d:8b:fc:1b:c8:12: be:66:86:fa:19:67:3f:76:d5:ef:0b:7b:89:f7:08:d2:25:cf: a2:4e:77:22:a1:6c:9a:fe:9b:14:02:81:1c:df:48:ed:e3:c5: b8:e5:02:21:c6:a6:ba:f9:46:1b:e4:34:fb:84:fc:3a:88:a4: 89:67:6a:a0:b6:a4:dc:b3:10:29:e8:af:32:07:c8:fd:11:9e: 80:87:f0:b8:67:aa:89:fc:a4:d1:44:65:b4:75:78:46:db:9b: 48:1a:23:5f:21:31:09:0d:a8:1b:f2:a4:81:b0:b6:f1:34:9c: 50:91:30:e9:5c:82:01:8a:53:91:61:4a:2a:d3:ec:cb:b5:6b: fd:09:41:bd:df:88:61:70:48:a3:d7:94:68:4b:0d:1c:71:71: 62:da:d0:ee -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBvgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVENTcxMTAvBgNVBAUTKDY2ODg3MkU4Nzk5N0I3M0I5NzVGRTNEQUQ0REFDQThF QkVDOEVCQTMwHhcNMjQwOTEwMjMzMTExWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwZDZiZS1lOWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqkpNY9zrVDhszk0+e8QqCZQ1AadpReuqPh1Q6MNWphwYVR2UchHV9Z4Bjia/ hyhTIniAgvsVBwssVKUQAKS6G23lCkgJ7J2+6GihFfAm4L7yyA+bOGDQiQl/03W2 lkdHOIj396SWC2tywXkz71Z0BTjnCWhckj3SXm5XuiArui42Mdcj2xMdaulh35DR g8kbfZCTd32hTj6FacsD6HzuFz0q+qq5yISKbEEXahy5HFdu4kfG2jqWZBaZ7Qyi WkUj39Eno6Ly4DqDxAW4oVGV8NdPEgBMpi2qZUtH6CfMMqoeRJciyBj00EWKcUlJ P2T7SCGe5UrNjaAZBJdIYaierwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJyg/E95 D5yk5I6Bnk6P3IcdKwQiMB8GA1UdIwQYMBaAFGaIcuh5l7c7l1/j2tTayo6+yOuj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUQ1Ny81Q0Q4MjQ0MjE3 QjAxMUVCQjk0REE3MTRDNEY5QUUwMi9ab2h5NkhtWHR6dVhYLVBhMU5yS2pyN0k2 Nk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pvaHk2SG1YdHp1WFgtUGExTnJLanI3STY2TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVENTcvNUNEODI0NDIxN0IwMTFFQkI5NERBNzE0QzRGOUFFMDIvQjRCMzREQTRE MkM2MTFFQ0JGM0IzRTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr96gDBAJnDtwwDQYJKoZIhvcNAQELBQADggEBAIS6/RBr GTtOdvYrplzoRcrhozrHx1yW/uA9hY6hTD0FVZAwHNJ9lFXKI+1izQGeuyqnOWiy XQNkDmTPQ/DUPqPDeQ7SwjQQKm3zkLqf7KgwGBqhxM5xDSS6/8AvY+xA7GLDKZTa bS2L/BvIEr5mhvoZZz921e8Le4n3CNIlz6JOdyKhbJr+mxQCgRzfSO3jxbjlAiHG prr5RhvkNPuE/DqIpIlnaqC2pNyzECnorzIHyP0RnoCH8Lhnqon8pNFEZbR1eEbb m0gaI18hMQkNqBvypIGwtvE0nFCRMOlcggGKU5FhSirT7Mu1a/0JQb3fiGFwSKPX lGhLDRxxcWLa0O4= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org