$ rpki-client -vvf rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/365255DA7F1C11EB9D057A0EC4F9AE02.roa File: 365255DA7F1C11EB9D057A0EC4F9AE02.roa (raw, json) Hash identifier: MXijTQWHDrYzBdPCM/Z7x+devsNZ2syPknC61NPh7rk= Subject key identifier: B8:64:79:56:40:AB:98:CA:6B:65:77:E6:CC:11:D0:3A:4C:A3:86:18 Certificate issuer: /CN=A918F0F7/serialNumber=50D594D518F1D6C0ACB5009B570778F6F106D5DE Certificate serial: 0600 Authority key identifier: 50:D5:94:D5:18:F1:D6:C0:AC:B5:00:9B:57:07:78:F6:F1:06:D5:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/365255DA7F1C11EB9D057A0EC4F9AE02.roa Signing time: Fri 04 Oct 2024 23:02:16 +0000 ROA not before: Fri 04 Oct 2024 23:02:16 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 45230 IP address blocks: 103.8.16.0/24 maxlen: 24 103.8.17.0/24 maxlen: 24 103.8.18.0/24 maxlen: 24 103.8.19.0/24 maxlen: 24 163.47.184.0/24 maxlen: 24 163.47.185.0/24 maxlen: 24 163.47.186.0/24 maxlen: 24 163.47.187.0/24 maxlen: 24 180.222.64.0/24 maxlen: 24 180.222.65.0/24 maxlen: 24 180.222.66.0/24 maxlen: 24 180.222.67.0/24 maxlen: 24 180.222.68.0/24 maxlen: 24 180.222.69.0/24 maxlen: 24 180.222.70.0/24 maxlen: 24 180.222.71.0/24 maxlen: 24 2403:d200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.crl rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1536 (0x600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F0F7/serialNumber=50D594D518F1D6C0ACB5009B570778F6F106D5DE Validity Not Before: Oct 4 23:02:16 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=670073f8-9236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:63:8e:69:b4:ed:41:b7:a9:8c:91:3c:f6: 22:ab:8f:0c:b5:53:62:57:c0:c2:6f:1a:89:c4:6c: c1:e7:77:e1:8b:1b:58:08:78:88:da:8c:79:22:3e: f2:98:47:e1:18:b8:64:c7:4d:48:74:90:d8:cc:ac: 89:0f:0f:a1:02:6d:49:97:fc:74:21:30:ba:94:e0: 19:89:3b:41:ef:86:dc:df:ae:52:34:f0:98:3e:88: de:56:a8:14:13:18:b3:cf:0e:f2:2d:fb:7f:f4:a2: 4c:4b:c2:48:c9:f2:bd:79:48:54:88:a4:ae:49:73: a9:42:83:df:a9:45:6c:3d:f0:ba:84:30:29:2e:fd: a2:63:f4:03:4d:79:1e:42:aa:66:71:ac:8a:36:95: 1f:cf:f9:5e:61:52:21:2c:40:82:c2:a6:d5:da:70: 2f:ba:39:26:a1:c2:4c:7c:f7:d9:0a:8f:45:72:9d: 9a:86:0c:47:f9:40:fb:fd:08:f7:c2:57:53:2c:5f: 34:99:76:cd:17:cf:4a:1e:8c:70:89:64:eb:63:46: 5e:3d:2e:af:06:96:e5:20:46:9e:18:e8:29:d0:05: dc:10:ba:e4:2a:ce:bd:8a:83:f1:3b:3f:fa:a1:ae: 21:87:1f:14:04:e7:be:fa:6e:34:30:ad:30:83:0f: c1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:64:79:56:40:AB:98:CA:6B:65:77:E6:CC:11:D0:3A:4C:A3:86:18 X509v3 Authority Key Identifier: keyid:50:D5:94:D5:18:F1:D6:C0:AC:B5:00:9B:57:07:78:F6:F1:06:D5:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/UNWU1Rjx1sCstQCbVwd49vEG1d4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UNWU1Rjx1sCstQCbVwd49vEG1d4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F0F7/CB78B7C87F1A11EB92FE980DC4F9AE02/365255DA7F1C11EB9D057A0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.16.0/22 163.47.184.0/22 180.222.64.0/21 IPv6: 2403:d200::/32 Signature Algorithm: sha256WithRSAEncryption 9a:c2:25:33:9d:13:cd:1b:35:c4:cd:87:70:09:77:11:d4:7a: 23:3a:39:55:ff:be:d7:dd:ef:9a:a8:0d:c1:3f:c5:c8:5e:a2: 4c:f4:08:3b:0b:0d:d5:2e:c7:4d:8e:a4:17:60:7a:ea:db:4e: bd:27:18:5a:ec:f2:ae:5d:8d:97:67:df:fc:64:d7:bf:97:c5: 7c:a1:ca:c0:4c:ba:5e:49:19:ad:3c:03:9e:5b:6a:5b:a4:3e: 7b:1b:d7:18:6b:9f:a2:ac:da:d7:78:54:da:fb:28:29:04:85: 06:ca:d4:50:38:1d:f3:d7:9f:d9:ca:0f:0e:e6:a0:cf:e2:d4: 34:20:9f:4f:db:ed:ea:1b:30:52:72:7d:6e:e5:fb:bc:41:7d: ac:cc:60:ed:0e:fc:4c:00:2c:b7:08:8e:92:68:4f:27:99:27: 6c:14:7c:f4:0a:58:3d:ea:51:d7:fd:ef:19:c4:06:d2:78:31: 03:99:54:55:ef:e4:81:55:62:9b:37:ed:d1:ef:2e:f4:36:eb: d6:55:c4:89:3c:c7:08:a7:d7:a1:e3:59:fd:27:7a:38:0f:8c: a8:63:f6:52:69:31:41:fc:c0:d4:5a:01:20:0f:02:24:dc:47: 06:09:cc:3a:38:61:ab:59:8e:61:53:15:d6:bf:20:a6:59:bf: 9f:10:f8:72 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEYwRjcxMTAvBgNVBAUTKDUwRDU5NEQ1MThGMUQ2QzBBQ0I1MDA5QjU3MDc3OEY2 RjEwNkQ1REUwHhcNMjQxMDA0MjMwMjE2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwNzNmOC05MjM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvIJjjmm07UG3qYyRPPYiq48MtVNiV8DCbxqJxGzB53fhixtYCHiI2ox5Ij7y mEfhGLhkx01IdJDYzKyJDw+hAm1Jl/x0ITC6lOAZiTtB74bc365SNPCYPojeVqgU Exizzw7yLft/9KJMS8JIyfK9eUhUiKSuSXOpQoPfqUVsPfC6hDApLv2iY/QDTXke QqpmcayKNpUfz/leYVIhLECCwqbV2nAvujkmocJMfPfZCo9Fcp2ahgxH+UD7/Qj3 wldTLF80mXbNF89KHoxwiWTrY0ZePS6vBpblIEaeGOgp0AXcELrkKs69ioPxOz/6 oa4hhx8UBOe++m40MK0wgw/BxwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFLhkeVZA q5jKa2V35swR0DpMo4YYMB8GA1UdIwQYMBaAFFDVlNUY8dbArLUAm1cHePbxBtXe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjBGNy9DQjc4QjdDODdG MUExMUVCOTJGRTk4MERDNEY5QUUwMi9VTldVMVJqeDFzQ3N0UUNiVndkNDl2RUcx ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VOV1UxUmp4MXNDc3RRQ2JWd2Q0OXZFRzFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEYwRjcvQ0I3OEI3Qzg3RjFBMTFFQjkyRkU5ODBEQzRGOUFFMDIvMzY1MjU1REE3 RjFDMTFFQjlEMDU3QTBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnCBADBAKjL7gDBAO03kAwDQQCAAIwBwMFACQD0gAwDQYJ KoZIhvcNAQELBQADggEBAJrCJTOdE80bNcTNh3AJdxHUeiM6OVX/vtfd75qoDcE/ xcheokz0CDsLDdUux02OpBdgeurbTr0nGFrs8q5djZdn3/xk17+XxXyhysBMul5J Ga08A55balukPnsb1xhrn6Ks2td4VNr7KCkEhQbK1FA4HfPXn9nKDw7moM/i1DQg n0/b7eobMFJyfW7l+7xBfazMYO0O/EwALLcIjpJoTyeZJ2wUfPQKWD3qUdf97xnE BtJ4MQOZVFXv5IFVYps37dHvLvQ269ZVxIk8xwin16HjWf0nejgPjKhj9lJpMUH8 wNRaASAPAiTcRwYJzDo4YatZjmFTFda/IKZZv58Q+HI= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:31 2024 by rpki-client on console-fra.rpki-client.org