$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/C6537C4AAC5B11EDA8C03215C4F9AE02.roa File: C6537C4AAC5B11EDA8C03215C4F9AE02.roa (raw, json) Hash identifier: 6wMf0Z8//cJMxItVuyAGd2usHOPGjQivwJ76VTi1wpM= Subject key identifier: 2D:CE:CF:75:D5:E1:CA:8E:45:DF:1D:5F:A9:6F:57:9C:49:E8:17:8B Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 01E4 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/C6537C4AAC5B11EDA8C03215C4F9AE02.roa Signing time: Sat 21 Sep 2024 02:36:14 +0000 ROA not before: Sat 21 Sep 2024 02:36:14 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 58487 IP address blocks: 103.247.8.0/22 maxlen: 24 203.175.8.0/22 maxlen: 24 203.194.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 12:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 484 (0x1e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Validity Not Before: Sep 21 02:36:14 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66ee311e-25ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:45:67:e5:a6:3e:ff:f8:5a:6d:82:78:03:d6: 54:8e:a3:51:bc:a8:55:d0:db:c8:1b:9f:a4:ca:b3: 42:97:26:bf:25:89:1f:b7:e5:fe:bf:d2:51:c4:bb: 02:de:04:55:d5:fe:b1:1a:ab:b3:0e:e9:75:52:7b: da:62:13:d0:41:40:7b:80:35:cb:f6:b4:e6:3c:ad: 17:98:29:a0:80:e8:cc:f1:2c:0c:1c:00:df:45:25: 90:cf:c1:e1:89:92:60:de:86:04:4d:c8:28:70:3c: ed:7c:fa:d2:8e:52:8a:98:d3:48:c3:25:1d:6e:48: cb:3a:09:38:ec:87:01:58:a6:c5:2d:39:12:03:44: 39:d4:a9:05:7b:2e:1d:49:79:00:de:69:17:b1:bd: b4:39:b4:9a:9d:a0:f3:27:3c:38:c3:37:f9:52:4a: 13:9f:9d:87:54:35:b8:ba:6d:12:53:08:6d:b5:6c: 14:fe:a7:f3:a8:d7:86:64:c3:9c:27:f9:5b:7f:c7: a0:d6:be:97:c5:e5:82:c7:d8:23:f3:9f:1c:90:17: 93:f2:3b:09:46:5e:47:9c:a7:af:f8:79:90:a8:9b: 67:aa:22:12:38:6f:fb:f0:5a:c9:3d:35:f7:d7:a9: 8c:02:b8:ae:90:4b:29:29:dc:5c:08:46:ea:74:85: 91:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:CE:CF:75:D5:E1:CA:8E:45:DF:1D:5F:A9:6F:57:9C:49:E8:17:8B X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/C6537C4AAC5B11EDA8C03215C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.8.0/22 203.175.8.0/22 203.194.112.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:fe:c8:54:e0:9b:e1:9c:d2:c0:2d:f5:a1:83:68:b6:53:63: cb:77:8a:74:35:2d:06:24:6d:46:fd:eb:5c:3a:fd:f7:2d:c9: ea:94:49:9f:8e:b6:cb:e2:95:bc:35:7f:75:5f:06:3f:72:ab: 39:fe:39:2e:69:06:aa:be:bb:9e:04:27:d2:4d:ce:6d:08:41: b5:aa:fe:aa:4e:a8:b5:fb:7d:04:fc:41:3d:87:d9:97:db:a7: 12:25:a3:98:e4:86:5c:7b:f8:fe:a0:f0:89:5e:ca:aa:f2:d9: ac:ed:61:ec:32:f6:54:2e:f3:35:4c:af:ca:69:0c:cb:70:de: 8a:b4:f4:0a:91:52:a4:7d:83:86:40:9d:e1:1a:9e:8e:38:43: 35:48:83:98:f2:08:32:8f:71:12:a5:87:a2:93:84:3c:ac:2b: a3:a7:a1:27:cc:af:a2:99:3e:c1:f5:f2:d3:0d:6b:04:16:94: 37:b2:98:b7:75:74:7a:ab:37:a2:e9:84:41:e5:74:7b:78:01: cc:5b:da:d6:d2:c5:a1:86:bb:fd:53:4a:8e:5f:62:7f:d4:77: 8a:da:bd:d3:dd:83:c5:3c:d4:24:46:04:9a:fe:6f:89:86:d4: 0d:22:d8:31:fa:66:ce:3c:3e:52:27:9e:59:94:8f:15:c1:a5: 55:53:37:10 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAeQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjQwOTIxMDIzNjE0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVlMzExZS0yNWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr0Vn5aY+//habYJ4A9ZUjqNRvKhV0NvIG5+kyrNClya/JYkft+X+v9JRxLsC 3gRV1f6xGquzDul1UnvaYhPQQUB7gDXL9rTmPK0XmCmggOjM8SwMHADfRSWQz8Hh iZJg3oYETcgocDztfPrSjlKKmNNIwyUdbkjLOgk47IcBWKbFLTkSA0Q51KkFey4d SXkA3mkXsb20ObSanaDzJzw4wzf5UkoTn52HVDW4um0SUwhttWwU/qfzqNeGZMOc J/lbf8eg1r6XxeWCx9gj858ckBeT8jsJRl5HnKev+HmQqJtnqiISOG/78FrJPTX3 16mMAriukEspKdxcCEbqdIWRRQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFC3Oz3XV 4cqORd8dX6lvV5xJ6BeLMB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvQzY1MzdDNEFB QzVCMTFFREE4QzAzMjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJn9wgDBALLrwgDBALLwnAwDQYJKoZIhvcNAQELBQADggEB AI7+yFTgm+Gc0sAt9aGDaLZTY8t3inQ1LQYkbUb961w6/fctyeqUSZ+Otsvilbw1 f3VfBj9yqzn+OS5pBqq+u54EJ9JNzm0IQbWq/qpOqLX7fQT8QT2H2ZfbpxIlo5jk hlx7+P6g8Ileyqry2aztYewy9lQu8zVMr8ppDMtw3oq09AqRUqR9g4ZAneEano44 QzVIg5jyCDKPcRKlh6KThDysK6OnoSfMr6KZPsH18tMNawQWlDeymLd1dHqrN6Lp hEHldHt4Acxb2tbSxaGGu/1TSo5fYn/Ud4ravdPdg8U81CRGBJr+b4mG1A0i2DH6 Zs48PlInnlmUjxXBpVVTNxA= -----END CERTIFICATE-----Generated at Thu Nov 21 13:19:16 2024 by rpki-client on console-fra.rpki-client.org