$ rpki-client -vvf rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/18F343922A5711EBB59D6526C4F9AE02.roa File: 18F343922A5711EBB59D6526C4F9AE02.roa (raw, json) Hash identifier: hEWt+XscoSIRvNspgT17O6QA8xkXvwSyDLinflFHJWs= Subject key identifier: 8E:7D:CD:52:35:68:78:07:9A:E1:CF:CD:85:78:E5:D3:69:61:26:7D Certificate issuer: /CN=A9199197/serialNumber=6835DDFB8438D24BB6C5979316E54891066090A7 Certificate serial: 07EC Authority key identifier: 68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/18F343922A5711EBB59D6526C4F9AE02.roa Signing time: Mon 29 Jul 2024 03:14:17 +0000 ROA not before: Mon 29 Jul 2024 03:14:17 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9498 IP address blocks: 106.210.199.0/24 maxlen: 24 117.96.0.0/16 maxlen: 16 117.96.0.0/17 maxlen: 22 117.96.0.0/18 maxlen: 24 117.96.64.0/19 maxlen: 24 117.96.96.0/20 maxlen: 24 117.96.112.0/21 maxlen: 24 117.96.120.0/22 maxlen: 24 117.97.0.0/16 maxlen: 16 117.97.0.0/17 maxlen: 18 117.97.0.0/18 maxlen: 24 117.97.64.0/19 maxlen: 20 117.97.64.0/20 maxlen: 24 117.97.80.0/21 maxlen: 21 117.97.80.0/22 maxlen: 23 117.97.80.0/23 maxlen: 24 117.97.82.0/24 maxlen: 24 223.224.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.crl rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2028 (0x7ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9199197/serialNumber=6835DDFB8438D24BB6C5979316E54891066090A7 Validity Not Before: Jul 29 03:14:17 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66a70909-78c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:44:72:6f:7c:95:39:c4:43:dd:64:06:34:45: 18:08:36:4e:99:3e:a9:c6:ae:75:a1:9c:68:1c:15: 92:f9:ce:8a:ca:db:c0:d2:cb:8b:7e:29:8f:c2:7d: 0d:8b:4f:f5:f7:ca:74:d0:25:33:71:25:1d:ee:d5: 01:8b:52:d9:4d:4f:df:b1:88:a7:b1:e9:e4:be:ca: 1f:54:26:02:86:a9:18:ee:d3:e1:a8:46:45:55:cf: cc:3e:d3:32:6b:76:d0:e6:2c:5e:5a:36:d3:81:d9: 01:90:b5:e6:5e:0c:a7:da:d0:f4:2b:06:19:de:a6: 4e:f2:8f:71:80:07:ae:17:82:32:05:50:35:11:dc: 65:e5:21:1a:23:7e:ef:22:82:99:d7:d2:9e:c3:f2: 18:d6:fe:c7:f1:8e:a8:ed:ac:6b:cd:b4:99:c4:c9: 53:16:fb:28:32:c8:46:10:f9:bd:b2:62:d3:46:70: c9:71:b7:fb:a3:14:d9:74:79:09:fd:13:db:a3:4f: 3f:6d:56:b9:2a:7e:ea:9b:a3:55:6b:a9:8d:1b:d2: 0e:d9:08:36:b8:e6:87:a8:d3:ca:1d:1f:5b:9e:c1: 05:db:7b:0b:ff:7b:27:a0:6a:1a:a6:c2:94:25:97: 72:eb:b4:fd:fb:29:4c:23:9d:41:b0:75:61:cc:2e: ef:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:7D:CD:52:35:68:78:07:9A:E1:CF:CD:85:78:E5:D3:69:61:26:7D X509v3 Authority Key Identifier: keyid:68:35:DD:FB:84:38:D2:4B:B6:C5:97:93:16:E5:48:91:06:60:90:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/aDXd-4Q40ku2xZeTFuVIkQZgkKc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aDXd-4Q40ku2xZeTFuVIkQZgkKc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9199197/84B2EC98F27D11EA9456EE60C4F9AE02/18F343922A5711EBB59D6526C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 106.210.199.0/24 117.96.0.0/15 223.224.38.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:a4:49:76:83:c9:f6:28:53:f9:a8:32:a7:94:dc:a6:3f:f6: 68:0c:bd:6f:66:62:e0:77:76:bb:cf:51:94:26:2c:f7:eb:78: 85:15:ad:b8:cb:85:5d:6e:91:8c:aa:7b:e6:a4:d5:7f:7f:74: 91:ae:8b:6b:e5:ff:82:8c:8d:78:86:ec:a6:4f:a8:4e:d3:00: 81:9f:20:18:21:1e:b7:66:07:9d:e8:a0:e3:22:f2:02:df:df: 42:ed:82:68:b7:37:53:d5:a5:a5:f8:b3:2d:4f:5a:3d:d3:d1: 0d:d0:d0:2c:a8:1e:76:a9:1c:94:e0:10:da:ff:7e:f2:c4:64: 55:16:a8:ba:b8:3e:54:6e:dc:04:b7:e3:ae:8e:4d:e4:70:b6: fa:0b:d9:40:19:1b:a0:a5:6e:bd:97:9b:92:5f:ca:ab:ef:bb: 62:62:d1:16:56:f7:6f:a9:63:0c:e8:ef:e9:f3:73:ce:26:3c: 9b:22:db:5d:de:5d:1f:bc:6e:b5:27:51:d2:8c:c6:b0:c4:2e: 06:20:8d:75:9e:63:ba:66:31:70:47:ff:6c:39:96:23:7c:db: 86:16:4c:f1:20:4e:b4:65:d5:99:64:27:7b:4f:1d:f0:a9:6e: f6:d9:90:f9:06:25:49:ad:a8:22:c3:cd:37:07:07:00:7b:53: 0b:0e:9a:29 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICB+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxOTcxMTAvBgNVBAUTKDY4MzVEREZCODQzOEQyNEJCNkM1OTc5MzE2RTU0ODkx MDY2MDkwQTcwHhcNMjQwNzI5MDMxNDE3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE3MDkwOS03OGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ERyb3yVOcRD3WQGNEUYCDZOmT6pxq51oZxoHBWS+c6KytvA0suLfimPwn0N i0/198p00CUzcSUd7tUBi1LZTU/fsYinsenkvsofVCYChqkY7tPhqEZFVc/MPtMy a3bQ5ixeWjbTgdkBkLXmXgyn2tD0KwYZ3qZO8o9xgAeuF4IyBVA1Edxl5SEaI37v IoKZ19Kew/IY1v7H8Y6o7axrzbSZxMlTFvsoMshGEPm9smLTRnDJcbf7oxTZdHkJ /RPbo08/bVa5Kn7qm6NVa6mNG9IO2Qg2uOaHqNPKHR9bnsEF23sL/3snoGoapsKU JZdy67T9+ylMI51BsHVhzC7vfwIDAQABo4ICoDCCApwwHQYDVR0OBBYEFI59zVI1 aHgHmuHPzYV45dNpYSZ9MB8GA1UdIwQYMBaAFGg13fuEONJLtsWXkxblSJEGYJCn MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTE5Ny84NEIyRUM5OEYy N0QxMUVBOTQ1NkVFNjBDNEY5QUUwMi9hRFhkLTRRNDBrdTJ4WmVURnVWSWtRWmdr S2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FEWGQtNFE0MGt1MnhaZVRGdVZJa1FaZ2tLYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxOTcvODRCMkVDOThGMjdEMTFFQTk0NTZFRTYwQzRGOUFFMDIvMThGMzQzOTIy QTU3MTFFQkI1OUQ2NTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgABMBEDBABq0scDAwF1YAMEAN/gJjANBgkqhkiG9w0BAQsFAAOCAQEA XaRJdoPJ9ihT+agyp5Tcpj/2aAy9b2Zi4Hd2u89RlCYs9+t4hRWtuMuFXW6RjKp7 5qTVf390ka6La+X/goyNeIbspk+oTtMAgZ8gGCEet2YHneig4yLyAt/fQu2CaLc3 U9WlpfizLU9aPdPRDdDQLKgedqkclOAQ2v9+8sRkVRaourg+VG7cBLfjro5N5HC2 +gvZQBkboKVuvZebkl/Kq++7YmLRFlb3b6ljDOjv6fNzziY8myLbXd5dH7xutSdR 0ozGsMQuBiCNdZ5jumYxcEf/bDmWI3zbhhZM8SBOtGXVmWQne08d8Klu9tmQ+QYl Sa2oIsPNNwcHAHtTCw6aKQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:10 2024 by rpki-client on console-fra.rpki-client.org