$ rpki-client -vvf rpki.apnic.net/member_repository/A919B7ED/308878981F3E11EBAA022A21C4F9AE02/188F1CDC1FFD11EBAB33D75FC4F9AE02.roa File: 188F1CDC1FFD11EBAB33D75FC4F9AE02.roa (raw, json) Hash identifier: Hw7hrozqKbbDsxWyDWVLPt/36LFVlEmzB5hwgbtPNAo= Subject key identifier: 0F:D0:8E:69:B4:4A:15:1B:94:07:E8:82:E8:C4:6B:09:9C:9A:55:D6 Certificate issuer: /CN=A919B7ED/serialNumber=8F1BF7E74727A1DE4201C4C05355FEB17F21BE20 Certificate serial: 0677 Authority key identifier: 8F:1B:F7:E7:47:27:A1:DE:42:01:C4:C0:53:55:FE:B1:7F:21:BE:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxv350cnod5CAcTAU1X-sX8hviA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B7ED/308878981F3E11EBAA022A21C4F9AE02/188F1CDC1FFD11EBAB33D75FC4F9AE02.roa Signing time: Thu 04 Jan 2024 23:01:26 +0000 ROA not before: Thu 04 Jan 2024 23:01:26 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141403 IP address blocks: 103.158.51.0/24 maxlen: 24 103.175.233.0/24 maxlen: 24 2001:df5:4880::/48 maxlen: 48 2400:cba0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B7ED/308878981F3E11EBAA022A21C4F9AE02/jxv350cnod5CAcTAU1X-sX8hviA.crl rsync://rpki.apnic.net/member_repository/A919B7ED/308878981F3E11EBAA022A21C4F9AE02/jxv350cnod5CAcTAU1X-sX8hviA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxv350cnod5CAcTAU1X-sX8hviA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1655 (0x677) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B7ED/serialNumber=8F1BF7E74727A1DE4201C4C05355FEB17F21BE20 Validity Not Before: Jan 4 23:01:26 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659738c6-b613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fd:f0:9e:3d:ee:6c:dd:1b:a0:f0:4a:9d:f8: 6b:18:8f:59:ae:71:12:79:21:31:8f:f6:82:cd:64: ca:b2:dd:03:de:bd:4b:78:b2:da:fd:9c:36:2d:ae: 0c:1e:b2:bc:3c:48:3b:cc:2f:9e:d0:82:75:6e:d2: 80:99:58:dc:8d:75:40:86:00:e2:e2:0f:37:83:4c: 82:5b:da:82:11:08:39:ba:3a:af:98:28:58:1d:8f: 7c:86:65:c2:6b:14:bf:aa:7a:3a:df:39:20:fe:e5: 1a:d0:ca:7e:ef:7a:c2:1d:53:f5:f3:1a:d1:fc:0a: 48:05:b3:ba:7d:20:00:4c:6a:6e:c7:7d:b6:2f:e7: 75:74:54:cf:d2:6f:7f:af:88:d7:61:42:d5:0c:a6: c3:7d:66:64:7e:11:58:8f:42:6d:f1:6c:bd:56:31: df:ad:8a:6e:a4:90:1f:13:87:61:2f:d9:ed:4d:5d: 4c:15:ab:70:0f:a9:b9:af:91:76:f8:76:cf:4f:33: 0f:c7:64:47:03:21:10:f6:5f:5b:e9:3c:61:52:90: 0d:8f:4e:7b:cd:e4:a8:42:4f:2b:bc:87:4c:33:bd: 3f:99:13:d4:30:63:a0:c2:c9:ff:9a:eb:92:6b:09: 79:78:6e:18:b7:e3:9e:1f:3e:70:90:8b:3c:e6:b8: bc:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:D0:8E:69:B4:4A:15:1B:94:07:E8:82:E8:C4:6B:09:9C:9A:55:D6 X509v3 Authority Key Identifier: keyid:8F:1B:F7:E7:47:27:A1:DE:42:01:C4:C0:53:55:FE:B1:7F:21:BE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B7ED/308878981F3E11EBAA022A21C4F9AE02/jxv350cnod5CAcTAU1X-sX8hviA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jxv350cnod5CAcTAU1X-sX8hviA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B7ED/308878981F3E11EBAA022A21C4F9AE02/188F1CDC1FFD11EBAB33D75FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.51.0/24 103.175.233.0/24 IPv6: 2001:df5:4880::/48 2400:cba0::/32 Signature Algorithm: sha256WithRSAEncryption a1:43:3e:e3:a8:44:15:2d:b8:bd:e8:af:e6:2d:05:2b:00:a3: 2c:12:f3:f3:19:e8:34:5c:28:ee:3d:3d:ff:5f:d0:db:9f:03: 0d:31:8d:a0:00:92:c2:cd:c4:fd:fc:91:78:6a:ea:5b:34:9c: b8:bb:12:91:79:9d:bd:c3:75:9d:f5:a2:93:f2:ac:4d:eb:e9: 00:57:22:ad:ab:ce:ef:95:bf:cb:36:be:18:fb:a3:f7:42:e5: 81:6c:ef:e0:9d:0f:50:6b:01:73:9c:22:3d:b2:20:8d:4d:09: 1c:33:6a:c5:d3:a2:5b:be:3e:a4:55:63:f5:67:4c:1f:de:62: d6:88:2b:84:db:6d:c8:67:73:8a:97:24:ae:1e:0b:df:8d:cb: 50:f1:f4:13:98:79:ab:80:95:28:19:81:5a:f7:23:57:84:7a: d8:10:c1:ab:d0:2c:52:0f:4c:07:b6:fc:da:d0:0f:96:ac:40: fb:c3:3a:4e:6a:f3:19:52:51:75:31:a1:44:d2:0d:a1:b9:b8: 56:48:73:d7:69:ac:2e:8d:e6:fc:8c:de:32:da:68:0c:2e:5b: b9:fa:9a:26:13:fa:25:9c:22:ed:53:cf:05:05:2c:31:b4:b8: 1a:cf:e4:6b:65:0c:06:cb:95:72:fa:40:9a:d6:ee:1f:3b:5c: c6:e3:32:0c -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICBncwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI3RUQxMTAvBgNVBAUTKDhGMUJGN0U3NDcyN0ExREU0MjAxQzRDMDUzNTVGRUIx N0YyMUJFMjAwHhcNMjQwMTA0MjMwMTI2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3MzhjNi1iNjEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtv3wnj3ubN0boPBKnfhrGI9ZrnESeSExj/aCzWTKst0D3r1LeLLa/Zw2La4M HrK8PEg7zC+e0IJ1btKAmVjcjXVAhgDi4g83g0yCW9qCEQg5ujqvmChYHY98hmXC axS/qno63zkg/uUa0Mp+73rCHVP18xrR/ApIBbO6fSAATGpux322L+d1dFTP0m9/ r4jXYULVDKbDfWZkfhFYj0Jt8Wy9VjHfrYpupJAfE4dhL9ntTV1MFatwD6m5r5F2 +HbPTzMPx2RHAyEQ9l9b6TxhUpANj057zeSoQk8rvIdMM70/mRPUMGOgwsn/muuS awl5eG4Yt+OeHz5wkIs85ri83wIDAQABo4ICszCCAq8wHQYDVR0OBBYEFA/Qjmm0 ShUblAfogujEawmcmlXWMB8GA1UdIwQYMBaAFI8b9+dHJ6HeQgHEwFNV/rF/Ib4g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjdFRC8zMDg4Nzg5ODFG M0UxMUVCQUEwMjJBMjFDNEY5QUUwMi9qeHYzNTBjbm9kNUNBY1RBVTFYLXNYOGh2 aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2p4djM1MGNub2Q1Q0FjVEFVMVgtc1g4aHZpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUI3RUQvMzA4ODc4OTgxRjNFMTFFQkFBMDIyQTIxQzRGOUFFMDIvMTg4RjFDREMx RkZEMTFFQkFCMzNENzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMBIEAgABMAwDBABnnjMDBABnr+kwFgQCAAIwEAMHACABDfVIgAMFACQAy6Aw DQYJKoZIhvcNAQELBQADggEBAKFDPuOoRBUtuL3or+YtBSsAoywS8/MZ6DRcKO49 Pf9f0NufAw0xjaAAksLNxP38kXhq6ls0nLi7EpF5nb3DdZ31opPyrE3r6QBXIq2r zu+Vv8s2vhj7o/dC5YFs7+CdD1BrAXOcIj2yII1NCRwzasXTolu+PqRVY/VnTB/e YtaIK4Tbbchnc4qXJK4eC9+Ny1Dx9BOYeauAlSgZgVr3I1eEetgQwavQLFIPTAe2 /NrQD5asQPvDOk5q8xlSUXUxoUTSDaG5uFZIc9dprC6N5vyM3jLaaAwuW7n6miYT +iWcIu1TzwUFLDG0uBrP5GtlDAbLlXL6QJrW7h87XMbjMgw= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:46 2024 by rpki-client on console-ams.rpki-client.org