$ rpki-client -vvf rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/761318C4BCC011EDA67EF02DC4F9AE02.roa File: 761318C4BCC011EDA67EF02DC4F9AE02.roa (raw, json) Hash identifier: Vhi51G0kthQz1NserbBWgrRj7YKB/vMErCfRdd33dCA= Subject key identifier: D1:18:F3:87:7A:CB:EB:AB:EF:93:4C:9C:B6:66:AB:55:24:CE:7D:99 Certificate issuer: /CN=A919D2AF/serialNumber=24B9EDE52C03A86E0F2128693B6C1E0A8724ED15 Certificate serial: F1 Authority key identifier: 24:B9:ED:E5:2C:03:A8:6E:0F:21:28:69:3B:6C:1E:0A:87:24:ED:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLnt5SwDqG4PIShpO2weCock7RU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/761318C4BCC011EDA67EF02DC4F9AE02.roa Signing time: Fri 17 May 2024 06:10:13 +0000 ROA not before: Fri 17 May 2024 06:10:13 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135632 IP address blocks: 103.77.9.0/24 maxlen: 24 103.77.10.0/24 maxlen: 24 103.77.11.0/24 maxlen: 24 116.206.164.0/24 maxlen: 24 116.206.165.0/24 maxlen: 24 116.206.166.0/24 maxlen: 24 116.206.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/JLnt5SwDqG4PIShpO2weCock7RU.crl rsync://rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/JLnt5SwDqG4PIShpO2weCock7RU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLnt5SwDqG4PIShpO2weCock7RU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:36:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919D2AF/serialNumber=24B9EDE52C03A86E0F2128693B6C1E0A8724ED15 Validity Not Before: May 17 06:10:13 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6646f4c4-891f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1c:e7:06:7e:58:9c:a9:c2:02:b8:2a:cc:10: cc:23:33:b7:79:b6:30:9f:ed:01:bd:0a:50:dd:86: 5c:df:72:4b:20:a2:54:24:02:97:99:71:87:68:fe: 03:4a:e5:04:cb:2f:71:db:c5:bb:d2:4d:3e:7f:e8: 58:ff:69:b2:0a:19:21:54:2c:e5:9e:2e:6b:63:96: 92:1b:bc:c0:41:5d:83:11:31:b6:78:18:c3:b3:d7: f2:7f:b4:96:2e:3b:45:f7:05:f5:9f:75:70:28:f9: 8c:e5:6a:37:ee:4b:6a:df:77:cb:47:67:af:55:91: 8b:a9:b7:79:3f:bb:ae:25:a1:ad:94:bc:ba:03:2f: 7c:29:6d:5b:59:f3:32:8e:4f:f2:30:3a:c1:05:a0: a3:ae:32:c2:6f:57:e0:cb:6b:8f:01:63:a8:3d:3a: ec:5c:23:99:df:3f:af:a7:14:6b:e5:00:12:bf:8f: fb:ba:b5:d4:95:7e:55:49:86:32:dd:7b:54:1e:8e: eb:85:4b:0e:4b:60:7e:ef:94:3b:93:28:ce:2f:5c: 1d:fe:d8:34:22:43:cf:f7:ce:92:09:9e:d5:f7:9a: c7:a0:a3:1d:5b:56:01:72:f6:13:52:25:87:9c:e6: 6f:b4:e6:06:89:d1:a2:45:f3:fc:19:b3:f2:2c:17: 42:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:18:F3:87:7A:CB:EB:AB:EF:93:4C:9C:B6:66:AB:55:24:CE:7D:99 X509v3 Authority Key Identifier: keyid:24:B9:ED:E5:2C:03:A8:6E:0F:21:28:69:3B:6C:1E:0A:87:24:ED:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/JLnt5SwDqG4PIShpO2weCock7RU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JLnt5SwDqG4PIShpO2weCock7RU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919D2AF/F3EFB898BCBA11ED9C9AFA25C4F9AE02/761318C4BCC011EDA67EF02DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.9.0-103.77.11.255 116.206.164.0/22 Signature Algorithm: sha256WithRSAEncryption 1e:72:9a:c6:28:fe:b8:48:9a:9d:5f:e6:ef:2d:00:0d:b9:e6: f0:78:b9:54:5c:b5:af:8b:cc:19:e0:bd:72:c0:3f:a8:45:b2: 75:eb:26:7b:56:45:d0:cf:af:d2:75:58:91:1b:40:5c:b7:39: ac:e5:19:31:83:4a:49:27:d5:52:ff:fc:36:73:03:e6:01:4a: 8b:c2:18:04:1e:7e:c0:bb:cb:05:69:33:6b:9d:a5:2d:01:c1: bb:ff:21:45:78:7a:4b:55:14:49:a0:6b:4d:3a:3e:6e:9d:2d: a5:c9:ca:d0:89:8c:61:dd:8c:27:53:f5:31:e7:62:c5:74:bf: ce:e4:02:16:3f:85:2d:ae:a2:52:c6:36:e8:61:70:c1:44:3c: 16:99:db:1b:fe:ab:8e:09:c4:3e:94:31:e1:d6:3c:52:96:f6: ae:a7:89:12:dd:7e:c0:c3:c4:a3:a7:9e:97:74:bd:7f:cf:40: ca:6d:6e:84:c0:8f:81:5f:38:83:c4:91:75:45:13:f0:30:1b: 78:c9:57:15:82:54:ca:b5:ad:83:a8:b2:ce:02:bc:40:3e:74: dd:e6:08:5e:b0:72:a1:77:35:1a:66:aa:28:31:cc:ce:58:9e: e2:a9:3a:cb:a0:93:67:79:23:a8:5b:75:d2:57:53:73:cd:5f: b7:a8:3b:ea -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUQyQUYxMTAvBgNVBAUTKDI0QjlFREU1MkMwM0E4NkUwRjIxMjg2OTNCNkMxRTBB ODcyNEVEMTUwHhcNMjQwNTE3MDYxMDEzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2ZjRjNC04OTFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsxznBn5YnKnCArgqzBDMIzO3ebYwn+0BvQpQ3YZc33JLIKJUJAKXmXGHaP4D SuUEyy9x28W70k0+f+hY/2myChkhVCzlni5rY5aSG7zAQV2DETG2eBjDs9fyf7SW LjtF9wX1n3VwKPmM5Wo37ktq33fLR2evVZGLqbd5P7uuJaGtlLy6Ay98KW1bWfMy jk/yMDrBBaCjrjLCb1fgy2uPAWOoPTrsXCOZ3z+vpxRr5QASv4/7urXUlX5VSYYy 3XtUHo7rhUsOS2B+75Q7kyjOL1wd/tg0IkPP986SCZ7V95rHoKMdW1YBcvYTUiWH nOZvtOYGidGiRfP8GbPyLBdCAQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFNEY84d6 y+ur75NMnLZmq1Ukzn2ZMB8GA1UdIwQYMBaAFCS57eUsA6huDyEoaTtsHgqHJO0V MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RDJBRi9GM0VGQjg5OEJD QkExMUVEOUM5QUZBMjVDNEY5QUUwMi9KTG50NVN3RHFHNFBJU2hwTzJ3ZUNvY2s3 UlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pMbnQ1U3dEcUc0UElTaHBPMndlQ29jazdSVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUQyQUYvRjNFRkI4OThCQ0JBMTFFRDlDOUFGQTI1QzRGOUFFMDIvNzYxMzE4QzRC Q0MwMTFFREE2N0VGMDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAGdNCQMEAmdNCAMEAnTOpDANBgkqhkiG9w0BAQsFAAOC AQEAHnKaxij+uEianV/m7y0ADbnm8Hi5VFy1r4vMGeC9csA/qEWydesme1ZF0M+v 0nVYkRtAXLc5rOUZMYNKSSfVUv/8NnMD5gFKi8IYBB5+wLvLBWkza52lLQHBu/8h RXh6S1UUSaBrTTo+bp0tpcnK0ImMYd2MJ1P1MedixXS/zuQCFj+FLa6iUsY26GFw wUQ8FpnbG/6rjgnEPpQx4dY8Upb2rqeJEt1+wMPEo6eel3S9f89Aym1uhMCPgV84 g8SRdUUT8DAbeMlXFYJUyrWtg6iyzgK8QD503eYIXrByoXc1GmaqKDHMzlie4qk6 y6CTZ3kjqFt10ldTc81ft6g76g== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:54 2024 by rpki-client on console-fra.rpki-client.org