$ rpki-client -vvf rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/9436AC3668C711EE8C53A031C4F9AE02.roa File: 9436AC3668C711EE8C53A031C4F9AE02.roa (raw, json) Hash identifier: YwXGuIwLbAOZzPiPRemoc11a6IYzMpgzJQrMI7kN5fw= Subject key identifier: 5A:12:66:2A:DC:C2:AD:AC:E6:F9:23:35:5B:99:A2:49:0E:BC:4F:12 Certificate issuer: /CN=A919ED93/serialNumber=72EF32DAF4E83F9019296320874E3B445008EC39 Certificate serial: B1 Authority key identifier: 72:EF:32:DA:F4:E8:3F:90:19:29:63:20:87:4E:3B:44:50:08:EC:39 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cu8y2vToP5AZKWMgh047RFAI7Dk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/9436AC3668C711EE8C53A031C4F9AE02.roa Signing time: Tue 27 Aug 2024 05:49:42 +0000 ROA not before: Tue 27 Aug 2024 05:49:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 14618 IP address blocks: 103.38.221.0/24 maxlen: 24 210.79.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/cu8y2vToP5AZKWMgh047RFAI7Dk.crl rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/cu8y2vToP5AZKWMgh047RFAI7Dk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cu8y2vToP5AZKWMgh047RFAI7Dk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 177 (0xb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ED93/serialNumber=72EF32DAF4E83F9019296320874E3B445008EC39 Validity Not Before: Aug 27 05:49:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66cd68f6-fa53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:5b:33:71:2a:5c:6d:2c:a1:d9:0e:36:cb:64: f5:bf:4c:39:9b:73:35:84:de:95:dc:45:27:ea:fb: 89:19:7c:42:b1:ba:f2:97:51:7c:11:69:df:e1:a8: e6:e6:dd:4a:e5:f5:d2:fa:27:af:b0:60:55:8e:6e: d7:c1:20:da:d1:87:56:70:47:27:8e:ab:82:f8:08: 6b:39:ba:25:00:ae:dc:35:8a:e0:5d:5e:f0:d3:3b: 03:dc:54:4d:96:ec:ce:1a:6e:89:88:0f:e2:9b:34: 18:f8:e4:f9:42:e9:50:2e:b2:73:79:90:3e:39:6d: 81:97:75:9e:9b:e7:53:a7:de:90:51:d3:90:a6:0d: f7:79:83:4f:3c:b5:9d:73:ee:df:77:dc:9c:6c:b9: fe:c4:ab:90:8d:78:12:b9:1f:69:ce:44:ef:67:c5: af:30:9d:c5:89:2c:33:11:47:52:fc:a9:19:f2:a5: 66:aa:30:7c:c3:de:f9:7a:dd:84:71:34:20:66:01: e3:1b:ce:ba:1e:53:6f:86:0d:b7:64:ec:d6:ba:ca: 31:db:4f:14:29:74:d2:8f:3b:57:47:d3:9d:7a:ff: c7:6a:c9:2c:ca:cf:91:b5:ee:a0:f1:5c:ad:c9:3e: 18:f1:30:b0:39:a8:15:b4:77:95:88:37:60:e4:69: 25:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:12:66:2A:DC:C2:AD:AC:E6:F9:23:35:5B:99:A2:49:0E:BC:4F:12 X509v3 Authority Key Identifier: keyid:72:EF:32:DA:F4:E8:3F:90:19:29:63:20:87:4E:3B:44:50:08:EC:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/cu8y2vToP5AZKWMgh047RFAI7Dk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cu8y2vToP5AZKWMgh047RFAI7Dk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/9436AC3668C711EE8C53A031C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.38.221.0/24 210.79.172.0/24 Signature Algorithm: sha256WithRSAEncryption ca:2c:de:43:a1:2d:b7:8a:9c:90:8b:a4:3c:a9:3d:91:ab:65: 3d:58:76:6f:a4:55:88:30:c2:ba:76:b9:8c:9d:57:c9:b2:20: 68:1c:37:0e:2f:54:86:0b:57:d3:bc:12:bf:79:4a:60:3b:38: d5:4c:b1:94:dc:63:a3:3f:ff:c4:ce:cb:b7:46:44:9f:1b:e5: 88:03:71:a2:76:8b:49:56:81:f7:05:5d:b0:68:ab:27:6d:65: 8b:6c:d2:37:04:a1:aa:db:4b:14:4f:f4:0b:81:24:66:d3:00: bc:1b:35:62:67:d8:b3:92:a4:b8:d0:1d:ad:f9:6c:58:2e:58: ab:e2:db:59:3c:6c:28:ba:24:bf:3a:e1:d0:2d:ff:68:b5:b6: 24:75:a7:18:3c:25:f9:2c:e9:99:b4:ad:4c:c3:b6:8a:0c:9a: 38:35:08:d1:83:e2:1d:32:50:d0:b2:0a:0e:d4:57:72:3e:aa: 81:7b:18:1a:0b:61:9e:62:c9:48:1d:dc:21:b8:89:0f:e4:92: 26:d0:c0:f0:dd:c9:c3:02:41:88:90:23:70:10:10:ea:06:da: 97:01:be:94:df:52:cb:e5:c6:20:17:22:d2:31:f3:84:62:a1: 4b:93:02:bf:5b:78:f0:8c:b2:42:4c:30:c5:7f:f1:ec:74:ea: 05:2c:16:08 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICALEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVEOTMxMTAvBgNVBAUTKDcyRUYzMkRBRjRFODNGOTAxOTI5NjMyMDg3NEUzQjQ0 NTAwOEVDMzkwHhcNMjQwODI3MDU0OTQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNkNjhmNi1mYTUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA11szcSpcbSyh2Q42y2T1v0w5m3M1hN6V3EUn6vuJGXxCsbryl1F8EWnf4ajm 5t1K5fXS+ievsGBVjm7XwSDa0YdWcEcnjquC+AhrObolAK7cNYrgXV7w0zsD3FRN luzOGm6JiA/imzQY+OT5QulQLrJzeZA+OW2Bl3Wem+dTp96QUdOQpg33eYNPPLWd c+7fd9ycbLn+xKuQjXgSuR9pzkTvZ8WvMJ3FiSwzEUdS/KkZ8qVmqjB8w975et2E cTQgZgHjG866HlNvhg23ZOzWusox208UKXTSjztXR9Odev/Hasksys+Rte6g8Vyt yT4Y8TCwOagVtHeViDdg5GklwwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFoSZirc wq2s5vkjNVuZokkOvE8SMB8GA1UdIwQYMBaAFHLvMtr06D+QGSljIIdOO0RQCOw5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUQ5My9BMzZDNjhGNDY4 QzYxMUVFOTU5NjRGN0NDNEY5QUUwMi9jdTh5MnZUb1A1QVpLV01naDA0N1JGQUk3 RGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N1OHkydlRvUDVBWktXTWdoMDQ3UkZBSTdEay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVEOTMvQTM2QzY4RjQ2OEM2MTFFRTk1OTY0RjdDQzRGOUFFMDIvOTQzNkFDMzY2 OEM3MTFFRThDNTNBMDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnJt0DBADST6wwDQYJKoZIhvcNAQELBQADggEBAMos3kOh LbeKnJCLpDypPZGrZT1Ydm+kVYgwwrp2uYydV8myIGgcNw4vVIYLV9O8Er95SmA7 ONVMsZTcY6M//8TOy7dGRJ8b5YgDcaJ2i0lWgfcFXbBoqydtZYts0jcEoarbSxRP 9AuBJGbTALwbNWJn2LOSpLjQHa35bFguWKvi21k8bCi6JL864dAt/2i1tiR1pxg8 Jfks6Zm0rUzDtooMmjg1CNGD4h0yUNCyCg7UV3I+qoF7GBoLYZ5iyUgd3CG4iQ/k kibQwPDdycMCQYiQI3AQEOoG2pcBvpTfUsvlxiAXItIx84RioUuTAr9bePCMskJM MMV/8ex06gUsFgg= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:02 2024 by rpki-client on console-fra.rpki-client.org