$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/182057F63ACE11EC8987F871C4F9AE02.roa File: 182057F63ACE11EC8987F871C4F9AE02.roa (raw, json) Hash identifier: cju0VYTCW5l5cCttT6iUNk+nPOjz7EuL15pDsjAAXc4= Subject key identifier: 96:21:A4:70:23:AA:D1:D9:FB:E4:1A:84:F9:37:B7:9E:F3:FC:C1:D0 Certificate issuer: /CN=A91AB740/serialNumber=58A99587D5638D8688C25890C7841F3251B496D7 Certificate serial: 0628 Authority key identifier: 58:A9:95:87:D5:63:8D:86:88:C2:58:90:C7:84:1F:32:51:B4:96:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKmVh9VjjYaIwliQx4QfMlG0ltc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/182057F63ACE11EC8987F871C4F9AE02.roa Signing time: Tue 20 Aug 2024 16:02:47 +0000 ROA not before: Tue 20 Aug 2024 16:02:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 58926 IP address blocks: 103.248.236.0/22 maxlen: 22 103.248.236.0/22 maxlen: 24 103.248.236.0/23 maxlen: 23 103.248.236.0/24 maxlen: 24 103.248.237.0/24 maxlen: 24 103.248.238.0/23 maxlen: 23 103.248.238.0/24 maxlen: 24 103.248.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/WKmVh9VjjYaIwliQx4QfMlG0ltc.crl rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/WKmVh9VjjYaIwliQx4QfMlG0ltc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKmVh9VjjYaIwliQx4QfMlG0ltc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:43:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB740/serialNumber=58A99587D5638D8688C25890C7841F3251B496D7 Validity Not Before: Aug 20 16:02:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66c4be27-a504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:65:33:25:ac:77:9a:42:1a:a4:0d:62:11:37: a6:c4:e4:7b:ca:2b:2b:0c:1d:33:53:fb:13:3f:84: d7:5c:7a:1b:04:74:b1:54:a4:19:da:01:3c:75:f4: d7:9b:05:4d:72:f7:7c:b0:ee:d8:20:cf:12:49:69: d3:1d:fe:8e:44:60:34:63:41:54:3a:12:a8:64:3d: 23:70:76:fc:5f:22:91:13:35:f5:0f:67:ad:ed:3f: 89:ae:15:c6:b1:8e:d1:1b:e4:de:03:50:a7:8d:30: de:d7:3a:b8:28:4e:98:7b:05:2d:eb:ab:c9:e1:3a: c6:f6:77:aa:3c:6c:a1:d8:3e:22:b3:13:2e:27:99: 5c:0a:bf:38:2b:7f:19:df:b9:09:e3:21:18:2a:74: 15:38:b7:1b:86:ee:55:c1:a4:63:f7:a1:d8:6d:65: af:f8:7e:6b:c2:40:a4:3f:a2:56:5d:db:dc:7c:29: 67:f9:e6:e3:b0:1c:e5:f9:56:9a:ee:fe:4e:bb:c7: d1:30:cb:10:9a:62:23:86:6c:07:02:44:84:13:c5: ac:c6:72:6e:2f:12:5d:f1:6d:2d:1a:25:5d:90:04: 59:60:d3:43:d3:96:89:94:ee:a7:bc:5e:bd:54:fc: 07:f6:6c:f5:58:96:36:d9:c0:8b:04:62:5a:c2:c7: 08:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:21:A4:70:23:AA:D1:D9:FB:E4:1A:84:F9:37:B7:9E:F3:FC:C1:D0 X509v3 Authority Key Identifier: keyid:58:A9:95:87:D5:63:8D:86:88:C2:58:90:C7:84:1F:32:51:B4:96:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/WKmVh9VjjYaIwliQx4QfMlG0ltc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKmVh9VjjYaIwliQx4QfMlG0ltc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB740/6E5AC454FD2B11E4BB939B43C4F9AE02/182057F63ACE11EC8987F871C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.248.236.0/22 Signature Algorithm: sha256WithRSAEncryption 37:8d:d9:6d:a6:8e:8e:0b:20:b3:65:93:fb:77:5e:61:69:28: 78:52:e8:3b:22:0d:eb:e8:81:75:1e:9c:84:be:01:36:d5:6d: ac:ab:a8:a6:36:56:d0:30:8e:59:8e:a6:82:59:b3:71:94:4e: cb:31:9c:3e:77:8f:88:2f:bc:68:3a:dc:85:87:4b:4b:4d:11: d2:9f:94:31:f5:71:a0:b0:5a:4c:c3:b8:20:29:3a:3d:46:f4: fd:a2:2c:ff:08:27:65:09:d3:2f:a1:21:92:1e:cd:cc:db:ad: 59:b9:a3:66:1d:6e:b3:ed:10:fb:a7:1c:6b:ca:09:8b:c1:03: be:a5:32:83:3c:89:18:d7:50:b9:f5:69:fa:05:76:4e:e3:d2: f1:30:f6:d0:2e:e5:04:ff:da:eb:5e:70:88:c0:66:b2:ed:6a: 52:54:bc:09:a1:a3:bb:ea:7b:70:b3:04:c7:59:ac:d3:f6:12: 79:57:7e:f3:2a:ce:b7:f2:e9:fb:2f:e9:16:eb:60:e3:52:8c: ed:e3:64:93:0e:37:2f:ce:5d:fe:a6:fd:a3:4b:8b:39:18:ac: 41:87:d1:d7:dc:12:bd:f6:f2:59:45:11:9b:c9:b2:6e:1f:52: 2c:87:c7:a7:01:95:44:63:65:72:a9:83:51:6a:21:b6:b0:9f: 73:bd:ef:7a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NDAxMTAvBgNVBAUTKDU4QTk5NTg3RDU2MzhEODY4OEMyNTg5MEM3ODQxRjMy NTFCNDk2RDcwHhcNMjQwODIwMTYwMjQ3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM0YmUyNy1hNTA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwWUzJax3mkIapA1iETemxOR7yisrDB0zU/sTP4TXXHobBHSxVKQZ2gE8dfTX mwVNcvd8sO7YIM8SSWnTHf6ORGA0Y0FUOhKoZD0jcHb8XyKREzX1D2et7T+JrhXG sY7RG+TeA1CnjTDe1zq4KE6YewUt66vJ4TrG9neqPGyh2D4isxMuJ5lcCr84K38Z 37kJ4yEYKnQVOLcbhu5VwaRj96HYbWWv+H5rwkCkP6JWXdvcfCln+ebjsBzl+Vaa 7v5Ou8fRMMsQmmIjhmwHAkSEE8WsxnJuLxJd8W0tGiVdkARZYNND05aJlO6nvF69 VPwH9mz1WJY22cCLBGJawscIJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJYhpHAj qtHZ++QahPk3t57z/MHQMB8GA1UdIwQYMBaAFFiplYfVY42GiMJYkMeEHzJRtJbX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0MC82RTVBQzQ1NEZE MkIxMUU0QkI5MzlCNDNDNEY5QUUwMi9XS21WaDlWampZYUl3bGlReDRRZk1sRzBs dGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLbVZoOVZqallhSXdsaVF4NFFmTWxHMGx0Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI3NDAvNkU1QUM0NTRGRDJCMTFFNEJCOTM5QjQzQzRGOUFFMDIvMTgyMDU3RjYz QUNFMTFFQzg5ODdGODcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn+OwwDQYJKoZIhvcNAQELBQADggEBADeN2W2mjo4LILNl k/t3XmFpKHhS6DsiDevogXUenIS+ATbVbayrqKY2VtAwjlmOpoJZs3GUTssxnD53 j4gvvGg63IWHS0tNEdKflDH1caCwWkzDuCApOj1G9P2iLP8IJ2UJ0y+hIZIezczb rVm5o2YdbrPtEPunHGvKCYvBA76lMoM8iRjXULn1afoFdk7j0vEw9tAu5QT/2ute cIjAZrLtalJUvAmho7vqe3CzBMdZrNP2EnlXfvMqzrfy6fsv6RbrYONSjO3jZJMO Ny/OXf6m/aNLizkYrEGH0dfcEr328llFEZvJsm4fUiyHx6cBlURjZXKpg1FqIbaw n3O973o= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:19 2024 by rpki-client on console-fra.rpki-client.org