$ rpki-client -vvf rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/18DC0A381C0311EE9B0F2938C4F9AE02.roa File: 18DC0A381C0311EE9B0F2938C4F9AE02.roa (raw, json) Hash identifier: +NXIJ3XAp8BvWngt2c/RnkPBxhwMNcZtq308qJwKx8k= Subject key identifier: E1:72:29:47:20:1E:B2:2F:A0:85:CD:EA:3D:BD:A7:51:EA:AF:C3:B2 Certificate issuer: /CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Certificate serial: EE Authority key identifier: DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/18DC0A381C0311EE9B0F2938C4F9AE02.roa Signing time: Sat 07 Sep 2024 06:07:32 +0000 ROA not before: Sat 07 Sep 2024 06:07:32 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 147308 IP address blocks: 103.225.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:10:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 238 (0xee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C572B/serialNumber=DF79C3BA015261E3AC843239CE47035901D66A94 Validity Not Before: Sep 7 06:07:32 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66dbeda4-9557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a5:8f:e6:bd:a6:69:d8:76:16:d4:79:40:98: 1e:4c:ec:3b:53:14:97:c1:11:ad:cc:9e:71:cb:36: 09:c0:fb:54:9f:dd:bf:17:c9:d6:90:ab:2a:3e:b8: d2:58:fc:5e:ec:b1:fb:f0:4a:13:c6:e5:6d:97:e5: 77:59:f6:7f:d4:c7:8c:7d:07:b8:5f:fb:0d:9c:4d: 60:6e:e1:35:57:41:e1:f4:3a:96:c1:d7:7c:e2:69: 85:3a:0e:2b:d9:9d:ee:70:c9:c9:ca:c4:9a:4d:ab: 3c:9b:f0:fb:01:7c:33:5b:52:66:92:3e:2b:52:eb: d7:00:e1:3e:46:d7:0e:2d:7d:84:f2:55:13:03:78: ad:fd:b3:22:56:91:35:ec:1c:f2:49:3c:0d:44:bd: b6:92:a7:44:df:7b:60:00:1a:a9:3c:65:bc:c4:25: 1d:cc:21:24:af:bc:7c:29:27:cd:3b:1a:d4:72:7d: 1b:f1:2f:4f:94:ca:17:f5:bf:0f:0f:e3:aa:8b:aa: 8e:63:36:91:69:12:0e:81:02:50:de:c8:1f:92:6e: 5a:0a:20:66:04:0d:82:39:41:49:e0:ad:0c:43:91: ab:04:f4:f1:2e:2d:f3:85:07:f4:28:35:99:95:27: d9:09:d7:32:5c:ed:0b:60:78:15:8f:8d:2e:a8:61: eb:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:72:29:47:20:1E:B2:2F:A0:85:CD:EA:3D:BD:A7:51:EA:AF:C3:B2 X509v3 Authority Key Identifier: keyid:DF:79:C3:BA:01:52:61:E3:AC:84:32:39:CE:47:03:59:01:D6:6A:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/33nDugFSYeOshDI5zkcDWQHWapQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/33nDugFSYeOshDI5zkcDWQHWapQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C572B/F7E5C1680E9A11EEA6449E71C4F9AE02/18DC0A381C0311EE9B0F2938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.218.0/24 Signature Algorithm: sha256WithRSAEncryption 36:3d:e7:3c:23:eb:29:03:55:03:a5:0f:c0:af:07:c0:01:04: 9e:79:97:48:08:a9:cf:fc:09:f2:5e:58:ee:bc:76:7a:7b:e7: 84:c5:2c:af:8e:3c:b1:3f:6d:dd:23:bb:b4:57:2e:0f:b0:80: eb:a1:fa:cc:03:bf:e0:9c:56:d0:d4:77:e0:c6:13:ea:3e:b3: 0b:e5:bc:e3:ad:09:3c:cb:08:c3:b3:81:21:58:5a:e2:47:0a: 31:01:37:dc:1d:d6:7b:ca:d6:6d:5c:80:96:b0:15:5e:01:d1: b8:f9:42:73:6c:8a:f6:77:84:a2:b0:a8:c4:45:16:48:1a:3f: 39:37:fd:f7:75:bf:68:75:55:ae:98:ed:6a:46:f5:bf:8c:03: 70:4f:59:e2:6c:40:64:56:0f:f8:4e:bd:0e:2a:8a:f1:09:94: 16:bb:79:80:42:5f:e5:82:73:9f:25:cd:d0:67:da:8d:61:6e: 15:28:a4:ca:0c:58:9f:4c:9e:38:24:30:a9:c1:2e:ca:07:c7: 4d:5e:85:3d:46:08:bc:cd:c2:fb:09:92:7b:11:74:05:f0:17: c2:86:38:12:ea:2c:10:35:0e:a7:63:cd:fd:c8:dd:9d:af:73: e0:a5:70:ee:91:ec:8c:6d:71:6b:15:04:f2:e2:a9:5a:fc:3a: 5a:ed:94:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAO4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzU3MkIxMTAvBgNVBAUTKERGNzlDM0JBMDE1MjYxRTNBQzg0MzIzOUNFNDcwMzU5 MDFENjZBOTQwHhcNMjQwOTA3MDYwNzMyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmRiZWRhNC05NTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKWP5r2madh2FtR5QJgeTOw7UxSXwRGtzJ5xyzYJwPtUn92/F8nWkKsqPrjS WPxe7LH78EoTxuVtl+V3WfZ/1MeMfQe4X/sNnE1gbuE1V0Hh9DqWwdd84mmFOg4r 2Z3ucMnJysSaTas8m/D7AXwzW1Jmkj4rUuvXAOE+RtcOLX2E8lUTA3it/bMiVpE1 7BzySTwNRL22kqdE33tgABqpPGW8xCUdzCEkr7x8KSfNOxrUcn0b8S9PlMoX9b8P D+Oqi6qOYzaRaRIOgQJQ3sgfkm5aCiBmBA2COUFJ4K0MQ5GrBPTxLi3zhQf0KDWZ lSfZCdcyXO0LYHgVj40uqGHr9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFOFyKUcg HrIvoIXN6j29p1Hqr8OyMB8GA1UdIwQYMBaAFN95w7oBUmHjrIQyOc5HA1kB1mqU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNTcyQi9GN0U1QzE2ODBF OUExMUVFQTY0NDlFNzFDNEY5QUUwMi8zM25EdWdGU1llT3NoREk1emtjRFdRSFdh cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzMzbkR1Z0ZTWWVPc2hESTV6a2NEV1FIV2FwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzU3MkIvRjdFNUMxNjgwRTlBMTFFRUE2NDQ5RTcxQzRGOUFFMDIvMThEQzBBMzgx QzAzMTFFRTlCMEYyOTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn4dowDQYJKoZIhvcNAQELBQADggEBADY95zwj6ykDVQOl D8CvB8ABBJ55l0gIqc/8CfJeWO68dnp754TFLK+OPLE/bd0ju7RXLg+wgOuh+swD v+CcVtDUd+DGE+o+swvlvOOtCTzLCMOzgSFYWuJHCjEBN9wd1nvK1m1cgJawFV4B 0bj5QnNsivZ3hKKwqMRFFkgaPzk3/fd1v2h1Va6Y7WpG9b+MA3BPWeJsQGRWD/hO vQ4qivEJlBa7eYBCX+WCc58lzdBn2o1hbhUopMoMWJ9MnjgkMKnBLsoHx01ehT1G CLzNwvsJknsRdAXwF8KGOBLqLBA1Dqdjzf3I3Z2vc+ClcO6R7IxtcWsVBPLiqVr8 OlrtlJg= -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:04 2024 by rpki-client on console-fra.rpki-client.org