$ rpki-client -vvf rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/4A66F4B0C52F11E59EE2C868C4F9AE02.roa File: 4A66F4B0C52F11E59EE2C868C4F9AE02.roa (raw, json) Hash identifier: 6qZEdC79FWE/RTlhtP+n8r05lhzMLnxTSfxisKuoX/k= Subject key identifier: CE:39:38:CA:0D:2F:DE:04:A3:AF:E4:77:90:F5:5D:D3:D3:1A:9E:93 Certificate issuer: /CN=A9126C60/serialNumber=439F5A9A40E199679A7BC09BE207FD1F60A04857 Certificate serial: 2C58 Authority key identifier: 43:9F:5A:9A:40:E1:99:67:9A:7B:C0:9B:E2:07:FD:1F:60:A0:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q59amkDhmWeae8Cb4gf9H2CgSFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/4A66F4B0C52F11E59EE2C868C4F9AE02.roa Signing time: Mon 06 Nov 2023 16:02:08 +0000 ROA not before: Mon 06 Nov 2023 16:02:08 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45950 IP address blocks: 103.8.80.0/24 maxlen: 24 103.8.81.0/24 maxlen: 24 103.8.82.0/24 maxlen: 24 103.8.83.0/24 maxlen: 24 202.134.48.0/24 maxlen: 24 2406:1d00::/32 maxlen: 32 2406:1d00:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/Q59amkDhmWeae8Cb4gf9H2CgSFc.crl rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/Q59amkDhmWeae8Cb4gf9H2CgSFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q59amkDhmWeae8Cb4gf9H2CgSFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11352 (0x2c58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9126C60/serialNumber=439F5A9A40E199679A7BC09BE207FD1F60A04857 Validity Not Before: Nov 6 16:02:08 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65490e00-43e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:f3:92:3a:af:70:ab:ef:23:3b:91:f6:19:33: b4:ca:3f:cc:0c:09:d4:44:a2:a7:bb:ab:e7:d4:58: 67:16:9a:20:d2:ca:1b:19:59:82:fd:43:d6:52:fb: 7f:30:3b:f2:cf:07:c7:45:c7:24:bd:75:51:56:e8: ce:16:fc:b6:4c:d5:a2:d7:68:35:c7:3d:3c:a8:76: 73:0a:1a:e6:5c:a1:80:5f:82:50:c1:b6:a2:8e:55: 76:86:89:11:d6:35:ba:c9:f9:62:d7:70:4f:83:02: 6e:fb:46:1c:21:18:ab:8c:6f:36:ae:e2:ec:3c:aa: 1c:23:d8:55:25:c0:c2:ac:d5:7f:4c:50:0c:5d:8a: a4:c9:69:a3:5c:29:4b:e5:0b:d5:0b:1d:18:18:8d: 7e:92:b3:1b:cc:80:08:ec:59:8c:34:7a:97:de:7e: ea:27:26:14:e1:fd:d0:eb:43:56:a3:be:f3:78:81: 4b:e2:93:49:51:e1:63:1c:52:da:30:d6:4e:c0:d5: af:61:d7:cb:de:7f:f3:f6:65:62:9f:ed:83:72:2f: c8:9e:7c:3d:8d:e1:5b:15:ee:a0:f5:88:7a:ad:3f: 69:f4:a3:68:9b:6a:e1:f7:ff:d4:ea:5c:66:c8:fa: 4f:9b:2d:8b:9c:12:d6:25:76:12:34:2d:9f:f3:17: 88:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:39:38:CA:0D:2F:DE:04:A3:AF:E4:77:90:F5:5D:D3:D3:1A:9E:93 X509v3 Authority Key Identifier: keyid:43:9F:5A:9A:40:E1:99:67:9A:7B:C0:9B:E2:07:FD:1F:60:A0:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/Q59amkDhmWeae8Cb4gf9H2CgSFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q59amkDhmWeae8Cb4gf9H2CgSFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9126C60/BF6323E6894B11E387C49E675911EA32/4A66F4B0C52F11E59EE2C868C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.8.80.0/22 202.134.48.0/24 IPv6: 2406:1d00::/32 Signature Algorithm: sha256WithRSAEncryption 06:b6:97:34:61:5a:30:ed:d2:7f:cd:1b:b8:48:1f:74:93:4b: 09:3e:01:90:49:b9:7b:a4:71:16:4a:d5:67:05:73:b3:94:a9: 4c:23:2c:91:25:30:a1:b7:13:6d:bb:35:95:cf:1a:7f:6d:ff: af:14:0d:22:4e:91:68:0b:bc:51:43:b5:cf:a8:0d:f6:03:83: 7f:fe:00:15:90:f4:25:8c:c1:db:02:44:a3:9c:ad:25:0f:14: 37:30:ec:bd:15:de:b0:a2:bc:81:fe:ac:24:b4:32:0d:ce:8b: cb:20:a0:ef:47:77:14:f2:d4:1e:c5:34:03:8f:af:ad:02:18: eb:8f:42:cd:02:85:d8:64:e3:15:23:2f:8e:8f:7c:72:c2:cb: b3:97:bb:40:39:e4:58:41:46:e2:ff:0a:42:e4:48:d3:4a:39: 6a:df:7a:a8:5a:ff:8c:8f:a8:0e:9f:5f:6d:5a:df:74:83:4e: 10:09:37:6b:9c:12:7a:2a:80:e9:45:70:f6:d6:9c:12:9f:ad: 78:1f:11:d2:63:50:56:a3:2f:bd:eb:31:43:3c:82:a7:7c:97: 1b:77:1f:09:65:c7:96:bf:bd:f7:e0:3a:99:e7:e2:d0:02:51: 0d:ee:9e:fd:7b:5d:37:3e:3b:b1:4a:3e:b6:f9:8e:f7:d8:f4: c3:66:53:b6 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICLFgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjZDNjAxMTAvBgNVBAUTKDQzOUY1QTlBNDBFMTk5Njc5QTdCQzA5QkUyMDdGRDFG NjBBMDQ4NTcwHhcNMjMxMTA2MTYwMjA4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ5MGUwMC00M2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxvOSOq9wq+8jO5H2GTO0yj/MDAnURKKnu6vn1FhnFpog0sobGVmC/UPWUvt/ MDvyzwfHRcckvXVRVujOFvy2TNWi12g1xz08qHZzChrmXKGAX4JQwbaijlV2hokR 1jW6yfli13BPgwJu+0YcIRirjG82ruLsPKocI9hVJcDCrNV/TFAMXYqkyWmjXClL 5QvVCx0YGI1+krMbzIAI7FmMNHqX3n7qJyYU4f3Q60NWo77zeIFL4pNJUeFjHFLa MNZOwNWvYdfL3n/z9mVin+2Dci/Innw9jeFbFe6g9Yh6rT9p9KNom2rh9//U6lxm yPpPmy2LnBLWJXYSNC2f8xeIwwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFM45OMoN L94Eo6/kd5D1XdPTGp6TMB8GA1UdIwQYMBaAFEOfWppA4ZlnmnvAm+IH/R9goEhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNkM2MC9CRjYzMjNFNjg5 NEIxMUUzODdDNDlFNjc1OTExRUEzMi9RNTlhbWtEaG1XZWFlOENiNGdmOUgyQ2dT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1E1OWFta0RobVdlYWU4Q2I0Z2Y5SDJDZ1NGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjZDNjAvQkY2MzIzRTY4OTRCMTFFMzg3QzQ5RTY3NTkxMUVBMzIvNEE2NkY0QjBD NTJGMTFFNTlFRTJDODY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnCFADBADKhjAwDQQCAAIwBwMFACQGHQAwDQYJKoZIhvcN AQELBQADggEBAAa2lzRhWjDt0n/NG7hIH3STSwk+AZBJuXukcRZK1WcFc7OUqUwj LJElMKG3E227NZXPGn9t/68UDSJOkWgLvFFDtc+oDfYDg3/+ABWQ9CWMwdsCRKOc rSUPFDcw7L0V3rCivIH+rCS0Mg3Oi8sgoO9HdxTy1B7FNAOPr60CGOuPQs0Chdhk 4xUjL46PfHLCy7OXu0A55FhBRuL/CkLkSNNKOWrfeqha/4yPqA6fX21a33SDThAJ N2ucEnoqgOlFcPbWnBKfrXgfEdJjUFajL73rMUM8gqd8lxt3Hwllx5a/vffgOpnn 4tACUQ3unv17XTc+O7FKPrb5jvfY9MNmU7Y= -----END CERTIFICATE-----Generated at Fri May 31 16:40:53 2024 by rpki-client on console-ams.rpki-client.org