$ rpki-client -vvf rpki.apnic.net/member_repository/A912AEFA/C4B592661DA911E296BBFEA408B02CD2/9554034062CB11EEA41B6D2EC4F9AE02.roa File: 9554034062CB11EEA41B6D2EC4F9AE02.roa (raw, json) Hash identifier: qHzKeQu0CeIpw5WUN0ykmHCi3DMHGAmWzohdpPXKxzc= Subject key identifier: 46:2B:6A:83:D2:89:FC:56:E7:2E:9D:28:F8:C2:F6:28:67:7E:2A:42 Certificate issuer: /CN=A912AEFA/serialNumber=8D099B16BE9575DCB4BB06858797999F55E6035F Certificate serial: 33B5 Authority key identifier: 8D:09:9B:16:BE:95:75:DC:B4:BB:06:85:87:97:99:9F:55:E6:03:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jQmbFr6Vddy0uwaFh5eZn1XmA18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AEFA/C4B592661DA911E296BBFEA408B02CD2/9554034062CB11EEA41B6D2EC4F9AE02.roa Signing time: Thu 28 Dec 2023 15:40:59 +0000 ROA not before: Thu 28 Dec 2023 15:40:59 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 63961 IP address blocks: 103.28.120.0/22 maxlen: 24 163.47.36.0/22 maxlen: 24 203.96.188.0/22 maxlen: 24 2402:f500::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AEFA/C4B592661DA911E296BBFEA408B02CD2/jQmbFr6Vddy0uwaFh5eZn1XmA18.crl rsync://rpki.apnic.net/member_repository/A912AEFA/C4B592661DA911E296BBFEA408B02CD2/jQmbFr6Vddy0uwaFh5eZn1XmA18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jQmbFr6Vddy0uwaFh5eZn1XmA18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:35:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13237 (0x33b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AEFA/serialNumber=8D099B16BE9575DCB4BB06858797999F55E6035F Validity Not Before: Dec 28 15:40:59 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d970b-8b8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9d:a3:8b:a4:a2:12:bc:07:c8:fc:35:ef:ff: ef:a9:1d:3d:80:99:5b:df:db:82:02:1e:5d:8f:04: 11:08:26:bd:8b:ed:53:48:c1:cf:03:f0:12:41:6f: fa:57:fb:11:e6:8d:0e:25:bd:64:a8:3f:f0:f8:63: b3:84:d1:f0:9f:b1:f0:e7:3d:62:5b:67:b5:43:cf: 33:58:e7:38:d7:58:26:b8:4a:d2:c4:89:be:07:1a: 90:17:ce:27:ef:49:88:ae:c9:05:f7:c5:7c:9d:62: 64:e9:07:27:e9:9a:e0:1e:1a:0b:a7:6d:f8:51:e9: 9f:2e:37:33:b2:30:44:3a:e2:6d:ed:ce:66:3a:68: 7c:cb:85:c9:e2:2c:ec:e6:5a:2e:08:99:af:40:80: 46:28:25:5e:45:6f:c8:ff:63:f3:5b:79:e3:a9:18: 39:75:00:0b:20:f4:e2:f6:94:4c:83:c4:36:6f:c3: cf:47:d9:f7:56:4e:5c:06:60:94:6c:25:b2:38:6f: 25:97:56:92:e6:28:f4:50:8c:e7:c9:64:0e:57:a6: e6:66:dc:ae:90:3b:6f:10:8c:20:2b:79:28:c5:ac: ed:5a:37:f8:44:eb:c2:3d:fe:76:55:e0:0f:33:6e: b9:10:11:02:8b:50:18:ea:cd:a7:18:6d:6d:64:a6: d6:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:2B:6A:83:D2:89:FC:56:E7:2E:9D:28:F8:C2:F6:28:67:7E:2A:42 X509v3 Authority Key Identifier: keyid:8D:09:9B:16:BE:95:75:DC:B4:BB:06:85:87:97:99:9F:55:E6:03:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AEFA/C4B592661DA911E296BBFEA408B02CD2/jQmbFr6Vddy0uwaFh5eZn1XmA18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jQmbFr6Vddy0uwaFh5eZn1XmA18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AEFA/C4B592661DA911E296BBFEA408B02CD2/9554034062CB11EEA41B6D2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.28.120.0/22 163.47.36.0/22 203.96.188.0/22 IPv6: 2402:f500::/32 Signature Algorithm: sha256WithRSAEncryption a2:87:97:81:09:fa:c7:15:52:1d:8d:12:d0:ce:cc:0d:de:cc: a5:e0:0c:e7:ed:7f:ca:3e:68:d0:84:b6:67:c0:43:08:56:f0: 98:1f:ff:13:a5:33:a2:90:dc:83:14:28:13:4c:77:6b:56:42: fa:0e:9c:67:24:c5:f3:f9:47:64:53:d0:1c:21:25:3a:2c:85: f2:98:c9:a6:b2:39:94:6d:93:a3:da:b8:ea:57:75:27:b0:f8: 70:54:95:a0:bf:e8:8a:41:7f:ef:e7:e7:3d:af:71:ce:55:df: 61:29:88:08:9b:c2:44:70:6d:7f:14:e6:e3:7b:63:1d:05:b1: c7:24:77:86:11:69:2f:ba:9a:f9:5c:68:bc:63:c5:81:fd:51: 84:e8:af:72:91:ae:5c:5d:cd:fd:f3:9f:4c:37:38:88:93:ad: 2d:2e:34:ef:d0:de:60:92:6c:f4:61:06:32:83:aa:69:63:4c: 4c:bb:e8:75:41:1b:03:5e:51:2f:e7:ba:ce:3d:03:46:95:b1: 4b:3f:2a:59:ed:38:82:39:8a:bd:70:d6:15:5b:6f:38:19:99: 7e:32:7a:00:0f:9f:88:3f:05:52:46:a7:49:44:5a:2b:4c:e9: f4:ff:ed:75:4e:78:6f:08:58:31:d0:8b:f0:3f:9e:00:8b:cb: 5e:5f:73:ae -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICM7UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFFRkExMTAvBgNVBAUTKDhEMDk5QjE2QkU5NTc1RENCNEJCMDY4NTg3OTc5OTlG NTVFNjAzNUYwHhcNMjMxMjI4MTU0MDU5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOTcwYi04YjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZ2ji6SiErwHyPw17//vqR09gJlb39uCAh5djwQRCCa9i+1TSMHPA/ASQW/6 V/sR5o0OJb1kqD/w+GOzhNHwn7Hw5z1iW2e1Q88zWOc411gmuErSxIm+BxqQF84n 70mIrskF98V8nWJk6Qcn6ZrgHhoLp234UemfLjczsjBEOuJt7c5mOmh8y4XJ4izs 5louCJmvQIBGKCVeRW/I/2PzW3njqRg5dQALIPTi9pRMg8Q2b8PPR9n3Vk5cBmCU bCWyOG8ll1aS5ij0UIznyWQOV6bmZtyukDtvEIwgK3koxaztWjf4ROvCPf52VeAP M265EBECi1AY6s2nGG1tZKbWYwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFEYraoPS ifxW5y6dKPjC9ihnfipCMB8GA1UdIwQYMBaAFI0Jmxa+lXXctLsGhYeXmZ9V5gNf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUVGQS9DNEI1OTI2NjFE QTkxMUUyOTZCQkZFQTQwOEIwMkNEMi9qUW1iRnI2VmRkeTB1d2FGaDVlWm4xWG1B MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pRbWJGcjZWZGR5MHV3YUZoNWVabjFYbUExOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFFRkEvQzRCNTkyNjYxREE5MTFFMjk2QkJGRUE0MDhCMDJDRDIvOTU1NDAzNDA2 MkNCMTFFRUE0MUI2RDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAJnHHgDBAKjLyQDBALLYLwwDQQCAAIwBwMFACQC9QAwDQYJ KoZIhvcNAQELBQADggEBAKKHl4EJ+scVUh2NEtDOzA3ezKXgDOftf8o+aNCEtmfA QwhW8Jgf/xOlM6KQ3IMUKBNMd2tWQvoOnGckxfP5R2RT0BwhJToshfKYyaayOZRt k6PauOpXdSew+HBUlaC/6IpBf+/n5z2vcc5V32EpiAibwkRwbX8U5uN7Yx0Fscck d4YRaS+6mvlcaLxjxYH9UYTor3KRrlxdzf3zn0w3OIiTrS0uNO/Q3mCSbPRhBjKD qmljTEy76HVBGwNeUS/nus49A0aVsUs/KlntOII5ir1w1hVbbzgZmX4yegAPn4g/ BVJGp0lEWitM6fT/7XVOeG8IWDHQi/A/ngCLy15fc64= -----END CERTIFICATE-----Generated at Fri May 31 16:40:54 2024 by rpki-client on console-ams.rpki-client.org