$ rpki-client -vvf rpki.apnic.net/member_repository/A913990E/7E464B34105511EB80F88113C4F9AE02/86BB53D0105611EB85F56114C4F9AE02.roa File: 86BB53D0105611EB85F56114C4F9AE02.roa (raw, json) Hash identifier: WcDWxE3j9p1VFrhk+5Av6h7oQt2r0PNsjg2nFhhQ81o= Subject key identifier: 64:D9:06:C2:9D:FE:B1:47:11:13:95:62:4B:88:E8:7E:ED:D4:C5:A6 Certificate issuer: /CN=A913990E/serialNumber=F5D047490DE3A4EDCFDC37F6ECAB94938DA7C6F6 Certificate serial: 06FD Authority key identifier: F5:D0:47:49:0D:E3:A4:ED:CF:DC:37:F6:EC:AB:94:93:8D:A7:C6:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9dBHSQ3jpO3P3Df27KuUk42nxvY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913990E/7E464B34105511EB80F88113C4F9AE02/86BB53D0105611EB85F56114C4F9AE02.roa Signing time: Fri 23 Aug 2024 17:09:07 +0000 ROA not before: Fri 23 Aug 2024 17:09:07 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136556 IP address blocks: 103.92.160.0/24 maxlen: 24 103.92.161.0/24 maxlen: 24 2001:df1:2500::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913990E/7E464B34105511EB80F88113C4F9AE02/9dBHSQ3jpO3P3Df27KuUk42nxvY.crl rsync://rpki.apnic.net/member_repository/A913990E/7E464B34105511EB80F88113C4F9AE02/9dBHSQ3jpO3P3Df27KuUk42nxvY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9dBHSQ3jpO3P3Df27KuUk42nxvY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913990E/serialNumber=F5D047490DE3A4EDCFDC37F6ECAB94938DA7C6F6 Validity Not Before: Aug 23 17:09:07 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66c8c233-0ead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:fc:0f:55:99:3b:18:0b:a6:b1:6a:cc:3a:19: bd:b6:72:99:a7:21:3d:3b:f7:71:9a:3a:52:c0:67: 36:fc:2d:d4:c8:c9:a2:62:71:54:aa:b8:5b:e2:4a: 2b:90:f8:44:0f:9b:89:80:0b:44:da:7e:94:42:60: 3d:95:27:20:c5:44:1c:9e:e3:6a:ca:53:27:bb:76: c5:95:cc:41:9e:8c:74:77:53:16:5e:32:91:04:8f: 32:0d:0a:ba:33:bf:8e:a0:aa:0c:47:f6:b0:fd:84: c1:1f:6f:0c:14:a7:3c:a3:d7:75:40:73:19:5e:61: e5:96:a2:0a:89:2c:6f:61:71:55:cc:af:ba:c3:19: 74:43:0d:97:a3:4a:8e:a2:48:37:9f:da:22:da:14: 5b:3b:82:e9:4d:69:a3:e0:cb:33:b6:f3:d4:67:e6: 38:ef:ab:3e:2b:be:fa:25:7c:ef:3b:75:9a:5e:8e: d0:95:58:ed:31:0c:da:fe:5f:95:48:8f:a6:4f:16: 3c:66:0a:46:d0:ec:9e:9c:ae:96:f1:03:b2:52:46: 86:0c:11:07:1e:ac:93:8e:33:91:81:7e:10:97:bd: d2:56:8e:c8:08:92:75:dc:eb:a4:09:77:47:21:34: 48:69:18:3b:d3:af:98:ee:97:c7:2b:0a:7b:f1:c6: 06:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:D9:06:C2:9D:FE:B1:47:11:13:95:62:4B:88:E8:7E:ED:D4:C5:A6 X509v3 Authority Key Identifier: keyid:F5:D0:47:49:0D:E3:A4:ED:CF:DC:37:F6:EC:AB:94:93:8D:A7:C6:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913990E/7E464B34105511EB80F88113C4F9AE02/9dBHSQ3jpO3P3Df27KuUk42nxvY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9dBHSQ3jpO3P3Df27KuUk42nxvY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913990E/7E464B34105511EB80F88113C4F9AE02/86BB53D0105611EB85F56114C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.92.160.0/23 IPv6: 2001:df1:2500::/48 Signature Algorithm: sha256WithRSAEncryption 6d:e5:9c:37:19:f3:80:f4:d1:11:81:91:f6:62:74:65:e3:c9: 0d:a4:eb:e1:0b:c0:57:4a:05:2a:bb:7b:06:ba:65:33:65:54: 61:1a:ab:ac:fd:85:67:4e:e7:c1:ee:2f:6f:f0:f9:5d:16:ca: 82:2e:ad:52:31:b2:a7:29:4b:45:31:3a:50:65:e3:2d:76:d5: 92:d3:ee:1f:b3:a9:ac:f3:b1:d7:ab:e9:a4:17:85:bc:c7:88: 9d:0c:74:77:8e:dd:52:15:83:99:e8:a0:d2:96:00:db:3a:1d: e1:3b:26:49:e6:0a:42:e2:7b:b5:80:d2:aa:70:1c:a4:04:46: 41:67:ea:d6:3e:a5:04:12:f1:92:11:10:5a:7d:97:ee:20:75: a0:0b:7f:77:48:5e:21:a5:a3:31:0d:7b:a5:f9:db:eb:94:86: 32:da:f8:fc:a1:57:17:0f:1a:62:d7:61:95:ce:25:02:88:ca: 9e:80:44:97:2e:ba:65:f9:b9:0c:bd:11:48:eb:bc:a5:35:af: df:c4:c4:c5:d8:b7:ac:af:0e:53:78:d3:f1:29:32:f1:62:4c: 00:dd:3c:a3:ae:35:4f:de:94:52:0b:f4:0b:dc:35:54:7f:cd: f1:e1:48:6d:19:44:06:77:4e:47:73:be:e2:0a:d7:9c:2b:d5: 49:77:f5:d4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk5MEUxMTAvBgNVBAUTKEY1RDA0NzQ5MERFM0E0RURDRkRDMzdGNkVDQUI5NDkz OERBN0M2RjYwHhcNMjQwODIzMTcwOTA3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM4YzIzMy0wZWFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vwPVZk7GAumsWrMOhm9tnKZpyE9O/dxmjpSwGc2/C3UyMmiYnFUqrhb4kor kPhED5uJgAtE2n6UQmA9lScgxUQcnuNqylMnu3bFlcxBnox0d1MWXjKRBI8yDQq6 M7+OoKoMR/aw/YTBH28MFKc8o9d1QHMZXmHllqIKiSxvYXFVzK+6wxl0Qw2Xo0qO okg3n9oi2hRbO4LpTWmj4MsztvPUZ+Y476s+K776JXzvO3WaXo7QlVjtMQza/l+V SI+mTxY8ZgpG0OyenK6W8QOyUkaGDBEHHqyTjjORgX4Ql73SVo7ICJJ13OukCXdH ITRIaRg706+Y7pfHKwp78cYGvQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGTZBsKd /rFHEROVYkuI6H7t1MWmMB8GA1UdIwQYMBaAFPXQR0kN46Ttz9w39uyrlJONp8b2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTkwRS83RTQ2NEIzNDEw NTUxMUVCODBGODgxMTNDNEY5QUUwMi85ZEJIU1EzanBPM1AzRGYyN0t1VWs0Mm54 dlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlkQkhTUTNqcE8zUDNEZjI3S3VVazQybnh2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk5MEUvN0U0NjRCMzQxMDU1MTFFQjgwRjg4MTEzQzRGOUFFMDIvODZCQjUzRDAx MDU2MTFFQjg1RjU2MTE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnXKAwDwQCAAIwCQMHACABDfElADANBgkqhkiG9w0BAQsF AAOCAQEAbeWcNxnzgPTREYGR9mJ0ZePJDaTr4QvAV0oFKrt7BrplM2VUYRqrrP2F Z07nwe4vb/D5XRbKgi6tUjGypylLRTE6UGXjLXbVktPuH7OprPOx16vppBeFvMeI nQx0d47dUhWDmeig0pYA2zod4TsmSeYKQuJ7tYDSqnAcpARGQWfq1j6lBBLxkhEQ Wn2X7iB1oAt/d0heIaWjMQ17pfnb65SGMtr4/KFXFw8aYtdhlc4lAojKnoBEly66 Zfm5DL0RSOu8pTWv38TExdi3rK8OU3jT8Sky8WJMAN08o641T96UUgv0C9w1VH/N 8eFIbRlEBndOR3O+4grXnCvVSXf11A== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:24 2024 by rpki-client on console-ams.rpki-client.org