$ rpki-client -vvf rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/B523DAE68C9211EABC682867C4F9AE02.roa File: B523DAE68C9211EABC682867C4F9AE02.roa (raw, json) Hash identifier: O1kd0Y8YHGAuQNE1wq4lO26tfNPiZv4mNi6pAigMPUU= Subject key identifier: 6C:89:74:8D:DF:0C:6B:76:D3:57:DD:29:9A:0C:44:D5:A9:8A:B5:61 Certificate issuer: /CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Certificate serial: 0C71 Authority key identifier: 47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/B523DAE68C9211EABC682867C4F9AE02.roa Signing time: Tue 02 Jul 2024 18:46:11 +0000 ROA not before: Tue 02 Jul 2024 18:46:11 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 63991 IP address blocks: 103.58.144.0/23 maxlen: 24 103.127.62.0/23 maxlen: 24 2405:55c0::/32 maxlen: 32 2405:55c0::/48 maxlen: 48 2405:55c0:3c::/48 maxlen: 48 2405:55c0:3f::/48 maxlen: 48 2405:55c0:54::/48 maxlen: 48 2405:55c0:55::/48 maxlen: 48 2405:55c0:80::/48 maxlen: 48 2405:55c0:81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:05:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3185 (0xc71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140EE2/serialNumber=475250E6A055478F4AC1EAF1ED32D5672C3CD1B3 Validity Not Before: Jul 2 18:46:11 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66844af2-6a35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:09:0d:84:92:81:bb:4b:14:75:b9:b3:ef:15: 2e:01:16:c5:d5:d4:6e:5a:49:5d:77:5a:81:51:a4: 47:4e:f2:ef:45:f4:b6:37:17:91:f4:79:4d:ef:5a: 27:25:47:76:d6:ac:ae:49:5d:31:98:32:7b:f8:46: 05:d8:18:2c:70:02:8d:5b:30:78:68:f2:02:71:e8: b2:97:49:a9:7a:1b:9f:0e:b7:ac:16:73:eb:49:f5: 6a:e2:a1:91:1d:09:07:1f:1f:d6:f6:2f:dd:9a:e3: d6:6d:c6:97:8e:07:6e:6b:b9:10:75:e3:3d:37:56: 8a:b6:d7:44:91:83:83:79:35:64:68:ff:2f:75:b3: 88:f0:6e:6e:d6:a7:17:6a:99:5d:5f:9f:a3:60:a7: 31:be:6e:25:7b:3f:49:27:17:24:68:71:e1:e8:0a: 9c:d1:e1:3f:bc:6f:76:0c:20:dc:3b:16:4f:3b:fd: b6:88:9d:d0:58:23:23:70:5b:42:34:8e:68:af:c8: a5:9a:fe:e1:0b:a9:fe:20:59:dd:04:d2:cd:10:25: e3:d0:91:26:1d:06:59:74:42:65:7b:9f:b8:52:86: 99:35:0e:77:c8:5f:67:11:ee:ee:20:b7:d9:c9:a4: 19:bb:3a:6b:21:e1:ad:b3:53:df:b8:70:00:bc:fe: d6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:89:74:8D:DF:0C:6B:76:D3:57:DD:29:9A:0C:44:D5:A9:8A:B5:61 X509v3 Authority Key Identifier: keyid:47:52:50:E6:A0:55:47:8F:4A:C1:EA:F1:ED:32:D5:67:2C:3C:D1:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/R1JQ5qBVR49Kwerx7TLVZyw80bM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R1JQ5qBVR49Kwerx7TLVZyw80bM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140EE2/EA01D55ADF7311E9ABEBD43BC4F9AE02/B523DAE68C9211EABC682867C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.58.144.0/23 103.127.62.0/23 IPv6: 2405:55c0::/32 Signature Algorithm: sha256WithRSAEncryption 7b:e1:db:34:f9:4e:a9:47:79:22:10:4d:84:2e:7c:8f:12:35: e1:28:11:4b:16:b1:09:e4:0f:42:65:4f:6f:a6:6a:c6:6d:dd: 86:f9:15:a6:58:30:3c:6f:25:d9:07:43:80:db:10:a2:ea:74: 7f:82:4e:7e:27:f6:97:c1:5b:aa:eb:aa:27:74:29:10:ad:53: d3:37:cc:8c:4d:80:a8:55:c6:2d:c4:6b:fc:7e:e9:a0:dd:8a: 3d:f4:31:d2:be:c7:2f:8e:55:d6:2f:5b:44:c9:91:b3:c7:94: c6:60:ff:e2:02:cd:88:8c:99:0c:dd:76:ab:36:34:d1:e1:46: 07:10:e3:43:62:1a:c8:3e:73:91:d9:ca:e0:7c:cf:51:68:fd: 02:8b:93:c6:d5:b9:42:8e:33:82:a8:04:25:b4:2f:56:c1:e5: a1:33:75:c6:a8:ed:87:62:f7:c1:b5:cf:0a:6b:7b:46:75:fb: 4b:58:83:da:78:19:57:95:d0:44:75:df:2b:9b:6c:b4:06:eb: 86:a1:58:a1:a9:ac:a1:28:31:ad:b0:88:4c:22:5b:84:87:00: 6a:e1:c8:ce:9a:0b:08:46:75:d8:3f:d2:2d:a7:af:72:33:1b: 52:03:6a:60:86:f0:02:69:94:98:69:5d:cd:67:97:4a:bd:17: 58:cf:dd:7d -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDHEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBFRTIxMTAvBgNVBAUTKDQ3NTI1MEU2QTA1NTQ3OEY0QUMxRUFGMUVEMzJENTY3 MkMzQ0QxQjMwHhcNMjQwNzAyMTg0NjExWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0NGFmMi02YTM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1gkNhJKBu0sUdbmz7xUuARbF1dRuWkldd1qBUaRHTvLvRfS2NxeR9HlN71on JUd21qyuSV0xmDJ7+EYF2BgscAKNWzB4aPICceiyl0mpehufDresFnPrSfVq4qGR HQkHHx/W9i/dmuPWbcaXjgdua7kQdeM9N1aKttdEkYODeTVkaP8vdbOI8G5u1qcX apldX5+jYKcxvm4lez9JJxckaHHh6Aqc0eE/vG92DCDcOxZPO/22iJ3QWCMjcFtC NI5or8ilmv7hC6n+IFndBNLNECXj0JEmHQZZdEJle5+4UoaZNQ53yF9nEe7uILfZ yaQZuzprIeGts1PfuHAAvP7WCQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFGyJdI3f DGt201fdKZoMRNWpirVhMB8GA1UdIwQYMBaAFEdSUOagVUePSsHq8e0y1WcsPNGz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEVFMi9FQTAxRDU1QURG NzMxMUU5QUJFQkQ0M0JDNEY5QUUwMi9SMUpRNXFCVlI0OUt3ZXJ4N1RMVlp5dzgw Yk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IxSlE1cUJWUjQ5S3dlcng3VExWWnl3ODBiTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBFRTIvRUEwMUQ1NUFERjczMTFFOUFCRUJENDNCQzRGOUFFMDIvQjUyM0RBRTY4 QzkyMTFFQUJDNjgyODY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAFnOpADBAFnfz4wDQQCAAIwBwMFACQFVcAwDQYJKoZIhvcN AQELBQADggEBAHvh2zT5TqlHeSIQTYQufI8SNeEoEUsWsQnkD0JlT2+masZt3Yb5 FaZYMDxvJdkHQ4DbEKLqdH+CTn4n9pfBW6rrqid0KRCtU9M3zIxNgKhVxi3Ea/x+ 6aDdij30MdK+xy+OVdYvW0TJkbPHlMZg/+ICzYiMmQzddqs2NNHhRgcQ40NiGsg+ c5HZyuB8z1Fo/QKLk8bVuUKOM4KoBCW0L1bB5aEzdcao7Ydi98G1zwpre0Z1+0tY g9p4GVeV0ER13yubbLQG64ahWKGprKEoMa2wiEwiW4SHAGrhyM6aCwhGddg/0i2n r3IzG1IDamCG8AJplJhpXc1nl0q9F1jP3X0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:00 2024 by rpki-client on console-ams.rpki-client.org