$ rpki-client -vvf rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/94CB63BC241E11EB985FC048C4F9AE02.roa File: 94CB63BC241E11EB985FC048C4F9AE02.roa (raw, json) Hash identifier: ZuMU0Sazkhv5Z9hX8y5u26qVA1926pJyXGJmqjuPt0Q= Subject key identifier: EA:9D:A6:D2:C2:76:5B:2A:0B:4E:A2:42:75:35:A5:BA:79:6E:89:18 Certificate issuer: /CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Certificate serial: 0689 Authority key identifier: 39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/94CB63BC241E11EB985FC048C4F9AE02.roa Signing time: Fri 05 Apr 2024 00:01:55 +0000 ROA not before: Fri 05 Apr 2024 00:01:55 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138573 IP address blocks: 103.133.184.0/22 maxlen: 24 2001:df7:a700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1673 (0x689) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CCC5/serialNumber=3911E1EFB02B036F835BF658E136601A67421693 Validity Not Before: Apr 5 00:01:55 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=660f3f72-598a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ec:ec:59:d0:dd:d9:4e:10:d0:ea:23:ab:c2: 6f:3f:26:90:69:fd:00:08:4b:1e:18:b6:7c:62:92: fd:bb:3c:55:5e:51:49:06:53:88:22:4e:ca:8f:5a: 92:39:38:e4:7b:ae:f9:d3:8a:e3:b8:7d:76:d2:9c: 31:6b:17:ca:04:df:9c:af:ec:31:4a:8c:b0:d6:48: 86:47:47:ce:80:40:23:9c:98:02:bc:e7:81:55:5e: 61:ee:39:ec:17:59:bf:4b:57:df:05:1e:b2:85:fa: d8:65:4a:2b:e0:07:26:11:1c:ed:52:8e:01:29:4c: 5b:2e:10:a4:5c:19:ff:df:10:b6:56:55:d3:86:28: 58:35:b6:39:4f:2b:5a:92:21:a7:8f:d5:6a:31:69: a0:f8:de:c6:d0:99:46:91:f4:53:ae:bd:45:60:10: 2f:62:0c:b0:2a:f3:99:bc:04:97:19:60:fc:09:c9: 75:4f:03:48:c8:56:6f:ec:8f:d6:51:36:e8:ec:a9: ea:10:69:37:51:fb:2e:db:b3:31:6e:35:22:d3:ac: 8b:a9:ed:89:21:f2:77:8a:49:58:8b:20:86:34:b0: 1e:fc:69:91:3d:a4:fa:aa:6e:cc:6a:88:0a:28:3e: 75:42:5a:53:93:fb:5d:b9:83:a4:c0:c9:8c:7c:d4: 5b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:9D:A6:D2:C2:76:5B:2A:0B:4E:A2:42:75:35:A5:BA:79:6E:89:18 X509v3 Authority Key Identifier: keyid:39:11:E1:EF:B0:2B:03:6F:83:5B:F6:58:E1:36:60:1A:67:42:16:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/ORHh77ArA2-DW_ZY4TZgGmdCFpM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORHh77ArA2-DW_ZY4TZgGmdCFpM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CCC5/43B5EFD0241C11EBAB32D543C4F9AE02/94CB63BC241E11EB985FC048C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.184.0/22 IPv6: 2001:df7:a700::/48 Signature Algorithm: sha256WithRSAEncryption 52:3a:5d:9b:da:36:89:b4:af:51:8b:d3:f2:58:bb:79:3d:12: 35:25:43:2b:85:f2:41:a1:61:4b:d5:d8:01:7b:36:07:a0:3b: 2b:9d:a5:b0:98:08:81:2b:7a:81:c4:c1:25:18:44:bf:fb:07: db:61:f8:80:69:63:ee:8a:e5:ee:31:a8:6f:a9:d3:8e:1b:b2: 35:a6:c0:36:59:be:55:e8:c5:a7:1f:f0:55:b4:ad:f0:f5:8c: 5c:45:9e:90:bd:1c:20:12:27:0f:68:34:88:1f:7a:64:3a:6f: c9:d9:0c:76:f2:e2:36:1d:95:46:21:a8:be:4a:8f:f7:96:7e: 03:3b:9b:21:85:2f:28:d3:42:d6:cb:b3:4c:0a:28:c3:c6:8d: 69:bb:8a:96:c6:52:dd:7e:da:d2:2a:dc:93:c9:87:7f:6d:a0: 51:50:62:17:58:a5:83:99:07:7e:79:db:79:0d:76:b4:81:c6: dc:fa:a1:02:20:4e:96:fd:66:ae:65:5c:47:5e:76:ef:84:45: d6:12:7a:5b:83:32:fb:79:39:9e:ce:51:8d:fe:4e:a9:0a:cc: f9:f1:f1:50:fd:bc:7c:1d:cd:bd:ed:56:14:70:78:91:66:be: d1:86:d2:5a:11:9a:67:62:7b:e7:dc:bb:19:68:8e:bc:58:c7: 9b:f9:9f:11 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBokwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NENDQzUxMTAvBgNVBAUTKDM5MTFFMUVGQjAyQjAzNkY4MzVCRjY1OEUxMzY2MDFB Njc0MjE2OTMwHhcNMjQwNDA1MDAwMTU1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmM2Y3Mi01OThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOzsWdDd2U4Q0Oojq8JvPyaQaf0ACEseGLZ8YpL9uzxVXlFJBlOIIk7Kj1qS OTjke67504rjuH120pwxaxfKBN+cr+wxSoyw1kiGR0fOgEAjnJgCvOeBVV5h7jns F1m/S1ffBR6yhfrYZUor4AcmERztUo4BKUxbLhCkXBn/3xC2VlXThihYNbY5Tyta kiGnj9VqMWmg+N7G0JlGkfRTrr1FYBAvYgywKvOZvASXGWD8Ccl1TwNIyFZv7I/W UTbo7KnqEGk3Ufsu27MxbjUi06yLqe2JIfJ3iklYiyCGNLAe/GmRPaT6qm7MaogK KD51QlpTk/tduYOkwMmMfNRbowIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOqdptLC dlsqC06iQnU1pbp5bokYMB8GA1UdIwQYMBaAFDkR4e+wKwNvg1v2WOE2YBpnQhaT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Q0NDNS80M0I1RUZEMDI0 MUMxMUVCQUIzMkQ1NDNDNEY5QUUwMi9PUkhoNzdBckEyLURXX1pZNFRaZ0dtZENG cE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09SSGg3N0FyQTItRFdfWlk0VFpnR21kQ0ZwTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NENDQzUvNDNCNUVGRDAyNDFDMTFFQkFCMzJENTQzQzRGOUFFMDIvOTRDQjYzQkMy NDFFMTFFQjk4NUZDMDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnhbgwDwQCAAIwCQMHACABDfenADANBgkqhkiG9w0BAQsF AAOCAQEAUjpdm9o2ibSvUYvT8li7eT0SNSVDK4XyQaFhS9XYAXs2B6A7K52lsJgI gSt6gcTBJRhEv/sH22H4gGlj7orl7jGob6nTjhuyNabANlm+VejFpx/wVbSt8PWM XEWekL0cIBInD2g0iB96ZDpvydkMdvLiNh2VRiGovkqP95Z+AzubIYUvKNNC1suz TAoow8aNabuKlsZS3X7a0irck8mHf22gUVBiF1ilg5kHfnnbeQ12tIHG3PqhAiBO lv1mrmVcR15274RF1hJ6W4My+3k5ns5Rjf5OqQrM+fHxUP28fB3Nve1WFHB4kWa+ 0YbSWhGaZ2J759y7GWiOvFjHm/mfEQ== -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org