$ rpki-client -vvf rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/F9B8A0AEB04911EE98449A2BC4F9AE02.roa File: F9B8A0AEB04911EE98449A2BC4F9AE02.roa (raw, json) Hash identifier: 6nhFCqUXqKqSoCa+j+Sz88JngdLOIlW2MSoV2XpyvzY= Subject key identifier: 80:E0:62:84:44:1F:5E:F7:AE:10:D8:07:B7:1D:4E:C5:C9:0F:A5:55 Certificate issuer: /CN=A916002E/serialNumber=04A55F7AB3AE399D4F257D4FD289B105808E5C3C Certificate serial: 71 Authority key identifier: 04:A5:5F:7A:B3:AE:39:9D:4F:25:7D:4F:D2:89:B1:05:80:8E:5C:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKVferOuOZ1PJX1P0omxBYCOXDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/F9B8A0AEB04911EE98449A2BC4F9AE02.roa Signing time: Wed 31 Jul 2024 06:57:15 +0000 ROA not before: Wed 31 Jul 2024 06:57:15 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 17456 IP address blocks: 103.212.24.0/22 maxlen: 22 139.5.136.0/22 maxlen: 22 203.95.8.0/21 maxlen: 21 2402:6200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/BKVferOuOZ1PJX1P0omxBYCOXDw.crl rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/BKVferOuOZ1PJX1P0omxBYCOXDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKVferOuOZ1PJX1P0omxBYCOXDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916002E/serialNumber=04A55F7AB3AE399D4F257D4FD289B105808E5C3C Validity Not Before: Jul 31 06:57:15 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9e04a-8bdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5f:6f:aa:28:b1:7f:da:00:98:68:17:ca:54: c3:5c:3d:19:6b:db:09:cf:8b:5c:4e:84:7f:bb:13: de:52:8e:c0:16:78:da:33:8a:34:09:61:fc:bb:60: 58:32:6a:ba:df:d6:3f:27:65:d9:1f:bf:59:ba:65: 5e:b2:2f:62:fe:ae:c7:fe:7d:74:8b:f4:4f:cc:41: bf:4c:f8:90:02:03:c0:be:7b:7a:f1:9d:b8:5d:da: b1:d2:e0:03:fd:b6:dc:82:f4:90:0c:50:8a:cf:22: 90:d1:d0:ea:17:f6:17:91:bd:77:38:98:da:33:e9: 6a:f6:71:1a:c3:ae:1e:c6:bb:0a:6b:66:7c:6c:63: dc:be:57:7f:ce:8b:c0:4f:d6:17:10:4c:c5:8b:65: 67:c7:27:ad:49:61:88:0c:5c:ac:7f:e1:69:f3:78: bb:ce:11:4e:57:f1:c1:83:09:11:8f:bd:d5:db:2a: b9:fe:c6:6c:fc:a4:ae:a6:55:b1:87:b6:34:41:da: 0a:11:c1:a0:ab:72:b6:07:b3:3e:84:a1:64:4f:1d: 2b:7c:d5:02:0d:58:4c:dd:25:bc:8a:82:64:b1:bd: bb:27:af:ee:10:43:7e:df:dd:af:61:b2:40:a5:db: a6:b2:36:b7:aa:e0:55:88:24:5b:81:16:9d:a4:78: c1:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E0:62:84:44:1F:5E:F7:AE:10:D8:07:B7:1D:4E:C5:C9:0F:A5:55 X509v3 Authority Key Identifier: keyid:04:A5:5F:7A:B3:AE:39:9D:4F:25:7D:4F:D2:89:B1:05:80:8E:5C:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/BKVferOuOZ1PJX1P0omxBYCOXDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKVferOuOZ1PJX1P0omxBYCOXDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/F9B8A0AEB04911EE98449A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.24.0/22 139.5.136.0/22 203.95.8.0/21 IPv6: 2402:6200::/32 Signature Algorithm: sha256WithRSAEncryption 50:b1:80:4c:7b:aa:00:64:59:52:ed:80:f4:48:20:62:a0:9a: 72:f1:2e:9b:4a:02:16:22:0c:27:a9:7e:96:10:d4:3a:e6:e6: 7b:6f:27:53:a7:e6:3b:20:26:33:0a:85:09:8f:25:0c:38:a2: 31:43:3f:39:96:48:d8:fd:80:c3:e5:cf:3f:a3:22:bf:b5:7d: 9b:0d:3b:30:e1:d0:9e:ec:7f:11:5a:a2:8a:8f:f2:cb:e1:10: 4f:43:ee:5c:9d:8f:9f:1c:7f:08:47:80:ee:73:76:49:94:8e: 32:df:61:00:46:6f:93:3b:ee:60:5c:6b:9e:63:ad:b7:6c:c1: 4a:4e:1e:17:b3:fc:7b:90:d8:fd:ca:64:ad:0e:6b:4f:d3:1e: a8:1a:9c:d1:d8:ba:cb:f6:6e:11:7b:cf:44:20:00:b2:ab:22: 7a:9a:28:4a:1b:c8:f9:5f:db:f3:6e:4a:3e:0a:bd:7f:ba:4c: 7e:02:ae:0f:26:99:0c:3c:09:80:77:ab:d5:23:ea:fb:37:2c: af:fa:f3:11:b8:4a:23:f7:22:af:aa:a7:06:d2:6b:88:dd:9f: 80:f2:81:10:fc:8d:11:89:c2:86:94:3a:97:28:8d:12:4b:6c: 15:c7:4d:5c:5d:9d:cb:93:de:76:ad:65:bd:37:c3:31:e2:a7: dc:68:cc:5c -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDAyRTExMC8GA1UEBRMoMDRBNTVGN0FCM0FFMzk5RDRGMjU3RDRGRDI4OUIxMDU4 MDhFNUMzQzAeFw0yNDA3MzEwNjU3MTVaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTllMDRhLThiZGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClX2+qKLF/2gCYaBfKVMNcPRlr2wnPi1xOhH+7E95SjsAWeNozijQJYfy7YFgy arrf1j8nZdkfv1m6ZV6yL2L+rsf+fXSL9E/MQb9M+JACA8C+e3rxnbhd2rHS4AP9 ttyC9JAMUIrPIpDR0OoX9heRvXc4mNoz6Wr2cRrDrh7GuwprZnxsY9y+V3/Oi8BP 1hcQTMWLZWfHJ61JYYgMXKx/4WnzeLvOEU5X8cGDCRGPvdXbKrn+xmz8pK6mVbGH tjRB2goRwaCrcrYHsz6EoWRPHSt81QINWEzdJbyKgmSxvbsnr+4QQ37f3a9hskCl 26ayNreq4FWIJFuBFp2keMFxAgMBAAGjggKwMIICrDAdBgNVHQ4EFgQUgOBihEQf XveuENgHtx1OxckPpVUwHwYDVR0jBBgwFoAUBKVferOuOZ1PJX1P0omxBYCOXDww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwMDJFL0YyODdEMzBBQjAx MTExRUVCQzU4Njk2NEM0RjlBRTAyL0JLVmZlck91T1oxUEpYMVAwb214QllDT1hE dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQktWZmVyT3VPWjFQSlgxUDBvbXhCWUNPWER3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDAyRS9GMjg3RDMwQUIwMTExMUVFQkM1ODY5NjRDNEY5QUUwMi9GOUI4QTBBRUIw NDkxMUVFOTg0NDlBMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA6BggrBgEFBQcBBwEB/wQr MCkwGAQCAAEwEgMEAmfUGAMEAosFiAMEA8tfCDANBAIAAjAHAwUAJAJiADANBgkq hkiG9w0BAQsFAAOCAQEAULGATHuqAGRZUu2A9EggYqCacvEum0oCFiIMJ6l+lhDU Oubme28nU6fmOyAmMwqFCY8lDDiiMUM/OZZI2P2Aw+XPP6Miv7V9mw07MOHQnux/ EVqiio/yy+EQT0PuXJ2Pnxx/CEeA7nN2SZSOMt9hAEZvkzvuYFxrnmOtt2zBSk4e F7P8e5DY/cpkrQ5rT9MeqBqc0di6y/ZuEXvPRCAAsqsiepooShvI+V/b825KPgq9 f7pMfgKuDyaZDDwJgHer1SPq+zcsr/rzEbhKI/cir6qnBtJriN2fgPKBEPyNEYnC hpQ6lyiNEktsFcdNXF2dy5Pedq1lvTfDMeKn3GjMXA== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:49 2024 by rpki-client on console-fra.rpki-client.org