$ rpki-client -vvf rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/DE0A75A605EB11EA94CD7287C4F9AE02.roa File: DE0A75A605EB11EA94CD7287C4F9AE02.roa (raw, json) Hash identifier: BqRiYiKR+dnXs8JO0fznQNab+fZpSZjQtALTInUxNfo= Subject key identifier: F2:33:5A:CF:72:53:E8:A3:2E:A1:20:F3:E6:8A:34:1A:7B:56:4C:4D Certificate issuer: /CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Certificate serial: 0FB4 Authority key identifier: 29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/DE0A75A605EB11EA94CD7287C4F9AE02.roa Signing time: Mon 18 Dec 2023 17:44:41 +0000 ROA not before: Mon 18 Dec 2023 17:44:41 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134812 IP address blocks: 103.16.24.0/23 maxlen: 24 103.137.80.0/23 maxlen: 23 103.137.80.0/24 maxlen: 24 103.137.81.0/24 maxlen: 24 2001:df5:7e00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:04:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4020 (0xfb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916022F/serialNumber=29D16C98DB3D5BF64B6B9204C09600860CD29452 Validity Not Before: Dec 18 17:44:41 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65808509-ec36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:7e:0a:75:c1:ba:f3:5d:78:93:64:5d:82:a0: af:77:3c:0f:9a:89:4c:8e:35:7d:ce:73:0b:52:20: 59:1d:94:fb:68:60:b9:a1:30:0b:d1:10:bc:d2:fc: 22:ba:e1:a0:f2:36:a7:ba:29:ac:79:45:5c:f1:61: 82:e5:ec:cb:03:90:5a:64:4e:eb:9c:94:ca:a2:b3: b2:c6:f0:ba:e4:bc:68:0b:30:6e:4b:56:2c:71:03: 10:8a:92:28:ed:f7:37:83:3f:f4:09:61:05:fc:4c: a9:04:f4:26:3d:6b:42:d2:03:79:1a:1c:0b:db:61: 62:ba:bf:51:20:85:41:3f:1e:71:de:91:25:ea:87: bf:c8:7e:c5:f8:03:26:fb:2b:1b:8f:15:7a:d3:3d: 19:31:b4:7e:52:07:f9:f9:5c:e2:ec:64:5c:04:f7: 78:ef:f5:a2:03:f7:69:40:8f:91:b5:dc:c6:81:11: 8d:13:c5:7f:ce:03:59:e8:9f:b3:a1:35:3d:25:2d: 01:a7:7f:16:8e:e0:5f:b8:a6:db:5d:ad:ba:49:bf: 4c:f3:4f:6a:22:09:a1:87:7f:8b:c8:de:2d:c7:e6: 5c:e0:b7:64:4e:2a:4c:e1:49:a6:6e:43:9e:e5:4f: ed:c0:98:ff:35:1d:7c:35:ab:bc:82:02:dc:fc:b2: e7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:33:5A:CF:72:53:E8:A3:2E:A1:20:F3:E6:8A:34:1A:7B:56:4C:4D X509v3 Authority Key Identifier: keyid:29:D1:6C:98:DB:3D:5B:F6:4B:6B:92:04:C0:96:00:86:0C:D2:94:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KdFsmNs9W_ZLa5IEwJYAhgzSlFI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916022F/9EC7AFB4AA7D11E886144524C4F9AE02/DE0A75A605EB11EA94CD7287C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.24.0/23 103.137.80.0/23 IPv6: 2001:df5:7e00::/48 Signature Algorithm: sha256WithRSAEncryption 18:51:bc:dc:47:03:f1:6a:d6:b0:db:b1:d1:9a:6a:19:19:96: ff:20:08:58:7b:26:33:07:37:2a:a0:e4:a0:71:14:7a:28:9e: 82:dd:7b:1c:9a:a8:f6:71:9f:f0:ce:ba:bd:ef:87:a4:af:41: b0:66:66:a4:58:9c:11:a1:a9:9f:6d:92:ce:68:61:7a:8d:4c: dc:5f:4d:b0:0c:24:aa:b5:ae:0b:20:4a:a9:55:38:bc:ff:94: 7a:bc:36:b2:69:0d:23:4f:41:ae:a7:83:28:6d:c4:8b:3d:af: f5:16:e7:68:d2:af:be:cd:dd:3c:ea:8e:f2:c4:e2:3a:74:97: c8:1d:ce:8e:af:78:3c:11:21:e8:47:59:52:ae:99:2a:43:18: 64:af:4e:03:26:7e:1a:15:50:25:dd:7c:cf:ae:33:af:2e:dd: 27:41:59:0c:fd:13:73:40:86:7b:ca:9e:48:01:c8:f2:1b:5d: 5c:57:ba:30:c7:66:cc:24:92:c4:3b:ef:a4:39:db:a4:8c:09: ef:7d:e1:de:eb:f2:db:74:79:d6:eb:c3:2d:e7:0b:5d:d9:cd: 2d:ce:9f:95:d0:db:d9:76:76:4c:fc:5a:e9:49:33:8f:17:bd: ee:8d:7c:1e:91:7e:92:31:98:b2:b2:d2:21:f1:7d:b4:98:e5: 66:5a:c4:35 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICD7QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjAyMkYxMTAvBgNVBAUTKDI5RDE2Qzk4REIzRDVCRjY0QjZCOTIwNEMwOTYwMDg2 MENEMjk0NTIwHhcNMjMxMjE4MTc0NDQxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTgwODUwOS1lYzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1n4KdcG68114k2RdgqCvdzwPmolMjjV9znMLUiBZHZT7aGC5oTAL0RC80vwi uuGg8januimseUVc8WGC5ezLA5BaZE7rnJTKorOyxvC65LxoCzBuS1YscQMQipIo 7fc3gz/0CWEF/EypBPQmPWtC0gN5GhwL22Fiur9RIIVBPx5x3pEl6oe/yH7F+AMm +ysbjxV60z0ZMbR+Ugf5+Vzi7GRcBPd47/WiA/dpQI+RtdzGgRGNE8V/zgNZ6J+z oTU9JS0Bp38WjuBfuKbbXa26Sb9M809qIgmhh3+LyN4tx+Zc4LdkTipM4UmmbkOe 5U/twJj/NR18Nau8ggLc/LLnTwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPIzWs9y U+ijLqEg8+aKNBp7VkxNMB8GA1UdIwQYMBaAFCnRbJjbPVv2S2uSBMCWAIYM0pRS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDIyRi85RUM3QUZCNEFB N0QxMUU4ODYxNDQ1MjRDNEY5QUUwMi9LZEZzbU5zOVdfWkxhNUlFd0pZQWhnelNs RkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tkRnNtTnM5V19aTGE1SUV3SllBaGd6U2xGSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjAyMkYvOUVDN0FGQjRBQTdEMTFFODg2MTQ0NTI0QzRGOUFFMDIvREUwQTc1QTYw NUVCMTFFQTk0Q0Q3Mjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnEBgDBAFniVAwDwQCAAIwCQMHACABDfV+ADANBgkqhkiG 9w0BAQsFAAOCAQEAGFG83EcD8WrWsNux0ZpqGRmW/yAIWHsmMwc3KqDkoHEUeiie gt17HJqo9nGf8M66ve+HpK9BsGZmpFicEaGpn22Szmhheo1M3F9NsAwkqrWuCyBK qVU4vP+Uerw2smkNI09BrqeDKG3Eiz2v9RbnaNKvvs3dPOqO8sTiOnSXyB3Ojq94 PBEh6EdZUq6ZKkMYZK9OAyZ+GhVQJd18z64zry7dJ0FZDP0Tc0CGe8qeSAHI8htd XFe6MMdmzCSSxDvvpDnbpIwJ733h3uvy23R51uvDLecLXdnNLc6fldDb2XZ2TPxa 6Ukzjxe97o18HpF+kjGYsrLSIfF9tJjlZlrENQ== -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:03 2024 by rpki-client on console-ams.rpki-client.org