$ rpki-client -vvf rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/89317668E87B11E785247983C4F9AE02.roa File: 89317668E87B11E785247983C4F9AE02.roa (raw, json) Hash identifier: QoI3M9VOUs5JmUvtm4ggvS0vOfMTJHqMj+I41B3uqls= Subject key identifier: 0F:41:D9:E1:8B:77:A1:32:14:C6:BA:31:24:01:5A:33:8C:51:7F:EF Certificate issuer: /CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Certificate serial: 16B1 Authority key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/89317668E87B11E785247983C4F9AE02.roa Signing time: Fri 22 Nov 2024 17:04:49 +0000 ROA not before: Fri 22 Nov 2024 17:04:49 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133738 IP address blocks: 103.103.100.0/22 maxlen: 24 2401:f140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5809 (0x16b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9 Validity Not Before: Nov 22 17:04:49 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6740b9b1-5999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:51:cc:c8:bd:5b:42:0e:b1:05:f1:af:67:be: fb:81:d3:5a:f3:56:8a:c8:48:29:4a:8e:a1:05:4b: 6d:97:5b:ab:ba:38:38:55:77:ea:8d:bf:84:cc:91: 06:7d:46:69:77:a0:c3:31:ce:7d:22:be:47:03:4e: 77:48:4f:72:46:a1:36:da:76:f1:20:f5:9c:e4:04: 24:d7:64:65:56:be:dc:38:c3:ec:99:88:ed:bc:f8: 62:37:3b:c2:c5:3b:17:67:83:ed:3e:11:2c:c8:1c: b6:e6:be:27:0a:14:f0:47:68:f4:a4:41:bb:b7:17: 81:0c:9c:88:f7:0d:20:cd:31:b4:4c:47:2f:4e:a3: f2:62:08:91:23:cd:06:c9:18:d7:b7:17:4c:6f:32: 79:a4:d2:7b:37:95:0c:39:10:86:7a:69:82:92:8c: a7:36:cc:72:5a:9b:55:ee:7d:ad:ea:0c:34:a4:4a: 6a:02:a6:34:3d:9e:23:e1:53:5f:9a:cb:97:e7:65: 33:cc:5a:e6:36:40:6d:0b:3d:6b:a6:f7:7b:9a:95: 42:69:b6:df:b1:91:32:f3:36:bb:63:7b:66:53:eb: af:d5:a2:c7:50:5d:ad:a5:fc:77:34:64:ba:8a:8d: eb:78:dc:ef:b0:bd:e8:9c:e7:24:2a:a6:4c:8f:73: 69:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:41:D9:E1:8B:77:A1:32:14:C6:BA:31:24:01:5A:33:8C:51:7F:EF X509v3 Authority Key Identifier: keyid:86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/89317668E87B11E785247983C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.103.100.0/22 IPv6: 2401:f140::/32 Signature Algorithm: sha256WithRSAEncryption 66:11:66:97:12:08:dd:fa:c8:dd:e4:c4:74:66:35:c3:6d:58: 1e:bf:e0:f1:1f:7a:ea:a7:71:8e:80:29:82:3b:94:ff:91:a6: 97:9c:47:fe:89:d5:e1:f7:d8:fd:c5:ca:08:aa:63:1b:09:64: b7:e0:ab:f2:e1:39:da:ca:0c:93:67:b8:67:8e:2a:fb:46:09: 3d:35:38:5f:d8:f2:0f:95:ec:06:a1:42:3c:af:d5:da:30:a3: 19:00:1a:22:f8:a2:49:d5:74:86:9e:65:f8:28:3f:9f:d5:fc: f0:8d:cd:48:df:e1:9e:92:16:b2:1f:23:23:1e:e7:1a:c6:78: 00:c1:b1:55:a4:49:ae:c3:4c:ed:d5:87:d7:86:99:d0:ed:80: 22:77:97:49:56:d4:b2:35:60:34:46:5c:61:08:a1:8c:ac:66: be:1a:e9:7c:c3:c5:2c:0c:12:96:20:0a:f7:67:49:cb:83:8b: 71:6d:a3:8a:fe:14:3f:93:69:75:5e:fa:5d:a1:3b:71:d8:9a: 1f:1b:ad:73:60:7a:f3:24:b6:33:fc:df:d0:17:21:9c:a8:be: 07:42:d5:15:3b:a6:b3:c7:ae:4d:99:3f:b3:f8:6a:cb:55:45: f3:bd:09:b1:fd:2f:1a:7a:eb:78:49:3f:82:8a:a7:92:df:7b: d5:24:e2:e4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFrEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAyRjZEMTQ5RTY3 ODY5MjUzQjkwHhcNMjQxMTIyMTcwNDQ5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzQwYjliMS01OTk5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylHMyL1bQg6xBfGvZ777gdNa81aKyEgpSo6hBUttl1urujg4VXfqjb+EzJEG fUZpd6DDMc59Ir5HA053SE9yRqE22nbxIPWc5AQk12RlVr7cOMPsmYjtvPhiNzvC xTsXZ4PtPhEsyBy25r4nChTwR2j0pEG7txeBDJyI9w0gzTG0TEcvTqPyYgiRI80G yRjXtxdMbzJ5pNJ7N5UMORCGemmCkoynNsxyWptV7n2t6gw0pEpqAqY0PZ4j4VNf msuX52UzzFrmNkBtCz1rpvd7mpVCabbfsZEy8za7Y3tmU+uv1aLHUF2tpfx3NGS6 io3reNzvsL3onOckKqZMj3NpPQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFA9B2eGL d6EyFMa6MSQBWjOMUX/vMB8GA1UdIwQYMBaAFIaPyLGHvf0wpwtQL20UnmeGklO5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2RTY0Ri9ERDVDMTU4MkU4 N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1llOV9UQ25DMUF2YlJTZVo0YVNV N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hvX0lzWWU5X1RDbkMxQXZiUlNlWjRhU1U3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkU2NEYvREQ1QzE1ODJFODdBMTFFNzhGNTE3MDgzQzRGOUFFMDIvODkzMTc2NjhF ODdCMTFFNzg1MjQ3OTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZ2QwDQQCAAIwBwMFACQB8UAwDQYJKoZIhvcNAQELBQAD ggEBAGYRZpcSCN36yN3kxHRmNcNtWB6/4PEfeuqncY6AKYI7lP+RppecR/6J1eH3 2P3FygiqYxsJZLfgq/LhOdrKDJNnuGeOKvtGCT01OF/Y8g+V7AahQjyv1dowoxkA GiL4oknVdIaeZfgoP5/V/PCNzUjf4Z6SFrIfIyMe5xrGeADBsVWkSa7DTO3Vh9eG mdDtgCJ3l0lW1LI1YDRGXGEIoYysZr4a6XzDxSwMEpYgCvdnScuDi3Fto4r+FD+T aXVe+l2hO3HYmh8brXNgevMktjP839AXIZyovgdC1RU7prPHrk2ZP7P4astVRfO9 CbH9Lxp663hJP4KKp5Lfe9Uk4uQ= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:16 2024 by rpki-client on console-ams.rpki-client.org