$ rpki-client -vvf rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/8889F4E484A711EBB701E773C4F9AE02.roa File: 8889F4E484A711EBB701E773C4F9AE02.roa (raw, json) Hash identifier: J+8/ZwrlIkoJr01jQAl9vk2aVwqPeoCZlFWB5DqiI1A= Subject key identifier: 79:66:FD:44:57:F9:25:16:1D:E3:75:95:87:AD:E1:BE:0F:A0:BA:CD Certificate issuer: /CN=A917068E/serialNumber=B8F8C3626DD06162E67E25F59A9A81FAE4720A25 Certificate serial: 05D7 Authority key identifier: B8:F8:C3:62:6D:D0:61:62:E6:7E:25:F5:9A:9A:81:FA:E4:72:0A:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPjDYm3QYWLmfiX1mpqB-uRyCiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/8889F4E484A711EBB701E773C4F9AE02.roa Signing time: Sat 31 Aug 2024 00:32:20 +0000 ROA not before: Sat 31 Aug 2024 00:32:20 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 134680 IP address blocks: 103.62.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/uPjDYm3QYWLmfiX1mpqB-uRyCiU.crl rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/uPjDYm3QYWLmfiX1mpqB-uRyCiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPjDYm3QYWLmfiX1mpqB-uRyCiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1495 (0x5d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917068E/serialNumber=B8F8C3626DD06162E67E25F59A9A81FAE4720A25 Validity Not Before: Aug 31 00:32:20 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d26494-0486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:21:b0:21:a2:37:4d:ae:4a:b7:a3:d1:25:94: e5:ef:3e:a9:03:19:99:f8:ed:84:d7:d6:d0:a0:4d: 2a:59:3c:6b:ab:f0:bc:05:61:2b:80:9d:3d:c4:ee: f2:ed:6a:22:0d:a1:27:c2:16:7f:1b:67:d2:10:59: 11:ed:93:eb:f9:3d:fe:0a:4b:86:75:65:b7:0f:9a: 9d:c1:fb:80:82:4f:6b:45:01:8b:78:11:cc:7b:60: b7:02:e1:9c:1b:c9:ad:f3:5f:0a:9b:a0:37:9c:2e: d7:ee:21:24:73:95:16:a2:de:55:74:16:f1:fb:bb: 8f:17:81:19:43:b7:c8:83:53:1f:6f:2b:9d:b9:c0: da:47:a1:03:17:f5:af:07:a6:23:15:8e:17:00:b4: 26:2d:6b:d0:a2:9a:45:6c:f5:aa:5c:d7:d6:63:90: c2:9a:30:7a:3c:56:a6:b7:fe:97:53:99:73:e1:89: d6:c5:63:2b:c1:7e:90:0b:18:23:c5:56:19:ad:78: be:7f:68:f3:9b:f6:27:ea:b8:07:ef:a4:c2:c7:06: 86:96:45:1c:7c:62:d9:23:d3:f7:82:52:38:5c:8e: 3f:11:d9:04:11:47:3e:a1:b0:f6:c2:fe:ca:bd:cf: 70:67:b4:36:d9:24:5c:fe:6f:15:96:58:f3:9d:cc: d8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:66:FD:44:57:F9:25:16:1D:E3:75:95:87:AD:E1:BE:0F:A0:BA:CD X509v3 Authority Key Identifier: keyid:B8:F8:C3:62:6D:D0:61:62:E6:7E:25:F5:9A:9A:81:FA:E4:72:0A:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/uPjDYm3QYWLmfiX1mpqB-uRyCiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uPjDYm3QYWLmfiX1mpqB-uRyCiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917068E/D6EF671A84A511EBAE9E4472C4F9AE02/8889F4E484A711EBB701E773C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.62.36.0/22 Signature Algorithm: sha256WithRSAEncryption 28:fa:a7:3c:2f:06:c9:d1:4b:49:62:e4:37:ae:ca:32:32:fb: 64:ed:87:1a:4c:fa:28:8c:d0:6e:a1:b0:39:96:e4:b5:f6:63: 5f:08:3d:ec:d5:65:fb:70:48:19:03:9c:44:f7:58:4e:42:44: 82:7c:d9:e8:6b:64:55:00:86:cc:0e:2c:fb:cb:c9:7e:ea:1f: 31:7e:46:7c:d6:f7:ad:0a:e9:f0:51:f7:0f:80:15:54:d2:94: 80:95:c9:67:6c:50:ef:00:fc:9c:3e:f2:df:33:44:af:fd:56: fe:e5:53:ad:37:15:df:4c:33:b7:c8:84:11:a1:bf:67:85:bf: 2b:87:6d:44:4e:92:0b:e6:2f:02:09:7d:21:06:31:ca:08:5c: af:73:38:e0:4a:89:af:b6:f5:a0:ee:21:6e:43:9e:85:84:b0: aa:8c:ed:36:41:9c:86:9d:af:1d:af:04:27:78:02:1d:a9:63: 29:d0:1d:3f:d5:25:3b:bd:64:a7:5f:b6:3d:e9:21:4d:bd:f1: 9d:83:32:26:f5:da:2e:a9:53:e9:3a:12:98:55:ec:f2:c6:4e: 6e:3e:6c:1f:4e:fb:bf:32:9b:3d:ef:95:4a:35:1d:b6:aa:bd: de:32:87:71:ba:14:ba:2f:da:e6:50:48:1d:35:82:e5:80:f3: 83:d1:84:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA2OEUxMTAvBgNVBAUTKEI4RjhDMzYyNkREMDYxNjJFNjdFMjVGNTlBOUE4MUZB RTQ3MjBBMjUwHhcNMjQwODMxMDAzMjIwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNjQ5NC0wNDg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCGwIaI3Ta5Kt6PRJZTl7z6pAxmZ+O2E19bQoE0qWTxrq/C8BWErgJ09xO7y 7WoiDaEnwhZ/G2fSEFkR7ZPr+T3+CkuGdWW3D5qdwfuAgk9rRQGLeBHMe2C3AuGc G8mt818Km6A3nC7X7iEkc5UWot5VdBbx+7uPF4EZQ7fIg1MfbyuducDaR6EDF/Wv B6YjFY4XALQmLWvQoppFbPWqXNfWY5DCmjB6PFamt/6XU5lz4YnWxWMrwX6QCxgj xVYZrXi+f2jzm/Yn6rgH76TCxwaGlkUcfGLZI9P3glI4XI4/EdkEEUc+obD2wv7K vc9wZ7Q22SRc/m8VlljznczYNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHlm/URX +SUWHeN1lYet4b4PoLrNMB8GA1UdIwQYMBaAFLj4w2Jt0GFi5n4l9Zqagfrkcgol MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDY4RS9ENkVGNjcxQTg0 QTUxMUVCQUU5RTQ0NzJDNEY5QUUwMi91UGpEWW0zUVlXTG1maVgxbXBxQi11UnlD aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VQakRZbTNRWVdMbWZpWDFtcHFCLXVSeUNpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA2OEUvRDZFRjY3MUE4NEE1MTFFQkFFOUU0NDcyQzRGOUFFMDIvODg4OUY0RTQ4 NEE3MTFFQkI3MDFFNzczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnPiQwDQYJKoZIhvcNAQELBQADggEBACj6pzwvBsnRS0li 5DeuyjIy+2TthxpM+iiM0G6hsDmW5LX2Y18IPezVZftwSBkDnET3WE5CRIJ82ehr ZFUAhswOLPvLyX7qHzF+RnzW960K6fBR9w+AFVTSlICVyWdsUO8A/Jw+8t8zRK/9 Vv7lU603Fd9MM7fIhBGhv2eFvyuHbUROkgvmLwIJfSEGMcoIXK9zOOBKia+29aDu IW5DnoWEsKqM7TZBnIadrx2vBCd4Ah2pYynQHT/VJTu9ZKdftj3pIU298Z2DMib1 2i6pU+k6EphV7PLGTm4+bB9O+78ymz3vlUo1Hbaqvd4yh3G6FLov2uZQSB01guWA 84PRhF4= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:42 2024 by rpki-client on console-ams.rpki-client.org