$ rpki-client -vvf rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/7859AE6A0B5511EABCBC343DC4F9AE02.roa File: 7859AE6A0B5511EABCBC343DC4F9AE02.roa (raw, json) Hash identifier: MhJb3XjLOL3S3f85AHCTiNFrJTZkovxDcMZN2VWhFE0= Subject key identifier: 0D:4E:2B:09:36:C7:1E:E0:D5:55:D4:EC:8F:E3:84:C4:CD:2B:E1:37 Certificate issuer: /CN=A918A9FC/serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7 Certificate serial: 33F2 Authority key identifier: D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/7859AE6A0B5511EABCBC343DC4F9AE02.roa Signing time: Tue 02 Jul 2024 15:31:06 +0000 ROA not before: Tue 02 Jul 2024 15:31:06 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45926 IP address blocks: 103.245.212.0/22 maxlen: 22 110.173.224.0/22 maxlen: 22 203.15.141.0/24 maxlen: 24 2001:df0:9e80::/48 maxlen: 48 2403:dc00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:02:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13298 (0x33f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918A9FC/serialNumber=D697AC4C84C8D119855F5A0CDDA635DD1E385EE7 Validity Not Before: Jul 2 15:31:06 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66841d39-822e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:8b:d9:dd:a2:90:c4:50:18:28:41:4e:95:38: ac:89:d0:ad:76:c6:c9:36:d6:b8:c8:89:64:64:c0: 04:13:60:f6:fc:62:c3:9f:f5:05:9e:2a:72:2d:ea: 8f:6f:43:2e:6c:48:e8:ff:5a:57:bc:79:a0:a6:72: e2:2a:8d:81:47:cc:f6:0b:be:fe:a9:9d:2e:84:9a: aa:e0:da:78:35:e8:e1:97:a7:b9:9b:a8:7e:44:af: 95:83:11:b9:15:d9:52:09:cf:64:bc:9a:ee:42:31: fb:d0:c7:1c:ea:f7:45:1b:e2:54:00:9f:99:a5:34: 2a:6f:7e:65:3b:93:49:1a:1d:d7:7e:c2:bb:ec:46: 8b:72:a7:31:b9:5a:b1:f6:6e:96:33:77:3c:6c:a9: 1e:8e:4c:1d:2d:de:26:ca:e7:b5:72:6c:2f:a1:d1: ee:8a:47:d2:3c:af:af:53:12:ae:93:de:1b:7a:de: 42:fa:af:87:ef:eb:4a:16:36:39:0a:c1:7a:28:cd: b6:41:cd:86:18:bf:e4:0e:58:d3:e8:a4:cd:11:76: 94:23:8b:16:34:71:d9:af:a8:0e:88:f1:b0:12:19: 11:8e:cd:a7:c7:5a:08:01:e3:0b:e1:07:f8:04:ce: 83:f6:21:16:97:98:4b:70:b1:68:f0:82:00:7c:ac: 2e:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:4E:2B:09:36:C7:1E:E0:D5:55:D4:EC:8F:E3:84:C4:CD:2B:E1:37 X509v3 Authority Key Identifier: keyid:D6:97:AC:4C:84:C8:D1:19:85:5F:5A:0C:DD:A6:35:DD:1E:38:5E:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/1pesTITI0RmFX1oM3aY13R44Xuc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1pesTITI0RmFX1oM3aY13R44Xuc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918A9FC/319337AA1D9E11E286E9D18D08B02CD2/7859AE6A0B5511EABCBC343DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.245.212.0/22 110.173.224.0/22 203.15.141.0/24 IPv6: 2001:df0:9e80::/48 2403:dc00::/32 Signature Algorithm: sha256WithRSAEncryption 57:34:30:02:b5:a2:ad:fe:fe:fb:db:60:1e:a8:9d:02:ce:e1: 4f:8b:3b:43:03:b6:79:cd:b1:08:81:17:84:58:05:e5:49:dc: d5:07:8b:9b:28:90:42:9d:7c:47:5c:a9:b4:96:4b:83:74:72: 1d:bb:ad:b5:91:f3:29:9f:6d:c2:f7:06:7f:e3:f0:f4:58:07: ce:23:29:1b:67:cf:4a:1c:6a:c7:84:4d:b6:e8:59:3d:84:d2: 0c:7d:6c:a6:10:aa:4f:cc:ba:ff:31:a3:af:97:9c:f0:6b:92: 48:fa:36:3d:fb:f3:ec:32:17:95:7c:43:8e:19:69:7e:fa:aa: e2:62:e8:fa:30:7c:26:b7:d8:46:e2:ca:16:0e:f8:26:20:66: aa:6d:5e:d0:5f:80:17:3d:8c:c9:7f:f9:b3:df:3e:ff:9b:10: fc:a5:5f:22:c0:e3:b9:72:16:7f:77:00:51:22:cc:32:dc:ad: b4:26:f7:3f:b6:b0:23:ce:43:a2:1f:12:0c:ef:cc:11:36:36: 91:65:9a:f1:6d:54:21:1b:fc:21:a4:73:71:81:80:67:01:ef: 57:1b:3e:9c:88:19:c0:80:04:c7:d3:b4:e5:ed:85:35:66:16: e7:4d:f2:a0:c4:9e:de:ce:72:98:de:79:a9:d0:37:09:44:51: 8e:b5:a3:85 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICM/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEE5RkMxMTAvBgNVBAUTKEQ2OTdBQzRDODRDOEQxMTk4NTVGNUEwQ0REQTYzNURE MUUzODVFRTcwHhcNMjQwNzAyMTUzMTA2WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0MWQzOS04MjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0IvZ3aKQxFAYKEFOlTisidCtdsbJNta4yIlkZMAEE2D2/GLDn/UFnipyLeqP b0MubEjo/1pXvHmgpnLiKo2BR8z2C77+qZ0uhJqq4Np4Nejhl6e5m6h+RK+VgxG5 FdlSCc9kvJruQjH70Mcc6vdFG+JUAJ+ZpTQqb35lO5NJGh3XfsK77EaLcqcxuVqx 9m6WM3c8bKkejkwdLd4myue1cmwvodHuikfSPK+vUxKuk94bet5C+q+H7+tKFjY5 CsF6KM22Qc2GGL/kDljT6KTNEXaUI4sWNHHZr6gOiPGwEhkRjs2nx1oIAeML4Qf4 BM6D9iEWl5hLcLFo8IIAfKwuAQIDAQABo4ICuTCCArUwHQYDVR0OBBYEFA1OKwk2 xx7g1VXU7I/jhMTNK+E3MB8GA1UdIwQYMBaAFNaXrEyEyNEZhV9aDN2mNd0eOF7n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QTlGQy8zMTkzMzdBQTFE OUUxMUUyODZFOUQxOEQwOEIwMkNEMi8xcGVzVElUSTBSbUZYMW9NM2FZMTNSNDRY dWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFwZXNUSVRJMFJtRlgxb00zYVkxM1I0NFh1Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEE5RkMvMzE5MzM3QUExRDlFMTFFMjg2RTlEMThEMDhCMDJDRDIvNzg1OUFFNkEw QjU1MTFFQUJDQkMzNDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMBgEAgABMBIDBAJn9dQDBAJureADBADLD40wFgQCAAIwEAMHACABDfCegAMF ACQD3AAwDQYJKoZIhvcNAQELBQADggEBAFc0MAK1oq3+/vvbYB6onQLO4U+LO0MD tnnNsQiBF4RYBeVJ3NUHi5sokEKdfEdcqbSWS4N0ch27rbWR8ymfbcL3Bn/j8PRY B84jKRtnz0ocaseETbboWT2E0gx9bKYQqk/Muv8xo6+XnPBrkkj6Nj378+wyF5V8 Q44ZaX76quJi6PowfCa32EbiyhYO+CYgZqptXtBfgBc9jMl/+bPfPv+bEPylXyLA 47lyFn93AFEizDLcrbQm9z+2sCPOQ6IfEgzvzBE2NpFlmvFtVCEb/CGkc3GBgGcB 71cbPpyIGcCABMfTtOXthTVmFudN8qDEnt7OcpjeeanQNwlEUY61o4U= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:23 2024 by rpki-client on console-ams.rpki-client.org