$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/DCF88EAE5ED811EBAB677671C4F9AE02.roa File: DCF88EAE5ED811EBAB677671C4F9AE02.roa (raw, json) Hash identifier: +xAAC0Q1keCic3iZwKSmyffjMCHYPPvNkq4JH4+m/zo= Subject key identifier: F0:70:91:0B:FB:83:1E:E5:74:CC:C6:8E:9E:D8:84:55:6E:0F:A8:FC Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0A10 Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/DCF88EAE5ED811EBAB677671C4F9AE02.roa Signing time: Sat 22 Jun 2024 21:14:01 +0000 ROA not before: Sat 22 Jun 2024 21:14:01 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 15290 IP address blocks: 203.186.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2576 (0xa10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: Jun 22 21:14:01 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66773e99-27f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:99:eb:28:50:a3:84:88:45:a1:26:2d:7e:ad: 28:fd:df:f4:87:23:db:4c:81:fe:9e:00:87:f5:ec: b1:f4:ad:fd:f8:e0:da:46:0d:e7:12:d8:7b:70:a2: 90:4b:06:b9:5f:ea:0b:da:4a:44:6d:39:91:0f:f9: e8:94:57:2f:a2:4c:91:0d:ea:57:68:08:a4:07:d8: da:8c:27:08:29:b4:97:58:68:a4:6f:91:6d:c9:97: 2a:91:3d:54:b2:b5:7e:65:d7:cd:8d:ce:43:ff:c3: 6f:b4:10:77:5b:c9:08:e6:c4:6e:c3:48:6a:c0:91: 5f:55:4e:b9:21:b0:8c:3f:1e:00:3d:6f:23:9c:03: f2:b2:5c:1d:05:7a:f7:a9:c4:e2:e8:23:57:91:83: 3d:13:f2:61:77:c3:df:5a:73:61:77:0b:d8:8a:bd: 14:e6:57:67:14:e4:93:f8:09:40:e9:a1:8c:3e:85: 11:22:34:7b:0d:80:9f:cd:5a:06:52:3e:78:1f:16: 02:41:a1:c6:25:40:ba:8f:36:99:f5:e6:8b:a5:5d: 55:d9:d5:24:d9:a8:18:82:fd:37:eb:93:98:35:f0: 2a:92:3a:ab:54:1c:97:6e:9f:8e:73:3b:ad:ab:3e: 77:cb:e0:ba:79:c7:6e:da:6e:98:32:df:f2:58:7d: 70:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:70:91:0B:FB:83:1E:E5:74:CC:C6:8E:9E:D8:84:55:6E:0F:A8:FC X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/DCF88EAE5ED811EBAB677671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.186.116.0/22 Signature Algorithm: sha256WithRSAEncryption ce:4f:59:fa:15:4c:bf:98:06:d8:11:fa:f0:8c:c1:82:35:77: 44:5c:74:90:fe:9d:c1:4c:60:90:cc:66:54:3c:d3:d1:34:43: 8d:18:35:2b:e5:fe:a3:c6:11:5f:dd:df:bc:b6:4f:28:dd:e9: f5:48:09:aa:54:2a:bc:c9:c1:c0:f5:3e:ee:b0:4a:e1:5e:e0: 8a:32:9b:a8:ab:e9:49:b7:9f:9e:ab:df:0d:89:0d:46:c0:4c: 59:ce:37:42:40:7a:eb:c6:8e:fc:1f:55:39:cd:7e:fc:bd:fd: cd:81:cd:8b:71:ab:d1:9d:53:6e:f2:d1:af:e3:7d:11:28:52: ea:d8:0e:69:44:54:d3:ce:01:da:97:ad:c3:af:c2:0f:1f:f7: b2:f6:c6:90:06:c5:2d:0e:ff:d6:20:13:35:00:0e:1e:0d:43: cd:df:62:ad:8f:4c:08:0b:a4:75:12:32:f8:7f:a5:46:da:88: 72:0e:b5:6f:77:bf:1f:93:21:ca:71:57:c4:12:f0:41:40:0e: 40:d3:67:9b:2d:5e:c8:c8:83:d8:5b:7e:4c:92:f2:1b:34:90: 9f:a3:b2:b5:91:6e:d4:34:cf:78:ce:68:56:43:e6:b7:8f:65: 48:02:5e:51:f9:61:64:06:84:18:12:0c:46:1f:84:7b:85:cf: 58:91:e9:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICChAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjQwNjIyMjExNDAxWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njc3M2U5OS0yN2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0ZnrKFCjhIhFoSYtfq0o/d/0hyPbTIH+ngCH9eyx9K39+ODaRg3nEth7cKKQ Swa5X+oL2kpEbTmRD/nolFcvokyRDepXaAikB9jajCcIKbSXWGikb5FtyZcqkT1U srV+ZdfNjc5D/8NvtBB3W8kI5sRuw0hqwJFfVU65IbCMPx4APW8jnAPyslwdBXr3 qcTi6CNXkYM9E/Jhd8PfWnNhdwvYir0U5ldnFOST+AlA6aGMPoURIjR7DYCfzVoG Uj54HxYCQaHGJUC6jzaZ9eaLpV1V2dUk2agYgv0365OYNfAqkjqrVByXbp+Oczut qz53y+C6ecdu2m6YMt/yWH1wUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPBwkQv7 gx7ldMzGjp7YhFVuD6j8MB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvNDM3Q0M0MDY4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvRENGODhFQUU1 RUQ4MTFFQkFCNjc3NjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLunQwDQYJKoZIhvcNAQELBQADggEBAM5PWfoVTL+YBtgR +vCMwYI1d0RcdJD+ncFMYJDMZlQ809E0Q40YNSvl/qPGEV/d37y2Tyjd6fVICapU KrzJwcD1Pu6wSuFe4Ioym6ir6Um3n56r3w2JDUbATFnON0JAeuvGjvwfVTnNfvy9 /c2BzYtxq9GdU27y0a/jfREoUurYDmlEVNPOAdqXrcOvwg8f97L2xpAGxS0O/9Yg EzUADh4NQ83fYq2PTAgLpHUSMvh/pUbaiHIOtW93vx+TIcpxV8QS8EFADkDTZ5st XsjIg9hbfkyS8hs0kJ+jsrWRbtQ0z3jOaFZD5rePZUgCXlH5YWQGhBgSDEYfhHuF z1iR6eE= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:44 2024 by rpki-client on console-ams.rpki-client.org