$ rpki-client -vvf rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/7CAFA5C44CA711EC9D22716BC4F9AE02.roa File: 7CAFA5C44CA711EC9D22716BC4F9AE02.roa (raw, json) Hash identifier: 0K3q0dVCvDExh+rAvv97+F6NfiAcFtJOv8chW1CF1z4= Subject key identifier: 06:7A:B9:F3:EA:E0:7F:A7:9F:44:76:0E:A9:00:17:72:4D:D4:D6:7D Certificate issuer: /CN=A91188F4/serialNumber=C962A1EFB1D685EA9F0E85B41766828F6A13EFE5 Certificate serial: 03CD Authority key identifier: C9:62:A1:EF:B1:D6:85:EA:9F:0E:85:B4:17:66:82:8F:6A:13:EF:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yWKh77HWheqfDoW0F2aCj2oT7-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/7CAFA5C44CA711EC9D22716BC4F9AE02.roa Signing time: Thu 01 Aug 2024 02:03:44 +0000 ROA not before: Thu 01 Aug 2024 02:03:44 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 22552 IP address blocks: 45.121.136.0/22 maxlen: 24 103.61.236.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/yWKh77HWheqfDoW0F2aCj2oT7-U.crl rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/yWKh77HWheqfDoW0F2aCj2oT7-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yWKh77HWheqfDoW0F2aCj2oT7-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 973 (0x3cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91188F4/serialNumber=C962A1EFB1D685EA9F0E85B41766828F6A13EFE5 Validity Not Before: Aug 1 02:03:44 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66aaed00-0f80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:03:30:85:f3:f6:f4:d4:25:df:8f:53:c7:9f: ce:81:0d:7b:cd:e7:4b:14:0e:52:20:3b:5a:f0:e6: 00:a6:41:31:97:68:d8:ca:7a:7e:28:2e:13:37:33: cb:28:06:3f:62:66:d0:9e:9c:6a:eb:fb:66:a2:76: db:f3:cf:23:a9:99:d8:b5:d7:73:83:0b:c3:a6:da: d0:4f:da:77:99:9e:13:1d:78:1c:40:06:20:3c:5d: 22:ed:3b:55:10:c4:4c:73:39:b1:16:a6:c9:ca:bb: 48:d3:45:80:50:ae:30:7b:cf:e1:d4:a0:fd:36:3e: a1:08:5a:c1:30:a7:03:af:dd:af:11:21:bb:7a:66: 90:0a:58:3f:5f:7e:dd:0b:79:c1:cb:b7:4f:54:9d: 6f:b7:d7:75:b4:cb:ad:b6:68:4a:ee:20:8d:9b:20: 0b:c9:9a:5d:e5:96:a7:bd:a9:da:de:07:99:42:27: 28:c3:68:81:37:61:41:3b:54:6c:2f:c8:24:bb:03: 87:fb:5d:18:b4:9c:5a:c0:95:2e:cb:99:15:74:e9: 63:b4:dd:93:93:74:82:40:2b:1c:52:9f:9d:46:ad: ac:42:f1:de:cf:44:40:f9:89:ff:40:ad:9f:df:84: 51:ba:2c:4f:8d:8b:aa:4c:49:8f:20:3b:29:7f:79: e1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:7A:B9:F3:EA:E0:7F:A7:9F:44:76:0E:A9:00:17:72:4D:D4:D6:7D X509v3 Authority Key Identifier: keyid:C9:62:A1:EF:B1:D6:85:EA:9F:0E:85:B4:17:66:82:8F:6A:13:EF:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/yWKh77HWheqfDoW0F2aCj2oT7-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yWKh77HWheqfDoW0F2aCj2oT7-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91188F4/928DB0F64CA311EC823A8965C4F9AE02/7CAFA5C44CA711EC9D22716BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.136.0/22 103.61.236.0/22 Signature Algorithm: sha256WithRSAEncryption 37:65:e8:9f:d9:9a:f5:93:db:4c:72:d5:c7:38:57:27:5e:b4: c2:52:3a:d0:7b:ac:b9:f3:60:46:54:47:23:9a:f8:11:27:e6: 2f:c7:93:eb:d9:eb:7b:58:82:07:8f:d0:28:c5:2c:da:ec:ce: 2f:30:be:35:96:c4:27:a3:b6:cc:8f:37:21:85:e5:ea:12:f8: b2:d7:31:ad:96:2f:3b:ad:0c:77:c4:c0:49:87:0a:49:1c:c7: b1:10:e5:b2:ba:d6:35:1b:68:a8:ee:d2:00:b8:62:41:6b:cc: bd:76:4d:9a:a9:7f:ca:c3:95:36:b1:73:10:65:09:90:e4:ee: 0c:5f:5f:3b:4e:6c:51:19:09:e5:07:a0:3a:47:3f:05:bc:c8: 73:6e:f0:fa:30:d8:a6:dc:00:66:52:f3:dd:a3:6f:48:09:92: 4d:3c:0f:87:aa:2f:40:a3:00:fc:c0:94:12:5d:e0:a2:51:24: 45:e7:5b:ac:34:ab:38:d1:e0:72:02:de:2e:32:5a:89:97:b5: 39:da:83:19:a1:cb:9e:ab:46:21:30:eb:f0:d4:2c:d6:85:a8: b7:52:97:4a:1d:09:04:5c:df:02:a6:f2:23:1c:b5:b5:a1:cf: 0c:f9:60:89:3c:f0:eb:b9:8e:87:9b:8c:50:bf:e7:cd:8f:bc: 52:4d:3d:64 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTg4RjQxMTAvBgNVBAUTKEM5NjJBMUVGQjFENjg1RUE5RjBFODVCNDE3NjY4MjhG NkExM0VGRTUwHhcNMjQwODAxMDIwMzQ0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFhZWQwMC0wZjgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gMwhfP29NQl349Tx5/OgQ17zedLFA5SIDta8OYApkExl2jYynp+KC4TNzPL KAY/YmbQnpxq6/tmonbb888jqZnYtddzgwvDptrQT9p3mZ4THXgcQAYgPF0i7TtV EMRMczmxFqbJyrtI00WAUK4we8/h1KD9Nj6hCFrBMKcDr92vESG7emaQClg/X37d C3nBy7dPVJ1vt9d1tMuttmhK7iCNmyALyZpd5Zanvana3geZQicow2iBN2FBO1Rs L8gkuwOH+10YtJxawJUuy5kVdOljtN2Tk3SCQCscUp+dRq2sQvHez0RA+Yn/QK2f 34RRuixPjYuqTEmPIDspf3nhawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAZ6ufPq 4H+nn0R2DqkAF3JN1NZ9MB8GA1UdIwQYMBaAFMlioe+x1oXqnw6FtBdmgo9qE+/l MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExODhGNC85MjhEQjBGNjRD QTMxMUVDODIzQTg5NjVDNEY5QUUwMi95V0toNzdIV2hlcWZEb1cwRjJhQ2oyb1Q3 LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lXS2g3N0hXaGVxZkRvVzBGMmFDajJvVDctVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTg4RjQvOTI4REIwRjY0Q0EzMTFFQzgyM0E4OTY1QzRGOUFFMDIvN0NBRkE1QzQ0 Q0E3MTFFQzlEMjI3MTZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteYgDBAJnPewwDQYJKoZIhvcNAQELBQADggEBADdl6J/Z mvWT20xy1cc4VydetMJSOtB7rLnzYEZURyOa+BEn5i/Hk+vZ63tYggeP0CjFLNrs zi8wvjWWxCejtsyPNyGF5eoS+LLXMa2WLzutDHfEwEmHCkkcx7EQ5bK61jUbaKju 0gC4YkFrzL12TZqpf8rDlTaxcxBlCZDk7gxfXztObFEZCeUHoDpHPwW8yHNu8Pow 2KbcAGZS892jb0gJkk08D4eqL0CjAPzAlBJd4KJRJEXnW6w0qzjR4HIC3i4yWomX tTnagxmhy56rRiEw6/DULNaFqLdSl0odCQRc3wKm8iMctbWhzwz5YIk88Ou5joeb jFC/582PvFJNPWQ= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:23 2024 by rpki-client on console-ams.rpki-client.org