$ rpki-client -vvf rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa File: C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa (raw, json) Hash identifier: D6LW0lHvJZ2QNOTyemz9aNxZKdOYYCFmrW4bdydyxQw= Subject key identifier: 41:A2:5A:EF:B7:1A:15:04:93:13:11:C6:F5:78:2F:A2:65:AB:24:70 Certificate issuer: /CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Certificate serial: 0655 Authority key identifier: 2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa Signing time: Fri 24 Nov 2023 23:09:59 +0000 ROA not before: Fri 24 Nov 2023 23:09:59 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 38719 IP address blocks: 103.29.84.0/23 maxlen: 24 103.42.224.0/23 maxlen: 24 114.142.160.0/22 maxlen: 24 2406:adc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:31:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1621 (0x655) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B871/serialNumber=2B151ED4966CB65690CD9AA8262B8A6AED06E443 Validity Not Before: Nov 24 23:09:59 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65612d46-4649 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e2:b8:7e:58:77:2b:11:a7:35:e8:ea:4c:27: 9d:05:f2:26:72:43:29:31:c5:2b:25:52:94:2b:a3: f0:46:fd:93:98:40:6c:a7:69:77:6d:ac:5a:b3:c7: fe:67:83:c4:08:3f:41:c2:dd:ff:f0:27:9e:15:12: 49:7f:4e:8e:2a:71:ff:45:69:aa:be:0f:52:d2:af: a2:3e:ea:8c:da:e9:c1:8e:a0:14:56:ec:cd:a7:47: 07:3b:4c:bb:2f:3b:5c:45:e2:02:2f:e3:be:94:2e: 5b:85:b0:88:26:7b:3a:60:4f:b5:d4:1d:a7:d5:53: d0:5c:37:11:5d:33:89:fa:ce:ba:ae:5a:1a:c8:6c: 1c:31:59:d4:24:98:d3:e2:3d:98:0d:1f:81:a0:29: ca:7c:6c:f8:17:18:76:07:9c:00:8a:80:ab:ac:29: e6:27:4d:53:99:4a:30:f3:06:03:de:f7:74:4c:f4: 15:12:86:45:9a:62:36:27:33:95:9c:22:39:a6:e0: d3:e3:f7:66:e2:fb:46:a2:40:f1:8a:7b:55:72:ca: 3a:98:d4:51:a7:ed:e9:81:63:9a:1b:ed:64:dc:c3: f5:92:f8:1f:a0:11:40:89:b9:03:ae:f6:95:4a:6c: f2:b6:bf:5e:f2:f2:5c:9d:76:a5:bb:66:a5:7d:a7: ef:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:A2:5A:EF:B7:1A:15:04:93:13:11:C6:F5:78:2F:A2:65:AB:24:70 X509v3 Authority Key Identifier: keyid:2B:15:1E:D4:96:6C:B6:56:90:CD:9A:A8:26:2B:8A:6A:ED:06:E4:43 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/KxUe1JZstlaQzZqoJiuKau0G5EM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KxUe1JZstlaQzZqoJiuKau0G5EM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B871/8A2DABE01DA711EB80712A4FC4F9AE02/C4EEE8EE24E011EBA4C87F7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.84.0/23 103.42.224.0/23 114.142.160.0/22 IPv6: 2406:adc0::/32 Signature Algorithm: sha256WithRSAEncryption 0e:12:5b:ce:55:e5:05:33:4a:f5:cc:10:08:c5:13:a3:05:9a: e9:f6:26:f9:7c:fe:d6:1e:8f:2c:e7:7a:e7:df:3e:96:68:0a: 17:83:f7:4d:a0:3c:dd:5b:63:ef:5e:4c:51:e6:3e:fc:9f:2c: be:06:2d:ab:1a:cd:ef:35:de:e3:99:7b:97:c1:3a:cc:7d:92: 90:75:d0:bd:19:ed:b4:ee:e9:8a:90:3e:2f:4a:1d:8e:8b:08: 74:92:b2:de:6e:93:ee:1b:33:54:7a:9f:9d:31:db:28:5e:fb: 6f:94:b5:94:d4:62:18:c0:23:72:c9:96:72:c7:64:0e:55:65: c4:d2:2f:29:59:59:50:8d:71:c5:ca:c2:b1:cb:a4:9a:ed:ef: 52:99:4e:67:0d:dc:99:a9:62:18:df:e0:5b:69:cf:fc:d5:d9: 6a:23:14:b9:08:78:67:93:86:74:81:6a:ca:af:bb:1f:38:24: 09:e9:36:e2:c1:07:44:09:03:3b:35:ea:46:28:b9:93:fc:b4: 7f:b1:50:c2:70:63:13:bf:b9:be:cd:e9:20:28:52:77:0f:10: 34:dd:f8:56:e0:1b:c7:7c:15:b9:c5:a1:4f:79:a8:53:3f:63: d9:23:3b:34:11:f8:bf:15:09:4f:80:a3:6e:91:15:b5:13:30: 5d:34:61:0d -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBlUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI4NzExMTAvBgNVBAUTKDJCMTUxRUQ0OTY2Q0I2NTY5MENEOUFBODI2MkI4QTZB RUQwNkU0NDMwHhcNMjMxMTI0MjMwOTU5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYxMmQ0Ni00NjQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAouK4flh3KxGnNejqTCedBfImckMpMcUrJVKUK6PwRv2TmEBsp2l3baxas8f+ Z4PECD9Bwt3/8CeeFRJJf06OKnH/RWmqvg9S0q+iPuqM2unBjqAUVuzNp0cHO0y7 LztcReICL+O+lC5bhbCIJns6YE+11B2n1VPQXDcRXTOJ+s66rloayGwcMVnUJJjT 4j2YDR+BoCnKfGz4Fxh2B5wAioCrrCnmJ01TmUow8wYD3vd0TPQVEoZFmmI2JzOV nCI5puDT4/dm4vtGokDxintVcso6mNRRp+3pgWOaG+1k3MP1kvgfoBFAibkDrvaV Smzytr9e8vJcnXalu2alfafvBQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFEGiWu+3 GhUEkxMRxvV4L6JlqyRwMB8GA1UdIwQYMBaAFCsVHtSWbLZWkM2aqCYrimrtBuRD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjg3MS84QTJEQUJFMDFE QTcxMUVCODA3MTJBNEZDNEY5QUUwMi9LeFVlMUpac3RsYVF6WnFvSml1S2F1MEc1 RU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0t4VWUxSlpzdGxhUXpacW9KaXVLYXUwRzVFTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI4NzEvOEEyREFCRTAxREE3MTFFQjgwNzEyQTRGQzRGOUFFMDIvQzRFRUU4RUUy NEUwMTFFQkE0Qzg3RjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnHVQDBAFnKuADBAJyjqAwDQQCAAIwBwMFACQGrcAwDQYJ KoZIhvcNAQELBQADggEBAA4SW85V5QUzSvXMEAjFE6MFmun2Jvl8/tYejyzneuff PpZoCheD902gPN1bY+9eTFHmPvyfLL4GLasaze813uOZe5fBOsx9kpB10L0Z7bTu 6YqQPi9KHY6LCHSSst5uk+4bM1R6n50x2yhe+2+UtZTUYhjAI3LJlnLHZA5VZcTS LylZWVCNccXKwrHLpJrt71KZTmcN3JmpYhjf4Ftpz/zV2WojFLkIeGeThnSBasqv ux84JAnpNuLBB0QJAzs16kYouZP8tH+xUMJwYxO/ub7N6SAoUncPEDTd+FbgG8d8 FbnFoU95qFM/Y9kjOzQR+L8VCU+Ao26RFbUTMF00YQ0= -----END CERTIFICATE-----Generated at Wed May 29 02:29:28 2024 by rpki-client on console-ams.rpki-client.org