$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AAF07158AFEB11EEBCAD8169C4F9AE02.roa File: AAF07158AFEB11EEBCAD8169C4F9AE02.roa (raw, json) Hash identifier: O/Zd9OdJjnFIVP1g9XMIqqsu4FduN8Ih3JD/279+ZGc= Subject key identifier: 1D:88:07:CC:B7:BC:54:20:48:66:66:74:C0:15:74:3D:F4:13:4D:4B Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 2764 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AAF07158AFEB11EEBCAD8169C4F9AE02.roa Signing time: Tue 30 Jul 2024 16:04:13 +0000 ROA not before: Tue 30 Jul 2024 16:04:13 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142594 IP address blocks: 45.249.89.0/24 maxlen: 24 103.217.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:46:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10084 (0x2764) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Jul 30 16:04:13 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a90efd-b6fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:10:11:df:3e:0b:8c:45:6a:4d:fd:a1:a5:5a: 6c:13:ca:5d:a9:99:94:e5:b1:64:68:d9:ae:5e:e2: 5b:45:35:12:94:ff:d4:b8:d4:3c:7a:67:58:11:5d: c5:7d:cd:e6:95:a6:0d:25:fd:56:11:ce:1c:09:4a: 22:f5:6d:0a:3a:7f:e7:36:a5:df:cc:05:0e:11:0f: d6:58:d8:61:e4:79:cf:49:cc:83:58:be:16:60:bf: 78:bc:70:02:24:84:49:55:0e:0f:f1:d2:25:20:94: b8:3a:66:76:7c:eb:ad:4d:80:1d:fa:c8:f4:50:e8: 82:03:ef:2f:d5:2a:ae:60:21:9a:d6:78:f0:61:76: b3:56:b8:25:03:8b:5b:be:31:3f:38:b1:5d:a8:3b: ca:e3:8d:11:1c:38:f4:7a:a9:7d:7c:bb:cf:f3:60: ec:f3:e3:12:cf:4e:69:cb:c3:9b:ba:c7:07:d5:40: e1:cd:03:66:14:ab:83:c2:27:90:89:a7:48:3f:9a: 45:21:f7:08:7c:98:41:7c:6b:18:fb:31:02:ef:e8: f8:ba:06:65:3a:d7:a0:7e:be:06:ca:7e:a3:e7:a4: a4:1c:13:03:db:1e:a5:dc:bb:f0:ff:2d:d7:b1:7f: 80:2f:41:53:9b:51:6d:a6:4d:86:f4:df:f2:41:be: 41:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:88:07:CC:B7:BC:54:20:48:66:66:74:C0:15:74:3D:F4:13:4D:4B X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AAF07158AFEB11EEBCAD8169C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.89.0/24 103.217.254.0/24 Signature Algorithm: sha256WithRSAEncryption 44:39:48:7d:a1:b4:15:76:67:48:d8:1e:60:96:a6:1b:48:b8: d1:1e:f8:3c:18:e7:20:bc:2f:a2:3d:c1:23:51:b5:de:1c:51: 25:b4:3e:14:a2:45:f0:66:90:6e:80:0e:c6:c5:ed:64:34:dd: d6:6f:ff:8a:84:fe:0b:38:db:ab:49:f4:71:55:44:2e:00:bf: b2:70:4d:ac:01:be:44:fa:39:36:3a:b2:e7:19:d1:8a:ab:d9: d6:69:1b:c5:9f:b5:47:5a:57:5d:5e:e7:40:6d:ee:6c:79:09: 4f:b7:a6:9b:93:47:b9:12:b1:a0:10:a2:86:86:2b:22:77:02: fa:7b:c0:4e:c6:0d:f6:bd:70:90:1e:de:d6:5a:b0:f1:71:42: 7b:e2:05:ea:c9:a8:03:1a:02:7e:a2:72:2a:f4:a0:81:94:bf: fa:54:a1:c0:09:99:39:7b:04:94:a8:b8:2e:11:60:e4:b5:60: 64:1a:bb:7e:33:a0:3b:39:7b:de:e8:34:93:2e:fd:bf:b0:48: cf:d7:b9:2a:e9:95:7b:56:34:5b:32:a0:ea:99:11:d9:32:83: 67:2d:2f:9d:14:e0:15:ce:be:03:55:71:2f:d0:02:ee:bf:9e: 4f:20:fc:bd:c0:d7:66:27:65:01:f9:d9:c2:93:2b:4c:92:3e: ff:bf:e3:fc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJ2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwNzMwMTYwNDEzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5MGVmZC1iNmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6hAR3z4LjEVqTf2hpVpsE8pdqZmU5bFkaNmuXuJbRTUSlP/UuNQ8emdYEV3F fc3mlaYNJf1WEc4cCUoi9W0KOn/nNqXfzAUOEQ/WWNhh5HnPScyDWL4WYL94vHAC JIRJVQ4P8dIlIJS4OmZ2fOutTYAd+sj0UOiCA+8v1SquYCGa1njwYXazVrglA4tb vjE/OLFdqDvK440RHDj0eql9fLvP82Ds8+MSz05py8ObuscH1UDhzQNmFKuDwieQ iadIP5pFIfcIfJhBfGsY+zEC7+j4ugZlOtegfr4Gyn6j56SkHBMD2x6l3Lvw/y3X sX+AL0FTm1Ftpk2G9N/yQb5BuwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB2IB8y3 vFQgSGZmdMAVdD30E01LMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvQUFGMDcxNThB RkVCMTFFRUJDQUQ4MTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAt+VkDBABn2f4wDQYJKoZIhvcNAQELBQADggEBAEQ5SH2h tBV2Z0jYHmCWphtIuNEe+DwY5yC8L6I9wSNRtd4cUSW0PhSiRfBmkG6ADsbF7WQ0 3dZv/4qE/gs426tJ9HFVRC4Av7JwTawBvkT6OTY6sucZ0Yqr2dZpG8WftUdaV11e 50Bt7mx5CU+3ppuTR7kSsaAQooaGKyJ3Avp7wE7GDfa9cJAe3tZasPFxQnviBerJ qAMaAn6icir0oIGUv/pUocAJmTl7BJSouC4RYOS1YGQau34zoDs5e97oNJMu/b+w SM/XuSrplXtWNFsyoOqZEdkyg2ctL50U4BXOvgNVcS/QAu6/nk8g/L3A12YnZQH5 2cKTK0ySPv+/4/w= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:11 2024 by rpki-client on console-ams.rpki-client.org