$ rpki-client -vvf rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/652283665B1A11EFA78B847EC4F9AE02.roa File: 652283665B1A11EFA78B847EC4F9AE02.roa (raw, json) Hash identifier: tP/YOIdnoY7zTO5p4ZVWJihHDwAVW3mBLrg6H6OaTlM= Subject key identifier: ED:3D:C7:C1:6A:0B:EA:95:C0:B1:2F:E7:84:00:F0:EA:D5:60:A4:59 Certificate issuer: /CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Certificate serial: 06 Authority key identifier: 62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/652283665B1A11EFA78B847EC4F9AE02.roa Signing time: Thu 15 Aug 2024 15:24:54 +0000 ROA not before: Thu 15 Aug 2024 15:24:54 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 2042 IP address blocks: 103.235.172.0/22 maxlen: 22 150.242.216.0/22 maxlen: 22 150.242.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DD08/serialNumber=62AC1BB9580A7119819E7B6B6EB2C351534787FD Validity Not Before: Aug 15 15:24:54 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66be1dc5-f079 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2e:e4:69:85:ab:88:8d:35:a4:70:c9:34:17: d1:f4:64:61:8d:f2:3d:8f:58:11:fa:75:3c:08:d8: 48:aa:ff:ad:bf:02:b5:42:25:a5:85:68:2c:ce:08: 80:52:b9:4e:ff:ef:be:14:50:3a:f9:a4:a7:33:3a: e6:0e:f7:b1:57:33:2e:68:e5:3c:c5:96:4b:1c:a8: 67:c7:d7:f2:95:70:37:c9:58:af:ec:37:88:bb:ae: 2a:fa:b8:b9:a7:65:95:9e:d7:0d:c1:b2:84:ec:89: 63:e0:a0:c5:a6:02:cd:79:37:52:61:81:13:41:70: a8:b1:77:63:53:3b:41:c4:6f:05:2a:ef:b0:2f:de: 80:0f:02:d4:93:cc:9f:08:d8:2d:22:55:5c:f8:28: bc:07:61:2f:27:46:ec:f2:0a:bc:e3:1c:ce:6a:1d: b2:91:dd:e1:65:24:ab:8c:95:50:d2:d3:9a:ff:fa: 75:cd:76:17:23:1f:49:41:b9:24:c9:40:6b:0c:38: a1:72:6d:fe:37:2c:91:a3:20:27:a8:f2:43:ae:80: 8c:93:fc:e2:74:1c:9e:c5:d2:09:f0:7e:02:1f:af: 45:8f:1f:f1:d9:10:38:f2:0d:91:a3:4c:e6:d1:08: d0:05:e8:03:d9:ad:3f:74:c8:d4:59:8c:ff:92:ac: 92:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:3D:C7:C1:6A:0B:EA:95:C0:B1:2F:E7:84:00:F0:EA:D5:60:A4:59 X509v3 Authority Key Identifier: keyid:62:AC:1B:B9:58:0A:71:19:81:9E:7B:6B:6E:B2:C3:51:53:47:87:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/YqwbuVgKcRmBnntrbrLDUVNHh_0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YqwbuVgKcRmBnntrbrLDUVNHh_0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DD08/9A5FBB625B1911EFBED0C47AC4F9AE02/652283665B1A11EFA78B847EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.235.172.0/22 150.242.216.0/22 Signature Algorithm: sha256WithRSAEncryption 91:c5:85:66:74:7e:e8:ff:ec:c3:61:bb:08:ad:2a:f7:0f:f7: 1b:64:42:66:6a:0d:d6:0d:0d:dc:3e:52:ab:44:86:fd:14:19: da:4c:85:9f:80:e1:2c:ca:3d:34:e7:95:c1:c2:6e:f5:1d:3d: e8:4a:e8:ef:b9:23:ff:ac:30:52:ab:98:a3:1e:b8:fc:15:2c: 6e:12:27:ce:db:77:8e:10:dd:2b:31:5d:7f:9b:41:19:66:d4: 4f:3a:a5:dd:a2:e8:da:a3:a5:23:9b:7d:22:15:5b:7c:0b:4e: 63:39:6b:a3:97:77:5b:ed:4e:77:29:37:b7:88:64:1f:56:39: e1:d0:20:ab:87:de:30:1c:2d:ea:15:f6:d7:29:5e:57:0f:51: 25:22:6b:18:c4:29:13:f8:0a:a6:d8:7f:74:aa:19:dd:f3:d7: 8e:1b:2e:f6:df:ff:d5:34:e5:56:39:71:94:95:bd:0a:96:d0: 9d:7b:41:12:72:88:52:45:45:0b:72:fa:e5:f7:80:2d:de:36: cb:5a:04:ae:cb:53:8a:00:d5:03:a0:c9:a5:5d:f4:8b:63:6b: e6:e8:08:58:fb:14:fa:27:6d:47:d9:40:e0:86:95:ff:0f:3d: bc:9f:12:1c:01:a8:2c:62:37:28:1c:43:2f:f0:7e:8d:f7:12: b1:e6:c6:8f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx REQwODExMC8GA1UEBRMoNjJBQzFCQjk1ODBBNzExOTgxOUU3QjZCNkVCMkMzNTE1 MzQ3ODdGRDAeFw0yNDA4MTUxNTI0NTRaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmUxZGM1LWYwNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuLuRphauIjTWkcMk0F9H0ZGGN8j2PWBH6dTwI2Eiq/62/ArVCJaWFaCzOCIBS uU7/774UUDr5pKczOuYO97FXMy5o5TzFlkscqGfH1/KVcDfJWK/sN4i7rir6uLmn ZZWe1w3BsoTsiWPgoMWmAs15N1JhgRNBcKixd2NTO0HEbwUq77Av3oAPAtSTzJ8I 2C0iVVz4KLwHYS8nRuzyCrzjHM5qHbKR3eFlJKuMlVDS05r/+nXNdhcjH0lBuSTJ QGsMOKFybf43LJGjICeo8kOugIyT/OJ0HJ7F0gnwfgIfr0WPH/HZEDjyDZGjTObR CNAF6APZrT90yNRZjP+SrJJrAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU7T3HwWoL 6pXAsS/nhADw6tVgpFkwHwYDVR0jBBgwFoAUYqwbuVgKcRmBnntrbrLDUVNHh/0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFERDA4LzlBNUZCQjYyNUIx OTExRUZCRUQwQzQ3QUM0RjlBRTAyL1lxd2J1VmdLY1JtQm5udHJickxEVVZOSGhf MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWXF3YnVWZ0tjUm1Cbm50cmJyTERVVk5IaF8wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx REQwOC85QTVGQkI2MjVCMTkxMUVGQkVEMEM0N0FDNEY5QUUwMi82NTIyODM2NjVC MUExMUVGQTc4Qjg0N0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmfrrAMEApby2DANBgkqhkiG9w0BAQsFAAOCAQEAkcWFZnR+ 6P/sw2G7CK0q9w/3G2RCZmoN1g0N3D5Sq0SG/RQZ2kyFn4DhLMo9NOeVwcJu9R09 6Ero77kj/6wwUquYox64/BUsbhInztt3jhDdKzFdf5tBGWbUTzql3aLo2qOlI5t9 IhVbfAtOYzlro5d3W+1Odyk3t4hkH1Y54dAgq4feMBwt6hX21yleVw9RJSJrGMQp E/gKpth/dKoZ3fPXjhsu9t//1TTlVjlxlJW9CpbQnXtBEnKIUkVFC3L65feALd42 y1oErstTigDVA6DJpV30i2Nr5ugIWPsU+idtR9lA4IaV/w89vJ8SHAGoLGI3KBxD L/B+jfcSsebGjw== -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:00 2024 by rpki-client on console-ams.rpki-client.org