$ rpki-client -vvf rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/4FFC83964CA311EE815AF017C4F9AE02.roa File: 4FFC83964CA311EE815AF017C4F9AE02.roa (raw, json) Hash identifier: vgN7wLEDbyrBifRerfum3Fk0T52cGWinYY+zg+1VrHM= Subject key identifier: 67:F5:D4:F8:2D:A9:AA:26:D7:BB:33:1A:AF:B2:43:4A:8A:91:98:13 Certificate issuer: /CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Certificate serial: 09F2 Authority key identifier: 76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/4FFC83964CA311EE815AF017C4F9AE02.roa Signing time: Thu 08 Feb 2024 20:38:30 +0000 ROA not before: Thu 08 Feb 2024 20:38:30 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 150774 IP address blocks: 103.136.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 19:25:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2546 (0x9f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E6CA/serialNumber=76B9D339FACD62B47E93E8884DE850396DBCEFB4 Validity Not Before: Feb 8 20:38:30 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65c53bc6-0ced Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:b0:c5:e6:bc:a5:07:06:33:1a:e2:8a:1d:55: c1:6e:0f:9a:1f:30:90:bc:6c:91:00:35:1d:81:f3: 0c:a8:2d:05:53:09:30:c9:68:ec:03:12:e9:31:07: f6:12:4c:0f:38:1e:55:08:db:4b:af:bd:ee:88:9a: 5b:be:c2:9d:3d:ae:4e:46:bb:af:f8:c2:ac:6f:10: ce:e2:60:de:d9:87:31:d4:00:47:9d:80:4e:e4:69: 02:b8:0f:c1:4e:d1:df:f9:a7:f4:67:48:de:24:cd: f0:13:07:bb:0b:6e:c7:f6:66:d3:ad:8d:67:8f:ab: 35:99:cd:4b:ae:a1:d0:62:2b:5b:fb:f7:44:d4:b0: 54:c1:01:d4:c2:47:3b:81:d3:8e:f8:14:48:4d:e3: b8:c0:81:9b:90:f8:82:fc:4c:f0:ab:a5:72:47:7a: 94:aa:f8:94:0e:d5:e7:d2:17:a0:9a:30:06:89:5c: c2:cf:c7:2d:29:24:a8:84:44:aa:12:a1:2b:0f:ac: f0:4b:c5:65:d4:12:92:e0:6b:ba:6d:11:e1:90:94: ba:f7:b1:c5:cb:f2:0f:ca:83:89:21:b3:4e:90:c4: 46:51:12:8c:a3:af:6b:e3:ba:70:2e:79:bf:c8:c1: d5:f6:5e:e8:7d:03:fd:b0:72:69:7f:8f:d9:6e:67: c8:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:F5:D4:F8:2D:A9:AA:26:D7:BB:33:1A:AF:B2:43:4A:8A:91:98:13 X509v3 Authority Key Identifier: keyid:76:B9:D3:39:FA:CD:62:B4:7E:93:E8:88:4D:E8:50:39:6D:BC:EF:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/drnTOfrNYrR-k-iITehQOW2877Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/drnTOfrNYrR-k-iITehQOW2877Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E6CA/7409B47A4FC711EA8E46D415C4F9AE02/4FFC83964CA311EE815AF017C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.159.0/24 Signature Algorithm: sha256WithRSAEncryption 04:bd:bf:14:67:65:e6:a6:6a:ee:7a:19:0c:c7:53:68:4d:18: 4f:15:ea:5e:9d:dd:f6:d7:08:3a:12:f4:21:57:eb:02:6e:79: 9b:b8:f0:5f:87:63:e8:80:9d:af:77:d2:85:b7:d7:2b:09:36: 52:c9:73:f0:da:73:1a:87:21:ed:d7:cf:66:cb:82:37:3f:e6: 84:cc:eb:36:da:25:46:d4:36:76:59:70:a7:1d:bb:52:bf:3f: 6d:00:ff:fd:d5:83:0a:03:b3:da:63:fc:9d:90:36:77:3e:ef: 0a:89:b9:dc:38:b7:1d:68:b1:f1:16:12:f0:13:87:8a:66:3b: 9f:33:b2:2f:29:e1:09:4b:75:ea:a9:86:3e:af:eb:f9:fd:95: 63:25:cf:34:59:5d:73:bc:78:b8:7f:b5:9a:b0:6a:8e:87:7f: c0:01:b9:02:58:06:2e:a8:4a:16:ea:fe:e7:12:57:02:d5:36: d1:af:aa:10:6a:aa:dd:a4:dc:d3:fc:5b:dc:c4:8e:fe:b4:8e: d4:07:68:97:70:1d:40:fa:7e:22:78:d0:db:f7:df:ee:a0:ba: 08:62:f5:3e:7b:4d:2f:ad:d5:62:0e:51:22:5f:af:5a:ce:70: c1:53:8e:be:e1:d5:e5:12:74:60:1c:bd:a8:60:f4:e1:82:7f: a8:d4:8d:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCfIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUU2Q0ExMTAvBgNVBAUTKDc2QjlEMzM5RkFDRDYyQjQ3RTkzRTg4ODRERTg1MDM5 NkRCQ0VGQjQwHhcNMjQwMjA4MjAzODMwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWM1M2JjNi0wY2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1LDF5rylBwYzGuKKHVXBbg+aHzCQvGyRADUdgfMMqC0FUwkwyWjsAxLpMQf2 EkwPOB5VCNtLr73uiJpbvsKdPa5ORruv+MKsbxDO4mDe2Ycx1ABHnYBO5GkCuA/B TtHf+af0Z0jeJM3wEwe7C27H9mbTrY1nj6s1mc1LrqHQYitb+/dE1LBUwQHUwkc7 gdOO+BRITeO4wIGbkPiC/Ezwq6VyR3qUqviUDtXn0hegmjAGiVzCz8ctKSSohESq EqErD6zwS8Vl1BKS4Gu6bRHhkJS697HFy/IPyoOJIbNOkMRGURKMo69r47pwLnm/ yMHV9l7ofQP9sHJpf4/ZbmfI1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGf11Pgt qaom17szGq+yQ0qKkZgTMB8GA1UdIwQYMBaAFHa50zn6zWK0fpPoiE3oUDltvO+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExRTZDQS83NDA5QjQ3QTRG QzcxMUVBOEU0NkQ0MTVDNEY5QUUwMi9kcm5UT2ZyTllyUi1rLWlJVGVoUU9XMjg3 N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RyblRPZnJOWXJSLWstaUlUZWhRT1cyODc3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUU2Q0EvNzQwOUI0N0E0RkM3MTFFQThFNDZENDE1QzRGOUFFMDIvNEZGQzgzOTY0 Q0EzMTFFRTgxNUFGMDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABniJ8wDQYJKoZIhvcNAQELBQADggEBAAS9vxRnZeamau56 GQzHU2hNGE8V6l6d3fbXCDoS9CFX6wJueZu48F+HY+iAna930oW31ysJNlLJc/Da cxqHIe3Xz2bLgjc/5oTM6zbaJUbUNnZZcKcdu1K/P20A//3VgwoDs9pj/J2QNnc+ 7wqJudw4tx1osfEWEvATh4pmO58zsi8p4QlLdeqphj6v6/n9lWMlzzRZXXO8eLh/ tZqwao6Hf8ABuQJYBi6oShbq/ucSVwLVNtGvqhBqqt2k3NP8W9zEjv60jtQHaJdw HUD6fiJ40Nv33+6gughi9T57TS+t1WIOUSJfr1rOcMFTjr7h1eUSdGAcvahg9OGC f6jUjdM= -----END CERTIFICATE-----Generated at Tue Nov 26 21:52:47 2024 by rpki-client on console-ams.rpki-client.org