$ rpki-client -vvf rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/13321D24572211EA88CE445FC4F9AE02.roa File: 13321D24572211EA88CE445FC4F9AE02.roa (raw, json) Hash identifier: xXSQwBPCYruuGyQsKTjHM9n/RD09yi8k8z8wgJzm9aU= Subject key identifier: 5A:1D:1C:13:6E:6F:C7:07:0C:AA:59:B7:5C:F5:5C:AF:84:31:EB:C8 Certificate issuer: /CN=A912986D/serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Certificate serial: 0A32 Authority key identifier: 17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/13321D24572211EA88CE445FC4F9AE02.roa Signing time: Wed 14 Aug 2024 20:18:07 +0000 ROA not before: Wed 14 Aug 2024 20:18:07 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 396982 IP address blocks: 43.229.32.0/22 maxlen: 22 43.229.32.0/23 maxlen: 23 43.229.34.0/23 maxlen: 23 103.9.96.0/22 maxlen: 22 117.120.16.0/21 maxlen: 21 223.29.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:26:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2610 (0xa32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912986D/serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Validity Not Before: Aug 14 20:18:07 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66bd10fe-a78c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8b:7e:0f:7d:4d:8b:75:b5:4a:15:a4:06:6f: d9:52:64:66:8a:94:44:d8:fb:69:b8:80:16:6e:dc: 88:a6:63:4e:2a:c0:43:52:df:a0:bc:69:6e:2f:85: a8:cc:a0:fe:29:8c:3a:4d:55:5b:80:7e:c5:46:1c: 84:3b:df:b2:c3:30:42:f6:27:71:03:c9:ff:0c:a2: 7c:e7:6e:59:80:04:1b:09:f3:e3:52:97:05:09:11: d4:3b:a6:15:15:1a:3e:5a:49:5d:81:9b:b0:ca:78: 70:66:fa:83:c3:fd:0a:81:b5:05:26:3f:25:ba:08: 5c:90:26:0e:00:33:2f:08:e1:3f:43:ff:94:64:0d: 74:43:0a:8a:32:76:c3:cd:1e:e8:e5:d3:91:d0:84: 1d:7b:65:28:a9:f2:80:74:46:da:4f:18:bd:1a:bf: d1:78:09:72:11:9a:ec:3d:60:4d:42:d7:fe:14:81: 65:e3:7b:07:14:8c:e3:70:b6:0e:ea:93:02:97:04: b6:83:82:61:4b:63:39:cf:2b:ef:6b:6b:53:4b:6a: 83:4d:11:aa:af:e1:f6:b8:c0:b9:31:aa:81:72:75: 1c:f0:aa:0f:81:4a:61:76:fd:76:90:d7:89:1f:19: 20:4f:28:e3:59:c6:40:40:4b:ab:15:ab:86:e8:ff: 6d:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:1D:1C:13:6E:6F:C7:07:0C:AA:59:B7:5C:F5:5C:AF:84:31:EB:C8 X509v3 Authority Key Identifier: keyid:17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/13321D24572211EA88CE445FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.32.0/22 103.9.96.0/22 117.120.16.0/21 223.29.216.0/22 Signature Algorithm: sha256WithRSAEncryption 05:9c:87:b1:60:3f:c6:0d:b4:be:c9:b6:10:fe:86:65:82:22: 16:8c:e0:c3:46:61:3b:84:52:71:54:d0:bd:74:4b:ee:25:2e: 62:6e:25:41:f7:b9:53:04:09:02:f1:dd:9e:cf:aa:55:76:2d: 83:ba:75:81:3f:b0:08:ba:49:bf:02:28:6a:b1:18:80:7c:d1: 09:73:4a:52:bc:54:d4:c3:9f:5a:e1:2e:5c:55:d1:2f:d6:b5: b7:90:56:95:4a:11:c6:25:1d:95:08:c8:f7:9f:ca:94:36:93: fc:a4:0a:cc:73:a4:55:7a:6f:14:eb:3c:ee:1f:2b:6d:c5:fc: 88:7a:57:df:d6:4a:35:49:04:54:1c:47:2c:4d:32:b9:50:9d: 96:15:6c:09:9a:8b:11:2d:2b:d5:81:9c:a2:ac:64:ae:b0:26: 8d:90:3c:62:67:96:89:58:3f:c2:b0:4f:a1:e2:0a:89:e3:54: 38:02:a4:43:45:a9:63:3a:94:c1:4c:8c:7a:e1:40:35:ee:53: b2:ec:24:93:3d:32:c6:d1:b2:d4:c2:ba:c7:f0:e5:27:be:bc: fe:e9:cc:1e:85:b1:9b:b0:a8:9e:6f:61:3c:44:c9:3f:23:6a: 5a:48:58:6f:f9:5b:9c:84:36:f2:30:69:b6:fe:2d:a3:c2:fa: 1f:89:b2:04 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCjIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4NkQxMTAvBgNVBAUTKDE3MTdBQ0FDMDUzRjEzMUUyMjYxNDUyNzM2NTEzRTRF OEY2MjZDREIwHhcNMjQwODE0MjAxODA3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJkMTBmZS1hNzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2It+D31Ni3W1ShWkBm/ZUmRmipRE2PtpuIAWbtyIpmNOKsBDUt+gvGluL4Wo zKD+KYw6TVVbgH7FRhyEO9+ywzBC9idxA8n/DKJ8525ZgAQbCfPjUpcFCRHUO6YV FRo+WkldgZuwynhwZvqDw/0KgbUFJj8lughckCYOADMvCOE/Q/+UZA10QwqKMnbD zR7o5dOR0IQde2UoqfKAdEbaTxi9Gr/ReAlyEZrsPWBNQtf+FIFl43sHFIzjcLYO 6pMClwS2g4JhS2M5zyvva2tTS2qDTRGqr+H2uMC5MaqBcnUc8KoPgUphdv12kNeJ HxkgTyjjWcZAQEurFauG6P9tQQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFFodHBNu b8cHDKpZt1z1XK+EMevIMB8GA1UdIwQYMBaAFBcXrKwFPxMeImFFJzZRPk6PYmzb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTg2RC9BMDA3NEQxODUz M0IxMUVBQkFBNzVCM0FDNEY5QUUwMi9GeGVzckFVX0V4NGlZVVVuTmxFLVRvOWli TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z4ZXNyQVVfRXg0aVlVVW5ObEUtVG85aWJOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4NkQvQTAwNzREMTg1MzNCMTFFQUJBQTc1QjNBQzRGOUFFMDIvMTMzMjFEMjQ1 NzIyMTFFQTg4Q0U0NDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr5SADBAJnCWADBAN1eBADBALfHdgwDQYJKoZIhvcNAQEL BQADggEBAAWch7FgP8YNtL7JthD+hmWCIhaM4MNGYTuEUnFU0L10S+4lLmJuJUH3 uVMECQLx3Z7PqlV2LYO6dYE/sAi6Sb8CKGqxGIB80QlzSlK8VNTDn1rhLlxV0S/W tbeQVpVKEcYlHZUIyPefypQ2k/ykCsxzpFV6bxTrPO4fK23F/Ih6V9/WSjVJBFQc RyxNMrlQnZYVbAmaixEtK9WBnKKsZK6wJo2QPGJnlolYP8KwT6HiConjVDgCpENF qWM6lMFMjHrhQDXuU7LsJJM9MsbRstTCusfw5Se+vP7pzB6FsZuwqJ5vYTxEyT8j alpIWG/5W5yENvIwabb+LaPC+h+JsgQ= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:45 2024 by rpki-client on console-ams.rpki-client.org