$ rpki-client -vvf rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/A17C3508168911EFBF38F580C4F9AE02.roa File: A17C3508168911EFBF38F580C4F9AE02.roa (raw, json) Hash identifier: 5gm1wj46SXJPZC1pKKhppvpQZgvvcitCu8i+WN1ATKA= Subject key identifier: 79:F7:FB:CF:3A:F3:24:F5:18:60:53:C5:5D:3D:8E:70:B0:C6:4B:79 Certificate issuer: /CN=A912F535/serialNumber=D48CED18F68CA226983F9F999A140636275B6A55 Certificate serial: 80 Authority key identifier: D4:8C:ED:18:F6:8C:A2:26:98:3F:9F:99:9A:14:06:36:27:5B:6A:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1IztGPaMoiaYP5-ZmhQGNidbalU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/A17C3508168911EFBF38F580C4F9AE02.roa Signing time: Wed 07 Aug 2024 16:19:20 +0000 ROA not before: Wed 07 Aug 2024 16:19:20 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 400619 IP address blocks: 14.192.4.0/23 maxlen: 24 14.192.6.0/23 maxlen: 24 43.224.224.0/22 maxlen: 24 103.215.77.0/24 maxlen: 24 103.215.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1IztGPaMoiaYP5-ZmhQGNidbalU.crl rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1IztGPaMoiaYP5-ZmhQGNidbalU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1IztGPaMoiaYP5-ZmhQGNidbalU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:40:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F535/serialNumber=D48CED18F68CA226983F9F999A140636275B6A55 Validity Not Before: Aug 7 16:19:20 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66b39e87-6188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:c1:15:11:dc:80:e6:16:01:d4:42:06:33: e0:61:1f:3c:41:a2:7d:27:f6:f3:13:5e:ce:49:6b: 43:46:17:44:d3:1b:99:61:f7:57:62:1c:d6:59:4e: 18:79:bd:5f:e4:cb:3c:58:98:39:31:b4:37:cc:3c: 3e:2e:64:80:44:7e:e1:50:12:2a:17:99:c2:65:b9: eb:e2:fd:56:30:33:d2:a8:34:03:d5:9c:fa:ea:ef: a6:49:d7:1e:2a:6b:6e:97:f5:ad:e0:70:41:4b:4a: f0:bf:63:b3:10:ba:1f:09:81:04:66:cf:6a:05:56: 54:66:a0:27:cc:8f:80:27:d5:1c:64:b2:3a:26:df: 48:45:a3:8d:45:12:04:56:56:d4:5b:f4:9c:f7:c0: ef:fd:3d:1b:4f:68:01:92:22:fd:55:9e:90:09:2e: 71:3b:f9:56:01:08:7b:c6:e4:a9:4e:d5:95:07:95: 4b:01:fd:44:12:d3:0d:2e:86:cb:84:8f:73:76:94: ab:24:7c:92:d8:bc:45:21:29:15:56:cd:06:3f:ac: b1:b9:35:e6:fe:d8:8b:2f:70:7f:56:57:92:67:bc: b2:54:ce:c5:88:ec:57:05:5f:2c:96:08:f0:f7:da: a6:62:d8:23:40:0e:1e:05:8e:cb:75:36:66:b1:72: 2e:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:F7:FB:CF:3A:F3:24:F5:18:60:53:C5:5D:3D:8E:70:B0:C6:4B:79 X509v3 Authority Key Identifier: keyid:D4:8C:ED:18:F6:8C:A2:26:98:3F:9F:99:9A:14:06:36:27:5B:6A:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/1IztGPaMoiaYP5-ZmhQGNidbalU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1IztGPaMoiaYP5-ZmhQGNidbalU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F535/69A58078BA6611EEBC39626EC4F9AE02/A17C3508168911EFBF38F580C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.192.4.0/22 43.224.224.0/22 103.215.77.0-103.215.78.255 Signature Algorithm: sha256WithRSAEncryption a9:55:5b:ab:a9:09:16:aa:6b:79:4b:15:0e:72:94:86:cc:a4: 4f:2d:b4:16:e1:4b:c4:da:b8:5f:db:be:f8:2f:36:dc:64:3c: 22:8b:6e:49:0b:f8:34:4b:0c:db:4e:8b:90:2f:d5:8c:fe:72: 4e:c9:50:63:c3:95:ec:54:53:5c:22:fc:f2:37:2a:c5:99:e1: 69:36:db:7b:32:f9:60:82:f6:0c:dd:b2:6b:db:00:fc:60:91: d6:63:ed:8c:41:d3:b6:46:f7:4f:32:f6:a6:be:f8:26:1a:7f: 3d:b2:24:96:2c:a5:04:4a:ee:63:a2:42:c7:b4:7a:da:0e:eb: a7:d4:a7:e0:08:fe:09:48:2e:c4:b0:6c:39:29:d7:0c:9e:3b: 9c:94:d8:67:2e:64:5c:9d:5f:7c:0f:2b:d8:2d:94:4f:41:6b: 38:8e:34:24:48:e1:8b:c8:5f:e4:1d:1e:ad:29:0c:19:33:16: 45:f9:aa:a4:2c:9d:a4:62:58:fa:2e:ec:06:be:d4:ac:21:6a: 51:99:e9:03:e3:87:a0:ec:7b:ac:72:93:55:cf:20:ad:a8:29: 7e:68:2a:fa:9b:28:d7:b1:b4:81:62:e1:e2:da:02:d8:72:25: 35:f9:aa:82:55:ea:24:93:c4:82:61:8a:c7:92:5c:e6:a4:3c: f4:f4:55:29 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkY1MzUxMTAvBgNVBAUTKEQ0OENFRDE4RjY4Q0EyMjY5ODNGOUY5OTlBMTQwNjM2 Mjc1QjZBNTUwHhcNMjQwODA3MTYxOTIwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIzOWU4Ny02MTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuR7BFRHcgOYWAdRCBjPgYR88QaJ9J/bzE17OSWtDRhdE0xuZYfdXYhzWWU4Y eb1f5Ms8WJg5MbQ3zDw+LmSARH7hUBIqF5nCZbnr4v1WMDPSqDQD1Zz66u+mSdce Kmtul/Wt4HBBS0rwv2OzELofCYEEZs9qBVZUZqAnzI+AJ9UcZLI6Jt9IRaONRRIE VlbUW/Sc98Dv/T0bT2gBkiL9VZ6QCS5xO/lWAQh7xuSpTtWVB5VLAf1EEtMNLobL hI9zdpSrJHyS2LxFISkVVs0GP6yxuTXm/tiLL3B/VleSZ7yyVM7FiOxXBV8slgjw 99qmYtgjQA4eBY7LdTZmsXIuRQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFHn3+886 8yT1GGBTxV09jnCwxkt5MB8GA1UdIwQYMBaAFNSM7Rj2jKImmD+fmZoUBjYnW2pV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjUzNS82OUE1ODA3OEJB NjYxMUVFQkMzOTYyNkVDNEY5QUUwMi8xSXp0R1BhTW9pYVlQNS1abWhRR05pZGJh bFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFJenRHUGFNb2lhWVA1LVptaFFHTmlkYmFsVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkY1MzUvNjlBNTgwNzhCQTY2MTFFRUJDMzk2MjZFQzRGOUFFMDIvQTE3QzM1MDgx Njg5MTFFRkJGMzhGNTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAIOwAQDBAIr4OAwDAMEAGfXTQMEAGfXTjANBgkqhkiG9w0B AQsFAAOCAQEAqVVbq6kJFqpreUsVDnKUhsykTy20FuFLxNq4X9u++C823GQ8Iotu SQv4NEsM206LkC/VjP5yTslQY8OV7FRTXCL88jcqxZnhaTbbezL5YIL2DN2ya9sA /GCR1mPtjEHTtkb3TzL2pr74Jhp/PbIkliylBEruY6JCx7R62g7rp9Sn4Aj+CUgu xLBsOSnXDJ47nJTYZy5kXJ1ffA8r2C2UT0FrOI40JEjhi8hf5B0erSkMGTMWRfmq pCydpGJY+i7sBr7UrCFqUZnpA+OHoOx7rHKTVc8gragpfmgq+pso17G0gWLh4toC 2HIlNfmqglXqJJPEgmGKx5Jc5qQ89PRVKQ== -----END CERTIFICATE-----Generated at Tue Sep 17 06:00:04 2024 by rpki-client on console-ams.rpki-client.org