$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9933B21049D411E7AA790315C4F9AE02.roa File: 9933B21049D411E7AA790315C4F9AE02.roa (raw, json) Hash identifier: QoTcLfEkEV4sZtEqMQTgGT13hqif8q7yBrWiFwLEqIo= Subject key identifier: 02:AA:34:ED:FD:66:E6:91:D1:BA:D9:39:8A:1D:76:05:7D:2C:B2:3C Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1B8F Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9933B21049D411E7AA790315C4F9AE02.roa Signing time: Fri 30 Aug 2024 16:54:07 +0000 ROA not before: Fri 30 Aug 2024 16:54:07 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45671 IP address blocks: 203.33.22.0/24 maxlen: 24 2001:df3:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:12:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7055 (0x1b8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Validity Not Before: Aug 30 16:54:07 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d1f92f-57b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:08:ab:f4:89:8a:47:c6:e6:56:ac:ee:9b:37: 14:dd:33:5f:16:06:6d:ce:b2:fb:87:13:4a:61:a4: 15:21:d4:0f:c2:34:01:2f:6f:05:07:6d:dc:49:59: ef:6e:f0:0c:a6:e9:29:9e:d5:36:fa:0d:68:cc:83: d6:7d:4d:15:a1:a2:ca:0f:fd:c2:f3:87:11:ab:94: b5:79:36:32:92:b0:f2:a5:67:d4:b1:f8:f0:e4:d0: ae:9b:1a:62:09:9a:c4:18:54:7c:48:5d:c7:7a:03: 1c:2b:f9:89:8c:05:e3:42:f6:c3:8d:1f:3c:6d:7e: 14:17:56:fc:99:82:8c:b5:32:3a:dc:7e:47:d7:b9: ee:ed:32:23:32:ee:43:e7:b7:d1:3e:f5:25:a2:23: 19:52:75:be:78:cc:44:97:a3:c3:a5:46:ca:4b:c8: 27:11:27:86:e2:27:e8:76:76:ae:11:b2:42:5d:59: a6:f0:11:61:ec:9f:78:3b:6a:7e:94:65:49:75:1a: ea:61:c2:5a:ba:09:75:c8:bd:0d:eb:10:06:66:dc: 66:36:58:c1:3b:e7:41:4f:11:eb:ed:d6:59:bc:2f: b4:50:83:a2:11:58:cb:31:f7:1e:09:a8:e8:8e:9c: 00:47:05:da:15:ae:a4:ea:06:10:a3:7d:d9:36:57: 97:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:AA:34:ED:FD:66:E6:91:D1:BA:D9:39:8A:1D:76:05:7D:2C:B2:3C X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9933B21049D411E7AA790315C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.22.0/24 IPv6: 2001:df3:ba00::/48 Signature Algorithm: sha256WithRSAEncryption 62:69:12:08:e0:35:2f:b7:13:1e:34:38:b9:ac:d4:90:f9:87: 10:86:1a:cf:ce:f7:8a:82:5d:a7:a0:a1:1b:76:8c:be:b0:32: 96:61:a0:d7:4e:9e:12:ff:b2:40:b4:8f:af:06:bd:cd:a3:bf: 44:b5:d7:c9:4b:fd:48:21:04:9b:04:d0:bf:86:ab:16:38:a1: cc:70:8f:89:d4:0e:51:d0:ed:8c:82:9e:b2:4d:56:33:32:b5: 45:89:bd:2f:78:40:39:72:8d:79:41:1c:fc:c1:b3:31:8f:41: 03:d5:2d:35:19:43:cb:7d:e7:33:38:68:85:1c:4f:34:5d:80: df:e9:65:13:8a:e6:f1:1d:95:02:69:5f:47:60:ee:bc:bd:a7: 05:bc:af:5e:35:4a:e2:7a:8f:bc:9a:39:20:59:9c:ac:6f:d5: 42:78:f5:97:1b:4e:22:a9:37:00:55:73:98:9b:41:90:6e:d1: ee:d9:0e:d9:64:90:fe:51:99:80:26:b2:fe:0d:1f:af:2c:4c: 8d:68:95:7e:53:dd:85:05:b6:25:f8:57:34:83:13:dd:0f:f5: 93:e8:14:70:ec:9e:c0:ef:89:f6:9f:30:ca:92:78:93:37:7c: 89:a1:f8:24:f7:4d:7b:a4:ff:36:23:e1:5a:bb:ec:b0:99:c3: ef:1f:96:1c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICG48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjQwODMwMTY1NDA3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxZjkyZi01N2I0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmgir9ImKR8bmVqzumzcU3TNfFgZtzrL7hxNKYaQVIdQPwjQBL28FB23cSVnv bvAMpukpntU2+g1ozIPWfU0VoaLKD/3C84cRq5S1eTYykrDypWfUsfjw5NCumxpi CZrEGFR8SF3HegMcK/mJjAXjQvbDjR88bX4UF1b8mYKMtTI63H5H17nu7TIjMu5D 57fRPvUloiMZUnW+eMxEl6PDpUbKS8gnESeG4ifodnauEbJCXVmm8BFh7J94O2p+ lGVJdRrqYcJaugl1yL0N6xAGZtxmNljBO+dBTxHr7dZZvC+0UIOiEVjLMfceCajo jpwARwXaFa6k6gYQo33ZNleXOQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAKqNO39 ZuaR0brZOYoddgV9LLI8MB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBRTkvMDhEQTYwQzZGMUIyMTFFNjhFNzRBMjZDQzRGOUFFMDIvOTkzM0IyMTA0 OUQ0MTFFN0FBNzkwMzE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLIRYwDwQCAAIwCQMHACABDfO6ADANBgkqhkiG9w0BAQsF AAOCAQEAYmkSCOA1L7cTHjQ4uazUkPmHEIYaz873ioJdp6ChG3aMvrAylmGg106e Ev+yQLSPrwa9zaO/RLXXyUv9SCEEmwTQv4arFjihzHCPidQOUdDtjIKesk1WMzK1 RYm9L3hAOXKNeUEc/MGzMY9BA9UtNRlDy33nMzhohRxPNF2A3+llE4rm8R2VAmlf R2DuvL2nBbyvXjVK4nqPvJo5IFmcrG/VQnj1lxtOIqk3AFVzmJtBkG7R7tkO2WSQ /lGZgCay/g0fryxMjWiVflPdhQW2JfhXNIMT3Q/1k+gUcOyewO+J9p8wypJ4kzd8 iaH4JPdNe6T/NiPhWrvssJnD7x+WHA== -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:15 2024 by rpki-client on console-ams.rpki-client.org