$ rpki-client -vvf rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/33522F58CC2D11EDABE25F72C4F9AE02.roa File: 33522F58CC2D11EDABE25F72C4F9AE02.roa (raw, json) Hash identifier: dENLQNT3Uuq2Es4LI+dM4ug9oH96dMTYv/SELS5gfsw= Subject key identifier: 31:51:BD:93:8A:E4:59:4F:BF:67:39:2D:50:31:4D:D6:CE:CA:74:2F Certificate issuer: /CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Certificate serial: 1E67 Authority key identifier: 8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/33522F58CC2D11EDABE25F72C4F9AE02.roa Signing time: Sat 02 Nov 2024 16:23:33 +0000 ROA not before: Sat 02 Nov 2024 16:23:33 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 142601 IP address blocks: 103.192.197.0/24 maxlen: 24 2400:c760:21::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:58:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7783 (0x1e67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913F0E3/serialNumber=8E8377810CF9C204BB12584F3E5B5F050368246F Validity Not Before: Nov 2 16:23:33 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67265205-9508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:95:6c:52:8a:b8:73:4b:fe:83:41:17:87:33: 43:31:5e:37:38:1d:9e:97:ed:1d:da:34:a8:0d:0f: 84:8b:e8:60:de:b9:15:d7:ad:31:d2:79:c7:05:3b: e9:52:4d:71:ba:52:a4:49:bf:fb:30:dd:22:d2:dd: 3a:09:7b:63:d6:3a:48:d9:44:36:47:5f:5a:3c:98: 8f:30:b7:4e:9e:8a:a3:59:7a:fa:f5:8d:e5:1b:83: 78:1c:6d:9d:7a:46:36:48:71:a4:69:43:77:36:ba: 89:9a:c0:22:70:c4:76:c8:63:7b:66:3c:a8:ea:2f: 9e:a0:8c:b8:3c:fa:22:60:fa:4f:11:7e:ec:9d:72: 5f:ca:05:24:2c:83:4c:88:75:0a:04:8d:9b:4d:e8: c9:09:93:ed:f4:94:e1:45:52:b8:ac:36:02:2f:60: c7:fd:de:98:fc:5b:0b:5e:5e:a5:fc:a3:ce:12:6c: f7:28:de:1e:d2:44:32:c6:d2:b3:c3:a8:40:ea:6d: 3b:50:a6:58:35:97:1e:28:5d:02:4d:3e:a5:aa:85: 28:55:59:24:12:8d:54:15:82:5f:8d:60:ea:59:26: c9:6f:1a:89:cb:a7:b6:a3:61:c3:00:a9:3d:1a:11: f0:1c:c4:92:ac:c1:ce:3c:3d:3a:db:ff:81:91:ff: 5d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:51:BD:93:8A:E4:59:4F:BF:67:39:2D:50:31:4D:D6:CE:CA:74:2F X509v3 Authority Key Identifier: keyid:8E:83:77:81:0C:F9:C2:04:BB:12:58:4F:3E:5B:5F:05:03:68:24:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/joN3gQz5wgS7ElhPPltfBQNoJG8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/joN3gQz5wgS7ElhPPltfBQNoJG8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913F0E3/291576BE6B3411E69184B66CC4F9AE02/33522F58CC2D11EDABE25F72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.192.197.0/24 IPv6: 2400:c760:21::/48 Signature Algorithm: sha256WithRSAEncryption 77:dd:a7:0b:ba:aa:c7:67:0d:f9:8a:98:57:ab:43:a0:c0:b4: 2a:e2:57:83:e9:98:10:b4:0a:82:7c:c4:bd:67:8c:51:80:78: 8a:c6:c1:91:1a:6d:d0:46:6c:3a:0f:92:09:7d:53:83:f8:21: 30:10:4f:b0:77:3c:60:d5:61:3e:ff:55:59:6a:ff:62:7b:fa: 07:15:7e:e8:83:e1:03:12:e4:9b:d5:21:f4:04:3b:b2:1f:67: ba:fb:7f:ed:6d:37:33:7b:9e:55:25:85:48:98:71:32:86:a0: 68:0d:fd:c8:e8:5e:ef:3f:df:c3:78:1e:ec:c9:00:f4:6f:29: e7:61:c6:a3:b0:fc:54:22:b8:46:d5:fa:3f:f5:c1:3e:2c:c2: 0d:a8:db:38:f8:8c:dd:61:6d:78:46:f6:25:38:90:a7:03:21: 97:03:24:a2:5b:73:13:1e:ad:1b:9d:ef:3e:c1:d9:41:e7:22: 15:cc:2c:3d:d4:eb:88:41:84:38:d4:cd:61:ed:a8:70:7a:8e: 32:c0:a4:d8:1e:11:0e:1a:b0:81:2d:5e:b9:ee:10:f3:59:81: ee:9c:94:83:18:03:03:45:c0:1e:40:72:79:ae:c8:29:1b:ca: 09:b5:c6:34:95:c4:69:85:d4:e0:b3:47:e1:0d:de:c5:e9:f8: 13:71:7b:cd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICHmcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0YwRTMxMTAvBgNVBAUTKDhFODM3NzgxMENGOUMyMDRCQjEyNTg0RjNFNUI1RjA1 MDM2ODI0NkYwHhcNMjQxMTAyMTYyMzMzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NTIwNS05NTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4JVsUoq4c0v+g0EXhzNDMV43OB2el+0d2jSoDQ+Ei+hg3rkV160x0nnHBTvp Uk1xulKkSb/7MN0i0t06CXtj1jpI2UQ2R19aPJiPMLdOnoqjWXr69Y3lG4N4HG2d ekY2SHGkaUN3NrqJmsAicMR2yGN7Zjyo6i+eoIy4PPoiYPpPEX7snXJfygUkLINM iHUKBI2bTejJCZPt9JThRVK4rDYCL2DH/d6Y/FsLXl6l/KPOEmz3KN4e0kQyxtKz w6hA6m07UKZYNZceKF0CTT6lqoUoVVkkEo1UFYJfjWDqWSbJbxqJy6e2o2HDAKk9 GhHwHMSSrMHOPD062/+Bkf9dCQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDFRvZOK 5FlPv2c5LVAxTdbOynQvMB8GA1UdIwQYMBaAFI6Dd4EM+cIEuxJYTz5bXwUDaCRv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRjBFMy8yOTE1NzZCRTZC MzQxMUU2OTE4NEI2NkNDNEY5QUUwMi9qb04zZ1F6NXdnUzdFbGhQUGx0ZkJRTm9K RzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pvTjNnUXo1d2dTN0VsaFBQbHRmQlFOb0pHOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0YwRTMvMjkxNTc2QkU2QjM0MTFFNjkxODRCNjZDQzRGOUFFMDIvMzM1MjJGNThD QzJEMTFFREFCRTI1RjcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnwMUwDwQCAAIwCQMHACQAx2AAITANBgkqhkiG9w0BAQsF AAOCAQEAd92nC7qqx2cN+YqYV6tDoMC0KuJXg+mYELQKgnzEvWeMUYB4isbBkRpt 0EZsOg+SCX1Tg/ghMBBPsHc8YNVhPv9VWWr/Ynv6BxV+6IPhAxLkm9Uh9AQ7sh9n uvt/7W03M3ueVSWFSJhxMoagaA39yOhe7z/fw3ge7MkA9G8p52HGo7D8VCK4RtX6 P/XBPizCDajbOPiM3WFteEb2JTiQpwMhlwMkoltzEx6tG53vPsHZQeciFcwsPdTr iEGEONTNYe2ocHqOMsCk2B4RDhqwgS1eue4Q81mB7pyUgxgDA0XAHkByea7IKRvK CbXGNJXEaYXU4LNH4Q3exen4E3F7zQ== -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:08 2024 by rpki-client on console-ams.rpki-client.org