$ rpki-client -vvf rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CA16E952AF6411EB95CDDD18C4F9AE02.roa File: CA16E952AF6411EB95CDDD18C4F9AE02.roa (raw, json) Hash identifier: 2zuRRC9X9QGiy5zsxYozQv/RNV6iHA3e11RJdVWl2NQ= Subject key identifier: 2D:8F:A0:32:D0:48:6A:C4:D9:05:65:B8:5D:D3:13:F4:DB:C1:EC:1B Certificate issuer: /CN=A914C10B/serialNumber=08D3FBA8DDC218CBB3039C03761E6AB7076E4FA2 Certificate serial: 0590 Authority key identifier: 08:D3:FB:A8:DD:C2:18:CB:B3:03:9C:03:76:1E:6A:B7:07:6E:4F:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNP7qN3CGMuzA5wDdh5qtwduT6I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CA16E952AF6411EB95CDDD18C4F9AE02.roa Signing time: Wed 06 Nov 2024 23:01:59 +0000 ROA not before: Wed 06 Nov 2024 23:01:59 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 13984 IP address blocks: 103.102.8.0/22 maxlen: 22 2401:dac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CNP7qN3CGMuzA5wDdh5qtwduT6I.crl rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CNP7qN3CGMuzA5wDdh5qtwduT6I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNP7qN3CGMuzA5wDdh5qtwduT6I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1424 (0x590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914C10B/serialNumber=08D3FBA8DDC218CBB3039C03761E6AB7076E4FA2 Validity Not Before: Nov 6 23:01:59 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bf566-88ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:0a:c1:55:ee:3d:29:47:8d:70:74:90:a5:0f: 91:b7:e6:09:08:73:e8:7e:0a:31:4a:8a:56:8f:c2: a3:8a:4e:c8:9d:62:29:69:07:ac:d4:32:cc:ac:00: 88:a5:47:52:b7:e4:46:54:30:3e:e2:d1:e1:3e:2d: cb:2f:4c:a7:9f:94:06:39:76:3a:ea:1b:3c:40:44: 78:96:a6:61:13:21:30:fa:86:7c:5f:82:8f:1c:15: b7:5b:96:be:4e:07:e8:0d:f0:82:3a:12:a2:ee:31: 06:4c:ca:3e:1f:18:a4:a2:a4:ae:72:8b:14:34:cf: 3d:c7:ef:c9:d2:65:26:74:a7:8a:7b:a3:81:98:3b: 31:cb:27:cb:70:0b:c5:21:34:da:73:6c:6f:96:19: fb:2f:48:83:cf:d4:43:04:2e:c9:84:83:25:b5:fd: 91:3e:95:61:06:52:88:29:48:0c:57:69:5e:fd:5e: c8:3a:60:16:e1:9a:c7:d7:68:db:9b:2f:50:19:9d: 20:f5:3d:77:8f:75:b3:07:cf:bc:ab:43:1c:99:9c: 14:55:8a:d8:1d:75:95:e2:88:08:48:63:ab:51:35: f7:83:8f:e8:52:2c:83:90:bc:3f:20:64:25:5e:e1: d8:86:03:f7:1e:28:9b:a7:12:54:21:be:ff:2a:a9: 3a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:8F:A0:32:D0:48:6A:C4:D9:05:65:B8:5D:D3:13:F4:DB:C1:EC:1B X509v3 Authority Key Identifier: keyid:08:D3:FB:A8:DD:C2:18:CB:B3:03:9C:03:76:1E:6A:B7:07:6E:4F:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CNP7qN3CGMuzA5wDdh5qtwduT6I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNP7qN3CGMuzA5wDdh5qtwduT6I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914C10B/7B6CA122AF6211EB8BA1F714C4F9AE02/CA16E952AF6411EB95CDDD18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.8.0/22 IPv6: 2401:dac0::/32 Signature Algorithm: sha256WithRSAEncryption 5e:5f:03:13:1a:80:e7:9e:23:96:1c:da:7d:6e:b8:e2:2b:78: 70:16:60:12:07:a3:ea:0b:2e:2f:a1:0a:1f:fb:15:11:dc:96: 0c:b9:3c:47:e0:7d:7c:de:fb:42:2a:44:d4:cc:06:5f:71:c0: 54:18:ec:66:05:9b:40:f7:e7:4e:02:8e:6d:a1:7c:ff:2d:96: e9:cf:66:a5:af:c0:72:68:3e:fc:0d:b6:2c:93:aa:56:11:05: f7:06:fa:57:2d:5c:95:52:65:3f:6b:23:e8:4c:05:1e:f7:08: 1d:53:9d:97:d0:92:3f:45:28:bd:e7:62:ea:0f:dc:67:8e:61: 27:84:e0:ed:ba:25:f3:b0:0a:6d:84:4e:3f:fc:0f:7d:59:21: 34:3a:a7:f4:a7:20:64:f5:9e:9f:7d:9d:cb:75:5f:6a:38:ac: e0:14:cc:c1:e4:41:95:a8:61:ea:b5:cb:24:a8:af:cb:2b:4d: cc:22:b9:a5:bb:b3:ff:04:00:9e:7e:d0:86:1c:cf:01:4b:9a: 0e:f9:0c:e5:eb:b2:1a:ed:28:2e:16:2b:85:11:0f:92:cb:0d: 27:eb:ba:90:99:cd:34:5f:f5:14:5d:7f:a7:c5:c9:ef:e6:66: c5:84:84:88:9e:a7:e2:7c:34:ac:b9:9f:be:45:9d:fe:ea:8f: 03:60:7c:bc -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBZAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEMxMEIxMTAvBgNVBAUTKDA4RDNGQkE4RERDMjE4Q0JCMzAzOUMwMzc2MUU2QUI3 MDc2RTRGQTIwHhcNMjQxMTA2MjMwMTU5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZjU2Ni04OGVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygrBVe49KUeNcHSQpQ+Rt+YJCHPofgoxSopWj8Kjik7InWIpaQes1DLMrACI pUdSt+RGVDA+4tHhPi3LL0ynn5QGOXY66hs8QER4lqZhEyEw+oZ8X4KPHBW3W5a+ TgfoDfCCOhKi7jEGTMo+HxikoqSucosUNM89x+/J0mUmdKeKe6OBmDsxyyfLcAvF ITTac2xvlhn7L0iDz9RDBC7JhIMltf2RPpVhBlKIKUgMV2le/V7IOmAW4ZrH12jb my9QGZ0g9T13j3WzB8+8q0McmZwUVYrYHXWV4ogISGOrUTX3g4/oUiyDkLw/IGQl XuHYhgP3HiibpxJUIb7/Kqk69QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFC2PoDLQ SGrE2QVluF3TE/TbwewbMB8GA1UdIwQYMBaAFAjT+6jdwhjLswOcA3YearcHbk+i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QzEwQi83QjZDQTEyMkFG NjIxMUVCOEJBMUY3MTRDNEY5QUUwMi9DTlA3cU4zQ0dNdXpBNXdEZGg1cXR3ZHVU NkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOUDdxTjNDR011ekE1d0RkaDVxdHdkdVQ2SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEMxMEIvN0I2Q0ExMjJBRjYyMTFFQjhCQTFGNzE0QzRGOUFFMDIvQ0ExNkU5NTJB RjY0MTFFQjk1Q0RERDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnZggwDQQCAAIwBwMFACQB2sAwDQYJKoZIhvcNAQELBQAD ggEBAF5fAxMagOeeI5Yc2n1uuOIreHAWYBIHo+oLLi+hCh/7FRHclgy5PEfgfXze +0IqRNTMBl9xwFQY7GYFm0D3504Cjm2hfP8tlunPZqWvwHJoPvwNtiyTqlYRBfcG +lctXJVSZT9rI+hMBR73CB1TnZfQkj9FKL3nYuoP3GeOYSeE4O26JfOwCm2ETj/8 D31ZITQ6p/SnIGT1np99nct1X2o4rOAUzMHkQZWoYeq1yySor8srTcwiuaW7s/8E AJ5+0IYczwFLmg75DOXrshrtKC4WK4URD5LLDSfrupCZzTRf9RRdf6fFye/mZsWE hIiep+J8NKy5n75Fnf7qjwNgfLw= -----END CERTIFICATE-----Generated at Sun Nov 24 23:58:45 2024 by rpki-client on console-fra.rpki-client.org