$ rpki-client -vvf rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/5D35DEC8B13411EDB6BEF584C4F9AE02.roa File: 5D35DEC8B13411EDB6BEF584C4F9AE02.roa (raw, json) Hash identifier: ZhZoS47eW55Sb0A3HFtpa7Yi+4nkSuzaZKzeUrzoAng= Subject key identifier: 86:08:DD:77:F5:22:B6:04:E5:CB:FA:DF:38:4A:C4:FB:B0:FD:0A:32 Certificate issuer: /CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Certificate serial: 013B Authority key identifier: 8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/5D35DEC8B13411EDB6BEF584C4F9AE02.roa Signing time: Wed 23 Oct 2024 03:37:15 +0000 ROA not before: Wed 23 Oct 2024 03:37:15 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 18187 IP address blocks: 103.73.68.0/22 maxlen: 22 122.49.208.0/20 maxlen: 20 203.82.32.0/20 maxlen: 20 216.250.100.0/22 maxlen: 22 2401:8e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:32:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E1A8/serialNumber=8BECC3638070A6B79F6DCE22A0E65BB21E0D7729 Validity Not Before: Oct 23 03:37:15 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67186f6b-0aa9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:9a:76:82:74:7d:3c:6a:84:76:6c:8a:a1:46: 9a:25:74:de:38:d8:ba:ec:db:b3:46:b4:09:f8:4b: 00:3a:9d:4b:f7:a8:81:ae:4c:95:ff:bc:43:59:99: 89:3a:36:ae:1c:21:b9:85:0d:52:ee:e5:f5:2e:3f: 63:94:bf:a8:c5:47:6f:18:8d:83:75:c7:6a:b3:bf: 47:53:a1:27:e7:90:70:09:8c:a0:05:01:65:fa:25: a0:a8:2a:8e:fb:53:bf:62:e0:46:56:8f:9a:f1:9c: b4:b6:04:4e:1f:94:95:de:3d:0e:3d:c7:85:a3:17: cb:3e:ac:5a:92:d0:f0:79:88:e6:e5:20:a6:4c:32: 72:e3:04:b7:bb:fb:89:b1:38:f7:dc:46:a9:5c:95: f3:cd:42:56:fd:10:df:4c:8e:3a:ab:fc:98:d5:6b: d2:fb:82:36:ea:ac:71:10:80:a8:89:05:89:a5:2b: 87:f0:d2:e6:e4:e2:06:43:2d:5d:17:8a:e4:b2:cb: 14:59:3a:24:27:0d:04:11:11:9f:50:0e:41:31:4c: c7:35:3b:3d:3d:0d:80:7c:c1:cb:21:af:22:bb:ce: 63:17:95:50:42:b7:7b:86:da:8f:2d:6c:3b:8e:d6: d5:b1:73:8e:28:a8:1a:c9:96:aa:51:cf:5e:39:b1: 16:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:08:DD:77:F5:22:B6:04:E5:CB:FA:DF:38:4A:C4:FB:B0:FD:0A:32 X509v3 Authority Key Identifier: keyid:8B:EC:C3:63:80:70:A6:B7:9F:6D:CE:22:A0:E6:5B:B2:1E:0D:77:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/i-zDY4Bwprefbc4ioOZbsh4Ndyk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i-zDY4Bwprefbc4ioOZbsh4Ndyk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E1A8/A40A724AB13011ED847D4981C4F9AE02/5D35DEC8B13411EDB6BEF584C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.73.68.0/22 122.49.208.0/20 203.82.32.0/20 216.250.100.0/22 IPv6: 2401:8e80::/32 Signature Algorithm: sha256WithRSAEncryption ad:71:ab:2b:f4:17:ae:61:77:25:c7:59:b9:24:91:2c:cd:ed: 51:e2:13:db:20:20:cc:3f:06:92:a4:0a:1f:77:e2:a2:c0:51: 27:35:f9:32:99:e6:53:a4:09:0e:e0:20:9b:02:d7:bf:37:3f: b5:70:b7:e4:ca:98:c0:e1:7b:64:b9:6e:1c:e7:99:9e:d4:a9: 66:09:82:2a:b2:75:3b:fe:f0:09:0d:36:73:45:99:47:2c:c8: d8:b1:81:fc:19:28:2b:b6:8c:ef:1e:1b:09:ce:d0:a9:e1:6e: ab:5a:cf:0e:eb:4c:04:a0:30:df:4e:0b:71:15:9f:ae:9b:23: ef:90:27:36:20:76:dc:56:9e:59:84:3d:7a:5e:0e:b2:7d:41: 31:1d:c4:0e:9d:fd:cc:4e:cb:27:d9:c5:8e:89:1d:80:18:16: e5:72:53:78:df:22:25:50:50:1f:05:28:24:97:da:07:82:ae: 0f:16:8a:72:f8:18:62:c4:0a:6b:ed:da:8e:5e:ef:25:11:e5: 35:ac:93:af:98:b4:42:24:45:82:38:0e:40:bd:01:6a:b7:80: 88:d9:64:22:66:14:fe:ad:d9:4f:e6:69:fe:b4:3d:9f:cd:ed: c0:7c:4b:18:7e:16:6d:8b:ed:93:11:ea:2f:a6:8c:0b:3e:8f: ed:cd:16:e0 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEUxQTgxMTAvBgNVBAUTKDhCRUNDMzYzODA3MEE2Qjc5RjZEQ0UyMkEwRTY1QkIy MUUwRDc3MjkwHhcNMjQxMDIzMDMzNzE1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4NmY2Yi0wYWE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw5p2gnR9PGqEdmyKoUaaJXTeONi67NuzRrQJ+EsAOp1L96iBrkyV/7xDWZmJ OjauHCG5hQ1S7uX1Lj9jlL+oxUdvGI2Ddcdqs79HU6En55BwCYygBQFl+iWgqCqO +1O/YuBGVo+a8Zy0tgROH5SV3j0OPceFoxfLPqxaktDweYjm5SCmTDJy4wS3u/uJ sTj33EapXJXzzUJW/RDfTI46q/yY1WvS+4I26qxxEICoiQWJpSuH8NLm5OIGQy1d F4rksssUWTokJw0EERGfUA5BMUzHNTs9PQ2AfMHLIa8iu85jF5VQQrd7htqPLWw7 jtbVsXOOKKgayZaqUc9eObEWEwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFIYI3Xf1 IrYE5cv63zhKxPuw/QoyMB8GA1UdIwQYMBaAFIvsw2OAcKa3n23OIqDmW7IeDXcp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTFBOC9BNDBBNzI0QUIx MzAxMUVEODQ3RDQ5ODFDNEY5QUUwMi9pLXpEWTRCd3ByZWZiYzRpb09aYnNoNE5k eWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ktekRZNEJ3cHJlZmJjNGlvT1pic2g0TmR5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEUxQTgvQTQwQTcyNEFCMTMwMTFFRDg0N0Q0OTgxQzRGOUFFMDIvNUQzNURFQzhC MTM0MTFFREI2QkVGNTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAJnSUQDBAR6MdADBATLUiADBALY+mQwDQQCAAIwBwMFACQB joAwDQYJKoZIhvcNAQELBQADggEBAK1xqyv0F65hdyXHWbkkkSzN7VHiE9sgIMw/ BpKkCh934qLAUSc1+TKZ5lOkCQ7gIJsC1783P7Vwt+TKmMDhe2S5bhznmZ7UqWYJ giqydTv+8AkNNnNFmUcsyNixgfwZKCu2jO8eGwnO0Knhbqtazw7rTASgMN9OC3EV n66bI++QJzYgdtxWnlmEPXpeDrJ9QTEdxA6d/cxOyyfZxY6JHYAYFuVyU3jfIiVQ UB8FKCSX2geCrg8WinL4GGLECmvt2o5e7yUR5TWsk6+YtEIkRYI4DkC9AWq3gIjZ ZCJmFP6t2U/maf60PZ/N7cB8Sxh+Fm2L7ZMR6i+mjAs+j+3NFuA= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:39 2024 by rpki-client on console-ams.rpki-client.org