$ rpki-client -vvf rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/8B2E3BA270BD11ED970C535FC4F9AE02.roa File: 8B2E3BA270BD11ED970C535FC4F9AE02.roa (raw, json) Hash identifier: zF4nygNChVvUs9Ge82/WKpjyi9YwONpMsx8hvCjTDOY= Subject key identifier: 16:39:A1:96:8D:66:17:A4:2F:4D:1D:7B:01:CF:49:B6:64:F1:E1:37 Certificate issuer: /CN=A914F22A/serialNumber=56AF1CD0B4E07D000C64AB016C33F786A0DD90FA Certificate serial: 12D4 Authority key identifier: 56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/8B2E3BA270BD11ED970C535FC4F9AE02.roa Signing time: Wed 24 Jul 2024 17:34:52 +0000 ROA not before: Wed 24 Jul 2024 17:34:52 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135604 IP address blocks: 103.68.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 27 Feb 2025 17:27:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4820 (0x12d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914F22A Validity Not Before: Jul 24 17:34:52 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a13b3c-0f87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:fd:46:ea:6f:79:69:d8:5e:15:c5:fb:64:ea: 2d:59:c5:19:20:7c:6f:55:07:2e:5d:11:65:4e:7b: 04:40:f6:3a:c6:91:2d:18:c0:ec:aa:f4:ef:7e:ff: 4b:1c:13:5c:9b:97:f2:a7:82:f6:f7:58:53:5e:54: 02:27:12:c5:e3:17:3d:87:5d:a8:55:2c:39:43:39: 69:32:ee:3b:ab:d1:22:ad:c3:24:84:b7:66:73:01: bc:23:ba:17:cd:d4:04:18:f8:dc:17:d7:52:37:77: 87:42:d8:e8:b3:31:f5:9b:bd:95:f4:4d:d3:f4:50: 17:1e:8a:70:f2:d7:b1:32:4f:1a:b6:c2:21:f9:27: 14:b5:87:93:9c:20:a5:4a:91:a2:b4:12:73:69:8d: a4:2d:4e:14:e0:22:fc:0b:61:10:50:2d:ef:7e:02: cd:94:fd:4c:69:60:bb:e8:71:5b:d4:ca:fc:ab:c0: c9:c3:5f:95:dd:70:aa:3e:6c:4e:ea:d4:a6:27:8e: e9:7c:c5:53:6d:d5:0b:a2:7e:74:7d:72:40:ad:b6: ae:ef:e4:d1:40:47:48:a4:ae:c3:34:02:a2:a5:18: ea:b6:9d:fb:7b:c2:a5:2a:2c:62:03:f1:ae:74:ea: bf:a5:02:7e:ec:87:fd:5c:ee:a1:b7:94:6c:98:9c: d0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:39:A1:96:8D:66:17:A4:2F:4D:1D:7B:01:CF:49:B6:64:F1:E1:37 X509v3 Authority Key Identifier: keyid:56:AF:1C:D0:B4:E0:7D:00:0C:64:AB:01:6C:33:F7:86:A0:DD:90:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vq8c0LTgfQAMZKsBbDP3hqDdkPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914F22A/7EEC1E4C9CD011E8B1612B7DC4F9AE02/8B2E3BA270BD11ED970C535FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.68.4.0/22 Signature Algorithm: sha256WithRSAEncryption 06:1b:cd:b7:17:b3:60:05:d4:a3:73:9e:68:62:a8:73:17:75: 90:69:f6:a8:10:56:0a:16:17:3a:6d:81:8e:40:eb:1b:ed:8d: 50:5a:f5:b0:33:af:21:07:cb:23:ea:fb:2f:f8:92:6a:7a:d4: c3:65:e3:c0:fb:bf:c7:c4:fe:52:cd:b3:a9:b9:87:57:f3:50: 47:9d:69:cf:68:ad:8a:b1:97:31:3e:d5:f8:16:9b:d4:be:5f: dc:ac:2b:6c:9a:c1:e2:55:3a:58:31:4b:aa:47:71:c2:ca:49: 68:6d:d1:c3:78:1d:65:b9:fa:ef:cd:0d:1d:7f:ee:04:63:ba: 15:6a:9e:18:50:f1:83:b2:82:2e:3f:32:5c:be:81:d8:98:a6: d0:b9:37:4b:bc:c8:c5:1a:6a:b6:93:91:00:83:33:82:fb:c5: b5:87:44:56:5f:43:47:5b:38:4a:08:89:ca:c0:65:1a:76:a5: 05:ff:d4:89:6f:1a:3f:46:9f:b8:cd:12:49:17:46:d2:da:6a: 8c:57:48:8b:cb:4e:c9:a4:9b:e2:91:bd:cf:bd:5a:ef:21:1c: 37:b9:00:23:75:18:d6:c0:a2:3a:f3:23:fe:d6:b7:0b:4c:5d: 5d:67:ad:dd:de:7b:6d:79:77:48:45:fc:f8:bb:9d:ce:e6:40: eb:4a:e8:1c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEtQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEYyMkExMTAvBgNVBAUTKDU2QUYxQ0QwQjRFMDdEMDAwQzY0QUIwMTZDMzNGNzg2 QTBERDkwRkEwHhcNMjQwNzI0MTczNDUyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmExM2IzYy0wZjg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/1G6m95adheFcX7ZOotWcUZIHxvVQcuXRFlTnsEQPY6xpEtGMDsqvTvfv9L HBNcm5fyp4L291hTXlQCJxLF4xc9h12oVSw5QzlpMu47q9EircMkhLdmcwG8I7oX zdQEGPjcF9dSN3eHQtjoszH1m72V9E3T9FAXHopw8texMk8atsIh+ScUtYeTnCCl SpGitBJzaY2kLU4U4CL8C2EQUC3vfgLNlP1MaWC76HFb1Mr8q8DJw1+V3XCqPmxO 6tSmJ47pfMVTbdULon50fXJArbau7+TRQEdIpK7DNAKipRjqtp37e8KlKixiA/Gu dOq/pQJ+7If9XO6ht5RsmJzQOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBY5oZaN ZhekL00dewHPSbZk8eE3MB8GA1UdIwQYMBaAFFavHNC04H0ADGSrAWwz94ag3ZD6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RjIyQS83RUVDMUU0QzlD RDAxMUU4QjE2MTJCN0RDNEY5QUUwMi9WcThjMExUZ2ZRQU1aS3NCYkRQM2hxRGRr UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZxOGMwTFRnZlFBTVpLc0JiRFAzaHFEZGtQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEYyMkEvN0VFQzFFNEM5Q0QwMTFFOEIxNjEyQjdEQzRGOUFFMDIvOEIyRTNCQTI3 MEJEMTFFRDk3MEM1MzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnRAQwDQYJKoZIhvcNAQELBQADggEBAAYbzbcXs2AF1KNz nmhiqHMXdZBp9qgQVgoWFzptgY5A6xvtjVBa9bAzryEHyyPq+y/4kmp61MNl48D7 v8fE/lLNs6m5h1fzUEedac9orYqxlzE+1fgWm9S+X9ysK2yaweJVOlgxS6pHccLK SWht0cN4HWW5+u/NDR1/7gRjuhVqnhhQ8YOygi4/Mly+gdiYptC5N0u8yMUaaraT kQCDM4L7xbWHRFZfQ0dbOEoIicrAZRp2pQX/1IlvGj9Gn7jNEkkXRtLaaoxXSIvL Tsmkm+KRvc+9Wu8hHDe5ACN1GNbAojrzI/7WtwtMXV1nrd3ee215d0hF/Pi7nc7m QOtK6Bw= -----END CERTIFICATE-----Generated at Fri Feb 21 12:57:09 2025 by rpki-client