$ rpki-client -vvf rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/909B1B4AF08211EA87323C3AC4F9AE02.roa File: 909B1B4AF08211EA87323C3AC4F9AE02.roa (raw, json) Hash identifier: Vl48E2A8JFjSptMCx9DeWZuXsFkH1UyVDV9qvLb1iC8= Subject key identifier: 93:3F:07:F6:63:C7:E0:46:C6:9C:4A:37:A2:30:65:CD:B4:AA:55:54 Certificate issuer: /CN=A915CC16/serialNumber=587E7896025003ACD0C29B7F3F29A0708F6B286A Certificate serial: 071E Authority key identifier: 58:7E:78:96:02:50:03:AC:D0:C2:9B:7F:3F:29:A0:70:8F:6B:28:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WH54lgJQA6zQwpt_PymgcI9rKGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/909B1B4AF08211EA87323C3AC4F9AE02.roa Signing time: Tue 30 Apr 2024 23:01:56 +0000 ROA not before: Tue 30 Apr 2024 23:01:56 +0000 ROA not after: Thu 29 Aug 2024 00:00:00 +0000 asID: 135092 IP address blocks: 36.255.52.0/22 maxlen: 24 103.209.20.0/22 maxlen: 24 2400:bce0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/WH54lgJQA6zQwpt_PymgcI9rKGo.crl rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/WH54lgJQA6zQwpt_PymgcI9rKGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WH54lgJQA6zQwpt_PymgcI9rKGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1822 (0x71e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CC16/serialNumber=587E7896025003ACD0C29B7F3F29A0708F6B286A Validity Not Before: Apr 30 23:01:56 2024 GMT Not After : Aug 29 00:00:00 2024 GMT Subject: CN=66317864-3e64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ca:90:9c:45:ae:34:7f:78:b8:62:8c:31:b2: d2:39:45:31:ec:aa:91:f0:33:75:25:5f:b8:b4:c0: 69:68:5f:9d:4b:e7:b0:e5:b1:9e:67:33:f9:38:8e: 7d:07:ef:3b:83:f0:0d:91:a8:9c:de:1e:b0:72:b1: 3a:ab:77:8b:83:4b:85:13:2d:f6:32:f9:dd:13:f4: cb:28:b4:56:e4:72:ed:68:a3:7c:e6:31:49:11:b8: 54:7d:1d:09:72:f3:5b:d0:2f:17:29:2d:ff:c3:4a: 6b:59:c4:0e:f4:1f:48:e2:6c:d1:21:b7:eb:54:61: 02:30:7c:da:22:b7:67:b8:13:2e:c0:ca:78:34:1d: 8f:b7:d3:84:56:c4:6b:2e:90:02:88:6f:43:1b:06: 93:ba:cb:b4:1a:d9:46:94:1a:c4:1e:47:82:94:ae: d0:42:f1:9b:3a:02:20:ff:50:c7:eb:97:21:b2:00: 3e:81:c4:26:a4:90:df:13:91:c4:aa:d5:98:54:63: 0f:ab:05:0f:aa:af:88:05:63:5f:f3:72:81:8c:b5: b0:be:ff:2b:a7:d0:13:ee:a6:90:68:09:ff:00:63: 25:47:20:90:dc:fc:ff:0f:de:e7:30:ef:42:cf:e0: 56:9d:63:03:50:50:97:5f:50:09:be:c5:da:68:20: 7e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:3F:07:F6:63:C7:E0:46:C6:9C:4A:37:A2:30:65:CD:B4:AA:55:54 X509v3 Authority Key Identifier: keyid:58:7E:78:96:02:50:03:AC:D0:C2:9B:7F:3F:29:A0:70:8F:6B:28:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/WH54lgJQA6zQwpt_PymgcI9rKGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WH54lgJQA6zQwpt_PymgcI9rKGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/909B1B4AF08211EA87323C3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.52.0/22 103.209.20.0/22 IPv6: 2400:bce0::/32 Signature Algorithm: sha256WithRSAEncryption 4d:e1:6b:48:42:35:bb:23:0c:a9:f3:32:a4:0d:df:e0:55:3b: 4f:9a:b1:c3:59:b9:85:ad:5d:35:c3:6f:59:fa:57:f2:ba:b1: 10:b3:52:ba:26:c2:a8:c4:f5:4a:e7:44:3e:6e:91:f4:ec:40: 9e:30:2c:6d:f3:37:36:43:d1:a7:04:ff:9a:81:7b:f9:85:eb: 8c:03:07:05:84:d2:fe:f4:2b:87:ed:8b:3b:9e:91:12:77:d9: 8e:70:be:be:f2:34:9c:a5:94:7e:36:46:19:24:44:15:72:37: 62:6d:4d:06:8b:c9:6c:f0:8b:89:19:a6:38:95:81:a8:22:24: a7:b2:64:a1:5c:5a:b5:bd:2d:d3:b9:4c:6f:40:06:96:fa:75: 77:dc:ea:53:93:64:a8:a9:c8:5a:e8:34:13:8b:83:7f:47:c2: 61:42:0a:e9:00:53:20:95:68:8c:a8:72:3f:1b:be:6e:81:4e: c8:38:8c:5f:a9:e2:bd:3b:00:6f:2f:21:3e:23:87:ab:37:08: 69:d0:49:bf:16:11:b9:fb:ab:63:de:1a:06:a1:ab:68:2f:2d: 7c:ad:cc:c8:04:13:7a:c6:c1:21:6e:c4:b7:cf:2d:f4:5e:b2: fd:6e:7a:81:5d:52:95:a7:ad:37:8c:08:a4:b1:67:d9:cc:6b: 16:99:81:bc -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDMTYxMTAvBgNVBAUTKDU4N0U3ODk2MDI1MDAzQUNEMEMyOUI3RjNGMjlBMDcw OEY2QjI4NkEwHhcNMjQwNDMwMjMwMTU2WhcNMjQwODI5MDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxNzg2NC0zZTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvsqQnEWuNH94uGKMMbLSOUUx7KqR8DN1JV+4tMBpaF+dS+ew5bGeZzP5OI59 B+87g/ANkaic3h6wcrE6q3eLg0uFEy32MvndE/TLKLRW5HLtaKN85jFJEbhUfR0J cvNb0C8XKS3/w0prWcQO9B9I4mzRIbfrVGECMHzaIrdnuBMuwMp4NB2Pt9OEVsRr LpACiG9DGwaTusu0GtlGlBrEHkeClK7QQvGbOgIg/1DH65chsgA+gcQmpJDfE5HE qtWYVGMPqwUPqq+IBWNf83KBjLWwvv8rp9AT7qaQaAn/AGMlRyCQ3Pz/D97nMO9C z+BWnWMDUFCXX1AJvsXaaCB+ZQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJM/B/Zj x+BGxpxKN6IwZc20qlVUMB8GA1UdIwQYMBaAFFh+eJYCUAOs0MKbfz8poHCPayhq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0MxNi8yNEQzOUQ2MkYw ODAxMUVBQjVCQjEwMzdDNEY5QUUwMi9XSDU0bGdKUUE2elF3cHRfUHltZ2NJOXJL R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dINTRsZ0pRQTZ6UXdwdF9QeW1nY0k5cktHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUNDMTYvMjREMzlENjJGMDgwMTFFQUI1QkIxMDM3QzRGOUFFMDIvOTA5QjFCNEFG MDgyMTFFQTg3MzIzQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIk/zQDBAJn0RQwDQQCAAIwBwMFACQAvOAwDQYJKoZIhvcN AQELBQADggEBAE3ha0hCNbsjDKnzMqQN3+BVO0+ascNZuYWtXTXDb1n6V/K6sRCz UromwqjE9UrnRD5ukfTsQJ4wLG3zNzZD0acE/5qBe/mF64wDBwWE0v70K4ftizue kRJ32Y5wvr7yNJyllH42RhkkRBVyN2JtTQaLyWzwi4kZpjiVgagiJKeyZKFcWrW9 LdO5TG9ABpb6dXfc6lOTZKipyFroNBOLg39HwmFCCukAUyCVaIyocj8bvm6BTsg4 jF+p4r07AG8vIT4jh6s3CGnQSb8WEbn7q2PeGgahq2gvLXytzMgEE3rGwSFuxLfP LfResv1ueoFdUpWnrTeMCKSxZ9nMaxaZgbw= -----END CERTIFICATE-----Generated at Thu May 16 23:39:14 2024 by rpki-client on console-ams.rpki-client.org