$ rpki-client -vvf rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/909B1B4AF08211EA87323C3AC4F9AE02.roa File: 909B1B4AF08211EA87323C3AC4F9AE02.roa (raw, json) Hash identifier: ni+BFBGTsoquKCF4Ud4eIaIx5LLQLvHLrvR1V5BDJaE= Subject key identifier: 18:FE:AB:BC:71:07:8B:E9:93:30:DD:8F:A0:C0:4E:BC:EF:F9:A9:56 Certificate issuer: /CN=A915CC16/serialNumber=587E7896025003ACD0C29B7F3F29A0708F6B286A Certificate serial: 0735 Authority key identifier: 58:7E:78:96:02:50:03:AC:D0:C2:9B:7F:3F:29:A0:70:8F:6B:28:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WH54lgJQA6zQwpt_PymgcI9rKGo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/909B1B4AF08211EA87323C3AC4F9AE02.roa Signing time: Mon 10 Jun 2024 23:01:14 +0000 ROA not before: Mon 10 Jun 2024 23:01:14 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 135092 IP address blocks: 36.255.52.0/22 maxlen: 24 103.209.20.0/22 maxlen: 24 2400:bce0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/WH54lgJQA6zQwpt_PymgcI9rKGo.crl rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/WH54lgJQA6zQwpt_PymgcI9rKGo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WH54lgJQA6zQwpt_PymgcI9rKGo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1845 (0x735) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915CC16/serialNumber=587E7896025003ACD0C29B7F3F29A0708F6B286A Validity Not Before: Jun 10 23:01:14 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=666785ba-7500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:52:9a:0f:b6:19:f8:22:d7:a0:c4:61:82:f3: 60:d3:ac:fe:7e:e6:9f:39:a5:f0:17:54:86:83:5b: 10:42:a7:73:c5:79:9d:34:dd:51:7b:00:05:54:9e: b2:5b:ef:50:0e:e3:8b:82:3d:07:14:19:99:bd:a9: a9:fc:c2:50:7c:bd:ef:28:a0:13:56:a6:00:79:21: 6a:fc:d9:e0:cc:7c:10:51:7b:22:5e:b7:de:07:dc: 84:33:a8:32:6b:aa:90:a8:b8:45:12:c8:37:26:77: f8:45:7c:03:39:0a:c5:b5:b1:58:a0:77:6f:7e:c2: 81:d1:f6:55:34:fc:f7:9c:67:ff:4e:c4:73:ba:13: 30:86:9c:d8:10:c8:5a:c7:69:bc:6e:af:2e:98:34: 05:f1:f0:98:7d:1a:58:2e:5a:1f:9d:72:b8:c8:8b: 87:73:ee:20:3d:cc:f2:37:97:f2:35:9a:65:57:72: 03:07:c7:c1:31:28:44:d1:91:5a:31:13:6e:3c:f0: fa:d2:bc:6d:d6:6f:10:76:d8:9c:70:75:34:d0:3a: 14:71:9d:a6:bc:9b:d7:ca:eb:76:83:5b:89:15:01: 37:c0:10:dd:fa:63:6d:6b:df:e4:54:81:52:74:24: e1:dd:7a:ca:76:58:7d:e5:21:94:76:5b:87:9a:d8: 1e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:FE:AB:BC:71:07:8B:E9:93:30:DD:8F:A0:C0:4E:BC:EF:F9:A9:56 X509v3 Authority Key Identifier: keyid:58:7E:78:96:02:50:03:AC:D0:C2:9B:7F:3F:29:A0:70:8F:6B:28:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/WH54lgJQA6zQwpt_PymgcI9rKGo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WH54lgJQA6zQwpt_PymgcI9rKGo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915CC16/24D39D62F08011EAB5BB1037C4F9AE02/909B1B4AF08211EA87323C3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.52.0/22 103.209.20.0/22 IPv6: 2400:bce0::/32 Signature Algorithm: sha256WithRSAEncryption ba:ab:04:41:fb:90:b1:a1:fc:3e:92:33:e1:62:c6:7f:60:d5: 68:4b:08:55:4e:46:ad:e9:3e:f1:74:e5:ea:6b:11:e0:1f:39: 29:23:f8:6a:09:22:a2:14:b6:40:d8:e6:4c:e1:39:bf:c8:3c: 3e:f2:7d:59:c1:d9:d0:ca:cf:ef:e6:3b:2d:35:71:bd:3f:24: 45:5d:6d:61:d2:a7:ba:81:43:df:69:43:96:bb:70:15:6b:13: 2c:18:56:8c:08:b1:e8:eb:8a:e7:d0:0a:59:67:4a:1d:53:05: b8:23:e9:bd:38:56:77:e7:71:2c:8e:0c:1e:f7:80:d4:d7:46: c3:78:16:52:12:ff:e6:c3:8d:fe:15:35:37:8a:dd:f9:9f:4a: c2:b9:e6:be:e0:d5:01:30:31:e5:30:c0:bd:f4:d9:da:ad:a1: 67:9a:dc:55:bd:72:88:45:35:73:9c:bf:7a:3f:7c:9d:54:86: 95:02:1d:f8:99:93:82:1a:44:10:c6:53:e2:87:78:01:54:79: ac:f0:44:9d:ec:5e:f0:d7:21:9e:e2:e1:e8:3c:cc:fe:0b:75: 61:b0:3f:e1:d9:c2:3e:1c:03:dd:16:41:dd:1c:8e:ef:e5:1d: b3:09:6e:ee:a0:2b:db:35:fa:a2:3f:eb:68:12:80:cd:a4:83: 7c:26:8e:50 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBzUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUNDMTYxMTAvBgNVBAUTKDU4N0U3ODk2MDI1MDAzQUNEMEMyOUI3RjNGMjlBMDcw OEY2QjI4NkEwHhcNMjQwNjEwMjMwMTE0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjY3ODViYS03NTAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA51KaD7YZ+CLXoMRhgvNg06z+fuafOaXwF1SGg1sQQqdzxXmdNN1RewAFVJ6y W+9QDuOLgj0HFBmZvamp/MJQfL3vKKATVqYAeSFq/NngzHwQUXsiXrfeB9yEM6gy a6qQqLhFEsg3Jnf4RXwDOQrFtbFYoHdvfsKB0fZVNPz3nGf/TsRzuhMwhpzYEMha x2m8bq8umDQF8fCYfRpYLlofnXK4yIuHc+4gPczyN5fyNZplV3IDB8fBMShE0ZFa MRNuPPD60rxt1m8QdticcHU00DoUcZ2mvJvXyut2g1uJFQE3wBDd+mNta9/kVIFS dCTh3XrKdlh95SGUdluHmtge1QIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBj+q7xx B4vpkzDdj6DATrzv+alWMB8GA1UdIwQYMBaAFFh+eJYCUAOs0MKbfz8poHCPayhq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Q0MxNi8yNEQzOUQ2MkYw ODAxMUVBQjVCQjEwMzdDNEY5QUUwMi9XSDU0bGdKUUE2elF3cHRfUHltZ2NJOXJL R28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dINTRsZ0pRQTZ6UXdwdF9QeW1nY0k5cktHby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUNDMTYvMjREMzlENjJGMDgwMTFFQUI1QkIxMDM3QzRGOUFFMDIvOTA5QjFCNEFG MDgyMTFFQTg3MzIzQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIk/zQDBAJn0RQwDQQCAAIwBwMFACQAvOAwDQYJKoZIhvcN AQELBQADggEBALqrBEH7kLGh/D6SM+Fixn9g1WhLCFVORq3pPvF05eprEeAfOSkj +GoJIqIUtkDY5kzhOb/IPD7yfVnB2dDKz+/mOy01cb0/JEVdbWHSp7qBQ99pQ5a7 cBVrEywYVowIsejriufQCllnSh1TBbgj6b04VnfncSyODB73gNTXRsN4FlIS/+bD jf4VNTeK3fmfSsK55r7g1QEwMeUwwL302dqtoWea3FW9cohFNXOcv3o/fJ1UhpUC HfiZk4IaRBDGU+KHeAFUeazwRJ3sXvDXIZ7i4eg8zP4LdWGwP+HZwj4cA90WQd0c ju/lHbMJbu6gK9s1+qI/62gSgM2kg3wmjlA= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:28 2024 by rpki-client on console-ams.rpki-client.org