$ rpki-client -vvf rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa File: A41A01F2812311ED9367FC43C4F9AE02.roa (raw, json) Hash identifier: IA6dm4GnRqU6C7YBOSVjXrPk6V0uP7eD4A1mi7q0GRM= Subject key identifier: E3:EB:E0:10:37:CA:0B:6B:67:9B:25:EC:A1:68:F7:2C:E9:B5:BC:29 Certificate issuer: /CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Certificate serial: 1814 Authority key identifier: 61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa Signing time: Fri 12 Jan 2024 17:04:48 +0000 ROA not before: Fri 12 Jan 2024 17:04:48 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 63949 IP address blocks: 45.118.132.0/22 maxlen: 24 103.3.60.0/22 maxlen: 24 103.29.68.0/22 maxlen: 24 2400:8900::/29 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:27:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6164 (0x1814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D03A/serialNumber=615ED84C44E657F7095E0212AFEA052C542A0D91 Validity Not Before: Jan 12 17:04:48 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65a17130-d948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:66:d8:da:05:48:4c:48:61:04:b2:3f:a9:09: cd:8a:7a:c1:4a:c0:fa:b5:96:84:49:aa:4b:10:39: 81:19:20:c6:3d:dc:97:81:5a:59:6a:df:31:14:39: 75:53:b3:f3:32:f8:5e:5c:5e:90:7d:c5:26:35:10: 13:d9:ae:b6:e7:77:db:f6:14:54:42:09:3c:21:72: db:5b:20:0e:a4:6a:63:ed:73:5a:1b:5b:cd:f5:d2: a1:04:ad:6d:36:0c:fc:c1:f2:99:7f:11:ad:55:69: 38:b1:6a:b8:d8:a0:4f:33:0b:37:eb:a8:fd:73:40: 1c:d6:85:16:80:03:73:43:3d:01:30:bf:d4:80:04: 6c:10:3c:e0:4f:75:fc:e5:d4:10:0b:28:26:64:ce: 91:33:79:83:88:03:b1:8c:6c:3f:d2:9f:8d:87:79: 4e:b0:98:e3:05:a0:f5:be:61:60:20:e4:ba:80:90: ca:f3:75:29:e8:8d:39:4e:0f:ce:8d:31:c6:00:b2: 20:0c:a7:d9:78:62:f6:44:11:a0:40:46:52:47:fd: 18:9b:36:74:40:cf:8a:26:65:06:dd:81:d9:eb:22: 10:63:9d:c7:39:f6:25:75:27:0b:c8:37:cb:29:b3: 77:f2:66:20:97:20:9c:b6:3e:ec:36:32:fa:65:7c: 80:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:EB:E0:10:37:CA:0B:6B:67:9B:25:EC:A1:68:F7:2C:E9:B5:BC:29 X509v3 Authority Key Identifier: keyid:61:5E:D8:4C:44:E6:57:F7:09:5E:02:12:AF:EA:05:2C:54:2A:0D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/YV7YTETmV_cJXgISr-oFLFQqDZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YV7YTETmV_cJXgISr-oFLFQqDZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D03A/1B647710924611E79AAEBE10C4F9AE02/A41A01F2812311ED9367FC43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.118.132.0/22 103.3.60.0/22 103.29.68.0/22 IPv6: 2400:8900::/29 Signature Algorithm: sha256WithRSAEncryption 87:d9:d3:d4:5b:1a:96:cc:0d:db:12:a2:a4:d0:f4:ce:c2:d4: 9b:69:68:18:cd:04:5c:33:f6:06:26:82:53:f2:c9:7f:b5:88: 4b:fe:e1:01:dd:4c:a3:1f:94:7b:eb:22:f5:af:17:77:65:5f: 87:93:e5:e8:f6:5f:5f:a5:7a:85:51:e8:f0:d1:5a:52:fa:b6: b0:1d:d4:fc:d5:94:59:90:58:7c:59:d5:cc:5f:38:51:27:da: 08:10:cd:ff:87:d3:11:6a:a5:07:20:a7:f2:f2:58:d8:17:ac: bc:46:54:f7:59:7c:aa:c1:a9:b8:e2:2e:2d:b1:a4:47:d7:e0: 02:97:45:76:24:91:95:a2:4b:4a:62:0f:21:85:a2:42:ea:01: 94:b1:fd:71:47:2d:68:eb:9f:e8:60:00:f5:96:3e:90:f3:c2: 0d:39:bd:86:9c:96:35:6d:32:23:9f:1d:4a:8b:35:c5:d3:d5: d0:64:ea:ef:cf:40:56:df:3a:1e:ed:82:8b:b8:d4:30:cf:a1: e7:d4:36:61:a8:f3:21:f4:a2:3e:90:19:c7:19:ba:a1:75:20: fc:4d:0a:39:eb:34:2d:76:de:b1:5a:1d:3b:ea:c2:e7:2f:57: 32:16:44:bc:55:13:50:9e:72:22:20:de:1e:f4:74:0b:57:7f: 14:d3:bc:e5 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICGBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwM0ExMTAvBgNVBAUTKDYxNUVEODRDNDRFNjU3RjcwOTVFMDIxMkFGRUEwNTJD NTQyQTBEOTEwHhcNMjQwMTEyMTcwNDQ4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWExNzEzMC1kOTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqGbY2gVITEhhBLI/qQnNinrBSsD6tZaESapLEDmBGSDGPdyXgVpZat8xFDl1 U7PzMvheXF6QfcUmNRAT2a6253fb9hRUQgk8IXLbWyAOpGpj7XNaG1vN9dKhBK1t Ngz8wfKZfxGtVWk4sWq42KBPMws366j9c0Ac1oUWgANzQz0BML/UgARsEDzgT3X8 5dQQCygmZM6RM3mDiAOxjGw/0p+Nh3lOsJjjBaD1vmFgIOS6gJDK83Up6I05Tg/O jTHGALIgDKfZeGL2RBGgQEZSR/0YmzZ0QM+KJmUG3YHZ6yIQY53HOfYldScLyDfL KbN38mYglyCctj7sNjL6ZXyAzQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFOPr4BA3 ygtrZ5sl7KFo9yzptbwpMB8GA1UdIwQYMBaAFGFe2ExE5lf3CV4CEq/qBSxUKg2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDAzQS8xQjY0NzcxMDky NDYxMUU3OUFBRUJFMTBDNEY5QUUwMi9ZVjdZVEVUbVZfY0pYZ0lTci1vRkxGUXFE WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lWN1lURVRtVl9jSlhnSVNyLW9GTEZRcURaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwM0EvMUI2NDc3MTA5MjQ2MTFFNzlBQUVCRTEwQzRGOUFFMDIvQTQxQTAxRjI4 MTIzMTFFRDkzNjdGQzQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAItdoQDBAJnAzwDBAJnHUQwDQQCAAIwBwMFAyQAiQAwDQYJ KoZIhvcNAQELBQADggEBAIfZ09RbGpbMDdsSoqTQ9M7C1JtpaBjNBFwz9gYmglPy yX+1iEv+4QHdTKMflHvrIvWvF3dlX4eT5ej2X1+leoVR6PDRWlL6trAd1PzVlFmQ WHxZ1cxfOFEn2ggQzf+H0xFqpQcgp/LyWNgXrLxGVPdZfKrBqbjiLi2xpEfX4AKX RXYkkZWiS0piDyGFokLqAZSx/XFHLWjrn+hgAPWWPpDzwg05vYacljVtMiOfHUqL NcXT1dBk6u/PQFbfOh7tgou41DDPoefUNmGo8yH0oj6QGccZuqF1IPxNCjnrNC12 3rFaHTvqwucvVzIWRLxVE1CeciIg3h70dAtXfxTTvOU= -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:19 2024 by rpki-client on console-ams.rpki-client.org