$ rpki-client -vvf rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/41DE51D0DF3E11EEBE02E04AC4F9AE02.roa File: 41DE51D0DF3E11EEBE02E04AC4F9AE02.roa (raw, json) Hash identifier: kJqH6bqpSJ3//AJ26qCXwZ2NcL1mcLntx12yKeJv6z8= Subject key identifier: E1:F5:CB:95:C9:2E:7F:01:AF:0A:06:66:43:EF:41:6F:7C:1C:3F:82 Certificate issuer: /CN=A915E742/serialNumber=6097B34D674013280629F885CA903FD69AB95BE3 Certificate serial: 33F3 Authority key identifier: 60:97:B3:4D:67:40:13:28:06:29:F8:85:CA:90:3F:D6:9A:B9:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJezTWdAEygGKfiFypA_1pq5W-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/41DE51D0DF3E11EEBE02E04AC4F9AE02.roa Signing time: Fri 14 Jun 2024 14:30:33 +0000 ROA not before: Fri 14 Jun 2024 14:30:33 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 56089 IP address blocks: 103.24.112.0/22 maxlen: 22 114.69.176.0/20 maxlen: 20 175.158.128.0/18 maxlen: 18 202.22.128.0/19 maxlen: 19 202.166.176.0/21 maxlen: 21 203.104.48.0/20 maxlen: 20 2404:2a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/YJezTWdAEygGKfiFypA_1pq5W-M.crl rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/YJezTWdAEygGKfiFypA_1pq5W-M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJezTWdAEygGKfiFypA_1pq5W-M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:24:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13299 (0x33f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915E742/serialNumber=6097B34D674013280629F885CA903FD69AB95BE3 Validity Not Before: Jun 14 14:30:33 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666c5409-e58b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:13:94:f0:81:e4:36:4d:10:ba:26:1e:26:e0: c2:4f:6d:39:0d:bb:2a:a3:8a:ff:dd:16:de:fc:9d: 31:db:31:60:16:93:48:45:18:78:11:10:7e:2c:bb: d3:e5:1f:4a:74:b8:33:61:b9:a7:e4:20:17:11:68: db:d4:be:5a:fd:7d:d2:2b:7f:48:37:26:68:23:26: 23:87:93:c0:75:2f:7b:df:17:97:e2:fc:95:bd:97: d2:e7:89:fc:73:7c:7d:01:ba:99:4e:26:22:48:c8: 89:5e:f1:00:e1:b8:52:33:1b:d4:93:b8:e5:08:2f: 63:80:1f:34:30:ba:97:b4:65:a9:ca:2d:5e:6b:b5: 5b:93:53:5d:3b:83:d8:cf:b9:84:7e:bf:e0:ca:17: 8a:94:8b:2b:c9:ed:00:62:61:78:89:27:49:05:88: 28:cd:a8:6d:6f:51:cd:c8:c8:b1:42:22:b3:bf:06: 7a:16:4c:c9:a4:31:d7:0d:0a:3f:86:c5:95:f4:12: 43:8e:02:8d:94:c8:c7:f1:be:c2:43:60:46:93:03: 96:0d:11:93:57:94:12:4e:7c:22:05:9e:1e:89:ef: c9:bf:50:48:09:00:e0:32:4b:fc:03:74:e6:7f:52: 9f:bc:97:dd:1e:f9:49:e4:e4:d8:1b:9c:e7:a0:b3: 4f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F5:CB:95:C9:2E:7F:01:AF:0A:06:66:43:EF:41:6F:7C:1C:3F:82 X509v3 Authority Key Identifier: keyid:60:97:B3:4D:67:40:13:28:06:29:F8:85:CA:90:3F:D6:9A:B9:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/YJezTWdAEygGKfiFypA_1pq5W-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YJezTWdAEygGKfiFypA_1pq5W-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915E742/2ED0F5FC1D8511E2B032A9DB08B02CD2/41DE51D0DF3E11EEBE02E04AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.112.0/22 114.69.176.0/20 175.158.128.0/18 202.22.128.0/19 202.166.176.0/21 203.104.48.0/20 IPv6: 2404:2a00::/32 Signature Algorithm: sha256WithRSAEncryption 64:5d:b3:94:1c:06:cd:c2:cf:45:8d:ab:14:fd:27:87:e2:ec: 83:f5:92:e4:0e:89:46:ec:b7:7d:4f:1f:d1:b5:52:56:50:31: cd:aa:e7:a7:88:a9:d2:1e:58:3b:22:75:69:72:d1:ec:98:7b: 7c:f6:86:30:56:e5:26:ed:1e:35:6e:cd:c9:cd:64:aa:1c:3f: 79:8a:f3:df:77:e2:7f:f7:8e:35:43:00:40:43:f9:e0:3a:53: 14:05:e1:86:db:75:32:e2:1c:b6:3f:48:e5:51:5b:09:79:8d: 0e:43:c9:bb:dd:b8:1b:e9:f0:74:a6:2b:b9:53:27:f8:26:8e: 73:7e:fb:0a:17:fc:01:04:2f:3e:05:2d:d6:69:8d:74:af:36: f1:a4:48:49:b1:73:5e:b8:a1:8b:6b:0a:cb:34:54:d2:31:71: 1d:41:22:a0:f7:f9:de:7e:57:6a:86:17:27:3b:66:3d:64:d2: 54:d9:64:a2:22:43:bf:f1:84:0c:68:5f:b7:9b:c0:aa:2e:38: 2a:5a:b2:ff:bf:e3:4a:b0:3d:c3:5e:6a:bf:20:5f:61:2c:a5: 36:36:ee:2e:b9:8c:ea:c8:20:b8:e3:4a:0b:6c:ef:22:b4:75: 53:ce:ed:f6:fa:07:e3:53:b4:09:f0:1a:62:d9:2e:66:cd:b3: 9c:5d:ce:f0 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICM/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUU3NDIxMTAvBgNVBAUTKDYwOTdCMzRENjc0MDEzMjgwNjI5Rjg4NUNBOTAzRkQ2 OUFCOTVCRTMwHhcNMjQwNjE0MTQzMDMzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZjNTQwOS1lNThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4ROU8IHkNk0QuiYeJuDCT205Dbsqo4r/3Rbe/J0x2zFgFpNIRRh4ERB+LLvT 5R9KdLgzYbmn5CAXEWjb1L5a/X3SK39INyZoIyYjh5PAdS973xeX4vyVvZfS54n8 c3x9AbqZTiYiSMiJXvEA4bhSMxvUk7jlCC9jgB80MLqXtGWpyi1ea7Vbk1NdO4PY z7mEfr/gyheKlIsrye0AYmF4iSdJBYgozahtb1HNyMixQiKzvwZ6FkzJpDHXDQo/ hsWV9BJDjgKNlMjH8b7CQ2BGkwOWDRGTV5QSTnwiBZ4eie/Jv1BICQDgMkv8A3Tm f1KfvJfdHvlJ5OTYG5znoLNPiwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFOH1y5XJ Ln8BrwoGZkPvQW98HD+CMB8GA1UdIwQYMBaAFGCXs01nQBMoBin4hcqQP9aauVvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RTc0Mi8yRUQwRjVGQzFE ODUxMUUyQjAzMkE5REIwOEIwMkNEMi9ZSmV6VFdkQUV5Z0dLZmlGeXBBXzFwcTVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lKZXpUV2RBRXlnR0tmaUZ5cEFfMXBxNVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUU3NDIvMkVEMEY1RkMxRDg1MTFFMkIwMzJBOURCMDhCMDJDRDIvNDFERTUxRDBE RjNFMTFFRUJFMDJFMDRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAJnGHADBARyRbADBAavnoADBAXKFoADBAPKprADBATLaDAw DQQCAAIwBwMFACQEKgAwDQYJKoZIhvcNAQELBQADggEBAGRds5QcBs3Cz0WNqxT9 J4fi7IP1kuQOiUbst31PH9G1UlZQMc2q56eIqdIeWDsidWly0eyYe3z2hjBW5Sbt HjVuzcnNZKocP3mK89934n/3jjVDAEBD+eA6UxQF4YbbdTLiHLY/SOVRWwl5jQ5D ybvduBvp8HSmK7lTJ/gmjnN++woX/AEELz4FLdZpjXSvNvGkSEmxc164oYtrCss0 VNIxcR1BIqD3+d5+V2qGFyc7Zj1k0lTZZKIiQ7/xhAxoX7ebwKouOCpasv+/40qw PcNear8gX2EspTY27i65jOrIILjjSgts7yK0dVPO7fb6B+NTtAnwGmLZLmbNs5xd zvA= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:20 2024 by rpki-client on console-ams.rpki-client.org