$ rpki-client -vvf rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/A12DD18E2F1C11EDA3E29B09C4F9AE02.roa File: A12DD18E2F1C11EDA3E29B09C4F9AE02.roa (raw, json) Hash identifier: JY394gUy9qqM6BqtEt3A+TeeEC3ZSaP+KRzIxp12INs= Subject key identifier: B8:2F:8F:31:34:01:E0:13:D2:0E:D6:EE:2D:76:4E:40:5C:71:FE:F7 Certificate issuer: /CN=A91652F7/serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Certificate serial: 0840 Authority key identifier: E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/A12DD18E2F1C11EDA3E29B09C4F9AE02.roa Signing time: Wed 06 Nov 2024 20:39:35 +0000 ROA not before: Wed 06 Nov 2024 20:39:35 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 15412 IP address blocks: 43.248.216.0/22 maxlen: 22 103.15.116.0/22 maxlen: 22 103.144.202.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2112 (0x840) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91652F7/serialNumber=E502757C617C21D47B1B3559C09D6EA7C3AFE403 Validity Not Before: Nov 6 20:39:35 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672bd407-fee3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:80:28:38:5b:ae:36:79:51:3f:be:9e:7f:f1: 36:98:6d:d3:7d:37:e9:f3:7e:11:6c:9f:20:e3:06: a9:f3:90:3c:ce:c5:e7:f0:af:71:f6:5c:ad:9e:66: 49:12:a5:cc:08:92:11:fa:b2:8d:d3:2a:c3:2a:71: 40:d1:03:9c:33:7a:ea:1a:cf:8b:d8:92:37:e9:43: 19:71:c9:b8:68:7c:82:52:d0:cd:41:b3:06:95:1b: 3b:1d:b1:ae:8e:4a:42:3c:93:f7:41:34:35:af:13: c7:d1:22:18:48:96:b9:b2:a9:9f:cd:51:72:95:e7: 74:a7:42:59:a6:3b:7b:ae:ba:c2:ff:65:38:ca:b9: d5:c2:80:89:9d:23:80:24:38:8a:83:92:4f:a6:97: cf:ed:54:44:43:0f:eb:40:09:ee:3b:a6:4d:1c:e0: fb:a4:1d:a0:8c:2b:1e:ef:84:02:25:fc:bd:44:ec: 48:ff:0f:30:cb:46:f8:95:bf:9d:63:8a:a0:4a:e0: 90:77:23:34:32:d5:91:c6:cb:f4:a0:06:ef:68:de: 1f:88:16:a6:ae:29:ee:f4:e7:14:06:8a:ff:b1:26: ec:5f:c8:ed:e1:e9:db:00:73:66:cc:26:62:91:38: a9:5f:cc:58:bb:14:1a:4e:96:7f:7c:9d:f7:d5:4d: 10:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:2F:8F:31:34:01:E0:13:D2:0E:D6:EE:2D:76:4E:40:5C:71:FE:F7 X509v3 Authority Key Identifier: keyid:E5:02:75:7C:61:7C:21:D4:7B:1B:35:59:C0:9D:6E:A7:C3:AF:E4:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5QJ1fGF8IdR7GzVZwJ1up8Ov5AM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91652F7/7CC45FAEBAAF11EAA6DD1A3DC4F9AE02/A12DD18E2F1C11EDA3E29B09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.216.0/22 103.15.116.0/22 103.144.202.0/23 Signature Algorithm: sha256WithRSAEncryption 43:bb:08:7d:74:c0:a4:26:4a:8e:a4:8a:3a:4b:06:fe:a9:d6: de:73:d9:1e:27:e5:fb:6e:b8:8e:ac:4e:1b:12:d6:f5:7f:2f: 64:98:79:4f:62:2e:e4:34:7d:26:18:32:5c:02:f5:67:d3:0d: 8c:d2:b7:dd:02:41:8f:ce:c8:50:1b:70:b6:0b:6f:62:a2:9e: 43:f2:fb:a2:e4:c4:55:56:d9:da:0f:52:69:a9:f6:03:69:15: 83:d7:73:69:77:1d:4c:f3:d2:e8:db:40:ea:d7:85:43:92:bf: a7:41:81:c8:f3:9b:63:eb:b8:76:86:03:3e:8a:c3:64:12:c9: 10:6c:ad:c7:f1:95:f0:2d:c0:54:54:30:5a:ae:82:a2:40:ed: 6d:46:91:82:f1:17:ee:17:e6:31:c7:75:a6:c6:ac:25:ac:03: e8:69:40:82:ad:e7:b8:a3:bd:79:50:bd:8a:89:67:e2:f8:a0: 80:fc:36:30:f1:c6:e2:fa:3b:aa:46:7e:de:e9:fe:bd:69:93: c3:06:6b:48:53:2f:23:bb:62:8c:2b:c4:df:20:11:1e:61:8b: db:2e:93:c9:a8:26:09:9b:49:c5:ee:c0:90:ea:05:c0:97:03: bd:1f:d1:a5:10:1a:b0:9a:c4:90:fe:1a:34:7c:69:24:fa:fa: e6:53:46:21 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICCEAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUyRjcxMTAvBgNVBAUTKEU1MDI3NTdDNjE3QzIxRDQ3QjFCMzU1OUMwOUQ2RUE3 QzNBRkU0MDMwHhcNMjQxMTA2MjAzOTM1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiZDQwNy1mZWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq4AoOFuuNnlRP76ef/E2mG3TfTfp834RbJ8g4wap85A8zsXn8K9x9lytnmZJ EqXMCJIR+rKN0yrDKnFA0QOcM3rqGs+L2JI36UMZccm4aHyCUtDNQbMGlRs7HbGu jkpCPJP3QTQ1rxPH0SIYSJa5sqmfzVFyled0p0JZpjt7rrrC/2U4yrnVwoCJnSOA JDiKg5JPppfP7VREQw/rQAnuO6ZNHOD7pB2gjCse74QCJfy9ROxI/w8wy0b4lb+d Y4qgSuCQdyM0MtWRxsv0oAbvaN4fiBamrinu9OcUBor/sSbsX8jt4enbAHNmzCZi kTipX8xYuxQaTpZ/fJ331U0QFQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLgvjzE0 AeAT0g7W7i12TkBccf73MB8GA1UdIwQYMBaAFOUCdXxhfCHUexs1WcCdbqfDr+QD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTJGNy83Q0M0NUZBRUJB QUYxMUVBQTZERDFBM0RDNEY5QUUwMi81UUoxZkdGOElkUjdHelZad0oxdXA4T3Y1 QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVRSjFmR0Y4SWRSN0d6Vlp3SjF1cDhPdjVBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUyRjcvN0NDNDVGQUVCQUFGMTFFQUE2REQxQTNEQzRGOUFFMDIvQTEyREQxOEUy RjFDMTFFREEzRTI5QjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAIr+NgDBAJnD3QDBAFnkMowDQYJKoZIhvcNAQELBQADggEB AEO7CH10wKQmSo6kijpLBv6p1t5z2R4n5ftuuI6sThsS1vV/L2SYeU9iLuQ0fSYY MlwC9WfTDYzSt90CQY/OyFAbcLYLb2KinkPy+6LkxFVW2doPUmmp9gNpFYPXc2l3 HUzz0ujbQOrXhUOSv6dBgcjzm2PruHaGAz6Kw2QSyRBsrcfxlfAtwFRUMFqugqJA 7W1GkYLxF+4X5jHHdabGrCWsA+hpQIKt57ijvXlQvYqJZ+L4oID8NjDxxuL6O6pG ft7p/r1pk8MGa0hTLyO7YowrxN8gER5hi9suk8moJgmbScXuwJDqBcCXA70f0aUQ GrCaxJD+GjR8aST6+uZTRiE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:29 2024 by rpki-client on console-ams.rpki-client.org