$ rpki-client -vvf rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/833934745B9E11EFA7D10E5BC4F9AE02.roa File: 833934745B9E11EFA7D10E5BC4F9AE02.roa (raw, json) Hash identifier: EnqdtS67GGIoHjrrVwErYsAO96Kw850mS6kZEXiWy+M= Subject key identifier: 49:AC:82:D7:71:5B:2A:EF:0E:19:4B:62:FC:6E:EB:CE:70:02:26:44 Certificate issuer: /CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Certificate serial: 02 Authority key identifier: 82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/833934745B9E11EFA7D10E5BC4F9AE02.roa Signing time: Fri 16 Aug 2024 07:09:44 +0000 ROA not before: Fri 16 Aug 2024 07:09:43 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 26658 IP address blocks: 103.207.24.0/22 maxlen: 22 210.16.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916A511/serialNumber=829AD8575725687B1F0A4C55F9422AF33B00FCB1 Validity Not Before: Aug 16 07:09:43 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66befb37-a7e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:74:e7:f9:77:a8:7b:a0:9e:2e:9a:e0:f3:5f: 7b:b7:06:69:30:a1:61:8f:56:a7:c2:4f:a1:d9:88: 25:77:6f:c2:6f:3a:be:86:2c:60:21:8a:17:68:c0: 42:43:a5:8f:c9:fa:e4:ca:82:49:ad:c8:c4:61:e2: ed:26:d1:37:6f:a2:de:1b:38:2b:6b:d0:cb:6c:4f: d7:d8:27:f2:dc:02:58:21:28:5e:a6:03:a2:7b:35: bb:fd:41:72:b5:88:83:b1:f2:3a:57:ea:7b:64:00: c5:55:1e:36:57:89:5a:1c:b8:a5:d7:36:dd:35:b0: 21:2c:34:19:fe:c5:bf:45:14:eb:d2:9b:94:62:36: 22:82:67:76:76:b5:b7:3d:b8:86:51:4b:db:2c:bb: 87:a7:fa:24:2f:12:7b:e2:28:bb:87:7a:30:8b:be: c1:82:7b:92:6e:12:96:98:81:7d:2e:5e:aa:7b:dc: dd:ab:b9:d8:74:b9:81:ae:53:46:5c:2f:78:c8:78: 9c:76:75:27:f8:31:ad:d1:a8:94:f5:0b:bc:c5:3e: e5:0e:3f:45:f1:57:3f:5d:5c:53:52:85:0c:5d:d2: 6f:1e:f7:ff:e5:fa:8f:19:53:4c:09:93:6d:77:37: 56:c9:83:8a:c0:df:be:94:e0:a8:82:47:67:3b:ed: 7b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:AC:82:D7:71:5B:2A:EF:0E:19:4B:62:FC:6E:EB:CE:70:02:26:44 X509v3 Authority Key Identifier: keyid:82:9A:D8:57:57:25:68:7B:1F:0A:4C:55:F9:42:2A:F3:3B:00:FC:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/gprYV1claHsfCkxV-UIq8zsA_LE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gprYV1claHsfCkxV-UIq8zsA_LE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916A511/2DCFF6125B9E11EF9484635AC4F9AE02/833934745B9E11EFA7D10E5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.207.24.0/22 210.16.96.0/22 Signature Algorithm: sha256WithRSAEncryption bb:84:55:e1:70:92:73:3a:f8:42:7a:ba:92:c1:da:6f:2f:70: 13:3f:cc:b7:4f:b4:5c:94:66:28:b9:4b:35:3e:32:16:4c:b6: d8:6a:f0:21:17:ea:c7:f0:a9:f2:ae:a7:3b:b9:1b:60:a8:ba: 99:fe:2c:bb:95:c9:0b:be:44:a4:d3:48:83:5c:aa:26:15:1f: 58:a9:d7:17:37:d7:62:99:29:43:6e:13:ac:00:89:ba:d6:66: c7:15:8f:ae:53:5a:8e:0f:35:ab:84:e8:e7:0f:d5:cf:44:fe: f7:36:80:1b:ba:42:e7:01:24:67:51:02:1d:fb:28:f4:5e:d3: d5:1f:87:7b:7b:6a:96:31:14:a2:c8:44:f4:64:6a:7b:37:dd: 04:32:34:8f:0a:78:f7:0f:81:c8:c6:34:8d:05:db:dc:0e:d4: 52:1b:27:44:44:19:6f:59:1b:b3:f1:ed:62:b1:12:1e:e1:63: bd:41:15:29:5a:f1:b3:2d:52:d9:bc:4b:1f:23:d4:0e:7f:29: 1e:50:93:c8:3b:a3:51:74:63:74:f0:d0:a1:a8:4b:79:ef:78: 51:02:46:88:c5:12:a1:d2:31:3c:b5:de:dd:1c:7d:12:00:b4: b6:81:12:82:cb:2d:9f:92:c8:f4:cd:02:7f:a6:17:e9:de:e6: e4:d6:a0:c5 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 QTUxMTExMC8GA1UEBRMoODI5QUQ4NTc1NzI1Njg3QjFGMEE0QzU1Rjk0MjJBRjMz QjAwRkNCMTAeFw0yNDA4MTYwNzA5NDNaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmVmYjM3LWE3ZTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBdOf5d6h7oJ4umuDzX3u3BmkwoWGPVqfCT6HZiCV3b8JvOr6GLGAhihdowEJD pY/J+uTKgkmtyMRh4u0m0Tdvot4bOCtr0MtsT9fYJ/LcAlghKF6mA6J7Nbv9QXK1 iIOx8jpX6ntkAMVVHjZXiVocuKXXNt01sCEsNBn+xb9FFOvSm5RiNiKCZ3Z2tbc9 uIZRS9ssu4en+iQvEnviKLuHejCLvsGCe5JuEpaYgX0uXqp73N2rudh0uYGuU0Zc L3jIeJx2dSf4Ma3RqJT1C7zFPuUOP0XxVz9dXFNShQxd0m8e9//l+o8ZU0wJk213 N1bJg4rA376U4KiCR2c77XuPAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUSayC13Fb Ku8OGUti/G7rznACJkQwHwYDVR0jBBgwFoAUgprYV1claHsfCkxV+UIq8zsA/LEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZBNTExLzJEQ0ZGNjEyNUI5 RTExRUY5NDg0NjM1QUM0RjlBRTAyL2dwcllWMWNsYUhzZkNreFYtVUlxOHpzQV9M RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3ByWVYxY2xhSHNmQ2t4Vi1VSXE4enNBX0xFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QTUxMS8yRENGRjYxMjVCOUUxMUVGOTQ4NDYzNUFDNEY5QUUwMi84MzM5MzQ3NDVC OUUxMUVGQTdEMTBFNUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmfPGAMEAtIQYDANBgkqhkiG9w0BAQsFAAOCAQEAu4RV4XCS czr4Qnq6ksHaby9wEz/Mt0+0XJRmKLlLNT4yFky22GrwIRfqx/Cp8q6nO7kbYKi6 mf4su5XJC75EpNNIg1yqJhUfWKnXFzfXYpkpQ24TrACJutZmxxWPrlNajg81q4To 5w/Vz0T+9zaAG7pC5wEkZ1ECHfso9F7T1R+He3tqljEUoshE9GRqezfdBDI0jwp4 9w+ByMY0jQXb3A7UUhsnREQZb1kbs/HtYrESHuFjvUEVKVrxsy1S2bxLHyPUDn8p HlCTyDujUXRjdPDQoahLee94UQJGiMUSodIxPLXe3Rx9EgC0toESgsstn5LI9M0C f6YX6d7m5NagxQ== -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:12 2024 by rpki-client on console-ams.rpki-client.org