$ rpki-client -vvf rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/3F82CC6E234E11EFAF9F0F60C4F9AE02.roa File: 3F82CC6E234E11EFAF9F0F60C4F9AE02.roa (raw, json) Hash identifier: WKwWhbPawyOzgAjOsk/HfPjPqc+lQeKAyZrRcRmfwlQ= Subject key identifier: 62:57:3D:0C:DF:F1:DF:C0:B6:6A:31:71:A9:8F:DF:46:A5:C6:1B:78 Certificate issuer: /CN=A916B4A3/serialNumber=FE49C2CF7EF7BCFB44424583DF44A47332082C59 Certificate serial: 0584 Authority key identifier: FE:49:C2:CF:7E:F7:BC:FB:44:42:45:83:DF:44:A4:73:32:08:2C:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_knCz373vPtEQkWD30SkczIILFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/3F82CC6E234E11EFAF9F0F60C4F9AE02.roa Signing time: Wed 03 Jul 2024 00:22:55 +0000 ROA not before: Wed 03 Jul 2024 00:22:55 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 18013 IP address blocks: 103.117.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/_knCz373vPtEQkWD30SkczIILFk.crl rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/_knCz373vPtEQkWD30SkczIILFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_knCz373vPtEQkWD30SkczIILFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1412 (0x584) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B4A3/serialNumber=FE49C2CF7EF7BCFB44424583DF44A47332082C59 Validity Not Before: Jul 3 00:22:55 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=668499df-2abc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:35:b7:7c:74:54:a5:ae:b8:50:73:b9:82:84: a5:6b:a9:fc:30:6b:e3:54:4b:9b:79:20:d9:0e:73: 5b:af:3f:22:cc:ea:62:22:b8:a5:c1:dc:5d:69:f4: a6:ba:7f:4d:d5:08:26:30:16:bd:ba:ab:3d:a1:ee: 51:37:c5:62:16:17:3c:1d:83:40:ea:ff:74:14:29: 9a:51:be:f1:b1:aa:c5:e7:08:a4:50:04:db:e8:9b: 5b:55:45:db:49:d1:76:06:86:5e:ae:38:ea:85:03: d5:f7:90:af:10:6c:93:61:4a:98:eb:50:38:93:7d: e3:ed:d7:ad:9c:a1:43:22:79:f7:d0:1c:90:da:03: 73:69:4c:66:32:bf:36:e0:86:cf:f4:ed:37:d4:d9: f7:fd:83:49:47:b0:11:b2:b0:a5:45:2b:c4:bb:2f: 3b:a6:52:40:88:12:81:08:e5:f5:64:8b:ba:de:fc: 3d:cb:67:1f:a7:87:48:5f:cb:d4:2c:11:02:a4:54: 54:a9:36:32:62:bf:95:6c:4b:22:b8:24:cd:2a:96: 6a:dd:03:93:57:3c:ce:25:75:50:35:7d:c4:68:16: e9:27:26:8b:73:07:98:96:da:b7:d6:51:15:4c:63: 5c:25:ed:ca:b8:18:77:aa:c8:c4:76:aa:bc:0a:48: e9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:57:3D:0C:DF:F1:DF:C0:B6:6A:31:71:A9:8F:DF:46:A5:C6:1B:78 X509v3 Authority Key Identifier: keyid:FE:49:C2:CF:7E:F7:BC:FB:44:42:45:83:DF:44:A4:73:32:08:2C:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/_knCz373vPtEQkWD30SkczIILFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_knCz373vPtEQkWD30SkczIILFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B4A3/6D62C8C4A04211EB81BFFD1FC4F9AE02/3F82CC6E234E11EFAF9F0F60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.120.0/22 Signature Algorithm: sha256WithRSAEncryption 13:ad:95:25:a1:f2:48:8e:ca:ba:e7:d4:10:35:c3:93:4d:f4: 59:72:6f:1b:87:22:4e:b5:e9:65:da:fa:d4:13:d7:80:b3:4c: d5:dc:6b:a9:0c:47:42:bd:5d:dd:51:3f:2a:8e:95:ae:05:c6: 8f:ed:52:4d:04:9a:7b:43:18:74:72:89:91:03:90:1b:c0:61: 36:2c:57:f4:3d:b3:a5:2a:23:84:6c:eb:62:76:00:6b:aa:f6: 13:f6:93:ab:b6:73:e5:c2:5f:38:bb:ab:b1:00:e5:96:0f:aa: 08:e4:bd:11:a9:b5:b7:4c:da:0e:0e:7a:e9:3e:8b:3c:51:41: 56:a8:23:79:ee:b8:12:03:70:f4:42:f3:53:5b:ad:61:6b:fe: 6c:1c:3b:fe:dd:20:cf:6f:f4:2e:29:13:b7:41:b6:34:88:3d: 9b:72:8f:18:09:a9:53:5f:73:65:f3:7f:8b:a5:5a:e1:01:73: 9a:2f:24:66:27:0e:22:63:f9:9d:86:4f:f9:10:70:f5:ab:12: 74:28:63:4a:85:41:95:df:44:ed:3f:9e:86:10:7a:9a:74:0d: 52:b6:2e:05:e6:42:bc:8f:d8:f9:82:e4:1e:d5:1c:b7:30:d1: 01:f0:53:3e:84:5d:7b:dc:9f:ca:b1:c4:fd:9c:3e:7d:8f:e6: c2:45:cc:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI0QTMxMTAvBgNVBAUTKEZFNDlDMkNGN0VGN0JDRkI0NDQyNDU4M0RGNDRBNDcz MzIwODJDNTkwHhcNMjQwNzAzMDAyMjU1WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0OTlkZi0yYWJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDW3fHRUpa64UHO5goSla6n8MGvjVEubeSDZDnNbrz8izOpiIrilwdxdafSm un9N1QgmMBa9uqs9oe5RN8ViFhc8HYNA6v90FCmaUb7xsarF5wikUATb6JtbVUXb SdF2BoZerjjqhQPV95CvEGyTYUqY61A4k33j7detnKFDInn30ByQ2gNzaUxmMr82 4IbP9O031Nn3/YNJR7ARsrClRSvEuy87plJAiBKBCOX1ZIu63vw9y2cfp4dIX8vU LBECpFRUqTYyYr+VbEsiuCTNKpZq3QOTVzzOJXVQNX3EaBbpJyaLcweYltq31lEV TGNcJe3KuBh3qsjEdqq8CkjpnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGJXPQzf 8d/AtmoxcamP30alxht4MB8GA1UdIwQYMBaAFP5Jws9+97z7REJFg99EpHMyCCxZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjRBMy82RDYyQzhDNEEw NDIxMUVCODFCRkZEMUZDNEY5QUUwMi9fa25DejM3M3ZQdEVRa1dEMzBTa2N6SUlM RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19rbkN6MzczdlB0RVFrV0QzMFNrY3pJSUxGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI0QTMvNkQ2MkM4QzRBMDQyMTFFQjgxQkZGRDFGQzRGOUFFMDIvM0Y4MkNDNkUy MzRFMTFFRkFGOUYwRjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJndXgwDQYJKoZIhvcNAQELBQADggEBABOtlSWh8kiOyrrn 1BA1w5NN9FlybxuHIk616WXa+tQT14CzTNXca6kMR0K9Xd1RPyqOla4Fxo/tUk0E mntDGHRyiZEDkBvAYTYsV/Q9s6UqI4Rs62J2AGuq9hP2k6u2c+XCXzi7q7EA5ZYP qgjkvRGptbdM2g4Oeuk+izxRQVaoI3nuuBIDcPRC81NbrWFr/mwcO/7dIM9v9C4p E7dBtjSIPZtyjxgJqVNfc2Xzf4ulWuEBc5ovJGYnDiJj+Z2GT/kQcPWrEnQoY0qF QZXfRO0/noYQepp0DVK2LgXmQryP2PmC5B7VHLcw0QHwUz6EXXvcn8qxxP2cPn2P 5sJFzNA= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:43 2024 by rpki-client on console-ams.rpki-client.org