$ rpki-client -vvf rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/0F072D383AAE11EAB5D8270EC4F9AE02.roa File: 0F072D383AAE11EAB5D8270EC4F9AE02.roa (raw, json) Hash identifier: as/dc/eVE0KE5cApiltGew64DOfzaL1TNpjwCt5VZmk= Subject key identifier: 7F:09:7A:95:6C:52:93:D6:A0:97:70:D0:D2:9C:DC:10:6B:1D:E4:77 Certificate issuer: /CN=A916C38F/serialNumber=22240FB7872AA618D3E0D49345DBF42473AD04C7 Certificate serial: 0A9C Authority key identifier: 22:24:0F:B7:87:2A:A6:18:D3:E0:D4:93:45:DB:F4:24:73:AD:04:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/0F072D383AAE11EAB5D8270EC4F9AE02.roa Signing time: Tue 30 Jul 2024 19:57:48 +0000 ROA not before: Tue 30 Jul 2024 19:57:48 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 135527 IP address blocks: 103.222.20.0/22 maxlen: 24 2405:bf40::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.crl rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2716 (0xa9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C38F/serialNumber=22240FB7872AA618D3E0D49345DBF42473AD04C7 Validity Not Before: Jul 30 19:57:48 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66a945bc-4e96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dc:c4:40:8f:ae:eb:37:bb:d9:75:4a:01:21: 2c:b8:2c:1b:3a:52:ae:40:ae:d8:18:17:f9:93:8e: 2b:b0:75:7e:11:d5:43:c3:8e:6a:39:74:30:dc:e5: 2e:d5:e1:0f:21:76:47:f3:dd:64:d2:e7:74:2c:1b: 5b:fb:6c:d9:46:96:d1:f8:08:2f:ce:1e:b9:eb:cb: df:51:50:8b:3a:f6:c3:a7:32:10:70:1b:21:11:e7: be:79:ef:26:41:fc:de:52:ac:cc:9c:e7:28:20:37: 5a:65:b0:3c:06:66:d1:4c:d1:81:9d:72:5d:72:c2: 19:f2:ea:a0:1f:30:5d:b5:b6:3b:89:d2:42:52:02: 37:a2:00:89:77:19:36:0d:a3:c9:52:cf:82:3f:95: cf:45:c0:c3:c2:b4:2e:18:b7:62:36:55:36:05:f1: 9d:af:86:0d:2a:81:0a:40:b6:ef:37:fa:c9:8f:83: 39:c3:05:c3:8d:e7:d4:2a:c9:00:0e:ac:b2:88:5c: 9e:52:a1:ca:5a:c2:14:f5:19:b6:48:1c:e0:32:28: e8:d8:00:a9:ed:98:d6:f7:69:5e:5a:09:98:1a:9e: f0:41:57:2c:fa:02:56:93:dc:1a:ce:44:bd:39:d9: 0f:09:54:1f:e5:55:02:bf:3e:ca:1e:a3:c4:54:bb: 88:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:09:7A:95:6C:52:93:D6:A0:97:70:D0:D2:9C:DC:10:6B:1D:E4:77 X509v3 Authority Key Identifier: keyid:22:24:0F:B7:87:2A:A6:18:D3:E0:D4:93:45:DB:F4:24:73:AD:04:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/IiQPt4cqphjT4NSTRdv0JHOtBMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiQPt4cqphjT4NSTRdv0JHOtBMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C38F/69E99B8E3AAC11EA84795E0BC4F9AE02/0F072D383AAE11EAB5D8270EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.222.20.0/22 IPv6: 2405:bf40::/32 Signature Algorithm: sha256WithRSAEncryption 50:29:9d:34:c4:ed:6d:8a:27:31:37:57:ca:c4:43:97:58:36: 83:50:a1:b4:ce:a9:85:0b:03:79:d4:0c:a2:d7:ab:5a:2e:0c: b0:45:37:e4:6a:b9:62:21:55:ef:a6:9b:c5:73:44:b2:18:0d: 90:c8:62:27:8b:80:9a:8b:34:7b:19:d0:ec:be:2c:f6:7c:db: 9b:b8:3f:32:cf:03:9c:8d:01:ef:ac:b4:bf:a8:0b:fd:a3:23: 43:4d:03:c6:15:9a:fc:8a:78:7f:2a:e9:dc:23:df:6d:89:4d: dc:46:b1:8d:d7:44:ef:fa:04:70:7d:88:77:0b:4c:fd:d8:db: d7:8d:39:3b:9e:df:13:51:9e:ec:2f:08:fb:c1:23:fb:67:2c: 8d:df:23:92:35:b8:58:e7:bc:44:58:17:ca:56:59:1c:b0:7a: 06:6e:b0:f6:5b:50:10:f9:0d:58:5e:03:15:da:dd:d0:c9:20: b0:20:f2:82:c1:1a:2f:e8:b7:da:05:a4:81:88:8b:21:78:7b: 24:2b:86:ff:31:76:c5:88:93:4f:13:e7:39:3e:b1:32:88:63: 30:47:d6:d1:82:b5:70:a1:b7:22:7b:53:1b:f6:b5:cb:dd:d4: 7d:1f:a1:a9:e7:03:cb:5a:ef:c4:5c:fe:3d:2b:56:a4:84:fa: 48:9c:cc:27 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMzOEYxMTAvBgNVBAUTKDIyMjQwRkI3ODcyQUE2MThEM0UwRDQ5MzQ1REJGNDI0 NzNBRDA0QzcwHhcNMjQwNzMwMTk1NzQ4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5NDViYy00ZTk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtzEQI+u6ze72XVKASEsuCwbOlKuQK7YGBf5k44rsHV+EdVDw45qOXQw3OUu 1eEPIXZH891k0ud0LBtb+2zZRpbR+Agvzh6568vfUVCLOvbDpzIQcBshEee+ee8m QfzeUqzMnOcoIDdaZbA8BmbRTNGBnXJdcsIZ8uqgHzBdtbY7idJCUgI3ogCJdxk2 DaPJUs+CP5XPRcDDwrQuGLdiNlU2BfGdr4YNKoEKQLbvN/rJj4M5wwXDjefUKskA DqyyiFyeUqHKWsIU9Rm2SBzgMijo2ACp7ZjW92leWgmYGp7wQVcs+gJWk9wazkS9 OdkPCVQf5VUCvz7KHqPEVLuIEwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFH8JepVs UpPWoJdw0NKc3BBrHeR3MB8GA1UdIwQYMBaAFCIkD7eHKqYY0+DUk0Xb9CRzrQTH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzM4Ri82OUU5OUI4RTNB QUMxMUVBODQ3OTVFMEJDNEY5QUUwMi9JaVFQdDRjcXBoalQ0TlNUUmR2MEpIT3RC TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lpUVB0NGNxcGhqVDROU1RSZHYwSkhPdEJNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkMzOEYvNjlFOTlCOEUzQUFDMTFFQTg0Nzk1RTBCQzRGOUFFMDIvMEYwNzJEMzgz QUFFMTFFQUI1RDgyNzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJn3hQwDQQCAAIwBwMFACQFv0AwDQYJKoZIhvcNAQELBQAD ggEBAFApnTTE7W2KJzE3V8rEQ5dYNoNQobTOqYULA3nUDKLXq1ouDLBFN+RquWIh Ve+mm8VzRLIYDZDIYieLgJqLNHsZ0Oy+LPZ825u4PzLPA5yNAe+stL+oC/2jI0NN A8YVmvyKeH8q6dwj322JTdxGsY3XRO/6BHB9iHcLTP3Y29eNOTue3xNRnuwvCPvB I/tnLI3fI5I1uFjnvERYF8pWWRywegZusPZbUBD5DVheAxXa3dDJILAg8oLBGi/o t9oFpIGIiyF4eyQrhv8xdsWIk08T5zk+sTKIYzBH1tGCtXChtyJ7Uxv2tcvd1H0f oannA8ta78Rc/j0rVqSE+kiczCc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:30 2024 by rpki-client on console-ams.rpki-client.org