$ rpki-client -vvf rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa File: D994A1B2500C11EE83562B60C4F9AE02.roa (raw, json) Hash identifier: jLjyxuzoihO6U4uZj4lE+4ZXFm13Tj1cLNw88yjt4fk= Subject key identifier: AC:66:48:10:9E:16:68:1C:2B:C7:FB:6A:68:3C:95:A0:63:BA:00:79 Certificate issuer: /CN=A916CA31/serialNumber=1EF30C4C5604A56ECB3EAEE7F2CA97EB78105070 Certificate serial: BC Authority key identifier: 1E:F3:0C:4C:56:04:A5:6E:CB:3E:AE:E7:F2:CA:97:EB:78:10:50:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa Signing time: Mon 05 Aug 2024 12:40:11 +0000 ROA not before: Mon 05 Aug 2024 12:40:11 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 932 IP address blocks: 103.247.28.0/23 maxlen: 24 2401:1fe0::/48 maxlen: 48 2401:1fe0:1::/48 maxlen: 48 2401:1fe0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.crl rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:36:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 188 (0xbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CA31/serialNumber=1EF30C4C5604A56ECB3EAEE7F2CA97EB78105070 Validity Not Before: Aug 5 12:40:11 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66b0c82b-776f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8e:fe:60:79:41:b2:ad:c3:bd:53:fe:7f:e0: 39:57:cb:1e:e9:6b:f9:53:f8:97:87:38:df:f9:2e: bd:fc:33:cb:9b:53:38:35:77:3b:ad:f6:6c:33:fe: ae:d3:54:06:d3:df:1e:d4:70:79:b9:83:a3:3f:ad: f7:2f:87:0e:f0:52:46:36:6b:aa:b8:a0:c9:97:2a: 76:46:65:1c:61:50:64:9e:90:27:8c:3d:7f:b1:38: 77:b3:e9:96:53:ce:58:12:dd:ba:fa:d8:08:92:01: 0c:22:c6:2d:4b:c4:94:be:52:f9:3e:fc:ef:d7:a2: 20:f5:69:6f:74:e6:47:43:1c:a9:3d:f5:e4:e1:6b: c8:bf:11:2d:8d:c1:60:16:82:73:6e:72:db:1a:7e: 26:88:1a:ab:05:0a:08:35:c5:bf:89:f8:fe:bf:06: 33:5f:b4:52:32:e9:d2:04:1b:55:c2:56:5c:f1:e6: 2b:26:ab:8c:c4:24:1d:1f:c4:ff:66:8d:46:ae:07: a0:f2:e7:07:04:90:71:5f:71:2e:83:03:58:f8:20: 81:2c:56:15:bd:12:7e:3e:32:fd:c5:3f:5c:46:6a: 6a:76:b5:ec:13:c6:56:49:12:a0:86:77:84:94:c1: c6:21:6e:7f:60:06:3a:bc:bc:38:1c:70:c3:e1:5f: c2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:66:48:10:9E:16:68:1C:2B:C7:FB:6A:68:3C:95:A0:63:BA:00:79 X509v3 Authority Key Identifier: keyid:1E:F3:0C:4C:56:04:A5:6E:CB:3E:AE:E7:F2:CA:97:EB:78:10:50:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/HvMMTFYEpW7LPq7n8sqX63gQUHA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HvMMTFYEpW7LPq7n8sqX63gQUHA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CA31/090F14FA500C11EE82B26863C4F9AE02/D994A1B2500C11EE83562B60C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.247.28.0/23 IPv6: 2401:1fe0::-2401:1fe0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0b:f6:08:6b:ad:ef:8e:1d:ee:fe:19:1d:bc:4c:e1:b8:ac:35: c6:2a:25:d6:70:9c:b7:21:95:62:10:eb:4d:9a:85:8e:1c:52: c1:21:dc:ec:05:f8:25:dc:fe:f2:5a:b1:09:03:b9:7d:d0:04: ca:f6:f3:ae:01:05:70:3e:59:cb:1c:ae:02:49:96:14:7c:23: 51:8d:72:37:ac:f4:eb:3e:25:4d:f7:bf:28:24:06:07:f6:18: 14:d0:31:41:fb:b6:ed:1a:e2:be:61:39:9b:f0:00:1c:e4:ee: 41:3f:0d:62:f0:1c:ce:3f:0c:ab:9a:66:13:c5:cc:0c:93:90: 8e:67:ff:ed:2f:c7:58:a4:8f:91:8e:d0:0b:7a:b2:b7:8d:35: 8f:fb:fd:8e:ff:5d:ea:53:45:1f:5e:cc:6d:63:5e:2f:11:45: 4f:53:d8:48:5d:4c:d5:21:c1:22:07:44:6f:49:0e:50:49:e3: 62:e7:48:ca:65:33:6e:61:93:fc:ca:0b:2d:d9:db:37:a7:06: 28:07:17:d0:a9:ca:04:53:1c:f6:0e:94:3e:58:8d:e6:71:6c: 20:68:d3:0c:3e:60:6d:e6:c6:ff:1f:2a:fe:0e:0e:8f:2b:70: 80:0c:4d:17:56:fa:a2:3e:91:62:72:ce:d9:3f:9c:8e:8c:cc: 4f:73:0c:60 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICALwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNBMzExMTAvBgNVBAUTKDFFRjMwQzRDNTYwNEE1NkVDQjNFQUVFN0YyQ0E5N0VC NzgxMDUwNzAwHhcNMjQwODA1MTI0MDExWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIwYzgyYi03NzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArY7+YHlBsq3DvVP+f+A5V8se6Wv5U/iXhzjf+S69/DPLm1M4NXc7rfZsM/6u 01QG098e1HB5uYOjP633L4cO8FJGNmuquKDJlyp2RmUcYVBknpAnjD1/sTh3s+mW U85YEt26+tgIkgEMIsYtS8SUvlL5Pvzv16Ig9WlvdOZHQxypPfXk4WvIvxEtjcFg FoJzbnLbGn4miBqrBQoINcW/ifj+vwYzX7RSMunSBBtVwlZc8eYrJquMxCQdH8T/ Zo1Grgeg8ucHBJBxX3EugwNY+CCBLFYVvRJ+PjL9xT9cRmpqdrXsE8ZWSRKghneE lMHGIW5/YAY6vLw4HHDD4V/CmwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFKxmSBCe FmgcK8f7amg8laBjugB5MB8GA1UdIwQYMBaAFB7zDExWBKVuyz6u5/LKl+t4EFBw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0EzMS8wOTBGMTRGQTUw MEMxMUVFODJCMjY4NjNDNEY5QUUwMi9Idk1NVEZZRXBXN0xQcTduOHNxWDYzZ1FV SEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0h2TU1URllFcFc3TFBxN244c3FYNjNnUVVIQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNBMzEvMDkwRjE0RkE1MDBDMTFFRTgyQjI2ODYzQzRGOUFFMDIvRDk5NEExQjI1 MDBDMTFFRTgzNTYyQjYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFn9xwwGAQCAAIwEjAQAwUFJAEf4AMHACQBH+AAAjANBgkq hkiG9w0BAQsFAAOCAQEAC/YIa63vjh3u/hkdvEzhuKw1xiol1nCctyGVYhDrTZqF jhxSwSHc7AX4Jdz+8lqxCQO5fdAEyvbzrgEFcD5ZyxyuAkmWFHwjUY1yN6z06z4l Tfe/KCQGB/YYFNAxQfu27RrivmE5m/AAHOTuQT8NYvAczj8Mq5pmE8XMDJOQjmf/ 7S/HWKSPkY7QC3qyt401j/v9jv9d6lNFH17MbWNeLxFFT1PYSF1M1SHBIgdEb0kO UEnjYudIymUzbmGT/MoLLdnbN6cGKAcX0KnKBFMc9g6UPliN5nFsIGjTDD5gbebG /x8q/g4OjytwgAxNF1b6oj6RYnLO2T+cjozMT3MMYA== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:06 2024 by rpki-client on console-ams.rpki-client.org