$ rpki-client -vvf rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/760FA4AA5B9D11EFBFA0A41FC4F9AE02.roa File: 760FA4AA5B9D11EFBFA0A41FC4F9AE02.roa (raw, json) Hash identifier: 9M+uOp4FadYXPMexyVArj6GMoHbJcEoJlKvsiGBBv6I= Subject key identifier: 16:99:45:21:D4:99:42:CA:E1:A5:28:8D:91:64:0F:7E:BF:8C:1F:8A Certificate issuer: /CN=A917928F/serialNumber=550B160FF4F5DD7D84AC3E8B959DD79A42FB57DA Certificate serial: 02 Authority key identifier: 55:0B:16:0F:F4:F5:DD:7D:84:AC:3E:8B:95:9D:D7:9A:42:FB:57:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQsWD_T13X2ErD6LlZ3XmkL7V9o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/760FA4AA5B9D11EFBFA0A41FC4F9AE02.roa Signing time: Fri 16 Aug 2024 07:02:12 +0000 ROA not before: Fri 16 Aug 2024 07:02:12 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 26658 IP address blocks: 59.152.48.0/22 maxlen: 22 103.205.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/VQsWD_T13X2ErD6LlZ3XmkL7V9o.crl rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/VQsWD_T13X2ErD6LlZ3XmkL7V9o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQsWD_T13X2ErD6LlZ3XmkL7V9o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:11:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917928F/serialNumber=550B160FF4F5DD7D84AC3E8B959DD79A42FB57DA Validity Not Before: Aug 16 07:02:12 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66bef974-b0e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d4:3b:95:9d:73:6e:30:41:16:a3:b1:e0:c8: 05:1e:4c:b7:71:7d:26:d0:2c:d8:5b:79:1a:8b:09: 8d:ec:b8:6a:d8:74:32:d9:0d:b9:f4:1b:4f:1e:f1: 5c:75:65:05:29:8a:09:f3:03:10:85:1e:02:e5:d0: 31:1f:ac:a8:20:62:b7:67:01:72:ac:95:db:3a:6f: e3:16:cb:16:59:6e:b2:1f:8f:1f:87:5b:c1:12:c1: 5b:2f:3c:6c:3b:7f:bb:23:51:c1:da:cb:91:ef:63: db:b1:a2:e0:2b:4c:26:db:e2:93:08:10:27:59:c9: 84:48:44:36:5a:2f:6c:36:38:57:0d:bb:3d:5b:10: c2:03:86:51:6d:13:1e:a2:5a:52:6a:3a:f0:80:97: b9:fc:77:e0:76:63:01:43:5f:fb:79:16:1b:99:64: c5:0e:67:ac:fe:70:dc:ae:37:2b:d5:cd:15:11:15: e8:5b:ff:04:61:60:b1:17:ad:c3:37:96:c8:57:ed: d2:24:03:5e:f2:8a:32:80:f4:6f:b3:be:72:6f:65: e6:ad:d9:70:d7:88:a4:32:05:ad:92:6f:65:82:40: f8:1a:97:eb:bc:5b:11:31:83:7b:57:00:bc:1e:ee: d4:73:c0:d5:21:e0:e8:84:78:2e:e4:3e:1b:f1:07: 8d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:99:45:21:D4:99:42:CA:E1:A5:28:8D:91:64:0F:7E:BF:8C:1F:8A X509v3 Authority Key Identifier: keyid:55:0B:16:0F:F4:F5:DD:7D:84:AC:3E:8B:95:9D:D7:9A:42:FB:57:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/VQsWD_T13X2ErD6LlZ3XmkL7V9o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VQsWD_T13X2ErD6LlZ3XmkL7V9o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917928F/16FF5F825B9D11EFB1D42146C4F9AE02/760FA4AA5B9D11EFBFA0A41FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.152.48.0/22 103.205.164.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:09:4c:a4:1a:49:0e:e3:9e:fa:ca:82:60:ab:f5:36:01:2e: 64:8d:cd:d4:9d:b5:f6:6a:4a:84:1c:3d:f9:e5:fa:57:75:27: 98:c3:52:dc:bf:25:9b:6c:95:dd:73:a4:4a:d7:a6:7b:be:c1: bd:02:18:88:f3:ac:89:a1:59:f0:fa:65:e7:24:ba:cb:58:18: 09:c8:7a:57:a5:53:e4:f5:e4:d0:74:7c:6d:dd:22:38:b5:85: c3:80:45:8a:2b:05:7a:f6:9b:d2:66:f0:d8:7b:0c:84:26:0f: 7f:00:d0:bc:b6:60:9f:8a:60:62:c6:ba:c3:a6:a7:08:a5:45: d2:50:62:b8:0d:ef:2f:84:1e:7d:cd:3a:ad:e5:51:6a:4b:7a: e0:2c:81:6e:be:2e:dc:b5:c5:6a:b0:38:af:e9:a6:c2:79:f0: 60:be:ec:e5:71:65:40:72:b2:c9:52:76:44:3a:65:2f:4f:49: 11:fc:5d:6e:d0:d8:c1:46:c4:a6:cb:7b:75:03:9b:22:70:58: f1:3d:b3:d9:46:85:5a:57:99:cb:ae:d7:5d:92:f0:4c:ba:94: 73:1a:91:4f:25:44:8c:f4:8f:88:a0:62:2b:e8:ee:5d:52:5c: 2b:19:e2:16:ae:88:33:98:ff:f4:d7:70:e5:5a:b3:4c:2c:26: 2b:38:71:38 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTI4RjExMC8GA1UEBRMoNTUwQjE2MEZGNEY1REQ3RDg0QUMzRThCOTU5REQ3OUE0 MkZCNTdEQTAeFw0yNDA4MTYwNzAyMTJaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YmVmOTc0LWIwZTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDc1DuVnXNuMEEWo7HgyAUeTLdxfSbQLNhbeRqLCY3suGrYdDLZDbn0G08e8Vx1 ZQUpignzAxCFHgLl0DEfrKggYrdnAXKslds6b+MWyxZZbrIfjx+HW8ESwVsvPGw7 f7sjUcHay5HvY9uxouArTCbb4pMIECdZyYRIRDZaL2w2OFcNuz1bEMIDhlFtEx6i WlJqOvCAl7n8d+B2YwFDX/t5FhuZZMUOZ6z+cNyuNyvVzRURFehb/wRhYLEXrcM3 lshX7dIkA17yijKA9G+zvnJvZeat2XDXiKQyBa2Sb2WCQPgal+u8WxExg3tXALwe 7tRzwNUh4OiEeC7kPhvxB42PAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUFplFIdSZ QsrhpSiNkWQPfr+MH4owHwYDVR0jBBgwFoAUVQsWD/T13X2ErD6LlZ3XmkL7V9ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5MjhGLzE2RkY1RjgyNUI5 RDExRUZCMUQ0MjE0NkM0RjlBRTAyL1ZRc1dEX1QxM1gyRXJENkxsWjNYbWtMN1Y5 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVlFzV0RfVDEzWDJFckQ2TGxaM1hta0w3VjlvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTI4Ri8xNkZGNUY4MjVCOUQxMUVGQjFENDIxNDZDNEY5QUUwMi83NjBGQTRBQTVC OUQxMUVGQkZBMEE0MUZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAjuYMAMEAmfNpDANBgkqhkiG9w0BAQsFAAOCAQEAmglMpBpJ DuOe+sqCYKv1NgEuZI3N1J219mpKhBw9+eX6V3UnmMNS3L8lm2yV3XOkSteme77B vQIYiPOsiaFZ8Ppl5yS6y1gYCch6V6VT5PXk0HR8bd0iOLWFw4BFiisFevab0mbw 2HsMhCYPfwDQvLZgn4pgYsa6w6anCKVF0lBiuA3vL4Qefc06reVRakt64CyBbr4u 3LXFarA4r+mmwnnwYL7s5XFlQHKyyVJ2RDplL09JEfxdbtDYwUbEpst7dQObInBY 8T2z2UaFWleZy67XXZLwTLqUcxqRTyVEjPSPiKBiK+juXVJcKxniFq6IM5j/9Ndw 5VqzTCwmKzhxOA== -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:14 2024 by rpki-client on console-ams.rpki-client.org