$ rpki-client -vvf rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/0B72CFAC049211EBB8144531C4F9AE02.roa File: 0B72CFAC049211EBB8144531C4F9AE02.roa (raw, json) Hash identifier: HoemRN9Bqh3dS3wFw1CGTUnb1f4mFjxNW0+qSLr4eCE= Subject key identifier: 37:64:26:4E:D4:1F:DD:A3:18:0C:FD:F1:2D:6D:15:7B:F5:17:77:D9 Certificate issuer: /CN=A917A47E/serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Certificate serial: 235A Authority key identifier: 02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/0B72CFAC049211EBB8144531C4F9AE02.roa Signing time: Fri 30 Aug 2024 16:23:05 +0000 ROA not before: Fri 30 Aug 2024 16:23:05 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 133466 IP address blocks: 45.112.36.0/22 maxlen: 24 103.4.124.0/22 maxlen: 24 2401:d00::/32 maxlen: 32 2401:d00::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9050 (0x235a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917A47E/serialNumber=02E97CAF6BB554871B7ABCE6E8D78320EB944691 Validity Not Before: Aug 30 16:23:05 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66d1f1e9-6428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:08:18:84:15:b5:62:01:f5:53:c6:d2:6d:24: 76:4a:4e:08:fc:1f:ae:71:e0:86:68:0a:09:2a:75: 87:55:e1:32:75:c2:af:25:b2:8d:a9:9a:07:fe:11: 9f:70:eb:48:0b:f9:7d:b3:df:a8:4f:47:f7:08:fe: 28:6c:76:fb:3c:3b:ec:6c:e0:2d:96:93:54:1f:99: 05:e9:20:c1:bd:c9:13:b9:30:07:84:fe:21:c6:33: 4b:2f:f5:c6:3a:a7:2c:cf:0e:0d:e0:fa:02:2d:d8: 85:86:6e:51:69:15:fb:2b:17:7f:91:ca:86:c7:8d: 47:43:3d:d6:dc:8c:2f:b0:41:20:9f:b3:8f:b1:50: bb:ab:5a:6b:31:de:c3:26:1f:c4:99:a0:41:1d:77: 29:29:4f:bf:d4:fa:16:1c:e3:5a:3e:ce:a2:b3:7b: 8e:e9:21:02:58:a3:fb:02:55:5f:f7:a1:96:05:bf: 3a:6f:2a:cb:ed:d1:96:5a:48:b3:99:73:2a:12:b7: 9e:4d:10:38:a0:e5:5a:e3:01:49:a3:40:a8:a0:3d: 8b:5f:c5:92:69:77:5e:34:01:04:3e:9e:b0:03:be: 40:45:1c:c9:5a:ff:21:9d:52:5c:f7:a0:5e:2d:23: f6:60:c3:4d:55:66:18:8a:3b:25:ad:18:1c:8e:bc: eb:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:64:26:4E:D4:1F:DD:A3:18:0C:FD:F1:2D:6D:15:7B:F5:17:77:D9 X509v3 Authority Key Identifier: keyid:02:E9:7C:AF:6B:B5:54:87:1B:7A:BC:E6:E8:D7:83:20:EB:94:46:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/Aul8r2u1VIcberzm6NeDIOuURpE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Aul8r2u1VIcberzm6NeDIOuURpE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917A47E/3E6BEC56690911E5804F0072C4F9AE02/0B72CFAC049211EBB8144531C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.36.0/22 103.4.124.0/22 IPv6: 2401:d00::/32 Signature Algorithm: sha256WithRSAEncryption 78:67:1b:6a:0d:6e:2f:ad:cb:1d:d9:e2:88:72:1b:cf:51:32: 87:55:ae:ab:46:57:f4:06:f7:4a:fe:43:74:64:39:f8:e3:fe: ba:87:35:93:df:31:6a:cc:de:35:9d:77:03:22:dc:2e:2c:91: d9:11:da:42:84:cd:9d:c9:0c:b9:02:47:64:98:c2:5e:4b:0d: 14:18:1a:b6:81:2d:71:e4:b0:8c:23:7d:bc:28:b6:8d:12:f3: a1:d8:0e:09:75:74:5e:02:53:d3:93:20:c2:cb:32:4e:2a:f5: f5:3d:f3:f6:d8:24:6b:5d:cf:2c:04:67:91:cd:db:43:c3:d7: b2:6e:6d:93:b9:fa:90:6e:8f:b5:d7:8d:6a:14:69:98:75:59: 2f:a3:33:be:f5:7a:95:90:6e:b3:1e:f2:0e:de:0e:94:88:b0: 67:14:d7:83:b1:57:90:8b:b0:74:0f:d1:1f:e9:29:25:2d:a1: a8:a1:bf:ad:e4:34:1d:8a:c8:68:4f:eb:0a:da:e1:a0:29:bb: dc:6f:cd:08:b2:ac:a1:89:8d:e0:58:ad:a4:4b:e8:85:e8:85: 15:b3:9a:9a:91:cf:60:5c:62:3b:6d:78:2a:5f:21:89:be:7a: 89:64:38:61:14:9d:9a:54:6e:c0:b9:d6:af:6e:c7:9d:af:05: d3:dc:25:29 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICI1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0E0N0UxMTAvBgNVBAUTKDAyRTk3Q0FGNkJCNTU0ODcxQjdBQkNFNkU4RDc4MzIw RUI5NDQ2OTEwHhcNMjQwODMwMTYyMzA1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQxZjFlOS02NDI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQgYhBW1YgH1U8bSbSR2Sk4I/B+uceCGaAoJKnWHVeEydcKvJbKNqZoH/hGf cOtIC/l9s9+oT0f3CP4obHb7PDvsbOAtlpNUH5kF6SDBvckTuTAHhP4hxjNLL/XG Oqcszw4N4PoCLdiFhm5RaRX7Kxd/kcqGx41HQz3W3IwvsEEgn7OPsVC7q1prMd7D Jh/EmaBBHXcpKU+/1PoWHONaPs6is3uO6SECWKP7AlVf96GWBb86byrL7dGWWkiz mXMqEreeTRA4oOVa4wFJo0CooD2LX8WSaXdeNAEEPp6wA75ARRzJWv8hnVJc96Be LSP2YMNNVWYYijslrRgcjrzrGwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDdkJk7U H92jGAz98S1tFXv1F3fZMB8GA1UdIwQYMBaAFALpfK9rtVSHG3q85ujXgyDrlEaR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QTQ3RS8zRTZCRUM1NjY5 MDkxMUU1ODA0RjAwNzJDNEY5QUUwMi9BdWw4cjJ1MVZJY2JlcnptNk5lRElPdVVS cEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0F1bDhyMnUxVkljYmVyem02TmVESU91VVJwRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0E0N0UvM0U2QkVDNTY2OTA5MTFFNTgwNEYwMDcyQzRGOUFFMDIvMEI3MkNGQUMw NDkyMTFFQkI4MTQ0NTMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItcCQDBAJnBHwwDQQCAAIwBwMFACQBDQAwDQYJKoZIhvcN AQELBQADggEBAHhnG2oNbi+tyx3Z4ohyG89RModVrqtGV/QG90r+Q3RkOfjj/rqH NZPfMWrM3jWddwMi3C4skdkR2kKEzZ3JDLkCR2SYwl5LDRQYGraBLXHksIwjfbwo to0S86HYDgl1dF4CU9OTIMLLMk4q9fU98/bYJGtdzywEZ5HN20PD17JubZO5+pBu j7XXjWoUaZh1WS+jM771epWQbrMe8g7eDpSIsGcU14OxV5CLsHQP0R/pKSUtoaih v63kNB2KyGhP6wra4aApu9xvzQiyrKGJjeBYraRL6IXohRWzmpqRz2BcYjtteCpf IYm+eolkOGEUnZpUbsC51q9ux52vBdPcJSk= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:22 2024 by rpki-client on console-ams.rpki-client.org