$ rpki-client -vvf rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa File: 282282B60D3011ED8DC4D26BC4F9AE02.roa (raw, json) Hash identifier: +qGeYJ79wvR0PdN91NY3rl/FLbIL0ABFLzdMSwQ0Nxs= Subject key identifier: 7A:DB:61:64:9B:D0:6D:91:4D:E3:F2:B5:A2:7E:95:10:6E:88:19:A6 Certificate issuer: /CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Certificate serial: 01CF Authority key identifier: 25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa Signing time: Thu 27 Jun 2024 03:45:17 +0000 ROA not before: Thu 27 Jun 2024 03:45:17 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 137890 IP address blocks: 103.116.156.0/24 maxlen: 24 2001:df5:5700::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:31:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 463 (0x1cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AF37/serialNumber=2566566A84C5DCE76F3B7F3908DE7F32B8676707 Validity Not Before: Jun 27 03:45:17 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667ce04d-0afb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:4b:d8:16:64:2e:1e:51:fe:17:b3:fa:ee:23: d9:0b:06:8c:e2:9f:4a:47:a2:ae:08:c2:c2:91:97: 53:f8:8f:09:64:a1:94:73:4b:48:1e:86:8a:c7:f6: 07:19:ff:28:02:44:04:43:d3:97:d0:6d:67:6f:e6: 46:c4:f6:55:55:54:8a:cb:66:2e:5d:30:c5:ad:5a: c9:18:e3:4c:71:26:fd:c2:04:1b:84:1b:1e:95:82: 08:bd:3e:e8:a0:d3:2e:22:2b:ce:44:6a:db:84:6a: 2d:9f:f1:4f:90:50:9c:f3:37:7b:08:ce:6a:1c:e6: 79:4d:b8:11:98:e5:bc:00:72:f6:8f:94:87:a9:c7: 7d:9e:2b:a9:af:08:eb:ac:40:d5:63:65:06:1e:e4: 48:d8:2f:ac:4e:91:c4:4a:fe:ea:52:2e:85:05:09: 3c:12:c1:f3:e9:26:e6:12:2b:e2:f7:5b:77:0b:ff: 2b:4b:19:d4:dd:66:9a:76:fc:b7:84:41:d2:f5:fb: 90:86:c8:43:59:ee:4b:c5:6b:78:19:27:89:6a:23: c2:c7:f1:f1:da:5f:1f:0e:e1:37:f5:0b:6a:41:be: 26:41:72:43:7d:96:82:95:c8:05:36:04:ab:a7:90: e2:8c:74:7a:58:48:71:0a:c0:77:cb:74:98:e9:79: 4c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:DB:61:64:9B:D0:6D:91:4D:E3:F2:B5:A2:7E:95:10:6E:88:19:A6 X509v3 Authority Key Identifier: keyid:25:66:56:6A:84:C5:DC:E7:6F:3B:7F:39:08:DE:7F:32:B8:67:67:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/JWZWaoTF3OdvO385CN5_MrhnZwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JWZWaoTF3OdvO385CN5_MrhnZwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AF37/C8CC5AB40D2D11EDB2C9BB69C4F9AE02/282282B60D3011ED8DC4D26BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.156.0/24 IPv6: 2001:df5:5700::/48 Signature Algorithm: sha256WithRSAEncryption 26:b2:72:6d:bf:94:ec:98:85:e4:d6:b9:2e:13:1f:c5:24:1a: 4a:ad:7a:6d:83:cc:cb:7b:94:52:db:93:0a:ba:28:87:5b:ff: 24:b6:97:a3:b3:42:a7:d6:f9:5b:c8:3d:8d:78:e0:24:e2:4a: da:93:23:e3:91:59:91:18:b9:c3:58:a6:9b:b0:27:37:cd:ce: 90:96:8c:d2:5c:f6:7d:7a:0f:db:66:74:f6:ba:2d:fd:f8:2a: d5:68:0e:5b:d5:6e:6a:58:50:21:65:16:3a:f4:cc:33:9d:53: e2:88:39:de:b4:70:3e:ba:24:d1:1c:96:8e:79:cc:ee:41:65: 1f:0e:68:13:3d:6f:59:d5:a5:13:95:d4:b1:67:8d:10:14:c6: b1:de:99:4d:d0:60:94:a6:69:7c:52:da:62:9d:b4:a3:4c:7a: cb:42:e4:9f:4f:bb:c0:5a:0d:3b:35:f7:d4:9c:c3:9a:d0:6d: 35:c2:bd:93:7b:84:14:36:37:a4:a8:d6:a2:88:32:65:49:a9: 6b:26:f7:e0:6f:4f:c9:50:3b:ad:f6:66:4c:73:11:8f:fb:e7: 8e:71:01:7f:6e:da:e8:39:64:84:ad:6b:5b:d8:dd:d5:95:d0: 72:6c:a9:e2:79:91:c0:c3:b5:5d:99:8e:12:e1:2d:d4:65:ba: 35:88:de:3a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0FGMzcxMTAvBgNVBAUTKDI1NjY1NjZBODRDNURDRTc2RjNCN0YzOTA4REU3RjMy Qjg2NzY3MDcwHhcNMjQwNjI3MDM0NTE3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjZTA0ZC0wYWZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk0vYFmQuHlH+F7P67iPZCwaM4p9KR6KuCMLCkZdT+I8JZKGUc0tIHoaKx/YH Gf8oAkQEQ9OX0G1nb+ZGxPZVVVSKy2YuXTDFrVrJGONMcSb9wgQbhBselYIIvT7o oNMuIivORGrbhGotn/FPkFCc8zd7CM5qHOZ5TbgRmOW8AHL2j5SHqcd9niuprwjr rEDVY2UGHuRI2C+sTpHESv7qUi6FBQk8EsHz6SbmEivi91t3C/8rSxnU3Waadvy3 hEHS9fuQhshDWe5LxWt4GSeJaiPCx/Hx2l8fDuE39QtqQb4mQXJDfZaClcgFNgSr p5DijHR6WEhxCsB3y3SY6XlM5QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHrbYWSb 0G2RTePytaJ+lRBuiBmmMB8GA1UdIwQYMBaAFCVmVmqExdznbzt/OQjefzK4Z2cH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QUYzNy9DOENDNUFCNDBE MkQxMUVEQjJDOUJCNjlDNEY5QUUwMi9KV1pXYW9URjNPZHZPMzg1Q041X01yaG5a d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pXWldhb1RGM09kdk8zODVDTjVfTXJoblp3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0FGMzcvQzhDQzVBQjQwRDJEMTFFREIyQzlCQjY5QzRGOUFFMDIvMjgyMjgyQjYw RDMwMTFFRDhEQzREMjZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABndJwwDwQCAAIwCQMHACABDfVXADANBgkqhkiG9w0BAQsF AAOCAQEAJrJybb+U7JiF5Na5LhMfxSQaSq16bYPMy3uUUtuTCrooh1v/JLaXo7NC p9b5W8g9jXjgJOJK2pMj45FZkRi5w1imm7AnN83OkJaM0lz2fXoP22Z09rot/fgq 1WgOW9VualhQIWUWOvTMM51T4og53rRwProk0RyWjnnM7kFlHw5oEz1vWdWlE5XU sWeNEBTGsd6ZTdBglKZpfFLaYp20o0x6y0Lkn0+7wFoNOzX31JzDmtBtNcK9k3uE FDY3pKjWoogyZUmpayb34G9PyVA7rfZmTHMRj/vnjnEBf27a6DlkhK1rW9jd1ZXQ cmyp4nmRwMO1XZmOEuEt1GW6NYjeOg== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:43 2024 by rpki-client on console-ams.rpki-client.org