$ rpki-client -vvf rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/C1C12662CFC811EB9A5C5879C4F9AE02.roa File: C1C12662CFC811EB9A5C5879C4F9AE02.roa (raw, json) Hash identifier: YxR/IEAXYjhKk4qyNbFNVRXx2+Bty0U++VTURHi/7GY= Subject key identifier: C0:42:A6:3A:7F:C3:9D:5F:C9:38:98:E2:9B:1C:AA:C0:77:B3:ED:2B Certificate issuer: /CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Certificate serial: 179F Authority key identifier: 62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/C1C12662CFC811EB9A5C5879C4F9AE02.roa Signing time: Tue 10 Sep 2024 17:24:46 +0000 ROA not before: Tue 10 Sep 2024 17:24:46 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55792 IP address blocks: 27.122.16.0/20 maxlen: 24 103.3.168.0/22 maxlen: 24 202.95.192.0/20 maxlen: 24 2400:9300::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:33:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6047 (0x179f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B1B1/serialNumber=62CFB610E9650FE3C8002BC617B705724D2A02DD Validity Not Before: Sep 10 17:24:46 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66e080dd-0f75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2c:96:22:8a:66:7f:5c:b3:61:c5:cd:61:d9: 39:65:da:c3:e2:f9:cc:9a:74:83:22:b6:ce:91:50: 57:51:94:48:59:b3:aa:3e:6f:a6:e4:20:51:47:c3: 9f:5f:44:f7:ab:6c:15:3d:21:4a:ef:79:f5:38:16: c3:c4:01:1a:0c:b0:8b:0a:d8:9f:2d:8b:e3:d2:ad: ae:1e:fd:04:eb:3f:90:ca:84:f5:7e:b1:9c:22:a8: 2b:4c:c7:94:1d:1c:1e:83:d9:38:fe:68:5e:a4:de: 6d:14:dd:ba:f6:7e:ff:c9:be:41:b3:1c:c9:7c:c3: 9f:12:b9:cd:1c:72:e5:1d:c6:f8:f2:69:bd:a7:3a: 19:fc:e4:98:68:05:7b:6f:9e:0f:12:7e:6d:8f:51: 3f:a1:70:18:15:89:65:8b:05:75:9c:b1:ac:b4:4a: 94:5e:68:2a:5c:a8:f0:5c:8b:1a:76:b8:64:86:e2: 91:6d:24:63:3a:3d:d9:91:9a:e3:e0:c2:64:16:99: c5:e0:9c:78:4e:07:19:bf:08:6d:b7:19:85:fe:57: 78:b6:c4:c2:4e:c9:04:61:aa:38:c7:81:7f:40:f5: 45:f8:0f:6f:46:74:00:eb:df:76:c2:f0:d1:f4:cb: b9:09:c3:a6:9a:40:07:10:1e:40:fd:b5:b3:02:e9: ab:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:42:A6:3A:7F:C3:9D:5F:C9:38:98:E2:9B:1C:AA:C0:77:B3:ED:2B X509v3 Authority Key Identifier: keyid:62:CF:B6:10:E9:65:0F:E3:C8:00:2B:C6:17:B7:05:72:4D:2A:02:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/Ys-2EOllD-PIACvGF7cFck0qAt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ys-2EOllD-PIACvGF7cFck0qAt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B1B1/A0F0ADF0B25211E78B50FF60C4F9AE02/C1C12662CFC811EB9A5C5879C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.122.16.0/20 103.3.168.0/22 202.95.192.0/20 IPv6: 2400:9300::/32 Signature Algorithm: sha256WithRSAEncryption 43:67:53:e0:4a:04:2f:b1:c6:2d:c9:28:3b:e4:59:ae:d6:a4: 79:b1:4d:4c:45:45:be:69:ef:dd:38:e4:ec:ab:32:47:9f:5e: 00:da:31:04:18:24:22:ee:e6:d3:91:64:d5:a4:36:04:48:82: 04:ff:6d:ce:5a:79:d6:82:0b:1f:c9:df:cd:ed:f0:a0:18:89: 1f:86:3b:06:69:4e:90:18:72:ba:65:1f:88:b9:22:b2:d9:00: da:3a:65:db:3e:30:15:8e:28:fe:b0:44:19:95:11:9a:fa:ce: 51:ad:cb:1a:72:b8:05:22:c7:2e:6d:b8:fd:b5:2b:27:66:9c: 10:2e:9a:27:5f:d5:b6:f2:20:1d:a5:b7:a1:e8:d8:60:bf:7b: ba:1a:de:02:c9:c8:8f:10:b5:ff:9a:c1:cf:cb:0a:67:fe:be: 3b:84:e8:aa:d0:5d:67:85:35:ef:93:77:e5:cc:c5:c8:96:c6: 3c:2b:ee:ab:ab:81:30:2b:18:d8:fd:20:73:0d:a4:d9:bf:53: 7b:4b:a4:55:2e:65:92:1f:6a:3d:f9:38:84:28:d3:fb:31:77: e1:75:63:32:38:e1:2a:5e:97:75:12:1e:4b:53:4b:fe:d3:19: fa:7b:4f:4a:20:c9:b6:12:7e:49:7c:6e:9c:fa:20:97:1b:2b: de:f5:09:7a -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICF58wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0IxQjExMTAvBgNVBAUTKDYyQ0ZCNjEwRTk2NTBGRTNDODAwMkJDNjE3QjcwNTcy NEQyQTAyREQwHhcNMjQwOTEwMTcyNDQ2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmUwODBkZC0wZjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvyyWIopmf1yzYcXNYdk5ZdrD4vnMmnSDIrbOkVBXUZRIWbOqPm+m5CBRR8Of X0T3q2wVPSFK73n1OBbDxAEaDLCLCtifLYvj0q2uHv0E6z+QyoT1frGcIqgrTMeU HRweg9k4/mhepN5tFN269n7/yb5BsxzJfMOfErnNHHLlHcb48mm9pzoZ/OSYaAV7 b54PEn5tj1E/oXAYFYlliwV1nLGstEqUXmgqXKjwXIsadrhkhuKRbSRjOj3ZkZrj 4MJkFpnF4Jx4TgcZvwhttxmF/ld4tsTCTskEYao4x4F/QPVF+A9vRnQA6992wvDR 9Mu5CcOmmkAHEB5A/bWzAumrWQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFMBCpjp/ w51fyTiY4pscqsB3s+0rMB8GA1UdIwQYMBaAFGLPthDpZQ/jyAArxhe3BXJNKgLd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjFCMS9BMEYwQURGMEIy NTIxMUU3OEI1MEZGNjBDNEY5QUUwMi9Zcy0yRU9sbEQtUElBQ3ZHRjdjRmNrMHFB dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lzLTJFT2xsRC1QSUFDdkdGN2NGY2swcUF0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0IxQjEvQTBGMEFERjBCMjUyMTFFNzhCNTBGRjYwQzRGOUFFMDIvQzFDMTI2NjJD RkM4MTFFQjlBNUM1ODc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAQbehADBAJnA6gDBATKX8AwDQQCAAIwBwMFACQAkwAwDQYJ KoZIhvcNAQELBQADggEBAENnU+BKBC+xxi3JKDvkWa7WpHmxTUxFRb5p79045Oyr MkefXgDaMQQYJCLu5tORZNWkNgRIggT/bc5aedaCCx/J383t8KAYiR+GOwZpTpAY crplH4i5IrLZANo6Zds+MBWOKP6wRBmVEZr6zlGtyxpyuAUixy5tuP21KydmnBAu midf1bbyIB2lt6Ho2GC/e7oa3gLJyI8Qtf+awc/LCmf+vjuE6KrQXWeFNe+Td+XM xciWxjwr7qurgTArGNj9IHMNpNm/U3tLpFUuZZIfaj35OIQo0/sxd+F1YzI44Spe l3USHktTS/7TGfp7T0ogybYSfkl8bpz6IJcbK971CXo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:05 2024 by rpki-client on console-ams.rpki-client.org