$ rpki-client -vvf rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa File: 8F9CB4448F3511ECB2182782C4F9AE02.roa (raw, json) Hash identifier: DWvrRFsnIPoLKEJMzAK4aBrg0Gv8BJj/6fbSi0CsC/o= Subject key identifier: 8A:C9:9F:81:66:4A:F8:F5:8B:DA:F3:C3:AA:B9:5F:32:88:BF:07:F4 Certificate issuer: /CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Certificate serial: 032D Authority key identifier: 80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa Signing time: Thu 21 Mar 2024 02:45:17 +0000 ROA not before: Thu 21 Mar 2024 02:45:17 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 18250 IP address blocks: 103.181.44.0/23 maxlen: 24 2400:58a0:d000::/36 maxlen: 48 2400:58a0:e000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 813 (0x32d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B4BF/serialNumber=8035090A057327E1200593C20C88C519A45C9ECB Validity Not Before: Mar 21 02:45:17 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fb9f3d-91e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:de:14:2e:47:9e:8e:74:12:dd:6f:2a:88:d8: 16:0c:51:74:6a:95:0e:76:06:15:41:67:b9:2f:22: 9c:f7:08:6d:2e:13:4c:c6:3f:f1:20:ab:86:14:0f: bb:3d:3b:37:7f:01:15:74:5d:30:38:c7:39:28:2b: 43:91:95:a2:07:57:54:3e:50:06:a3:fd:84:88:af: 52:8c:0a:ea:03:8e:08:29:f1:37:b4:05:b9:6a:01: 9a:98:df:4d:5d:14:51:d0:0d:04:e3:c5:e6:50:3e: 9a:8f:70:22:da:4e:73:8e:ae:b0:61:2b:95:4a:3e: 70:5e:7e:40:6d:09:39:6b:6c:54:e7:31:5e:23:73: ea:3d:49:7d:66:74:ad:d9:64:18:ab:01:a5:11:e4: 45:cc:97:ab:9b:e3:d9:ed:f5:6d:a6:f1:41:37:c4: 42:06:96:73:fa:45:e5:69:6e:8c:c2:f7:ef:ea:27: 4e:e4:b3:86:bb:04:fa:03:16:6c:41:cd:29:5a:65: a4:73:9c:9b:be:3c:62:8f:65:80:e6:99:4f:6c:2a: 76:a4:17:7f:26:10:ef:86:66:d4:e1:f1:23:26:4a: a4:e9:f6:eb:62:04:15:24:a2:2f:bd:4e:56:a4:cf: 9a:0d:79:7a:19:17:e3:c5:7a:9e:fe:0a:58:24:08: c8:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C9:9F:81:66:4A:F8:F5:8B:DA:F3:C3:AA:B9:5F:32:88:BF:07:F4 X509v3 Authority Key Identifier: keyid:80:35:09:0A:05:73:27:E1:20:05:93:C2:0C:88:C5:19:A4:5C:9E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/gDUJCgVzJ-EgBZPCDIjFGaRcnss.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gDUJCgVzJ-EgBZPCDIjFGaRcnss.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B4BF/B8CC693C855C11EC8E3CBB51C4F9AE02/8F9CB4448F3511ECB2182782C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.181.44.0/23 IPv6: 2400:58a0:d000::-2400:58a0:efff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 9a:65:f0:cf:26:dd:4f:2a:1d:67:92:5e:38:99:d9:d7:86:1a: 40:6b:53:e5:36:7c:b3:70:53:09:09:f5:03:0d:71:8d:05:60: 1c:2e:64:92:24:a9:d1:04:f3:7f:70:fc:e4:32:15:7a:0f:7b: 47:c5:ca:51:a7:e4:33:24:96:70:80:de:c0:4b:cd:98:dd:14: 29:5d:5d:e4:ce:ea:f7:27:17:52:b0:8c:9a:0f:33:b6:5e:5a: 2a:28:15:cb:27:e1:c1:6b:60:92:bd:70:0c:7c:08:ab:66:37: 00:8a:29:7a:e0:73:f8:2e:24:fc:34:c3:96:54:95:a8:89:62: 64:fb:a9:dc:33:cb:db:33:c0:97:a6:bc:78:a9:d9:78:1c:78: fb:66:15:69:07:77:aa:fa:9a:f6:9c:92:d5:6e:5e:4d:64:0c: 8a:fb:ff:20:21:ef:c4:27:97:96:40:84:21:4f:8d:4b:53:76: f5:8e:30:1f:ff:6b:57:41:60:03:71:a8:c0:3e:09:48:58:d7: 3f:9f:fc:b5:47:d9:fe:44:be:c2:1c:18:ec:72:ae:aa:91:35: d7:fd:23:f3:b0:93:f3:b3:e0:b4:c9:30:f1:41:27:9d:3c:6a: 94:d8:bb:eb:a1:cd:27:ba:06:89:fb:23:ee:22:aa:16:94:7f: 15:05:d6:6f -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAy0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I0QkYxMTAvBgNVBAUTKDgwMzUwOTBBMDU3MzI3RTEyMDA1OTNDMjBDODhDNTE5 QTQ1QzlFQ0IwHhcNMjQwMzIxMDI0NTE3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWZiOWYzZC05MWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3t4ULkeejnQS3W8qiNgWDFF0apUOdgYVQWe5LyKc9whtLhNMxj/xIKuGFA+7 PTs3fwEVdF0wOMc5KCtDkZWiB1dUPlAGo/2EiK9SjArqA44IKfE3tAW5agGamN9N XRRR0A0E48XmUD6aj3Ai2k5zjq6wYSuVSj5wXn5AbQk5a2xU5zFeI3PqPUl9ZnSt 2WQYqwGlEeRFzJerm+PZ7fVtpvFBN8RCBpZz+kXlaW6Mwvfv6idO5LOGuwT6AxZs Qc0pWmWkc5ybvjxij2WA5plPbCp2pBd/JhDvhmbU4fEjJkqk6fbrYgQVJKIvvU5W pM+aDXl6GRfjxXqe/gpYJAjIXQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFIrJn4Fm Svj1i9rzw6q5XzKIvwf0MB8GA1UdIwQYMBaAFIA1CQoFcyfhIAWTwgyIxRmkXJ7L MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjRCRi9COENDNjkzQzg1 NUMxMUVDOEUzQ0JCNTFDNEY5QUUwMi9nRFVKQ2dWekotRWdCWlBDRElqRkdhUmNu c3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dEVUpDZ1Z6Si1FZ0JaUENESWpGR2FSY25zcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I0QkYvQjhDQzY5M0M4NTVDMTFFQzhFM0NCQjUxQzRGOUFFMDIvOEY5Q0I0NDQ4 RjM1MTFFQ0IyMTgyNzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFntSwwGAQCAAIwEjAQAwYEJABYoNADBgQkAFig4DANBgkq hkiG9w0BAQsFAAOCAQEAmmXwzybdTyodZ5JeOJnZ14YaQGtT5TZ8s3BTCQn1Aw1x jQVgHC5kkiSp0QTzf3D85DIVeg97R8XKUafkMySWcIDewEvNmN0UKV1d5M7q9ycX UrCMmg8ztl5aKigVyyfhwWtgkr1wDHwIq2Y3AIopeuBz+C4k/DTDllSVqIliZPup 3DPL2zPAl6a8eKnZeBx4+2YVaQd3qvqa9pyS1W5eTWQMivv/ICHvxCeXlkCEIU+N S1N29Y4wH/9rV0FgA3GowD4JSFjXP5/8tUfZ/kS+whwY7HKuqpE11/0j87CT87Pg tMkw8UEnnTxqlNi766HNJ7oGifsj7iKqFpR/FQXWbw== -----END CERTIFICATE-----Generated at Thu Nov 21 01:26:01 2024 by rpki-client on console-ams.rpki-client.org