$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/4D609E86FF3B11EB910E8847C4F9AE02.roa File: 4D609E86FF3B11EB910E8847C4F9AE02.roa (raw, json) Hash identifier: nrk3DaY23QVKoexK2vSoORrq05ctVuvDGn2F2Uteovc= Subject key identifier: 53:0D:0F:A4:3A:8B:3C:8E:1D:A7:84:FA:25:72:BA:7F:BA:91:54:E7 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1C38 Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/4D609E86FF3B11EB910E8847C4F9AE02.roa Signing time: Fri 16 Feb 2024 17:04:08 +0000 ROA not before: Fri 16 Feb 2024 17:04:08 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 17767 IP address blocks: 103.81.184.0/22 maxlen: 22 202.144.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7224 (0x1c38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2 Validity Not Before: Feb 16 17:04:08 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cf9587-f988 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:aa:13:fc:d3:a2:6d:d8:87:bc:36:a3:76:f4: e7:10:a9:d2:77:65:05:87:93:6c:a7:13:d8:5c:76: bc:6a:07:e6:51:18:d0:68:15:5b:3b:6e:86:82:9e: 10:d3:87:2b:e4:e9:89:7d:fe:de:d1:65:57:08:9d: 55:18:c6:0b:73:9f:e8:89:e1:44:51:bd:15:fb:71: cc:6a:ae:b6:05:ab:ff:93:74:29:0e:60:f7:f2:88: 87:35:5d:00:df:3d:92:ea:56:b8:f0:d1:64:85:f2: 0a:77:6b:0d:3e:ad:80:8b:4c:a7:64:61:75:24:ab: e7:e4:46:11:e5:d5:96:15:54:d0:13:6e:8d:98:38: 79:61:7d:16:c9:8b:46:ae:65:ee:5c:50:ea:2a:63: 20:be:69:8f:55:b6:f6:f2:db:fe:a2:87:55:bf:cd: a8:ae:78:92:1a:3c:a1:a2:36:bb:02:56:13:5b:c7: 14:19:b5:44:f6:e9:76:92:d6:61:65:bf:92:08:41: 53:ef:09:65:28:a8:df:7d:b7:11:0d:27:cf:5b:1f: b9:4b:cb:d6:22:95:22:98:ec:8b:88:2b:bc:10:b1: 01:b4:55:c2:a3:75:0e:57:24:be:19:ec:00:d6:c9: d7:be:20:5f:98:42:28:2f:f0:8c:54:d9:ce:cc:6d: 8e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:0D:0F:A4:3A:8B:3C:8E:1D:A7:84:FA:25:72:BA:7F:BA:91:54:E7 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/4D609E86FF3B11EB910E8847C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.184.0/22 202.144.196.0/22 Signature Algorithm: sha256WithRSAEncryption af:a5:94:4d:05:5c:92:01:5c:59:fa:94:13:05:55:de:8c:1e: 0c:a0:cc:78:cf:5e:4f:bb:a7:c5:a5:32:05:d4:c7:19:ad:94: 53:0a:84:2a:10:70:66:ec:d7:cc:87:9c:db:66:30:87:5a:61: 56:1c:2d:ab:5e:d5:4e:63:bd:b2:46:07:2a:f8:d3:8a:6a:c0: f1:20:da:73:fc:58:d0:82:2a:6b:4b:c6:f5:3f:84:9b:e0:6e: 3d:02:5c:16:01:60:d8:76:53:7f:1a:94:30:b9:30:6d:ca:09: 1c:a8:27:d8:aa:4f:72:b6:ab:31:0d:a6:e2:63:24:cf:34:c7: 52:fb:03:5b:ec:04:1d:dc:cc:8e:c7:1f:22:8b:f0:59:dd:b3: 22:6f:46:75:1b:54:06:c9:4f:57:6e:31:e4:67:4c:e4:b4:96: f4:1c:79:35:97:2c:d7:b5:75:1d:eb:b4:85:0e:5c:81:ef:0f: e1:59:31:e1:a8:44:b2:6d:76:16:26:58:04:3e:b8:08:74:a5: 58:d9:d3:ef:ec:69:9b:fc:27:51:31:6a:a4:02:12:8d:73:89: 81:5e:ee:7f:5c:42:a3:38:7b:8f:8a:9b:79:d6:35:08:d7:8e: 8a:7b:fb:90:ce:69:e0:0c:3a:32:fa:c8:f6:13:09:6b:02:a3: 66:57:43:4b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjQwMjE2MTcwNDA4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmOTU4Ny1mOTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKoT/NOibdiHvDajdvTnEKnSd2UFh5NspxPYXHa8agfmURjQaBVbO26Ggp4Q 04cr5OmJff7e0WVXCJ1VGMYLc5/oieFEUb0V+3HMaq62Bav/k3QpDmD38oiHNV0A 3z2S6la48NFkhfIKd2sNPq2Ai0ynZGF1JKvn5EYR5dWWFVTQE26NmDh5YX0WyYtG rmXuXFDqKmMgvmmPVbb28tv+oodVv82orniSGjyhoja7AlYTW8cUGbVE9ul2ktZh Zb+SCEFT7wllKKjffbcRDSfPWx+5S8vWIpUimOyLiCu8ELEBtFXCo3UOVyS+GewA 1snXviBfmEIoL/CMVNnOzG2OnwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFMND6Q6 izyOHaeE+iVyun+6kVTnMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCRjIvRTM0NDUwMTZDMkY4MTFFNjk5N0FFQjZCQzRGOUFFMDIvNEQ2MDlFODZG RjNCMTFFQjkxMEU4ODQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUbgDBALKkMQwDQYJKoZIhvcNAQELBQADggEBAK+llE0F XJIBXFn6lBMFVd6MHgygzHjPXk+7p8WlMgXUxxmtlFMKhCoQcGbs18yHnNtmMIda YVYcLate1U5jvbJGByr404pqwPEg2nP8WNCCKmtLxvU/hJvgbj0CXBYBYNh2U38a lDC5MG3KCRyoJ9iqT3K2qzENpuJjJM80x1L7A1vsBB3czI7HHyKL8FndsyJvRnUb VAbJT1duMeRnTOS0lvQceTWXLNe1dR3rtIUOXIHvD+FZMeGoRLJtdhYmWAQ+uAh0 pVjZ0+/saZv8J1ExaqQCEo1ziYFe7n9cQqM4e4+Km3nWNQjXjop7+5DOaeAMOjL6 yPYTCWsCo2ZXQ0s= -----END CERTIFICATE-----Generated at Sun Feb 16 21:02:03 2025 by rpki-client