$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/8A1AF86E94BC11EC9E49DB41C4F9AE02.roa File: 8A1AF86E94BC11EC9E49DB41C4F9AE02.roa (raw, json) Hash identifier: +CRLrhJsItyG4k1jiQ8QBFKyQAaJTALKMwvCWSzLpEs= Subject key identifier: B9:A2:78:D3:7C:CF:85:BF:E2:08:D2:D5:5E:06:FA:FE:A1:7E:A5:66 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1C3A Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/8A1AF86E94BC11EC9E49DB41C4F9AE02.roa Signing time: Fri 16 Feb 2024 17:04:10 +0000 ROA not before: Fri 16 Feb 2024 17:04:10 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 31898 IP address blocks: 103.81.184.0/22 maxlen: 24 202.144.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7226 (0x1c3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Feb 16 17:04:10 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cf9589-3012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:32:d7:0f:81:a1:0b:0e:45:ad:f1:7a:4e:9c: 25:a5:64:53:48:c7:f3:a3:2c:84:84:0e:32:a1:ed: 8d:ec:17:c6:7f:1d:6e:3b:4d:d9:63:0e:df:14:2c: 84:97:af:4f:9c:c7:b2:db:24:0e:e9:5a:56:c5:b8: 27:bd:42:da:91:3f:cc:cf:08:d6:d3:35:37:2b:46: 27:41:ca:d0:a9:0a:4c:91:55:85:59:73:20:ab:18: ec:80:36:9e:18:52:97:f3:c8:0e:78:b6:d9:73:cc: e6:fe:43:d9:c4:54:82:d9:78:9a:7d:88:ba:12:7c: 20:06:23:4c:5d:ce:d8:87:ca:8c:d4:05:de:4d:e4: 7a:61:8d:0f:7f:33:2e:9b:6d:4c:94:e4:3e:a1:ac: 6c:02:cf:b8:75:4f:e7:1e:55:c5:7d:a4:ba:6d:50: 64:cd:cd:8d:34:12:41:89:69:11:b3:ec:4a:de:8e: 82:63:7e:68:a3:38:20:48:dc:06:11:15:a6:28:36: 0b:51:70:93:d4:b3:b8:a8:c0:f6:57:fb:5e:ab:b9: 15:d6:70:e0:cb:a6:c2:08:b5:98:a8:fa:ec:68:22: 2f:ec:42:03:73:72:e2:9c:8d:40:50:23:d8:40:eb: 78:69:28:c5:65:78:7e:50:ac:9d:59:e3:8a:09:c4: cf:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A2:78:D3:7C:CF:85:BF:E2:08:D2:D5:5E:06:FA:FE:A1:7E:A5:66 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/8A1AF86E94BC11EC9E49DB41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.184.0/22 202.144.196.0/22 Signature Algorithm: sha256WithRSAEncryption 77:db:a8:c4:9d:53:ae:91:cd:a3:a3:f5:c2:75:05:8c:5c:7b: 6a:c5:31:e4:4c:c8:cf:b1:54:f0:f2:34:f4:d1:26:ff:a2:2e: ae:89:34:4f:43:38:63:44:96:39:ac:c1:88:b1:b0:5f:4f:e2: c8:98:33:73:72:51:4e:fa:a1:1b:03:cc:55:c2:06:89:d8:0a: 85:49:7c:82:b6:8e:70:92:90:df:5d:5f:1b:42:0a:c9:67:66: 28:bb:f6:99:74:25:57:2c:28:c9:db:22:4c:a4:56:28:6e:2d: 4d:fa:3e:93:e4:a2:de:a9:66:7b:ef:c2:a4:61:51:5e:98:2b: 35:25:b3:e9:be:47:f7:86:79:5e:e5:98:ad:fd:ec:86:85:f8: e2:6e:48:cf:16:bc:1c:5f:48:ce:8d:65:50:27:62:72:32:51: 3f:6d:56:52:76:8a:63:5b:50:15:e0:2c:c8:27:db:2e:4d:84: 8d:b8:9a:c4:dc:5f:66:10:ea:fd:7e:75:b8:65:76:43:19:a7: f4:5e:ca:dd:98:43:5f:d3:be:40:bd:4d:79:f4:fa:ff:8a:29: fe:ef:10:98:f6:40:e2:51:3c:d4:f9:e3:df:eb:d7:0c:09:0d: a7:45:2a:5b:11:c4:61:e8:03:fd:53:9e:b1:51:61:4f:71:2b: 7e:07:bc:40 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHDowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjQwMjE2MTcwNDEwWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmOTU4OS0zMDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2DLXD4GhCw5FrfF6TpwlpWRTSMfzoyyEhA4yoe2N7BfGfx1uO03ZYw7fFCyE l69PnMey2yQO6VpWxbgnvULakT/MzwjW0zU3K0YnQcrQqQpMkVWFWXMgqxjsgDae GFKX88gOeLbZc8zm/kPZxFSC2XiafYi6EnwgBiNMXc7Yh8qM1AXeTeR6YY0PfzMu m21MlOQ+oaxsAs+4dU/nHlXFfaS6bVBkzc2NNBJBiWkRs+xK3o6CY35oozggSNwG ERWmKDYLUXCT1LO4qMD2V/teq7kV1nDgy6bCCLWYqPrsaCIv7EIDc3LinI1AUCPY QOt4aSjFZXh+UKydWeOKCcTPkwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLmieNN8 z4W/4gjS1V4G+v6hfqVmMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCRjIvRTM0NDUwMTZDMkY4MTFFNjk5N0FFQjZCQzRGOUFFMDIvOEExQUY4NkU5 NEJDMTFFQzlFNDlEQjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUbgDBALKkMQwDQYJKoZIhvcNAQELBQADggEBAHfbqMSd U66RzaOj9cJ1BYxce2rFMeRMyM+xVPDyNPTRJv+iLq6JNE9DOGNEljmswYixsF9P 4siYM3NyUU76oRsDzFXCBonYCoVJfIK2jnCSkN9dXxtCCslnZii79pl0JVcsKMnb IkykVihuLU36PpPkot6pZnvvwqRhUV6YKzUls+m+R/eGeV7lmK397IaF+OJuSM8W vBxfSM6NZVAnYnIyUT9tVlJ2imNbUBXgLMgn2y5NhI24msTcX2YQ6v1+dbhldkMZ p/Reyt2YQ1/TvkC9TXn0+v+KKf7vEJj2QOJRPNT549/r1wwJDadFKlsRxGHoA/1T nrFRYU9xK34HvEA= -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:03 2024 by rpki-client on console-fra.rpki-client.org