$ rpki-client -vvf rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/B9629D3258D611ED86C99945C4F9AE02.roa File: B9629D3258D611ED86C99945C4F9AE02.roa (raw, json) Hash identifier: Ai9962mG9CfH4Up1uRkcnN8BqOS0dn7/PxJB7iHyLMk= Subject key identifier: 90:7D:F4:67:04:2F:AA:6D:1F:9A:ED:0E:84:64:03:1D:AE:9C:33:62 Certificate issuer: /CN=A917DDD6/serialNumber=B0557173A008D6F78C6E5E6B40F8DC079A8DF65F Certificate serial: 1212 Authority key identifier: B0:55:71:73:A0:08:D6:F7:8C:6E:5E:6B:40:F8:DC:07:9A:8D:F6:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sFVxc6AI1veMbl5rQPjcB5qN9l8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/B9629D3258D611ED86C99945C4F9AE02.roa Signing time: Sat 16 Dec 2023 17:45:02 +0000 ROA not before: Sat 16 Dec 2023 17:45:02 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136001 IP address blocks: 103.79.124.0/22 maxlen: 24 202.179.132.0/22 maxlen: 24 2401:1840::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/sFVxc6AI1veMbl5rQPjcB5qN9l8.crl rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/sFVxc6AI1veMbl5rQPjcB5qN9l8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sFVxc6AI1veMbl5rQPjcB5qN9l8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 17:45:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4626 (0x1212) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DDD6/serialNumber=B0557173A008D6F78C6E5E6B40F8DC079A8DF65F Validity Not Before: Dec 16 17:45:02 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657de21e-7bd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:88:78:5d:e7:75:ac:aa:3d:b9:5b:b1:4c:82: dd:ec:7d:09:f5:bb:db:6a:93:7b:f0:96:57:87:18: 23:96:98:52:ef:f6:40:bd:02:e6:d2:66:6f:29:8c: a4:ec:c0:25:cb:19:8c:1e:82:3b:ce:58:c8:58:20: 49:f6:1f:9d:d3:ac:37:3a:37:c7:fc:7e:a9:68:3b: 4a:de:06:e7:48:b2:c9:69:1a:c0:da:86:42:8b:4f: f3:c1:25:07:26:61:b7:2c:01:0d:65:ec:25:b0:8f: 9d:68:40:4d:20:66:18:4c:b9:0b:54:24:b8:3e:1f: 6c:ab:77:e8:07:e5:5b:ec:7c:ea:45:b9:4a:b1:40: 82:b5:a8:51:5a:ed:e8:2f:46:10:dd:e3:06:26:ce: a8:0a:87:3e:5a:4a:43:db:35:41:74:61:8d:34:7f: 58:21:7d:8d:9d:b0:32:ae:8c:36:98:f1:a2:4a:bd: 50:38:57:a9:1e:51:00:1a:05:ac:37:b3:2a:1d:1c: ee:3b:3e:40:ec:c5:56:be:a4:0e:2e:10:a9:d2:00: 6b:de:f3:73:58:46:80:45:c5:47:50:97:93:88:d4: 41:0f:38:56:d3:3a:02:ca:2e:44:df:61:9f:47:da: 44:dd:9a:71:6b:57:a6:08:74:2c:a2:e5:8c:67:fd: 72:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:7D:F4:67:04:2F:AA:6D:1F:9A:ED:0E:84:64:03:1D:AE:9C:33:62 X509v3 Authority Key Identifier: keyid:B0:55:71:73:A0:08:D6:F7:8C:6E:5E:6B:40:F8:DC:07:9A:8D:F6:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/sFVxc6AI1veMbl5rQPjcB5qN9l8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sFVxc6AI1veMbl5rQPjcB5qN9l8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DDD6/E5347B1CAD2011E8BA9D951AC4F9AE02/B9629D3258D611ED86C99945C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.124.0/22 202.179.132.0/22 IPv6: 2401:1840::/32 Signature Algorithm: sha256WithRSAEncryption 09:71:38:51:23:1d:f7:a7:bc:e8:07:56:93:09:53:ba:11:63: 21:26:75:1e:ac:6f:33:cc:62:69:e8:d8:3f:ee:2a:f9:61:17: 6c:2f:eb:00:c8:18:6c:99:59:7e:8b:d7:f1:54:c9:f0:95:7e: f4:17:4c:ef:1c:05:52:27:6f:70:c0:d1:4e:56:be:56:90:78: 2f:d5:b3:cd:e5:bf:d9:89:2e:18:e7:5d:76:40:15:6e:84:53: 91:06:b3:ef:85:a6:5c:06:cb:59:20:fe:93:8c:10:79:bd:8b: b3:68:9b:93:b0:fa:87:19:50:bc:82:b5:c1:a1:f4:09:85:4a: 30:3a:8a:de:a1:a5:14:b7:65:3d:2b:9e:44:4f:05:84:10:dd: ce:09:c3:b4:40:72:4f:a9:bf:91:f0:42:fa:46:cb:31:6a:45: 32:98:94:36:c8:af:cb:84:e6:68:80:79:cf:4a:28:2d:f2:c4: c2:f1:d8:2a:6f:51:0a:ce:69:4b:61:0a:f0:b4:52:18:47:ba: bd:47:34:94:83:20:e4:f6:87:b8:59:0d:60:6a:51:d9:42:24: 08:ba:32:93:61:65:fd:33:f5:f0:d8:ca:bd:76:8d:7a:b6:b2: 08:11:3a:06:40:01:91:cf:85:d7:ee:38:f9:a9:d1:14:4c:1a: 70:7c:b2:4e -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEhIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RERDYxMTAvBgNVBAUTKEIwNTU3MTczQTAwOEQ2Rjc4QzZFNUU2QjQwRjhEQzA3 OUE4REY2NUYwHhcNMjMxMjE2MTc0NTAyWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdkZTIxZS03YmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYh4Xed1rKo9uVuxTILd7H0J9bvbapN78JZXhxgjlphS7/ZAvQLm0mZvKYyk 7MAlyxmMHoI7zljIWCBJ9h+d06w3OjfH/H6paDtK3gbnSLLJaRrA2oZCi0/zwSUH JmG3LAENZewlsI+daEBNIGYYTLkLVCS4Ph9sq3foB+Vb7HzqRblKsUCCtahRWu3o L0YQ3eMGJs6oCoc+WkpD2zVBdGGNNH9YIX2NnbAyrow2mPGiSr1QOFepHlEAGgWs N7MqHRzuOz5A7MVWvqQOLhCp0gBr3vNzWEaARcVHUJeTiNRBDzhW0zoCyi5E32Gf R9pE3Zpxa1emCHQsouWMZ/1ylQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJB99GcE L6ptH5rtDoRkAx2unDNiMB8GA1UdIwQYMBaAFLBVcXOgCNb3jG5ea0D43AeajfZf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RERENi9FNTM0N0IxQ0FE MjAxMUU4QkE5RDk1MUFDNEY5QUUwMi9zRlZ4YzZBSTF2ZU1ibDVyUVBqY0I1cU45 bDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NGVnhjNkFJMXZlTWJsNXJRUGpjQjVxTjlsOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RERDYvRTUzNDdCMUNBRDIwMTFFOEJBOUQ5NTFBQzRGOUFFMDIvQjk2MjlEMzI1 OEQ2MTFFRDg2Qzk5OTQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnT3wDBALKs4QwDQQCAAIwBwMFACQBGEAwDQYJKoZIhvcN AQELBQADggEBAAlxOFEjHfenvOgHVpMJU7oRYyEmdR6sbzPMYmno2D/uKvlhF2wv 6wDIGGyZWX6L1/FUyfCVfvQXTO8cBVInb3DA0U5WvlaQeC/Vs83lv9mJLhjnXXZA FW6EU5EGs++FplwGy1kg/pOMEHm9i7Nom5Ow+ocZULyCtcGh9AmFSjA6it6hpRS3 ZT0rnkRPBYQQ3c4Jw7RAck+pv5HwQvpGyzFqRTKYlDbIr8uE5miAec9KKC3yxMLx 2CpvUQrOaUthCvC0UhhHur1HNJSDIOT2h7hZDWBqUdlCJAi6MpNhZf0z9fDYyr12 jXq2sggROgZAAZHPhdfuOPmp0RRMGnB8sk4= -----END CERTIFICATE-----Generated at Fri May 24 21:43:16 2024 by rpki-client on console-ams.rpki-client.org