$ rpki-client -vvf rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/953250CAE90011EB8DE96E50C4F9AE02.roa File: 953250CAE90011EB8DE96E50C4F9AE02.roa (raw, json) Hash identifier: L1V702IcrknjYj/1v+mu1+mrKPDiKzApod7Zc+hqR3w= Subject key identifier: D5:F6:37:E6:3E:3C:6D:36:79:0E:79:1B:4A:3E:98:13:33:7E:3E:F5 Certificate issuer: /CN=A918919A/serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Certificate serial: 0A7F Authority key identifier: 2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/953250CAE90011EB8DE96E50C4F9AE02.roa Signing time: Fri 10 May 2024 20:59:23 +0000 ROA not before: Fri 10 May 2024 20:59:23 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 56307 IP address blocks: 103.227.20.0/22 maxlen: 24 139.5.172.0/22 maxlen: 24 203.22.104.0/23 maxlen: 24 2001:df1:3a00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:17:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2687 (0xa7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918919A/serialNumber=2E5BCBC661AFF1FED58B0FF4B583DCF5EC1A374A Validity Not Before: May 10 20:59:23 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=663e8aaa-59b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f3:d3:e1:b7:98:41:c5:3f:90:c1:71:9f:52: dd:95:5c:65:15:89:1d:a7:4f:bd:af:b8:ae:f4:e1: b6:e8:c8:1b:2b:ca:2e:c5:19:f9:7d:a8:56:6c:b2: 53:a7:91:d3:f3:8f:b5:4a:be:db:5a:8e:9a:dc:91: 76:dd:29:33:1e:1d:6a:dc:7b:b3:71:3b:a0:d2:38: 49:6d:35:f0:a1:0b:68:a4:b2:1e:75:73:93:ff:27: f6:22:32:2a:30:1e:e1:60:03:76:e2:8e:5a:0e:db: 5e:1d:59:59:a9:8a:8f:59:1d:b1:d6:72:2c:c1:a2: a7:b7:28:c9:b8:4e:80:02:b9:95:1a:63:fe:71:cb: 86:db:48:69:8d:76:9e:0b:72:9c:b3:67:88:18:cf: 0b:3e:20:8c:24:ce:60:b8:c0:95:3c:28:c2:d7:fb: 61:46:21:f6:91:20:05:25:4a:7a:ac:fb:6f:31:eb: ac:20:87:66:56:6d:db:8b:bd:14:ae:32:15:f0:76: 90:7f:b5:8b:d1:a5:97:36:11:cf:d0:4a:08:c6:dc: 3b:94:bc:df:d7:fc:74:bf:1e:5c:ef:54:61:6c:6f: 51:57:c3:77:fd:5a:ba:6d:c0:02:fd:2a:a1:2e:97: 10:95:a6:1f:d8:7b:5c:55:6e:b3:51:11:9b:86:71: 6d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F6:37:E6:3E:3C:6D:36:79:0E:79:1B:4A:3E:98:13:33:7E:3E:F5 X509v3 Authority Key Identifier: keyid:2E:5B:CB:C6:61:AF:F1:FE:D5:8B:0F:F4:B5:83:DC:F5:EC:1A:37:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/LlvLxmGv8f7Viw_0tYPc9ewaN0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LlvLxmGv8f7Viw_0tYPc9ewaN0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918919A/0490909A431B11EAB019772CC4F9AE02/953250CAE90011EB8DE96E50C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.227.20.0/22 139.5.172.0/22 203.22.104.0/23 IPv6: 2001:df1:3a00::/48 Signature Algorithm: sha256WithRSAEncryption a6:60:9b:25:aa:29:d7:bc:44:71:f9:b2:f5:86:2f:ee:6b:bd: 1e:ee:d3:55:be:5f:2b:1e:75:9c:00:67:7f:1e:8a:9d:c5:fb: 55:df:ce:b4:1e:ba:cc:46:c5:24:3d:62:19:5b:30:7f:f5:01: 8c:f9:3d:77:a5:27:06:67:71:1f:77:d5:f4:da:3f:1a:63:52: 23:63:22:c0:e4:bf:2d:06:99:45:96:69:94:d3:e1:b0:c4:2a: aa:8e:57:6f:56:4d:49:bd:0d:8e:c4:eb:f7:12:5a:2d:a2:49: 3c:be:81:8a:d8:7b:b1:b3:cb:82:29:56:ec:23:9a:78:45:5d: 50:ee:a9:eb:44:10:0a:b5:f3:9c:17:f5:e9:91:b6:f1:db:72: f7:a6:b3:87:e2:00:68:0a:a5:08:73:4a:9a:41:72:79:d7:41: 68:9b:9f:67:57:c0:f7:7a:f4:fb:9c:2e:e0:f5:f6:bf:b1:ab: 4a:1a:37:eb:1d:74:29:77:b7:45:99:7d:ca:56:79:83:3e:a2: d9:e9:0e:d4:47:e0:d8:b2:73:4b:7b:a9:43:52:59:9e:59:d4: c2:5b:29:6b:b5:e9:1b:27:69:3e:0f:1b:e9:27:7d:b3:d9:a3: bf:e0:fb:4a:69:db:30:7b:cd:bf:99:b6:49:2d:b2:fb:9f:ce: 4d:21:cd:77 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICCn8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODkxOUExMTAvBgNVBAUTKDJFNUJDQkM2NjFBRkYxRkVENThCMEZGNEI1ODNEQ0Y1 RUMxQTM3NEEwHhcNMjQwNTEwMjA1OTIzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNlOGFhYS01OWI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0vPT4beYQcU/kMFxn1LdlVxlFYkdp0+9r7iu9OG26MgbK8ouxRn5fahWbLJT p5HT84+1Sr7bWo6a3JF23SkzHh1q3HuzcTug0jhJbTXwoQtopLIedXOT/yf2IjIq MB7hYAN24o5aDtteHVlZqYqPWR2x1nIswaKntyjJuE6AArmVGmP+ccuG20hpjXae C3Kcs2eIGM8LPiCMJM5guMCVPCjC1/thRiH2kSAFJUp6rPtvMeusIIdmVm3bi70U rjIV8HaQf7WL0aWXNhHP0EoIxtw7lLzf1/x0vx5c71RhbG9RV8N3/Vq6bcAC/Sqh LpcQlaYf2HtcVW6zURGbhnFtJwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFNX2N+Y+ PG02eQ55G0o+mBMzfj71MB8GA1UdIwQYMBaAFC5by8Zhr/H+1YsP9LWD3PXsGjdK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTE5QS8wNDkwOTA5QTQz MUIxMUVBQjAxOTc3MkNDNEY5QUUwMi9MbHZMeG1HdjhmN1Zpd18wdFlQYzlld2FO MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xsdkx4bUd2OGY3Vml3XzB0WVBjOWV3YU4wby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODkxOUEvMDQ5MDkwOUE0MzFCMTFFQUIwMTk3NzJDQzRGOUFFMDIvOTUzMjUwQ0FF OTAwMTFFQjhERTk2RTUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAJn4xQDBAKLBawDBAHLFmgwDwQCAAIwCQMHACABDfE6ADAN BgkqhkiG9w0BAQsFAAOCAQEApmCbJaop17xEcfmy9YYv7mu9Hu7TVb5fKx51nABn fx6KncX7Vd/OtB66zEbFJD1iGVswf/UBjPk9d6UnBmdxH3fV9No/GmNSI2MiwOS/ LQaZRZZplNPhsMQqqo5Xb1ZNSb0NjsTr9xJaLaJJPL6Bith7sbPLgilW7COaeEVd UO6p60QQCrXznBf16ZG28dty96azh+IAaAqlCHNKmkFyeddBaJufZ1fA93r0+5wu 4PX2v7GrSho36x10KXe3RZl9ylZ5gz6i2ekO1Efg2LJzS3upQ1JZnlnUwlspa7Xp GydpPg8b6Sd9s9mjv+D7SmnbMHvNv5m2SS2y+5/OTSHNdw== -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:34 2024 by rpki-client on console-ams.rpki-client.org