$ rpki-client -vvf rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/5997C4D0719A11EEBBA64415C4F9AE02.roa File: 5997C4D0719A11EEBBA64415C4F9AE02.roa (raw, json) Hash identifier: 3yb3JnxFvEWR3NK/fInS7xk2TekWl+voulcmdH+n+ZY= Subject key identifier: 9A:F9:3D:BA:32:E8:39:07:07:02:0B:76:B9:A9:44:FE:2B:58:1F:49 Certificate issuer: /CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Certificate serial: 061D Authority key identifier: EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/5997C4D0719A11EEBBA64415C4F9AE02.roa Signing time: Tue 06 Aug 2024 23:11:50 +0000 ROA not before: Tue 06 Aug 2024 23:11:50 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 6134 IP address blocks: 103.244.88.0/22 maxlen: 24 116.206.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1565 (0x61d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918BB4D/serialNumber=EF403643EA9820AE6D9D622F9AEFD7A4C9154F24 Validity Not Before: Aug 6 23:11:50 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b2adb6-f667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c5:68:40:c0:e6:9a:21:71:e5:3e:14:d6:ff: e9:39:61:b8:04:24:1e:8b:0d:76:13:34:7b:b9:01: dc:d7:42:17:fe:28:17:64:c5:4e:d2:6a:4b:d4:a3: 42:07:56:5c:b4:91:99:09:79:3e:65:9f:91:bf:da: 94:45:42:1b:d0:ed:09:da:3d:d1:00:98:98:38:74: 45:90:56:b3:4f:7c:65:7c:bf:94:f0:07:67:48:0e: c9:3e:d6:1e:45:5c:36:e4:5c:ba:c8:24:70:d1:32: eb:96:65:1d:c2:3e:75:fc:83:d3:64:cf:b0:09:6c: f4:e8:43:86:d0:ec:10:c8:67:88:c0:9e:18:d5:97: ab:24:f7:ef:e1:6a:ca:03:67:07:66:8c:80:f4:ab: 3d:96:7e:8b:f0:ce:db:41:80:de:02:41:67:a3:b9: 6b:72:4e:49:b9:7a:ca:eb:8e:00:d5:00:5c:3f:5f: 45:60:35:e0:1a:81:a7:47:e9:d8:8f:39:da:63:92: d2:0e:35:46:31:8b:1a:93:e7:2a:89:76:dd:25:06: 02:31:a9:83:fd:fa:81:23:cf:1e:45:13:d4:39:b4: 69:5a:d7:78:78:28:5a:9f:dd:f2:cc:39:84:83:db: a8:5b:c8:84:1c:1b:4f:d8:0d:54:07:58:4c:a8:9b: ed:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:F9:3D:BA:32:E8:39:07:07:02:0B:76:B9:A9:44:FE:2B:58:1F:49 X509v3 Authority Key Identifier: keyid:EF:40:36:43:EA:98:20:AE:6D:9D:62:2F:9A:EF:D7:A4:C9:15:4F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/70A2Q-qYIK5tnWIvmu_XpMkVTyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918BB4D/CA563BE8652211EB80F6E94BC4F9AE02/5997C4D0719A11EEBBA64415C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.244.88.0/22 116.206.176.0/22 Signature Algorithm: sha256WithRSAEncryption 2f:74:50:81:80:91:cb:bc:be:86:dc:5e:86:09:8b:77:1d:1b: 8f:e1:d8:fa:fd:4d:93:50:b7:b0:1f:33:65:8a:ba:e8:90:82: e8:4b:25:17:5f:71:2b:d9:37:c3:0f:d6:23:76:f2:8e:27:68: a2:fb:35:51:b2:49:fd:05:a5:38:5c:1d:fb:62:62:0d:52:69: ac:db:31:9c:ea:58:1e:f5:5a:30:c1:75:9c:09:60:08:3e:44: c5:4b:17:56:b3:de:54:29:51:41:c8:f4:f9:06:0a:95:9d:7d: 66:98:aa:ad:84:3d:af:a4:c1:1b:da:d7:6a:4e:75:02:99:8e: 35:14:18:d6:4c:14:85:a5:a5:76:2a:2a:9b:6a:d0:9b:0c:c1: c8:32:17:d3:68:1a:3e:12:7a:e8:ca:2c:6a:da:e6:db:9b:d3: ce:7b:cc:44:42:e7:90:6d:ee:f4:be:41:f6:85:81:5a:05:72: ae:ef:e0:d5:37:97:3f:7b:bd:9c:5f:2e:96:3c:72:16:1d:5c: 9b:fe:30:38:21:ca:79:bd:0b:86:9a:d2:11:64:ea:98:99:8e: 18:3b:9a:3d:80:99:16:d9:cb:63:1d:f3:46:9c:56:79:75:ec: 41:f7:b7:7d:62:1a:e3:c3:ac:eb:c0:1d:b4:89:9d:aa:01:8e: 60:fe:c5:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBh0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEJCNEQxMTAvBgNVBAUTKEVGNDAzNjQzRUE5ODIwQUU2RDlENjIyRjlBRUZEN0E0 QzkxNTRGMjQwHhcNMjQwODA2MjMxMTUwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyYWRiNi1mNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxcVoQMDmmiFx5T4U1v/pOWG4BCQeiw12EzR7uQHc10IX/igXZMVO0mpL1KNC B1ZctJGZCXk+ZZ+Rv9qURUIb0O0J2j3RAJiYOHRFkFazT3xlfL+U8AdnSA7JPtYe RVw25Fy6yCRw0TLrlmUdwj51/IPTZM+wCWz06EOG0OwQyGeIwJ4Y1ZerJPfv4WrK A2cHZoyA9Ks9ln6L8M7bQYDeAkFno7lrck5JuXrK644A1QBcP19FYDXgGoGnR+nY jznaY5LSDjVGMYsak+cqiXbdJQYCMamD/fqBI88eRRPUObRpWtd4eChan93yzDmE g9uoW8iEHBtP2A1UB1hMqJvtOwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJr5Pboy 6DkHBwILdrmpRP4rWB9JMB8GA1UdIwQYMBaAFO9ANkPqmCCubZ1iL5rv16TJFU8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4QkI0RC9DQTU2M0JFODY1 MjIxMUVCODBGNkU5NEJDNEY5QUUwMi83MEEyUS1xWUlLNXRuV0l2bXVfWHBNa1ZU eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcwQTJRLXFZSUs1dG5XSXZtdV9YcE1rVlR5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEJCNEQvQ0E1NjNCRTg2NTIyMTFFQjgwRjZFOTRCQzRGOUFFMDIvNTk5N0M0RDA3 MTlBMTFFRUJCQTY0NDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn9FgDBAJ0zrAwDQYJKoZIhvcNAQELBQADggEBAC90UIGA kcu8vobcXoYJi3cdG4/h2Pr9TZNQt7AfM2WKuuiQguhLJRdfcSvZN8MP1iN28o4n aKL7NVGySf0FpThcHftiYg1SaazbMZzqWB71WjDBdZwJYAg+RMVLF1az3lQpUUHI 9PkGCpWdfWaYqq2EPa+kwRva12pOdQKZjjUUGNZMFIWlpXYqKptq0JsMwcgyF9No Gj4SeujKLGra5tub0857zERC55Bt7vS+QfaFgVoFcq7v4NU3lz97vZxfLpY8chYd XJv+MDghynm9C4aa0hFk6piZjhg7mj2AmRbZy2Md80acVnl17EH3t31iGuPDrOvA HbSJnaoBjmD+xRg= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:46 2024 by rpki-client on console-ams.rpki-client.org