$ rpki-client -vvf rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/2884888A717011E99BA2FB3DC4F9AE02.roa File: 2884888A717011E99BA2FB3DC4F9AE02.roa (raw, json) Hash identifier: JmtzVr9gglmzWYD320C9vJdh/yOVfgM+na2sd2lwcAQ= Subject key identifier: D5:BC:28:20:D5:6C:0B:95:C9:84:CB:D3:EB:C5:FC:AA:80:B6:18:B7 Certificate issuer: /CN=A918D3A9/serialNumber=1968423ED6D2495880A56A6DB02BC67298C5E686 Certificate serial: 0F87 Authority key identifier: 19:68:42:3E:D6:D2:49:58:80:A5:6A:6D:B0:2B:C6:72:98:C5:E6:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GWhCPtbSSViApWptsCvGcpjF5oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/2884888A717011E99BA2FB3DC4F9AE02.roa Signing time: Wed 06 Mar 2024 15:30:14 +0000 ROA not before: Wed 06 Mar 2024 15:30:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 0 IP address blocks: 103.116.193.0/24 maxlen: 24 103.116.194.0/24 maxlen: 24 2001:df3:1300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/GWhCPtbSSViApWptsCvGcpjF5oY.crl rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/GWhCPtbSSViApWptsCvGcpjF5oY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GWhCPtbSSViApWptsCvGcpjF5oY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:13:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3975 (0xf87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D3A9/serialNumber=1968423ED6D2495880A56A6DB02BC67298C5E686 Validity Not Before: Mar 6 15:30:14 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65e88c05-eb81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:39:40:34:47:93:df:77:f4:a4:20:10:07:72: 1a:6a:d5:6d:36:55:55:ca:87:b7:bb:af:60:49:22: 35:d9:fd:7b:84:c4:d9:e6:bf:96:e8:94:99:32:ad: b4:b1:2e:d2:55:51:14:74:cc:63:09:be:e0:e9:f4: 5e:bf:ed:23:22:0e:2e:ed:51:06:2c:98:8b:b4:1d: 5d:45:83:19:71:63:95:8e:42:d1:24:2b:ec:34:09: 9d:6c:32:df:2f:db:6f:81:36:7d:f4:c7:4e:d7:af: 35:db:d3:d2:b8:d2:eb:8d:6d:da:9f:8d:7d:dc:ed: 8c:a4:21:34:68:04:e8:32:6b:80:26:68:58:de:ba: d0:5a:a4:48:30:fa:70:c3:68:a2:72:4a:fb:a2:50: 79:86:db:1f:2b:58:98:bf:a6:95:b5:4e:80:84:81: 7f:69:fc:7f:52:76:0b:a9:17:5a:1f:af:67:79:a4: 18:3a:63:8a:2d:f6:10:4c:13:6b:b8:e3:65:8c:af: c5:76:62:8f:d5:03:cc:52:1d:53:cf:9d:62:3f:b6: cc:81:3f:5f:81:de:7b:b8:de:8f:89:b8:6e:fa:6a: a1:e9:62:c9:e1:f4:b4:a0:2e:6e:68:73:02:65:53: 95:a7:da:31:0e:82:2b:0f:91:ba:05:9c:02:34:dd: 29:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:BC:28:20:D5:6C:0B:95:C9:84:CB:D3:EB:C5:FC:AA:80:B6:18:B7 X509v3 Authority Key Identifier: keyid:19:68:42:3E:D6:D2:49:58:80:A5:6A:6D:B0:2B:C6:72:98:C5:E6:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/GWhCPtbSSViApWptsCvGcpjF5oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GWhCPtbSSViApWptsCvGcpjF5oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D3A9/BB7FFB8E3A9211E9B52DCF53C4F9AE02/2884888A717011E99BA2FB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.193.0-103.116.194.255 IPv6: 2001:df3:1300::/48 Signature Algorithm: sha256WithRSAEncryption 1d:75:ba:85:81:5e:02:53:50:24:33:72:d1:7c:69:80:c4:b1: aa:fd:d6:dd:3d:17:90:76:67:1d:57:de:20:96:b4:ff:4b:34: d9:bc:95:10:62:26:91:8d:4a:03:d8:5b:c8:22:9b:1e:30:dd: 64:ec:2a:42:93:6d:46:6b:11:04:77:09:5e:54:71:f3:a7:d1: e9:38:be:a2:95:84:01:80:14:ab:9e:9a:9f:19:1a:c0:63:bf: c3:3c:4d:a5:56:7c:6b:28:1e:22:84:5d:b5:cf:db:08:e9:a7: 39:3b:6b:dc:76:55:35:21:32:02:4d:7d:dc:a2:34:53:75:67: 22:98:53:fa:25:73:f1:23:96:1d:e6:8b:2b:0d:f1:c2:30:eb: df:36:96:28:19:bd:ef:af:13:e7:76:e3:99:a6:ed:8a:a5:27: a4:60:2a:7c:52:a9:19:dc:2d:b0:5e:09:c0:f0:1e:dc:e0:18: 38:19:b1:21:5d:18:84:27:cc:47:2f:39:cc:e3:3b:75:0d:a0: 55:cb:80:69:0f:0e:bb:a1:30:ac:2e:2f:be:83:c1:0b:14:30: 08:a0:1d:f1:93:b4:76:89:3b:f3:55:4e:ae:aa:13:ad:4a:27: 6c:45:fa:cc:8b:bc:1c:64:d7:3a:77:06:bd:27:32:dd:8b:01: 7f:bf:1e:a3 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICD4cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQzQTkxMTAvBgNVBAUTKDE5Njg0MjNFRDZEMjQ5NTg4MEE1NkE2REIwMkJDNjcy OThDNUU2ODYwHhcNMjQwMzA2MTUzMDE0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU4OGMwNS1lYjgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvTlANEeT33f0pCAQB3IaatVtNlVVyoe3u69gSSI12f17hMTZ5r+W6JSZMq20 sS7SVVEUdMxjCb7g6fRev+0jIg4u7VEGLJiLtB1dRYMZcWOVjkLRJCvsNAmdbDLf L9tvgTZ99MdO168129PSuNLrjW3an4193O2MpCE0aAToMmuAJmhY3rrQWqRIMPpw w2iickr7olB5htsfK1iYv6aVtU6AhIF/afx/UnYLqRdaH69neaQYOmOKLfYQTBNr uONljK/FdmKP1QPMUh1Tz51iP7bMgT9fgd57uN6Pibhu+mqh6WLJ4fS0oC5uaHMC ZVOVp9oxDoIrD5G6BZwCNN0pTwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFNW8KCDV bAuVyYTL0+vF/KqAthi3MB8GA1UdIwQYMBaAFBloQj7W0klYgKVqbbArxnKYxeaG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDNBOS9CQjdGRkI4RTNB OTIxMUU5QjUyRENGNTNDNEY5QUUwMi9HV2hDUHRiU1NWaUFwV3B0c0N2R2NwakY1 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dXaENQdGJTU1ZpQXBXcHRzQ3ZHY3BqRjVvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQzQTkvQkI3RkZCOEUzQTkyMTFFOUI1MkRDRjUzQzRGOUFFMDIvMjg4NDg4OEE3 MTcwMTFFOTlCQTJGQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEAGd0wQMEAGd0wjAPBAIAAjAJAwcAIAEN8xMAMA0GCSqG SIb3DQEBCwUAA4IBAQAddbqFgV4CU1AkM3LRfGmAxLGq/dbdPReQdmcdV94glrT/ SzTZvJUQYiaRjUoD2FvIIpseMN1k7CpCk21GaxEEdwleVHHzp9HpOL6ilYQBgBSr npqfGRrAY7/DPE2lVnxrKB4ihF21z9sI6ac5O2vcdlU1ITICTX3cojRTdWcimFP6 JXPxI5Yd5osrDfHCMOvfNpYoGb3vrxPnduOZpu2KpSekYCp8UqkZ3C2wXgnA8B7c 4Bg4GbEhXRiEJ8xHLznM4zt1DaBVy4BpDw67oTCsLi++g8ELFDAIoB3xk7R2iTvz VU6uqhOtSidsRfrMi7wcZNc6dwa9JzLdiwF/vx6j -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:23 2024 by rpki-client on console-ams.rpki-client.org