$ rpki-client -vvf rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/C44B0ADA83DA11E7AD4F156CC4F9AE02.roa File: C44B0ADA83DA11E7AD4F156CC4F9AE02.roa (raw, json) Hash identifier: ee6x0IQnWxU26dMdjthmXNqeRQ+45nsz1rLe7eGNses= Subject key identifier: EA:F5:B2:A2:EA:E8:AE:FA:6B:9D:89:84:E7:00:2E:BC:3A:4E:C2:50 Certificate issuer: /CN=A918EF61/serialNumber=C48AACEB4DDAEE3C6042E66216AD791507B47C6B Certificate serial: 1855 Authority key identifier: C4:8A:AC:EB:4D:DA:EE:3C:60:42:E6:62:16:AD:79:15:07:B4:7C:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIqs603a7jxgQuZiFq15FQe0fGs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/C44B0ADA83DA11E7AD4F156CC4F9AE02.roa Signing time: Wed 12 Jun 2024 17:47:49 +0000 ROA not before: Wed 12 Jun 2024 17:47:49 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 17882 IP address blocks: 59.153.112.0/24 maxlen: 24 59.153.113.0/24 maxlen: 24 59.153.114.0/24 maxlen: 24 59.153.115.0/24 maxlen: 24 103.57.92.0/24 maxlen: 24 103.57.93.0/24 maxlen: 24 103.57.94.0/24 maxlen: 24 103.57.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/xIqs603a7jxgQuZiFq15FQe0fGs.crl rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/xIqs603a7jxgQuZiFq15FQe0fGs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIqs603a7jxgQuZiFq15FQe0fGs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:28:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6229 (0x1855) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918EF61/serialNumber=C48AACEB4DDAEE3C6042E66216AD791507B47C6B Validity Not Before: Jun 12 17:47:49 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6669df45-e71b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ac:fc:90:0c:12:a7:a4:f3:24:32:e7:c1:77: f4:b3:45:95:d7:73:75:a3:ec:ae:fe:00:c8:2d:6f: 7e:47:b9:d0:6d:23:f7:aa:96:22:8e:93:71:d7:38: f8:bd:96:ac:95:be:1f:26:32:b9:ca:28:9c:e1:1c: 43:86:7b:1c:8c:dd:85:80:e8:31:5a:79:d9:18:55: 3a:15:ad:49:df:ff:e4:e1:80:7e:1a:d8:27:6a:7c: 79:ad:63:07:7e:ca:ca:ad:5d:d6:24:ad:42:e6:9e: 1a:e0:c4:f1:8e:f5:ce:1c:41:54:b7:26:d3:32:ac: 30:ff:5f:12:a1:a4:4e:50:0d:6d:64:d3:e4:81:93: 59:71:87:63:27:ee:4e:d7:fc:3a:18:6a:5b:c7:11: 19:56:e9:1b:3b:b5:18:37:4a:7c:88:23:0c:0a:03: c2:08:f0:18:d2:ce:82:02:11:dc:b8:d5:0a:ef:49: c9:8c:44:19:a9:f2:29:7c:1d:7a:d3:72:dd:89:ca: 1a:14:86:91:9d:06:f7:e5:2f:59:ae:cc:31:4d:45: 12:12:04:68:b8:47:b4:bb:06:72:de:5a:5a:1b:b1: a5:b1:2f:b4:97:18:1e:75:0b:d9:ac:f8:94:c2:13: 2b:b4:0f:fd:22:96:e7:a3:ef:65:83:dd:61:dc:93: 34:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F5:B2:A2:EA:E8:AE:FA:6B:9D:89:84:E7:00:2E:BC:3A:4E:C2:50 X509v3 Authority Key Identifier: keyid:C4:8A:AC:EB:4D:DA:EE:3C:60:42:E6:62:16:AD:79:15:07:B4:7C:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/xIqs603a7jxgQuZiFq15FQe0fGs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xIqs603a7jxgQuZiFq15FQe0fGs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918EF61/16A6DC6083DA11E7A003736BC4F9AE02/C44B0ADA83DA11E7AD4F156CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.112.0/22 103.57.92.0/22 Signature Algorithm: sha256WithRSAEncryption b6:3e:97:b0:61:e1:8b:ed:70:2f:e9:7a:f2:68:83:e5:2f:93: f1:44:72:3f:3e:74:f6:3c:48:b0:93:44:fa:0b:b5:b6:3c:eb: 73:93:14:b6:fd:d2:4e:f5:8c:9e:16:eb:ae:ff:c7:40:e0:d4: 0c:4e:2c:42:69:84:d3:af:c0:d4:c0:32:b0:e3:26:88:bd:17: c6:f1:83:85:54:2b:6f:b3:84:14:2e:f2:1b:e2:63:6c:a4:15: 7e:7f:f7:96:2f:f9:4c:a9:f5:b6:80:37:dc:ca:8f:b6:01:e4: cf:22:c4:fc:e4:fa:9a:90:01:85:ec:eb:50:53:20:30:29:8f: 62:d9:35:aa:d7:2c:d0:23:36:ae:8f:5e:2c:8c:a0:8a:fc:31: ef:6d:a0:bd:d0:83:59:0b:0a:fc:31:ae:f8:fd:a4:f1:79:94: f1:42:80:30:14:17:95:22:d9:d0:34:9c:2b:25:e6:bd:a5:3f: fe:26:1d:db:3e:b6:b5:ff:1d:17:85:e9:0f:ec:c5:f8:50:2c: 03:45:64:14:ca:23:09:0b:c2:f2:97:0f:83:31:4f:74:eb:44: 16:cf:ac:a9:3f:e2:dc:4e:17:1c:e9:cd:57:78:ee:da:d3:4a: b9:b7:f2:69:d1:58:af:6e:0e:83:f8:b1:ae:84:69:45:3b:32: 12:d6:d6:96 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGFUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEVGNjExMTAvBgNVBAUTKEM0OEFBQ0VCNEREQUVFM0M2MDQyRTY2MjE2QUQ3OTE1 MDdCNDdDNkIwHhcNMjQwNjEyMTc0NzQ5WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY5ZGY0NS1lNzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqz8kAwSp6TzJDLnwXf0s0WV13N1o+yu/gDILW9+R7nQbSP3qpYijpNx1zj4 vZaslb4fJjK5yiic4RxDhnscjN2FgOgxWnnZGFU6Fa1J3//k4YB+Gtgnanx5rWMH fsrKrV3WJK1C5p4a4MTxjvXOHEFUtybTMqww/18SoaROUA1tZNPkgZNZcYdjJ+5O 1/w6GGpbxxEZVukbO7UYN0p8iCMMCgPCCPAY0s6CAhHcuNUK70nJjEQZqfIpfB16 03LdicoaFIaRnQb35S9ZrswxTUUSEgRouEe0uwZy3lpaG7GlsS+0lxgedQvZrPiU whMrtA/9Ipbno+9lg91h3JM07wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOr1sqLq 6K76a52JhOcALrw6TsJQMB8GA1UdIwQYMBaAFMSKrOtN2u48YELmYhateRUHtHxr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RUY2MS8xNkE2REM2MDgz REExMUU3QTAwMzczNkJDNEY5QUUwMi94SXFzNjAzYTdqeGdRdVppRnExNUZRZTBm R3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hJcXM2MDNhN2p4Z1F1WmlGcTE1RlFlMGZHcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEVGNjEvMTZBNkRDNjA4M0RBMTFFN0EwMDM3MzZCQzRGOUFFMDIvQzQ0QjBBREE4 M0RBMTFFN0FENEYxNTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAI7mXADBAJnOVwwDQYJKoZIhvcNAQELBQADggEBALY+l7Bh 4YvtcC/pevJog+Uvk/FEcj8+dPY8SLCTRPoLtbY863OTFLb90k71jJ4W667/x0Dg 1AxOLEJphNOvwNTAMrDjJoi9F8bxg4VUK2+zhBQu8hviY2ykFX5/95Yv+Uyp9baA N9zKj7YB5M8ixPzk+pqQAYXs61BTIDApj2LZNarXLNAjNq6PXiyMoIr8Me9toL3Q g1kLCvwxrvj9pPF5lPFCgDAUF5Ui2dA0nCsl5r2lP/4mHds+trX/HReF6Q/sxfhQ LANFZBTKIwkLwvKXD4MxT3TrRBbPrKk/4txOFxzpzVd47trTSrm38mnRWK9uDoP4 sa6EaUU7MhLW1pY= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:07 2024 by rpki-client on console-ams.rpki-client.org