$ rpki-client -vvf rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/D0566D20F25411E9AEDBEA62C4F9AE02.roa File: D0566D20F25411E9AEDBEA62C4F9AE02.roa (raw, json) Hash identifier: JRm3KZLihVfX2Mjt/YikIApeielUsAEctutVAu4actQ= Subject key identifier: 1C:77:EE:0B:95:0C:70:B2:78:49:40:B2:B6:06:D4:B8:5A:ED:A3:0C Certificate issuer: /CN=A919337F/serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Certificate serial: 0C2F Authority key identifier: 33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/D0566D20F25411E9AEDBEA62C4F9AE02.roa Signing time: Wed 02 Oct 2024 18:27:05 +0000 ROA not before: Wed 02 Oct 2024 18:27:05 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 139623 IP address blocks: 103.142.158.0/23 maxlen: 23 2405:3cc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:10:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3119 (0xc2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919337F/serialNumber=33740622DF86B3BFE7BF4ABD5DF1361587F03912 Validity Not Before: Oct 2 18:27:05 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fd9079-2742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ba:fd:f3:f6:2b:d5:42:98:5e:d9:fd:ef:e9: 00:77:41:00:98:12:0c:11:9d:65:19:71:5f:a6:cd: 23:97:6c:94:77:d6:64:92:0d:3f:66:48:bc:68:d3: 34:a1:c4:92:a4:a1:36:c0:de:8f:df:91:ac:75:12: b8:6c:9f:29:08:80:fe:e6:ce:fe:61:0b:4c:cc:cb: 61:a4:55:64:fb:f8:67:e5:f4:a3:f1:74:ac:d4:7c: 20:f8:65:58:4b:a4:61:b7:b1:c5:f1:87:14:6e:1b: fa:72:87:63:fe:61:99:60:5c:6d:fe:39:e4:3f:44: b6:ec:3f:ae:fb:8b:ea:87:bd:87:3d:d5:83:b4:f9: 18:40:12:a8:05:fb:36:67:e6:cc:8c:fb:5d:67:98: 03:81:a0:18:c7:c7:a8:a6:06:1e:55:79:6f:54:c8: 75:d2:04:7b:f1:f5:2f:6a:23:03:8f:ea:a2:3a:49: 38:6c:73:ee:f7:db:ac:4a:2c:36:00:de:af:cd:73: 08:c3:22:42:52:43:e7:0e:8e:59:c3:75:d0:98:87: 79:8c:82:3a:a3:a0:70:35:fd:9a:c1:c3:9e:d7:5d: b4:fc:1d:06:60:c2:c4:3e:f9:88:72:2e:60:d9:90: 07:8b:0a:2b:89:cb:c1:95:24:3f:d3:c9:df:ec:d2: 4a:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:77:EE:0B:95:0C:70:B2:78:49:40:B2:B6:06:D4:B8:5A:ED:A3:0C X509v3 Authority Key Identifier: keyid:33:74:06:22:DF:86:B3:BF:E7:BF:4A:BD:5D:F1:36:15:87:F0:39:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/M3QGIt-Gs7_nv0q9XfE2FYfwORI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M3QGIt-Gs7_nv0q9XfE2FYfwORI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919337F/1E17E01CF25411E9AD3BFB61C4F9AE02/D0566D20F25411E9AEDBEA62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.158.0/23 IPv6: 2405:3cc0::/32 Signature Algorithm: sha256WithRSAEncryption 87:8b:a3:fe:fb:69:62:21:b2:d0:08:e3:d6:92:35:b1:68:73: 1f:96:a9:3a:c6:25:cc:fc:f5:21:2a:db:73:a0:4b:7c:ed:d5: 90:59:33:8f:c9:f5:c7:de:8d:04:07:79:ac:1c:23:a2:9e:fd: a8:a8:9a:e1:3f:a0:24:40:2d:c0:3f:d4:03:41:e6:df:cc:73: 36:6a:0a:2a:2c:37:9a:24:87:50:d9:e6:89:5d:4d:8f:b0:5d: 7e:d4:9c:87:72:06:15:4a:05:c3:65:25:42:11:6c:9c:3e:da: f0:4f:75:28:57:67:5b:89:5e:64:c2:dc:1e:74:11:db:13:4a: e7:15:98:5e:a4:3d:89:c5:f2:9f:cf:c2:27:83:9c:2b:c0:20: a5:78:d6:0f:52:97:14:9a:1a:19:bd:fc:3c:9b:5c:a5:bd:84: 22:7b:7d:16:5f:a8:da:25:3f:a2:ac:d6:d3:84:c1:12:44:5e: 21:93:1b:00:92:fa:c7:88:40:5c:67:31:cd:c7:c1:ca:06:53: 24:23:f0:8e:f4:cd:0a:24:4d:8e:d7:f2:ce:8e:0b:dd:b7:f9: 9a:68:31:8b:26:70:ac:7f:e8:24:0f:55:db:cf:d8:42:95:6d: 35:71:af:99:55:47:0b:aa:31:f0:35:05:3f:af:ef:fe:d9:da: 35:0e:ce:43 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDC8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMzN0YxMTAvBgNVBAUTKDMzNzQwNjIyREY4NkIzQkZFN0JGNEFCRDVERjEzNjE1 ODdGMDM5MTIwHhcNMjQxMDAyMTgyNzA1WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkOTA3OS0yNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrr98/Yr1UKYXtn97+kAd0EAmBIMEZ1lGXFfps0jl2yUd9Zkkg0/Zki8aNM0 ocSSpKE2wN6P35GsdRK4bJ8pCID+5s7+YQtMzMthpFVk+/hn5fSj8XSs1Hwg+GVY S6Rht7HF8YcUbhv6codj/mGZYFxt/jnkP0S27D+u+4vqh72HPdWDtPkYQBKoBfs2 Z+bMjPtdZ5gDgaAYx8eopgYeVXlvVMh10gR78fUvaiMDj+qiOkk4bHPu99usSiw2 AN6vzXMIwyJCUkPnDo5Zw3XQmId5jII6o6BwNf2awcOe1120/B0GYMLEPvmIci5g 2ZAHiworicvBlSQ/08nf7NJKwQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBx37guV DHCyeElAsrYG1Lha7aMMMB8GA1UdIwQYMBaAFDN0BiLfhrO/579KvV3xNhWH8DkS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzM3Ri8xRTE3RTAxQ0Yy NTQxMUU5QUQzQkZCNjFDNEY5QUUwMi9NM1FHSXQtR3M3X252MHE5WGZFMkZZZndP UkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00zUUdJdC1HczdfbnYwcTlYZkUyRllmd09SSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMzN0YvMUUxN0UwMUNGMjU0MTFFOUFEM0JGQjYxQzRGOUFFMDIvRDA1NjZEMjBG MjU0MTFFOUFFREJFQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnjp4wDQQCAAIwBwMFACQFPMAwDQYJKoZIhvcNAQELBQAD ggEBAIeLo/77aWIhstAI49aSNbFocx+WqTrGJcz89SEq23OgS3zt1ZBZM4/J9cfe jQQHeawcI6Ke/aiomuE/oCRALcA/1ANB5t/MczZqCiosN5okh1DZ5oldTY+wXX7U nIdyBhVKBcNlJUIRbJw+2vBPdShXZ1uJXmTC3B50EdsTSucVmF6kPYnF8p/PwieD nCvAIKV41g9SlxSaGhm9/DybXKW9hCJ7fRZfqNolP6Ks1tOEwRJEXiGTGwCS+seI QFxnMc3HwcoGUyQj8I70zQokTY7X8s6OC923+ZpoMYsmcKx/6CQPVdvP2EKVbTVx r5lVRwuqMfA1BT+v7/7Z2jUOzkM= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:08 2024 by rpki-client on console-ams.rpki-client.org