$ rpki-client -vvf rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/BAC6FF88707811ED8BBDE80AC4F9AE02.roa File: BAC6FF88707811ED8BBDE80AC4F9AE02.roa (raw, json) Hash identifier: iewlmQHKmtL9g9iAwygdncFQbz6yYvgxh4ytXfZu5xM= Subject key identifier: 6B:E2:24:3C:7D:44:B0:B0:91:8A:FE:06:B0:7E:5E:41:07:8F:17:92 Certificate issuer: /CN=A9196977/serialNumber=B8070DFC57EAE0EBE8AEE4BB5C91D06ABD1CA71A Certificate serial: 04DA Authority key identifier: B8:07:0D:FC:57:EA:E0:EB:E8:AE:E4:BB:5C:91:D0:6A:BD:1C:A7:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uAcN_Ffq4OvoruS7XJHQar0cpxo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/BAC6FF88707811ED8BBDE80AC4F9AE02.roa Signing time: Sat 25 Nov 2023 00:31:58 +0000 ROA not before: Sat 25 Nov 2023 00:31:58 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138685 IP address blocks: 103.44.44.0/24 maxlen: 32 2001:df1:6c00::/47 maxlen: 47 2001:df1:6c00::/48 maxlen: 48 2001:df1:6c01::/48 maxlen: 48 2001:df1:6c01:400::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/uAcN_Ffq4OvoruS7XJHQar0cpxo.crl rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/uAcN_Ffq4OvoruS7XJHQar0cpxo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uAcN_Ffq4OvoruS7XJHQar0cpxo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 22:37:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1242 (0x4da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196977/serialNumber=B8070DFC57EAE0EBE8AEE4BB5C91D06ABD1CA71A Validity Not Before: Nov 25 00:31:58 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6561407e-8f3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:61:64:e1:16:d0:06:c3:0d:9b:be:50:8b:1c: ff:d6:e5:bf:f0:aa:72:28:da:f3:53:95:cb:98:a5: 89:e1:25:7d:e2:64:fb:91:3b:3f:c1:23:75:76:3f: 9a:0b:d0:1e:37:c5:c6:ac:02:cf:04:71:96:5c:71: fd:0c:c4:5f:bf:a9:7f:43:6d:26:06:83:47:f1:12: 5a:b3:8b:fe:09:1f:a7:70:0c:08:0d:cf:e1:3f:30: e0:58:4d:26:5b:98:e5:b7:72:10:2d:08:7b:b2:43: d4:d1:07:9d:fa:fe:fd:b8:e9:5c:a1:2e:79:d2:7e: 69:52:3c:0d:18:24:05:04:da:76:00:c5:62:48:9e: f1:a9:de:65:05:c2:8a:5a:54:9e:8b:c5:c7:10:fd: 41:62:0e:a9:13:87:58:47:aa:81:11:6a:2e:09:d9: ab:cf:96:06:24:3a:9a:fa:37:22:73:d0:b2:8e:c7: 99:f6:fb:dd:b5:35:c7:2e:b5:60:53:81:de:b7:4f: 0f:e8:0f:14:65:04:e2:80:c2:0c:61:b4:c9:3c:14: 3a:59:15:2b:c4:cd:42:bd:a8:cc:39:7d:66:20:3d: 7a:f7:dd:1b:7b:6a:eb:86:d5:be:81:36:01:44:3a: c9:7e:c6:2d:12:4a:67:7e:a6:60:a6:12:dc:a8:d8: e7:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E2:24:3C:7D:44:B0:B0:91:8A:FE:06:B0:7E:5E:41:07:8F:17:92 X509v3 Authority Key Identifier: keyid:B8:07:0D:FC:57:EA:E0:EB:E8:AE:E4:BB:5C:91:D0:6A:BD:1C:A7:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/uAcN_Ffq4OvoruS7XJHQar0cpxo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uAcN_Ffq4OvoruS7XJHQar0cpxo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196977/B94B8C98B20411EB9CC7F449C4F9AE02/BAC6FF88707811ED8BBDE80AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.44.0/24 IPv6: 2001:df1:6c00::/47 Signature Algorithm: sha256WithRSAEncryption 1f:e1:a9:da:c3:fc:42:2c:ab:42:1e:70:c8:47:9f:59:f3:2a: 3b:3d:ed:d1:11:79:67:ef:75:9e:f3:7e:98:74:ef:3c:17:66: bf:a6:f6:15:9d:90:e2:7a:2c:73:8c:9b:c2:9f:fe:f7:53:53: f2:9a:14:77:83:4b:b3:fa:d1:2e:df:08:ef:3d:34:a6:36:38: b7:fe:04:8d:a6:c6:ad:51:0b:28:8e:b1:a7:b0:1d:e1:57:71: 30:66:26:28:9d:07:72:89:f8:3e:71:2a:90:ff:b0:99:b0:1e: a0:6e:b3:eb:f5:13:5c:2b:8d:32:32:40:50:77:08:8d:33:40: 3a:71:f3:57:d1:a0:ae:a4:39:e8:20:e3:f5:e8:79:96:5e:6a: 28:bf:22:6f:b1:29:8a:2f:ae:34:ea:1a:30:e6:8a:f7:33:38: 68:fe:30:a3:44:4b:35:1b:76:c7:cb:f6:0e:7f:4e:14:9e:c7: 32:02:a3:02:58:4f:56:e0:53:06:27:6b:d7:99:74:50:7d:f1: b3:7e:eb:df:3d:df:9c:f1:64:ae:52:c8:27:2a:04:87:5e:1b: e0:39:f0:8e:5c:4b:0b:6a:4b:80:83:1c:17:ac:35:93:01:57: cc:4b:f2:cc:62:a8:b9:12:60:81:0e:21:d2:73:c6:f2:6b:b0: be:e6:c8:52 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBNowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY5NzcxMTAvBgNVBAUTKEI4MDcwREZDNTdFQUUwRUJFOEFFRTRCQjVDOTFEMDZB QkQxQ0E3MUEwHhcNMjMxMTI1MDAzMTU4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYxNDA3ZS04ZjNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuWFk4RbQBsMNm75Qixz/1uW/8KpyKNrzU5XLmKWJ4SV94mT7kTs/wSN1dj+a C9AeN8XGrALPBHGWXHH9DMRfv6l/Q20mBoNH8RJas4v+CR+ncAwIDc/hPzDgWE0m W5jlt3IQLQh7skPU0Qed+v79uOlcoS550n5pUjwNGCQFBNp2AMViSJ7xqd5lBcKK WlSei8XHEP1BYg6pE4dYR6qBEWouCdmrz5YGJDqa+jcic9CyjseZ9vvdtTXHLrVg U4Het08P6A8UZQTigMIMYbTJPBQ6WRUrxM1CvajMOX1mID16990be2rrhtW+gTYB RDrJfsYtEkpnfqZgphLcqNjnVwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGviJDx9 RLCwkYr+BrB+XkEHjxeSMB8GA1UdIwQYMBaAFLgHDfxX6uDr6K7ku1yR0Gq9HKca MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5Njk3Ny9COTRCOEM5OEIy MDQxMUVCOUNDN0Y0NDlDNEY5QUUwMi91QWNOX0ZmcTRPdm9ydVM3WEpIUWFyMGNw eG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VBY05fRmZxNE92b3J1UzdYSkhRYXIwY3B4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY5NzcvQjk0QjhDOThCMjA0MTFFQjlDQzdGNDQ5QzRGOUFFMDIvQkFDNkZGODg3 MDc4MTFFRDhCQkRFODBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnLCwwDwQCAAIwCQMHASABDfFsADANBgkqhkiG9w0BAQsF AAOCAQEAH+Gp2sP8QiyrQh5wyEefWfMqOz3t0RF5Z+91nvN+mHTvPBdmv6b2FZ2Q 4nosc4ybwp/+91NT8poUd4NLs/rRLt8I7z00pjY4t/4EjabGrVELKI6xp7Ad4Vdx MGYmKJ0Hcon4PnEqkP+wmbAeoG6z6/UTXCuNMjJAUHcIjTNAOnHzV9GgrqQ56CDj 9eh5ll5qKL8ib7Epii+uNOoaMOaK9zM4aP4wo0RLNRt2x8v2Dn9OFJ7HMgKjAlhP VuBTBidr15l0UH3xs37r3z3fnPFkrlLIJyoEh14b4DnwjlxLC2pLgIMcF6w1kwFX zEvyzGKouRJggQ4h0nPG8muwvubIUg== -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:31 2024 by rpki-client on console-ams.rpki-client.org