$ rpki-client -vvf rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/9343CE6EE07211E7995BD42EC4F9AE02.roa File: 9343CE6EE07211E7995BD42EC4F9AE02.roa (raw, json) Hash identifier: qoFcoGLH5rF61ICxkb9LlHSey20FafRf8pg6MY0OMrY= Subject key identifier: AE:33:84:5E:90:EF:16:3C:B6:49:A9:E5:16:B0:38:88:DC:26:A8:99 Certificate issuer: /CN=A919B63C/serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB Certificate serial: 3419 Authority key identifier: 25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/9343CE6EE07211E7995BD42EC4F9AE02.roa Signing time: Sat 06 Jul 2024 15:00:55 +0000 ROA not before: Sat 06 Jul 2024 15:00:55 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45437 IP address blocks: 14.1.16.0/22 maxlen: 22 14.1.16.0/24 maxlen: 24 45.116.108.0/22 maxlen: 24 103.16.96.0/22 maxlen: 24 103.210.76.0/22 maxlen: 24 103.228.213.0/24 maxlen: 24 103.228.214.0/24 maxlen: 24 103.228.215.0/24 maxlen: 24 114.141.96.0/20 maxlen: 24 203.170.88.0/23 maxlen: 23 2406:4d40::/32 maxlen: 32 2406:a800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13337 (0x3419) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B63C/serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB Validity Not Before: Jul 6 15:00:55 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66895c27-3840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cc:6b:4b:06:e5:73:6e:33:c9:39:3d:9e:c6: d1:37:d4:65:81:66:12:86:e4:fd:8a:24:25:d0:b5: bb:88:9a:64:96:e6:25:1b:cb:02:10:93:30:5e:6e: cc:68:c9:74:e7:e4:c3:52:2d:71:93:2d:7b:02:b0: 68:9b:7c:a2:ca:8a:37:a1:00:7a:6b:a4:02:51:a6: bb:f8:c0:02:fb:09:57:18:5c:5a:c9:67:00:22:b7: 27:ef:d1:1a:18:e2:7d:1f:14:18:ae:9e:53:ca:51: 39:d4:ec:d1:01:ed:aa:92:ec:69:bb:f6:a0:8e:29: d8:33:58:5e:8d:d9:5b:5f:31:a1:a3:ba:25:bb:de: c3:07:08:d8:f0:bf:33:1a:96:9f:c3:1e:9c:b0:b7: 9b:91:d7:87:8e:db:9a:81:0f:77:24:20:64:57:2b: 9d:32:dc:62:dc:b1:be:ca:ee:99:4a:2a:39:bb:f9: ea:df:74:e6:5b:14:b2:18:e1:99:4b:bf:02:65:ba: 62:43:31:93:eb:ad:b8:ac:68:3d:8c:a3:d2:87:82: 19:d7:50:20:a4:ca:c8:bf:cb:49:43:af:b4:91:ee: c7:74:70:82:77:b8:ce:59:b4:b0:dc:1b:47:80:64: d0:22:b3:21:1c:ce:57:9f:21:c2:9d:71:5d:ae:1c: dd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:33:84:5E:90:EF:16:3C:B6:49:A9:E5:16:B0:38:88:DC:26:A8:99 X509v3 Authority Key Identifier: keyid:25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/9343CE6EE07211E7995BD42EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.1.16.0/22 45.116.108.0/22 103.16.96.0/22 103.210.76.0/22 103.228.213.0-103.228.215.255 114.141.96.0/20 203.170.88.0/23 IPv6: 2406:4d40::/32 2406:a800::/32 Signature Algorithm: sha256WithRSAEncryption 43:9c:35:8b:3c:c1:40:1b:64:9b:0c:c6:dc:c8:dd:e5:60:ba: 41:99:6b:c2:a0:23:55:33:ae:c5:7c:4c:57:76:26:65:de:4d: 06:fe:0c:09:36:2f:24:a6:e1:42:83:bf:58:fa:3a:c4:34:3c: 66:e2:31:f6:6f:18:da:46:71:93:d6:3e:95:b0:07:f5:cc:c7: 6f:00:f1:0c:80:2b:f7:b3:c2:ba:f6:b8:5f:19:7e:5f:bf:f0: 27:08:d7:81:84:06:a4:06:3e:9f:67:05:80:6f:86:80:11:85: f5:18:aa:a9:16:8b:b1:53:46:a0:1a:46:a2:52:54:09:4e:51: 4c:73:64:cf:b6:2f:7e:e4:16:8c:b3:cf:5e:5d:14:04:c0:98: e1:bf:48:e5:55:8c:bb:7d:0d:22:e9:9e:39:09:9b:22:af:be: b6:e6:97:2e:1a:9a:9c:40:d1:93:8f:94:23:f3:e5:96:30:a3: fb:11:13:80:3f:7b:9a:c2:c7:48:62:d5:7f:ac:c7:24:be:cb: a7:3c:ff:b4:d2:e2:1f:ad:02:4e:20:23:e8:00:a9:3d:3b:7d: 89:62:57:af:53:66:3a:5a:ef:38:ae:b9:8e:f2:7a:99:09:12: 7e:c1:61:3e:33:05:f6:98:55:7c:11:fb:fc:93:95:ae:41:be: 60:29:35:0d -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgICNBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI2M0MxMTAvBgNVBAUTKDI1ODVEQTBCOTgwQTQ3RkVCQTBFMjM1MjA1REVFRTQw MkYyMEIzQ0IwHhcNMjQwNzA2MTUwMDU1WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg5NWMyNy0zODQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv8xrSwblc24zyTk9nsbRN9RlgWYShuT9iiQl0LW7iJpkluYlG8sCEJMwXm7M aMl05+TDUi1xky17ArBom3yiyoo3oQB6a6QCUaa7+MAC+wlXGFxayWcAIrcn79Ea GOJ9HxQYrp5TylE51OzRAe2qkuxpu/agjinYM1hejdlbXzGho7olu97DBwjY8L8z Gpafwx6csLebkdeHjtuagQ93JCBkVyudMtxi3LG+yu6ZSio5u/nq33TmWxSyGOGZ S78CZbpiQzGT6624rGg9jKPSh4IZ11AgpMrIv8tJQ6+0ke7HdHCCd7jOWbSw3BtH gGTQIrMhHM5XnyHCnXFdrhzdIwIDAQABo4IC1zCCAtMwHQYDVR0OBBYEFK4zhF6Q 7xY8tkmp5RawOIjcJqiZMB8GA1UdIwQYMBaAFCWF2guYCkf+ug4jUgXe7kAvILPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjYzQy9CN0FDQzI2QzFE OTgxMUUyOEYxMEYwODIwOEIwMkNEMi9KWVhhQzVnS1JfNjZEaU5TQmQ3dVFDOGdz OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pZWGFDNWdLUl82NkRpTlNCZDd1UUM4Z3M4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUI2M0MvQjdBQ0MyNkMxRDk4MTFFMjhGMTBGMDgyMDhCMDJDRDIvOTM0M0NFNkVF MDcyMTFFNzk5NUJENDJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYQYIKwYBBQUHAQcBAf8E UjBQMDgEAgABMDIDBAIOARADBAItdGwDBAJnEGADBAJn0kwwDAMEAGfk1QMEA2fk 0AMEBHKNYAMEAcuqWDAUBAIAAjAOAwUAJAZNQAMFACQGqAAwDQYJKoZIhvcNAQEL BQADggEBAEOcNYs8wUAbZJsMxtzI3eVgukGZa8KgI1UzrsV8TFd2JmXeTQb+DAk2 LySm4UKDv1j6OsQ0PGbiMfZvGNpGcZPWPpWwB/XMx28A8QyAK/ezwrr2uF8Zfl+/ 8CcI14GEBqQGPp9nBYBvhoARhfUYqqkWi7FTRqAaRqJSVAlOUUxzZM+2L37kFoyz z15dFATAmOG/SOVVjLt9DSLpnjkJmyKvvrbmly4ampxA0ZOPlCPz5ZYwo/sRE4A/ e5rCx0hi1X+sxyS+y6c8/7TS4h+tAk4gI+gAqT07fYliV69TZjpa7ziuuY7yepkJ En7BYT4zBfaYVXwR+/yTla5BvmApNQ0= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:18 2024 by rpki-client on console-fra.rpki-client.org