$ rpki-client -vvf rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/B054EA98BBF511ECAA816D52C4F9AE02.roa File: B054EA98BBF511ECAA816D52C4F9AE02.roa (raw, json) Hash identifier: PxQFBDt3MlLgfKc8KqwYwfOpnira0VBqCMOA9nowVeQ= Subject key identifier: 0E:98:61:50:7A:7A:8F:51:FD:84:72:AD:2E:BC:C3:E0:40:33:90:03 Certificate issuer: /CN=A919B63C/serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB Certificate serial: 341B Authority key identifier: 25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/B054EA98BBF511ECAA816D52C4F9AE02.roa Signing time: Sat 06 Jul 2024 15:00:57 +0000 ROA not before: Sat 06 Jul 2024 15:00:57 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 63922 IP address blocks: 103.44.40.0/22 maxlen: 24 103.74.240.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:54:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13339 (0x341b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919B63C/serialNumber=2585DA0B980A47FEBA0E235205DEEE402F20B3CB Validity Not Before: Jul 6 15:00:57 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66895c29-323d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4d:b4:5b:2b:83:9b:9d:d4:b3:8f:16:4c:c1: ff:41:7e:d9:3b:cb:c4:7d:0f:e9:48:68:f5:9f:10: e7:cb:af:0e:da:7a:52:30:d3:7b:30:34:69:50:4e: ea:bd:96:f2:fb:a0:01:39:21:d3:2e:31:d1:8b:43: fe:aa:ac:f4:e8:7d:14:49:80:8a:bc:f4:4a:8a:f5: 3f:87:40:8c:f6:1c:84:a9:6b:7a:ea:bd:43:1a:50: b8:3c:53:7c:b1:1f:f4:66:3a:1b:8d:a6:84:54:74: 38:08:ed:19:aa:77:5a:15:ec:ba:09:a8:5f:a3:29: 6e:31:b2:90:bb:3d:5c:56:36:9c:d6:7c:f6:f9:56: 17:54:2e:74:34:0a:d8:2f:c8:06:80:56:c6:10:bf: 6d:66:98:20:4e:62:69:e3:24:59:28:7c:1b:69:ab: 9a:84:c4:ed:75:bb:9b:5a:bd:f8:9e:00:ae:59:ae: fc:11:e0:77:d9:13:89:25:51:6e:45:04:ba:0a:16: 05:50:09:aa:a3:77:cc:8c:ef:b1:bf:b5:e8:2a:77: 48:50:9a:49:a8:9e:b4:17:18:b6:d0:06:22:f0:65: fd:ee:1f:ae:b3:fe:8f:a0:f0:f3:75:69:97:ea:3b: 91:88:08:b0:5f:ba:b6:e3:ce:56:4c:53:61:63:88: 4e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:98:61:50:7A:7A:8F:51:FD:84:72:AD:2E:BC:C3:E0:40:33:90:03 X509v3 Authority Key Identifier: keyid:25:85:DA:0B:98:0A:47:FE:BA:0E:23:52:05:DE:EE:40:2F:20:B3:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/JYXaC5gKR_66DiNSBd7uQC8gs8s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYXaC5gKR_66DiNSBd7uQC8gs8s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919B63C/B7ACC26C1D9811E28F10F08208B02CD2/B054EA98BBF511ECAA816D52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.40.0/22 103.74.240.0/24 Signature Algorithm: sha256WithRSAEncryption 55:cc:4b:62:20:f1:50:7e:b3:3b:91:f1:0a:c4:5f:a0:24:1c: 5a:c6:f9:fc:9e:c3:bf:b6:90:e3:7d:c8:cb:92:dc:d2:2d:43: 15:0b:4c:55:72:a5:8c:ba:9f:31:fc:3d:03:1d:50:35:db:58: 90:af:7b:9a:7b:ed:75:2d:76:bd:b1:0e:c6:57:71:ef:37:34: ec:12:00:93:66:75:b0:7c:d0:c7:96:11:3d:38:67:e3:0f:6a: df:43:7a:10:8e:4c:78:dc:dc:fd:a5:5e:9d:97:1a:0c:9a:8b: 95:67:3e:79:a4:93:2c:cf:2e:c5:9a:c1:be:ee:05:f1:3b:a7: c5:65:60:6d:49:7a:9b:50:34:a3:e3:c8:6a:51:25:d6:c2:4d: 2e:ce:e7:94:e9:74:27:b2:7b:8a:c8:cc:24:f7:ff:f4:83:2a: 34:1e:cb:01:db:1b:5b:31:c1:d6:a7:a0:ba:45:bd:fc:67:13: 14:02:03:6f:09:e5:72:82:8a:3f:98:75:cc:aa:91:81:c1:77: 74:12:ee:d7:23:3c:46:7e:5e:1e:89:ba:98:10:74:06:84:1f: 39:a5:e7:fb:5e:37:dc:65:2c:b6:0c:94:03:2f:6d:05:45:18: 19:20:4b:d2:31:9d:1d:24:eb:f7:bf:8c:02:b4:e4:fd:3e:b7: a4:6d:a1:b6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNBswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUI2M0MxMTAvBgNVBAUTKDI1ODVEQTBCOTgwQTQ3RkVCQTBFMjM1MjA1REVFRTQw MkYyMEIzQ0IwHhcNMjQwNzA2MTUwMDU3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg5NWMyOS0zMjNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt020WyuDm53Us48WTMH/QX7ZO8vEfQ/pSGj1nxDny68O2npSMNN7MDRpUE7q vZby+6ABOSHTLjHRi0P+qqz06H0USYCKvPRKivU/h0CM9hyEqWt66r1DGlC4PFN8 sR/0ZjobjaaEVHQ4CO0ZqndaFey6CahfoyluMbKQuz1cVjac1nz2+VYXVC50NArY L8gGgFbGEL9tZpggTmJp4yRZKHwbaauahMTtdbubWr34ngCuWa78EeB32ROJJVFu RQS6ChYFUAmqo3fMjO+xv7XoKndIUJpJqJ60Fxi20AYi8GX97h+us/6PoPDzdWmX 6juRiAiwX7q2485WTFNhY4hOOQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFA6YYVB6 eo9R/YRyrS68w+BAM5ADMB8GA1UdIwQYMBaAFCWF2guYCkf+ug4jUgXe7kAvILPL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5QjYzQy9CN0FDQzI2QzFE OTgxMUUyOEYxMEYwODIwOEIwMkNEMi9KWVhhQzVnS1JfNjZEaU5TQmQ3dVFDOGdz OHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pZWGFDNWdLUl82NkRpTlNCZDd1UUM4Z3M4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUI2M0MvQjdBQ0MyNkMxRDk4MTFFMjhGMTBGMDgyMDhCMDJDRDIvQjA1NEVBOThC QkY1MTFFQ0FBODE2RDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnLCgDBABnSvAwDQYJKoZIhvcNAQELBQADggEBAFXMS2Ig 8VB+szuR8QrEX6AkHFrG+fyew7+2kON9yMuS3NItQxULTFVypYy6nzH8PQMdUDXb WJCve5p77XUtdr2xDsZXce83NOwSAJNmdbB80MeWET04Z+MPat9DehCOTHjc3P2l Xp2XGgyai5VnPnmkkyzPLsWawb7uBfE7p8VlYG1JeptQNKPjyGpRJdbCTS7O55Tp dCeye4rIzCT3//SDKjQeywHbG1sxwdanoLpFvfxnExQCA28J5XKCij+YdcyqkYHB d3QS7tcjPEZ+Xh6JupgQdAaEHzml5/teN9xlLLYMlAMvbQVFGBkgS9IxnR0k6/e/ jAK05P0+t6RtobY= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:58 2024 by rpki-client on console-ams.rpki-client.org